diff options
author | Daniel Friesel <derf@finalrewind.org> | 2011-06-03 11:34:54 +0200 |
---|---|---|
committer | Daniel Friesel <derf@finalrewind.org> | 2011-06-03 11:34:54 +0200 |
commit | 70de7e5a1dd96c47c48eb45498004d219bec1283 (patch) | |
tree | 9e5a325c5221167c4be88a3b04e14ec69c066620 /includes/pages/guest_faq.php | |
parent | 554bd796dc7aed67b6810e2ae3f30ba66bf263e3 (diff) |
guest_login: Cleanup, fix sql injection
Diffstat (limited to 'includes/pages/guest_faq.php')
-rw-r--r-- | includes/pages/guest_faq.php | 14 |
1 files changed, 10 insertions, 4 deletions
diff --git a/includes/pages/guest_faq.php b/includes/pages/guest_faq.php index c4bcd0bb..2799cbaf 100644 --- a/includes/pages/guest_faq.php +++ b/includes/pages/guest_faq.php @@ -5,11 +5,17 @@ function guest_faq() { foreach ($faqs as $faq) { $html .= "<dl>"; if ($_SESSION['Sprache'] == "DE") { - $html .= "<dt>" . $faq['Frage_de'] . "</dt>"; - $html .= "<dd>" . $faq['Antwort_de'] . "</dd>"; + $html .= sprintf( + '<dt>%s</dt> <dd>%s</dd>', + $faq['frage_de'], + $faq['antwort_de'] + ); } else { - $html .= "<dt>" . $faq['Frage_en'] . "</dt>"; - $html .= "<dd>" . $faq['Antwort_en'] . "</dd>"; + $html .= sprintf( + '<dt>%s</dt> <dd>%s</dd>', + $faq['frage_en'], + $faq['antwort_en'] + ); } $html .= "</dl>"; } |