• R/O
  • HTTP
  • SSH
  • HTTPS

nucleus-plugins: Commit

Nucleus CMS日本語版用プラグインのうち、日本語版開発者がサポートしているもの


Commit MetaInfo

Revisionba0730e899d1f253322e42cd22257e70e83a1ef5 (tree)
Time2006-10-18 01:01:09
Authorhsur <hsur@1ca2...>
Commiterhsur

Log Message

Ticket処理を追加

git-svn-id: https://svn.sourceforge.jp/svnroot/nucleus-jp/plugin@458 1ca29b6e-896d-4ea0-84a5-967f57386b96

Change Summary

Incremental Difference

--- a/trunk/NP_TrackBack/NP_TrackBack.php
+++ b/trunk/NP_TrackBack/NP_TrackBack.php
@@ -300,7 +300,7 @@
300300 return $err;
301301 header('Location: ' . serverVar('HTTP_REFERER'));
302302 break;
303- }
303+ }
304304
305305 exit;
306306 }
@@ -1770,8 +1770,7 @@
17701770 /* Internal helper functions for dealing with external file retrieval */
17711771
17721772 function retrieveUrl ($url) {
1773-//mod by cles
1774- $ua = ini_set('user_agent', 'NP_TrackBack/'. $this->getVersion());
1773+//mod by cles $ua = ini_set('user_agent', 'NP_TrackBack/'. $this->getVersion());
17751774 //mod by cles end
17761775 if (function_exists('curl_init') && $this->useCurl > 0)
17771776 {
@@ -2478,8 +2477,7 @@ function _cut_string($string, $dl = 0) {
24782477 return $string;
24792478 }
24802479
2481-function _strip_controlchar($string){
2482- $string = preg_replace("/[\x01-\x08\x0b\x0c\x0e-\x1f\x7f]+/","",$string);
2480+function _strip_controlchar($string){ $string = preg_replace("/[\x01-\x08\x0b\x0c\x0e-\x1f\x7f]+/","",$string);
24832481 $string = str_replace("\0","",$string);
24842482 return $string;
24852483 }
--- a/trunk/NP_TrackBack/trackback/index.php
+++ b/trunk/NP_TrackBack/trackback/index.php
@@ -24,6 +24,14 @@
2424 exit;
2525 }
2626
27+ // Actions
28+ $action = requestVar('action');
29+ $aActionsNotToCheck = array(
30+ '',
31+ );
32+ if (!in_array($action, $aActionsNotToCheck)) {
33+ if (!$manager->checkTicket()) doError(_ERROR_BADTICKET);
34+ }
2735 $oPluginAdmin->start();
2836
2937 //modify start+++++++++
@@ -47,9 +55,6 @@
4755 $oTemplate = new Trackback_Template();
4856 $oTemplate->set ('CONF', $CONF);
4957
50- // Actions
51- $action = requestVar('action');
52-
5358 switch($action) {
5459
5560 //modify start+++++++++
--- a/trunk/NP_TrackBack/trackback/japanese-euc.help.html
+++ b/trunk/NP_TrackBack/trackback/japanese-euc.help.html
@@ -127,7 +127,7 @@ div.tb div.info {
127127 <ul>
128128 <li>Version 2.0.3jp7 : (2006/*/*)</li>
129129 <li> [Changed] SpamChekについて微調整</li>
130- <li> [Fixed] セキュリティの向上(ticket処理の追加。CSRF対策)</li>
130+ <li> [Added] Ticket処理を追加(CSRF対策)</li>
131131
132132 <li>Version 2.0.3jp6 : (2006/09/30)</li>
133133 <li> [Fixed] セキュリティの向上</li>
--- a/trunk/NP_TrackBack/trackback/japanese-euc.templates/all.html
+++ b/trunk/NP_TrackBack/trackback/japanese-euc.templates/all.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>
23 All trackbacks
34 <?php if ($count > $amount): ?>
@@ -16,6 +17,7 @@
1617 <input type="submit" value="&lt;&lt; Previous" />
1718 <input type="hidden" name="action" value="all" />
1819 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
20+ <?php $manager->addTicketHidden(); ?>
1921 </div>
2022 </form>
2123 <?php endif; ?>
@@ -27,6 +29,7 @@
2729 <input type="submit" value="Next &gt; &gt;" />
2830 <input type="hidden" name="action" value="all" />
2931 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
32+ <?php $manager->addTicketHidden(); ?>
3033 </div>
3134 </form>
3235 <?php endif; ?>
@@ -59,13 +62,13 @@
5962 <?php echo str_replace(' ', '&nbsp;', date("Y-m-d @ H:i",$item['timestamp']));?>
6063 </td>
6164 <td>
62- <a href='<?php echo $item['url'];?>'>Visit</a>
65+ <a href="<?php echo $item['url'];?>">Visit</a>
6366 </td>
6467 <td>
65- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=block&amp;tb=<?php echo $item['id'];?>&amp;next=all&amp;start=<?php echo $start;?>'>Block</a>
68+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=block&tb='.$item['id'].'&next=all&start='.$start),ENT_QUOTES);?>">Block</a>
6669 </td>
6770 <td>
68- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=delete&amp;tb=<?php echo $item['id'];?>&amp;next=all&amp;start=<?php echo $start;?>'>Delete</a>
71+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=delete&tb='.$item['id'].'&next=all&start='.$start),ENT_QUOTES);?>">Delete</a>
6972 </td>
7073 </tr>
7174 <?php endwhile; ?>
@@ -82,6 +85,7 @@
8285 <input type="submit" value="&lt;&lt; Previous" />
8386 <input type="hidden" name="action" value="all" />
8487 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
88+ <?php $manager->addTicketHidden(); ?>
8589 </div>
8690 </form>
8791 <?php endif; ?>
@@ -93,6 +97,7 @@
9397 <input type="submit" value="Next &gt; &gt;" />
9498 <input type="hidden" name="action" value="all" />
