Index: typo3/mod/tools/em/class.em_index.php
===================================================================
--- typo3/mod/tools/em/class.em_index.php (revision 6395)
+++ typo3/mod/tools/em/class.em_index.php (working copy)
@@ -400,7 +400,7 @@
// Setting GPvars:
$this->CMD = is_array(t3lib_div::_GP('CMD')) ? t3lib_div::_GP('CMD') : array();
- $this->lookUpStr = trim(t3lib_div::_GP('_lookUp'));
+ $this->lookUpStr = trim(t3lib_div::_GP('lookUp'));
$this->listRemote = t3lib_div::_GP('ter_connect');
$this->listRemote_search = trim(t3lib_div::_GP('ter_search'));
@@ -608,7 +608,7 @@
$menu.=' ' . t3lib_BEfunc::getFuncCheck(0, 'SET[display_obsolete]', $this->MOD_SETTINGS['display_obsolete'], '', '', 'id="checkDisplayObsolete"');
}
- $this->content.=$this->doc->section('','
');
+ $this->content.=$this->doc->section('','');
$this->content.=$this->doc->spacer(10);
switch((string)$this->MOD_SETTINGS['function']) {
@@ -766,7 +766,7 @@
}
if(count($extensions)) {
$lines[]='
|
';
- $lines[]=''.$this->listOrderTitle($this->MOD_SETTINGS['listOrder'],$catName).' |
';
+ $lines[]=''.$this->listOrderTitle($this->MOD_SETTINGS['listOrder'],$catName).' |
';
$lines[] = implode(chr(10),$extensions);
}
}
@@ -774,7 +774,7 @@
$content.= t3lib_BEfunc::cshItem('_MOD_tools_em', 'loaded', $GLOBALS['BACK_PATH'],'');
$content.= '
@@ -827,7 +827,7 @@
}
if(count($extensions)) {
$lines[]='
|
';
- $lines[]=''.$this->listOrderTitle($this->MOD_SETTINGS['listOrder'],$catName).' |
';
+ $lines[]=''.$this->listOrderTitle($this->MOD_SETTINGS['listOrder'],$catName).' |
';
$lines[] = implode(chr(10),$extensions);
}
}
@@ -848,7 +848,7 @@
$content.= sprintf($GLOBALS['LANG']->getLL('how_to_install'), $this->installButton()) . '
' .
sprintf($GLOBALS['LANG']->getLL('how_to_uninstall'), $this->removeButton()). '
';
$content .= '
';
+ $content .= '
';
$content.= $this->securityHint.'
';
$content.= '';
@@ -902,7 +902,7 @@
foreach($cat[$this->MOD_SETTINGS['listOrder']] as $catName => $extEkeys) {
if (count($extEkeys)) {
$lines[]='
|
';
- $lines[]=''.$this->listOrderTitle($this->MOD_SETTINGS['listOrder'],$catName).' |
';
+ $lines[]=''.$this->listOrderTitle($this->MOD_SETTINGS['listOrder'],$catName).' |
';
natcasesort($extEkeys);
reset($extEkeys);
@@ -918,7 +918,7 @@
// update
if ($inst_list[$extKey]['EM_CONF']['state'] != 'excludeFromUpdates') {
$loc= ($inst_list[$extKey]['type']=='G'?'G':'L');
- $aUrl = 'index.php?CMD[importExt]='.$extKey.'&CMD[extVersion]='.$version.'&CMD[loc]='.$loc;
+ $aUrl = htmlspecialchars('index.php?CMD[importExt]=' . $extKey . '&CMD[extVersion]=' . $version . '&CMD[loc]=' . $loc);
$loadUnloadLink .= '';
} else {
// extension is marked as "excludeFromUpdates"
@@ -926,7 +926,7 @@
}
} else {
// import
- $aUrl = 'index.php?CMD[importExt]='.$extKey.'&CMD[extVersion]='.$version.'&CMD[loc]=L';
+ $aUrl = htmlspecialchars('index.php?CMD[importExt]=' . $extKey . '&CMD[extVersion]=' . $version . '&CMD[loc]=L');
$loadUnloadLink .= '';
}
} else {
@@ -948,9 +948,9 @@
// CSH:
$content .= t3lib_BEfunc::cshItem('_MOD_tools_em', 'import_ter', $GLOBALS['BACK_PATH'], '|
');
- $onsubmit = "window.location.href='index.php?ter_connect=1&ter_search='+escape(this.elements['_lookUp'].value);return false;";
+ $onsubmit = "window.location.href='index.php?ter_connect=1&ter_search='+escape(this.elements['lookUp'].value);return false;";
$content .= '
';
$content .= $this->browseLinks();
@@ -1005,9 +1005,9 @@
}
} else {
$content .= t3lib_BEfunc::cshItem('_MOD_tools_em', 'import_ter', $GLOBALS['BACK_PATH'], '|
');
- $onsubmit = "window.location.href='index.php?ter_connect=1&ter_search='+escape(this.elements['_lookUp'].value);return false;";
+ $onsubmit = "window.location.href='index.php?ter_connect=1&ter_search='+escape(this.elements['lookUp'].value);return false;";
$content .= '
';
$content .= '' . $GLOBALS['LANG']->getLL('no_matching_extensions') . '
';
@@ -1029,9 +1029,9 @@
// CSH
$content .= t3lib_BEfunc::cshItem('_MOD_tools_em', 'import', $GLOBALS['BACK_PATH'], '|
');
- $onsubmit = "window.location.href='index.php?ter_connect=1&ter_search='+escape(this.elements['_lookUp'].value);return false;";
+ $onsubmit = "window.location.href='index.php?ter_connect=1&ter_search='+escape(this.elements['lookUp'].value);return false;";
$content .= '