Better to use format strings.

2010-08-19 11:26:34 +02:00
parent 66ce9352c5
commit 124ba18d03
2 changed files with 5 additions and 5 deletions
--- a/enum_editor.php
+++ b/enum_editor.php
@@ -18,7 +18,7 @@ require_once './libraries/header_meta_style.inc.php';
 <body>
    <form action="enum_editor.php" method="get">
        <div id="enum_editor_no_js">
-            <h3><?php echo __('Values for the column "' . urldecode($_GET['field']) . '"'); ?></h3>
+            <h3><?php printf(__('Values for the column "%s"'), htmlspecialchars($_GET['field'])); ?></h3>
            <p><?php echo __('Enter each value in a separate field, enclosed in single quotes. If you ever need to put a backslash ("\") or a single quote ("\'") amongst those values, precede it with a backslash (for example \'\\\\xyz\' or \'a\\\'b\').'); ?></p>
            <div id="values">
            <?php
--- a/libraries/tbl_properties.inc.php
+++ b/libraries/tbl_properties.inc.php
@@ -795,7 +795,7 @@ if ($action == 'tbl_create.php') {

 <div id="enum_editor">
 <a class="close_enum_editor">Close</a>
-<h3><?php echo __('Values for the column "' . (isset($row['Field']) ? urlencode($row['Field']) : "") . '"'); ?></h3>
+<h3><?php printf(__('Values for the column "%s"'), isset($row['Field']) ? htmlspecialchars($row['Field']) : ""); ?></h3>
 <p><?php echo __('Enter each value in a separate field. If you ever need to put a backslash ("\") or a single quote ("\'") amongst those values, precede it with a backslash (for example \'\\\\xyz\' or \'a\\\'b\').'); ?></p>
 <div id="values"></div>
 <p><a class="add_value">+ Add a new value</a></p>