9599 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
100+ <?php $manager->addTicketHidden(); ?>
96101 </div>
97102 </form>
98103 <?php endif; ?>
@@ -100,5 +105,4 @@
100105 </tr>
101106 </table>
102107 <?php endif; ?>
103-<?php endif; ?>
104-
108+<?php endif; ?>
\ No newline at end of file
--- a/trunk/NP_TrackBack/trackback/japanese-euc.templates/blocked.html
+++ b/trunk/NP_TrackBack/trackback/japanese-euc.templates/blocked.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>
23 ブロックされたトラックバック
34 <?php if ($count > $amount): ?>
@@ -6,8 +7,8 @@
67 </h2>
78
89 <ul>
9- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=blocked_clear&amp;next=blocked'>ブロックされたトラックバックのクリア</a></li>
10- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=blocked_spamclear&amp;next=blocked'>spam判定されたトラックバックのクリア</a></li>
10+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=blocked_clear&next=blocked'),ENT_QUOTES); ?>">ブロックされたトラックバックのクリア</a></li>
11+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=blocked_spamclear&next=blocked'),ENT_QUOTES); ?>">spam判定されたトラックバックのクリア</a></li>
1112 </ul>
1213
1314 <?php if(count($items)): ?>
@@ -21,6 +22,7 @@
2122 <input type="submit" value="&lt;&lt; Previous" />
2223 <input type="hidden" name="action" value="blocked" />
2324 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
25+ <?php $manager->addTicketHidden(); ?>
2426 </div>
2527 </form>
2628 <?php endif; ?>
@@ -32,6 +34,7 @@
3234 <input type="submit" value="Next &gt; &gt;" />
3335 <input type="hidden" name="action" value="blocked" />
3436 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
37+ <?php $manager->addTicketHidden(); ?>
3538 </div>
3639 </form>
3740 <?php endif; ?>
@@ -76,13 +79,13 @@
7679 '<span style="color: darkred;">No</span>';?>
7780 </td>
7881 <td>
79- <a href='<?php echo $item['url'];?>'>Visit</a>
82+ <a href="<?php echo $item['url'];?>">Visit</a>
8083 </td>
8184 <td>
82- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=unblock&amp;tb=<?php echo $item['id'];?>&amp;next=blocked&amp;start=<?php echo $start;?>'>Unblock</a>
85+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=unblock&tb='.$item['id'].'&next=blocked&start='.$start),ENT_QUOTES);?>">Unblock</a>
8386 </td>
8487 <td>
85- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=delete&amp;tb=<?php echo $item['id'];?>&amp;next=blocked&amp;start=<?php echo $start;?>'>Delete</a>
88+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=delete&tb='.$item['id'].'&next=blocked&start='.$start),ENT_QUOTES);?>">Delete</a>
8689 </td>
8790 </tr>
8891 <?php endwhile; ?>
@@ -99,6 +102,7 @@
99102 <input type="submit" value="&lt;&lt; Previous" />
100103 <input type="hidden" name="action" value="blocked" />
101104 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
105+ <?php $manager->addTicketHidden(); ?>
102106 </div>
103107 </form>
104108 <?php endif; ?>
@@ -110,6 +114,7 @@
110114 <input type="submit" value="Next &gt; &gt;" />
111115 <input type="hidden" name="action" value="blocked" />
112116 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
117+ <?php $manager->addTicketHidden(); ?>
113118 </div>
114119 </form>
115120 <?php endif; ?>
--- a/trunk/NP_TrackBack/trackback/japanese-euc.templates/form.html
+++ b/trunk/NP_TrackBack/trackback/japanese-euc.templates/form.html
@@ -25,7 +25,7 @@
2525 <input type="hidden" name="action" value="plugin" />
2626 <input type="hidden" name="name" value="TrackBack" />
2727 <input type="hidden" name="type" value="ping" />
28-
28+
2929 <table>
3030 <tr>
3131 <td>あなたの記事のurl</td>
--- a/trunk/NP_TrackBack/trackback/japanese-euc.templates/index.html
+++ b/trunk/NP_TrackBack/trackback/japanese-euc.templates/index.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>Overview of all items</h2>
23
34 <?php if(count($blogs)): ?>
@@ -22,7 +23,7 @@
2223 <?php echo htmlspecialchars($item['total']);?>
2324 </td>
2425 <td>
25- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=list&amp;id=<?php echo $item['inumber'];?>'>Trackbacks</a>
26+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=list&id='.$item['inumber']),ENT_QUOTES);?>">Trackbacks</a>
2627 </td>
2728 </tr>
2829 <?php endwhile; ?>
@@ -30,6 +31,4 @@
3031 <?php endif; ?>
3132 <?php endwhile; ?>
3233 </table>
33-<?php endif; ?>
34-
35-
34+<?php endif; ?>
\ No newline at end of file
--- a/trunk/NP_TrackBack/trackback/japanese-euc.templates/list.html
+++ b/trunk/NP_TrackBack/trackback/japanese-euc.templates/list.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>
23 All trackbacks for &quot;<?php echo $story['title'];?>&quot;
34 <?php if ($count > $amount): ?>
@@ -17,6 +18,7 @@
1718 <input type="hidden" name="action" value="list" />
1819 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
