Changeset 704 for trunk/phpbms/modules/bms/products_addedit.php
- Timestamp:
- 01/01/10 23:10:02 (2 years ago)
- Files:
-
- 1 modified
-
trunk/phpbms/modules/bms/products_addedit.php (modified) (3 diffs)
Legend:
- Unmodified
- Added
- Removed
-
trunk/phpbms/modules/bms/products_addedit.php
r702 r704 145 145 include("header.php"); 146 146 ?> 147 <form action="<?php echo str_replace("&","&",$_SERVER["REQUEST_URI"]) ?>" method="post" enctype="multipart/form-data" name="record" id="record" onsubmit="return false;">147 <form action="<?php echo htmlentities($_SERVER["REQUEST_URI"]) ?>" method="post" enctype="multipart/form-data" name="record" id="record" onsubmit="return false;"> 148 148 <?php $phpbms->showTabs("products entry","tab:17346362-261b-4d1d-fa77-99e84cfd9b8a",$therecord["id"]);?><div class="bodyline"> 149 149 <input type="hidden" value="" name="command" id="hiddenCommand"/> … … 273 273 thumbnail graphic<br /> 274 274 <?php if($therecord["thumbnailmime"]) {?> 275 <img id="thumbpic" src="<?php echo APP_PATH ?>dbgraphic.php?t=product s&f=thumbnail&mf=thumbnailmime&r=<?php echo $therecord["id"]?>" style="border: 1px solid black; display: block; margin: 3px;;" />275 <img id="thumbpic" src="<?php echo APP_PATH ?>dbgraphic.php?t=productThumb&r=<?php echo $therecord["id"]?>" style="border: 1px solid black; display: block; margin: 3px;;" /> 276 276 <?php } else {?> 277 277 <div id="noThumb" class="tiny" align="center">no thumbnail</div> … … 286 286 main picture<br /> 287 287 <?php if($therecord["picturemime"]) {?> 288 <img id="picturepic" src="<?php echo APP_PATH ?>dbgraphic.php?t=product s&f=picture&mf=picturemime&r=<?php echo $therecord["id"]?>" style="border: 1px solid black; display: block; margin: 3px;;" />288 <img id="picturepic" src="<?php echo APP_PATH ?>dbgraphic.php?t=productPic&r=<?php echo $therecord["id"]?>" style="border: 1px solid black; display: block; margin: 3px;;" /> 289 289 <?php } else {?> 290 290 <div id="noPicture" class="tiny" align="center">no picture</div>
