Fixed escaping problem on posting of new and edited contacts.

1 files changed, 13 insertions, 0 deletions

diff --git a/forum/utils/addressbook.php b/forum/utils/addressbook.php
index fb34156..20548ce 100644
--- a/forum/utils/addressbook.php
+++ b/forum/utils/addressbook.php
@@ -41,6 +41,19 @@ function form($cid,
 }
 
 
+$name = stripslashes($name);
+$co = stripslashes($co);
+$address = stripslashes($address);
+$city = stripslashes($city);
+$country = stripslashes($country);
+$phone = stripslashes($phone);
+$phone2 = stripslashes($phone2);
+$email = stripslashes($email);
+$email2 = stripslashes($email2);
+$url = stripslashes($url);
+$url2 = stripslashes($url2);
+$notes = stripslashes($notes);
+
 $contacts = new Contacts($DATA_DIR . "/contacts.xml");
 
 if($action == "addgroup" && $gid) {