1920 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
21+ <?php $manager->addTicketHidden(); ?>
2022 </div>
2123 </form>
2224 <?php endif; ?>
@@ -29,6 +31,7 @@
2931 <input type="hidden" name="action" value="list" />
3032 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
3133 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
34+ <?php $manager->addTicketHidden(); ?>
3235 </div>
3336 </form>
3437 <?php endif; ?>
@@ -57,13 +60,13 @@
5760 <?php echo str_replace(' ', '&nbsp;', date("Y-m-d @ H:i",$item['timestamp']));?>
5861 </td>
5962 <td>
60- <a href='<?php echo $item['url'];?>'>Visit</a>
63+ <a href="<?php echo $item['url'];?>">Visit</a>
6164 </td>
6265 <td>
63- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=block&amp;tb=<?php echo $item['id'];?>&amp;next=list&amp;id=<?php echo $story['id'];?>&amp;start=<?php echo $start;?>'>Block</a>
66+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=block&tb='.$item['id'].'&next=list&id='.$story['id'].'&start='.$start),ENT_QUOTES);?>">Block</a>
6467 </td>
6568 <td>
66- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=delete&amp;tb=<?php echo $item['id'];?>&amp;next=list&amp;id=<?php echo $story['id'];?>&amp;start=<?php echo $start;?>'>Delete</a>
69+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=delete&tb='.$item['id'].'&next=list&id='.$story['id'].'&start='.$start),ENT_QUOTES);?>">Delete</a>
6770 </td>
6871 </tr>
6972 <?php endwhile; ?>
@@ -81,6 +84,7 @@
8184 <input type="hidden" name="action" value="list" />
8285 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
8386 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
87+ <?php $manager->addTicketHidden(); ?>
8488 </div>
8589 </form>
8690 <?php endif; ?>
@@ -93,6 +97,7 @@
9397 <input type="hidden" name="action" value="list" />
9498 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
9599 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
100+ <?php $manager->addTicketHidden(); ?>
96101 </div>
97102 </form>
98103 <?php endif; ?>
--- a/trunk/NP_TrackBack/trackback/japanese-euc.templates/menu.html
+++ b/trunk/NP_TrackBack/trackback/japanese-euc.templates/menu.html
@@ -1,11 +1,11 @@
1-
1+<?php global $manager; ?>
22 <h2>Trackback</h2>
33
44 <ul>
5- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=index'>Overview of all items</a></li>
6- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=all'>トラックバックの全データ</a></li>
7- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=blocked'>ブロックされたトラックバック</a></li>
8- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=ping'>手動ping</a></li>
9- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=help'>ヘルプ</a></li>
10- <li><a href='<?php echo $CONF['AdminURL'];?>index.php?action=pluginoptions&amp;plugid=<?php echo $plugid;?>'>プラグインオプション設定</a></li>
5+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=index'),ENT_QUOTES);?>">Overview of all items</a></li>
6+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=all'),ENT_QUOTES);?>">トラックバックの全データ</a></li>
7+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=blocked'),ENT_QUOTES);?>">ブロックされたトラックバック</a></li>
8+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=ping'),ENT_QUOTES);?>">手動ping</a></li>
9+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=help'),ENT_QUOTES);?>">ヘルプ</a></li>
10+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['AdminURL'].'index.php?action=pluginoptions&plugid='.$plugid),ENT_QUOTES);?>">プラグインオプション設定</a></li>
1111 </ul>
\ No newline at end of file
--- a/trunk/NP_TrackBack/trackback/japanese-euc.templates/ping.html
+++ b/trunk/NP_TrackBack/trackback/japanese-euc.templates/ping.html
@@ -1,10 +1,12 @@
1+<?php global $manager; ?>
12 <h2>手動pingフォーム</h2>
23
34 <form method="post" action="<?php echo $CONF['PluginURL'];?>trackback/index.php">
45
56 <input type="hidden" name="action" value="sendping" />
67 <input type="hidden" name="next" value="ping" />
7-
8+ <?php $manager->addTicketHidden(); ?>
9+
810 <table>
911 <tr>
1012 <th colspan='2'>手動ping</th>
--- a/trunk/NP_TrackBack/trackback/japanese-euc.templates/updatetable.html
+++ b/trunk/NP_TrackBack/trackback/japanese-euc.templates/updatetable.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <blockquote style="color: red;border:1px solid red;padding:1em;"><b>アップデートが必要です:</b><br />
23 このバージョンで運用するためにはDB内のテーブルのアップデートが必要です。<br />
34 今までのデータが削除されることはありません。
@@ -6,6 +7,7 @@
67 <form method="post"><div>
78 <input type="hidden" name="action" value="tableUpgrade" />
89 <input type="submit" tabindex="10" value="upgrade table" />
10+ <?php $manager->addTicketHidden(); ?>
911 </div></form>
1012 </blockquote>
1113
--- a/trunk/NP_TrackBack/trackback/japanese-euc.templates/updatetablefinished.html
+++ b/trunk/NP_TrackBack/trackback/japanese-euc.templates/updatetablefinished.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <blockquote style="color: red;border:1px solid red;padding:1em;">
23 テーブルのアップデートは完了しました。
34 </blockquote>
--- a/trunk/NP_TrackBack/trackback/japanese-utf8.help.html
+++ b/trunk/NP_TrackBack/trackback/japanese-utf8.help.html
@@ -127,7 +127,7 @@ div.tb div.info {
127127 <ul>
128128 <li>Version 2.0.3jp7 : (2006/*/*)</li>
129129 <li> [Changed] SpamChekについて微調整</li>
130- <li> [Fixed] セキュリティの向上(ticket処理の追加。CSRF対策)</li>
130+ <li> [Added] Ticket処理を追加(CSRF対策)</li>
131131
132132 <li>Version 2.0.3jp6 : (2006/09/30)</li>
133133 <li> [Fixed] セキュリティの向上</li>
--- a/trunk/NP_TrackBack/trackback/japanese-utf8.templates/all.html
+++ b/trunk/NP_TrackBack/trackback/japanese-utf8.templates/all.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>
23 All trackbacks
34 <?php if ($count > $amount): ?>
@@ -16,6 +17,7 @@
1617 <input type="submit" value="&lt;&lt; Previous" />
1718 <input type="hidden" name="action" value="all" />
1819 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
20+ <?php $manager->addTicketHidden(); ?>
1921 </div>
2022 </form>
2123 <?php endif; ?>
@@ -27,6 +29,7 @@
2729 <input type="submit" value="Next &gt; &gt;" />
2830 <input type="hidden" name="action" value="all" />
2931 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
32+ <?php $manager->addTicketHidden(); ?>
3033 </div>
3134 </form>
3235 <?php endif; ?>
@@ -59,13 +62,13 @@
5962 <?php echo str_replace(' ', '&nbsp;', date("Y-m-d @ H:i",$item['timestamp']));?>
6063 </td>
6164 <td>
62- <a href='<?php echo $item['url'];?>'>Visit</a>
65+ <a href="<?php echo $item['url'];?>">Visit</a>
6366 </td>
6467 <td>
65- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=block&amp;tb=<?php echo $item['id'];?>&amp;next=all&amp;start=<?php echo $start;?>'>Block</a>
68+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=block&tb='.$item['id'].'&next=all&start='.$start),ENT_QUOTES);?>">Block</a>
6669 </td>
6770 <td>
68- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=delete&amp;tb=<?php echo $item['id'];?>&amp;next=all&amp;start=<?php echo $start;?>'>Delete</a>
71+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=delete&tb='.$item['id'].'&next=all&start='.$start),ENT_QUOTES);?>">Delete</a>
6972 </td>
7073 </tr>
7174 <?php endwhile; ?>
@@ -82,6 +85,7 @@
8285 <input type="submit" value="&lt;&lt; Previous" />
8386 <input type="hidden" name="action" value="all" />
8487 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
88+ <?php $manager->addTicketHidden(); ?>
8589 </div>
8690 </form>
8791 <?php endif; ?>
@@ -93,6 +97,7 @@
9397 <input type="submit" value="Next &gt; &gt;" />
9498 <input type="hidden" name="action" value="all" />
9599 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
100+ <?php $manager->addTicketHidden(); ?>
96101 </div>
97102 </form>
98103 <?php endif; ?>
@@ -100,5 +105,4 @@
100105 </tr>
101106 </table>
102107 <?php endif; ?>
103-<?php endif; ?>
104-
108+<?php endif; ?>
\ No newline at end of file
--- a/trunk/NP_TrackBack/trackback/japanese-utf8.templates/blocked.html
+++ b/trunk/NP_TrackBack/trackback/japanese-utf8.templates/blocked.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>
23 ブロックされたトラックバック
34 <?php if ($count > $amount): ?>
@@ -6,8 +7,8 @@
67 </h2>
78
89 <ul>
9- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=blocked_clear&amp;next=blocked'>ブロックされたトラックバックのクリア</a></li>
10- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=blocked_spamclear&amp;next=blocked'>spam判定されたトラックバックのクリア</a></li>
10+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=blocked_clear&next=blocked'),ENT_QUOTES); ?>">ブロックされたトラックバックのクリア</a></li>
11+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=blocked_spamclear&next=blocked'),ENT_QUOTES); ?>">spam判定されたトラックバックのクリア</a></li>
1112 </ul>
1213
1314 <?php if(count($items)): ?>
@@ -21,6 +22,7 @@
2122 <input type="submit" value="&lt;&lt; Previous" />
2223 <input type="hidden" name="action" value="blocked" />
2324 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
25+ <?php $manager->addTicketHidden(); ?>
2426 </div>
2527 </form>
2628 <?php endif; ?>
@@ -32,6 +34,7 @@
3234 <input type="submit" value="Next &gt; &gt;" />
3335 <input type="hidden" name="action" value="blocked" />
3436 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
37+ <?php $manager->addTicketHidden(); ?>
3538 </div>
3639 </form>
3740 <?php endif; ?>
@@ -76,13 +79,13 @@
7679 '<span style="color: darkred;">No</span>';?>
7780 </td>
7881 <td>
79- <a href='<?php echo $item['url'];?>'>Visit</a>
82+ <a href="<?php echo $item['url'];?>">Visit</a>
8083 </td>
8184 <td>
82- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=unblock&amp;tb=<?php echo $item['id'];?>&amp;next=blocked&amp;start=<?php echo $start;?>'>Unblock</a>
85+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=unblock&tb='.$item['id'].'&next=blocked&start='.$start),ENT_QUOTES);?>">Unblock</a>
8386 </td>
8487 <td>
85- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=delete&amp;tb=<?php echo $item['id'];?>&amp;next=blocked&amp;start=<?php echo $start;?>'>Delete</a>
88+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=delete&tb='.$item['id'].'&next=blocked&start='.$start),ENT_QUOTES);?>">Delete</a>
8689 </td>
8790 </tr>
8891 <?php endwhile; ?>
@@ -99,6 +102,7 @@
99102 <input type="submit" value="&lt;&lt; Previous" />
100103 <input type="hidden" name="action" value="blocked" />
101104 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
105+ <?php $manager->addTicketHidden(); ?>
102106 </div>
103107 </form>
104108 <?php endif; ?>
@@ -110,6 +114,7 @@
110114 <input type="submit" value="Next &gt; &gt;" />
111115 <input type="hidden" name="action" value="blocked" />
112116 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
117+ <?php $manager->addTicketHidden(); ?>
113118 </div>
114119 </form>
115120 <?php endif; ?>
--- a/trunk/NP_TrackBack/trackback/japanese-utf8.templates/form.html
+++ b/trunk/NP_TrackBack/trackback/japanese-utf8.templates/form.html
@@ -25,7 +25,7 @@
2525 <input type="hidden" name="action" value="plugin" />
2626 <input type="hidden" name="name" value="TrackBack" />
2727 <input type="hidden" name="type" value="ping" />
28-
28+
2929 <table>
3030 <tr>
3131 <td>あなたの記事のurl</td>
--- a/trunk/NP_TrackBack/trackback/japanese-utf8.templates/index.html
+++ b/trunk/NP_TrackBack/trackback/japanese-utf8.templates/index.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>Overview of all items</h2>
23
34 <?php if(count($blogs)): ?>
@@ -22,7 +23,7 @@
2223 <?php echo htmlspecialchars($item['total']);?>
2324 </td>
2425 <td>
25- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=list&amp;id=<?php echo $item['inumber'];?>'>Trackbacks</a>
26+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=list&id='.$item['inumber']),ENT_QUOTES);?>">Trackbacks</a>
2627 </td>
2728 </tr>
2829 <?php endwhile; ?>
@@ -30,6 +31,4 @@
3031 <?php endif; ?>
3132 <?php endwhile; ?>
3233 </table>
33-<?php endif; ?>
34-
35-
34+<?php endif; ?>
\ No newline at end of file
--- a/trunk/NP_TrackBack/trackback/japanese-utf8.templates/list.html
+++ b/trunk/NP_TrackBack/trackback/japanese-utf8.templates/list.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>
23 All trackbacks for &quot;<?php echo $story['title'];?>&quot;
34 <?php if ($count > $amount): ?>
@@ -17,6 +18,7 @@
1718 <input type="hidden" name="action" value="list" />
1819 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
1920 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
21+ <?php $manager->addTicketHidden(); ?>
2022 </div>
2123 </form>
2224 <?php endif; ?>
@@ -29,6 +31,7 @@
2931 <input type="hidden" name="action" value="list" />
3032 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
3133 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
34+ <?php $manager->addTicketHidden(); ?>
3235 </div>
3336 </form>
3437 <?php endif; ?>
@@ -57,13 +60,13 @@
5760 <?php echo str_replace(' ', '&nbsp;', date("Y-m-d @ H:i",$item['timestamp']));?>
5861 </td>
5962 <td>
60- <a href='<?php echo $item['url'];?>'>Visit</a>
63+ <a href="<?php echo $item['url'];?>">Visit</a>
6164 </td>
6265 <td>
63- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=block&amp;tb=<?php echo $item['id'];?>&amp;next=list&amp;id=<?php echo $story['id'];?>&amp;start=<?php echo $start;?>'>Block</a>
66+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=block&tb='.$item['id'].'&next=list&id='.$story['id'].'&start='.$start),ENT_QUOTES);?>">Block</a>
6467 </td>
6568 <td>
66- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=delete&amp;tb=<?php echo $item['id'];?>&amp;next=list&amp;id=<?php echo $story['id'];?>&amp;start=<?php echo $start;?>'>Delete</a>
69+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=delete&tb='.$item['id'].'&next=list&id='.$story['id'].'&start='.$start),ENT_QUOTES);?>">Delete</a>
6770 </td>
6871 </tr>
6972 <?php endwhile; ?>
@@ -81,6 +84,7 @@
8184 <input type="hidden" name="action" value="list" />
8285 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
8386 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
87+ <?php $manager->addTicketHidden(); ?>
8488 </div>
8589 </form>
8690 <?php endif; ?>
@@ -93,6 +97,7 @@
9397 <input type="hidden" name="action" value="list" />
9498 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
9599 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
100+ <?php $manager->addTicketHidden(); ?>
96101 </div>
97102 </form>
98103 <?php endif; ?>
--- a/trunk/NP_TrackBack/trackback/japanese-utf8.templates/menu.html
+++ b/trunk/NP_TrackBack/trackback/japanese-utf8.templates/menu.html
@@ -1,11 +1,11 @@
1-
1+<?php global $manager; ?>
22 <h2>Trackback</h2>
33
44 <ul>
5- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=index'>Overview of all items</a></li>
6- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=all'>トラックバックの全データ</a></li>
7- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=blocked'>ブロックされたトラックバック</a></li>
8- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=ping'>手動ping</a></li>
9- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=help'>ヘルプ</a></li>
10- <li><a href='<?php echo $CONF['AdminURL'];?>index.php?action=pluginoptions&amp;plugid=<?php echo $plugid;?>'>プラグインオプション設定</a></li>
5+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=index'),ENT_QUOTES);?>">Overview of all items</a></li>
6+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=all'),ENT_QUOTES);?>">トラックバックの全データ</a></li>
7+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=blocked'),ENT_QUOTES);?>">ブロックされたトラックバック</a></li>
8+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=ping'),ENT_QUOTES);?>">手動ping</a></li>
9+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=help'),ENT_QUOTES);?>">ヘルプ</a></li>
10+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['AdminURL'].'index.php?action=pluginoptions&plugid='.$plugid),ENT_QUOTES);?>">プラグインオプション設定</a></li>
1111 </ul>
\ No newline at end of file
--- a/trunk/NP_TrackBack/trackback/japanese-utf8.templates/ping.html
+++ b/trunk/NP_TrackBack/trackback/japanese-utf8.templates/ping.html
@@ -1,10 +1,12 @@
1+<?php global $manager; ?>
12 <h2>手動pingフォーム</h2>
23
34 <form method="post" action="<?php echo $CONF['PluginURL'];?>trackback/index.php">
45
56 <input type="hidden" name="action" value="sendping" />
67 <input type="hidden" name="next" value="ping" />
7-
8+ <?php $manager->addTicketHidden(); ?>
9+
810 <table>
911 <tr>
1012 <th colspan='2'>手動ping</th>
--- a/trunk/NP_TrackBack/trackback/japanese-utf8.templates/updatetable.html
+++ b/trunk/NP_TrackBack/trackback/japanese-utf8.templates/updatetable.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <blockquote style="color: red;border:1px solid red;padding:1em;"><b>アップデートが必要です:</b><br />
23 このバージョンで運用するためにはDB内のテーブルのアップデートが必要です。<br />
34 今までのデータが削除されることはありません。
@@ -6,6 +7,7 @@
67 <form method="post"><div>
78 <input type="hidden" name="action" value="tableUpgrade" />
89 <input type="submit" tabindex="10" value="upgrade table" />
10+ <?php $manager->addTicketHidden(); ?>
911 </div></form>
1012 </blockquote>
1113
--- a/trunk/NP_TrackBack/trackback/japanese-utf8.templates/updatetablefinished.html
+++ b/trunk/NP_TrackBack/trackback/japanese-utf8.templates/updatetablefinished.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <blockquote style="color: red;border:1px solid red;padding:1em;">
23 テーブルのアップデートは完了しました。
34 </blockquote>
--- a/trunk/NP_TrackBack/trackback/templates/all.html
+++ b/trunk/NP_TrackBack/trackback/templates/all.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>
23 All trackbacks
34 <?php if ($count > $amount): ?>
@@ -16,6 +17,7 @@
1617 <input type="submit" value="&lt;&lt; Previous" />
1718 <input type="hidden" name="action" value="all" />
1819 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
20+ <?php $manager->addTicketHidden(); ?>
1921 </div>
2022 </form>
2123 <?php endif; ?>
@@ -27,6 +29,7 @@
2729 <input type="submit" value="Next &gt; &gt;" />
2830 <input type="hidden" name="action" value="all" />
2931 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
32+ <?php $manager->addTicketHidden(); ?>
3033 </div>
3134 </form>
3235 <?php endif; ?>
@@ -59,13 +62,13 @@
5962 <?php echo str_replace(' ', '&nbsp;', date("Y-m-d @ H:i",$item['timestamp']));?>
6063 </td>
6164 <td>
62- <a href='<?php echo $item['url'];?>'>Visit</a>
65+ <a href="<?php echo $item['url'];?>">Visit</a>
6366 </td>
6467 <td>
65- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=block&amp;tb=<?php echo $item['id'];?>&amp;next=all&amp;start=<?php echo $start;?>'>Block</a>
68+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=block&tb='.$item['id'].'&next=all&start='.$start),ENT_QUOTES);?>">Block</a>
6669 </td>
6770 <td>
68- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=delete&amp;tb=<?php echo $item['id'];?>&amp;next=all&amp;start=<?php echo $start;?>'>Delete</a>
71+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=delete&tb='.$item['id'].'&next=all&start='.$start),ENT_QUOTES);?>">Delete</a>
6972 </td>
7073 </tr>
7174 <?php endwhile; ?>
@@ -82,6 +85,7 @@
8285 <input type="submit" value="&lt;&lt; Previous" />
8386 <input type="hidden" name="action" value="all" />
8487 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
88+ <?php $manager->addTicketHidden(); ?>
8589 </div>
8690 </form>
8791 <?php endif; ?>
@@ -93,6 +97,7 @@
9397 <input type="submit" value="Next &gt; &gt;" />
9498 <input type="hidden" name="action" value="all" />
9599 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
100+ <?php $manager->addTicketHidden(); ?>
96101 </div>
97102 </form>
98103 <?php endif; ?>
@@ -100,5 +105,4 @@
100105 </tr>
101106 </table>
102107 <?php endif; ?>
103-<?php endif; ?>
104-
108+<?php endif; ?>
\ No newline at end of file
--- a/trunk/NP_TrackBack/trackback/templates/blocked.html
+++ b/trunk/NP_TrackBack/trackback/templates/blocked.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>
23 Blocked trackbacks
34 <?php if ($count > $amount): ?>
@@ -6,8 +7,8 @@
67 </h2>
78
89 <ul>
9- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=blocked_clear&amp;next=blocked'>Clear blocked trackbacks</a></li>
10- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=blocked_spamclear&amp;next=blocked'>Clear spam trackbacks</a></li>
10+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=blocked_clear&next=blocked'),ENT_QUOTES); ?>">ブロックされたトラックバックのクリア</a></li>
11+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=blocked_spamclear&next=blocked'),ENT_QUOTES); ?>">spam判定されたトラックバックのクリア</a></li>
1112 </ul>
1213
1314 <?php if(count($items)): ?>
@@ -21,6 +22,7 @@
2122 <input type="submit" value="&lt;&lt; Previous" />
2223 <input type="hidden" name="action" value="blocked" />
2324 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
25+ <?php $manager->addTicketHidden(); ?>
2426 </div>
2527 </form>
2628 <?php endif; ?>
@@ -32,6 +34,7 @@
3234 <input type="submit" value="Next &gt; &gt;" />
3335 <input type="hidden" name="action" value="blocked" />
3436 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
37+ <?php $manager->addTicketHidden(); ?>
3538 </div>
3639 </form>
3740 <?php endif; ?>
@@ -76,13 +79,13 @@
7679 '<span style="color: darkred;">No</span>';?>
7780 </td>
7881 <td>
79- <a href='<?php echo $item['url'];?>'>Visit</a>
82+ <a href="<?php echo $item['url'];?>">Visit</a>
8083 </td>
8184 <td>
82- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=unblock&amp;tb=<?php echo $item['id'];?>&amp;next=blocked&amp;start=<?php echo $start;?>'>Unblock</a>
85+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=unblock&tb='.$item['id'].'&next=blocked&start='.$start),ENT_QUOTES);?>">Unblock</a>
8386 </td>
8487 <td>
85- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=delete&amp;tb=<?php echo $item['id'];?>&amp;next=blocked&amp;start=<?php echo $start;?>'>Delete</a>
88+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=delete&tb='.$item['id'].'&next=blocked&start='.$start),ENT_QUOTES);?>">Delete</a>
8689 </td>
8790 </tr>
8891 <?php endwhile; ?>
@@ -99,6 +102,7 @@
99102 <input type="submit" value="&lt;&lt; Previous" />
100103 <input type="hidden" name="action" value="blocked" />
101104 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
105+ <?php $manager->addTicketHidden(); ?>
102106 </div>
103107 </form>
104108 <?php endif; ?>
@@ -110,6 +114,7 @@
110114 <input type="submit" value="Next &gt; &gt;" />
111115 <input type="hidden" name="action" value="blocked" />
112116 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
117+ <?php $manager->addTicketHidden(); ?>
113118 </div>
114119 </form>
115120 <?php endif; ?>
--- a/trunk/NP_TrackBack/trackback/templates/form.html
+++ b/trunk/NP_TrackBack/trackback/templates/form.html
@@ -25,7 +25,7 @@
2525 <input type="hidden" name="action" value="plugin" />
2626 <input type="hidden" name="name" value="TrackBack" />
2727 <input type="hidden" name="type" value="ping" />
28-
28+
2929 <table>
3030 <tr>
3131 <td>Article URL</td>
--- a/trunk/NP_TrackBack/trackback/templates/index.html
+++ b/trunk/NP_TrackBack/trackback/templates/index.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>Overview of all items</h2>
23
34 <?php if(count($blogs)): ?>
@@ -22,7 +23,7 @@
2223 <?php echo htmlspecialchars($item['total']);?>
2324 </td>
2425 <td>
25- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=list&amp;id=<?php echo $item['inumber'];?>'>Trackbacks</a>
26+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=list&id='.$item['inumber']),ENT_QUOTES);?>">Trackbacks</a>
2627 </td>
2728 </tr>
2829 <?php endwhile; ?>
@@ -30,6 +31,4 @@
3031 <?php endif; ?>
3132 <?php endwhile; ?>
3233 </table>
33-<?php endif; ?>
34-
35-
34+<?php endif; ?>
\ No newline at end of file
--- a/trunk/NP_TrackBack/trackback/templates/list.html
+++ b/trunk/NP_TrackBack/trackback/templates/list.html
@@ -1,3 +1,4 @@
1+<?php global $manager; ?>
12 <h2>
23 All trackbacks for &quot;<?php echo $story['title'];?>&quot;
34 <?php if ($count > $amount): ?>
@@ -17,6 +18,7 @@
1718 <input type="hidden" name="action" value="list" />
1819 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
1920 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
21+ <?php $manager->addTicketHidden(); ?>
2022 </div>
2123 </form>
2224 <?php endif; ?>
@@ -29,6 +31,7 @@
2931 <input type="hidden" name="action" value="list" />
3032 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
3133 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
34+ <?php $manager->addTicketHidden(); ?>
3235 </div>
3336 </form>
3437 <?php endif; ?>
@@ -57,13 +60,13 @@
5760 <?php echo str_replace(' ', '&nbsp;', date("Y-m-d @ H:i",$item['timestamp']));?>
5861 </td>
5962 <td>
60- <a href='<?php echo $item['url'];?>'>Visit</a>
63+ <a href="<?php echo $item['url'];?>">Visit</a>
6164 </td>
6265 <td>
63- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=block&amp;tb=<?php echo $item['id'];?>&amp;next=list&amp;id=<?php echo $story['id'];?>&amp;start=<?php echo $start;?>'>Block</a>
66+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=block&tb='.$item['id'].'&next=list&id='.$story['id'].'&start='.$start),ENT_QUOTES);?>">Block</a>
6467 </td>
6568 <td>
66- <a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=delete&amp;tb=<?php echo $item['id'];?>&amp;next=list&amp;id=<?php echo $story['id'];?>&amp;start=<?php echo $start;?>'>Delete</a>
69+ <a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=delete&tb='.$item['id'].'&next=list&id='.$story['id'].'&start='.$start),ENT_QUOTES);?>">Delete</a>
6770 </td>
6871 </tr>
6972 <?php endwhile; ?>
@@ -81,6 +84,7 @@
8184 <input type="hidden" name="action" value="list" />
8285 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
8386 <input type="hidden" name="start" value="<?php echo max(0,$start - $amount);?>" />
87+ <?php $manager->addTicketHidden(); ?>
8488 </div>
8589 </form>
8690 <?php endif; ?>
@@ -93,6 +97,7 @@
9397 <input type="hidden" name="action" value="list" />
9498 <input type="hidden" name="id" value="<?php echo $story['id'];?>" />
9599 <input type="hidden" name="start" value="<?php echo ($start + $amount);?>" />
100+ <?php $manager->addTicketHidden(); ?>
96101 </div>
97102 </form>
98103 <?php endif; ?>
--- a/trunk/NP_TrackBack/trackback/templates/menu.html
+++ b/trunk/NP_TrackBack/trackback/templates/menu.html
@@ -1,14 +1,11 @@
1-
1+<?php global $manager; ?>
22 <h2>Trackback</h2>
33
44 <ul>
5- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=index'>Overview of all items</a></li>
6- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=all'>All trackbacks</a></li>
7- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=blocked'>Blocked trackbacks</a></li>
8- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=ping'>Manually ping another weblog</a></li>
9- <li><a href='<?php echo $CONF['PluginURL'];?>trackback/index.php?action=help'>Help</a></li>
10- <li><a href='<?php echo $CONF['AdminURL'];?>index.php?action=pluginoptions&amp;plugid=<?php echo $plugid;?>'>Plugin Options</a></li>
11-</ul>
12-
13-<p>&nbsp;</p>
14-
5+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=index'),ENT_QUOTES);?>">Overview of all items</a></li>
6+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=all'),ENT_QUOTES);?>">All trackbacks</a></li>
7+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=blocked'),ENT_QUOTES);?>">Blocked trackbacks</a></li>
8+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=ping'),ENT_QUOTES);?>">Manually ping another weblog</a></li>
9+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['PluginURL'].'trackback/index.php?action=help'),ENT_QUOTES);?>">Help</a></li>
10+ <li><a href="<?php echo htmlspecialchars($manager->addTicketToUrl($CONF['AdminURL'].'index.php?action=pluginoptions&plugid='.$plugid);?>">Plugin Options</a></li>
11+</ul>
\ No newline at end of file
--- a/trunk/NP_TrackBack/trackback/templates/ping.html
+++ b/trunk/NP_TrackBack/trackback/templates/ping.html
@@ -1,49 +1,50 @@
1-
1+<?php global $manager; ?>
22 <h2>Manually ping another weblog</h2>
33
44 <form method="post" action="<?php echo $CONF['PluginURL'];?>trackback/index.php">
55
6- <input type="hidden" name="action" value="sendping" />
7- <input type="hidden" name="next" value="ping" />
6+ <input type="hidden" name="action" value="sendping" />
7+ <input type="hidden" name="next" value="ping" />
8+ <?php $manager->addTicketHidden(); ?>
89
9- <table>
10- <tr>
11- <th colspan='2'>Manually Ping</th>
12- </tr>
13- <tr>
14- <td>Your URL</td>
15- <td>
16- <input type="text" name="url" size="60" value="<?php echo htmlspecialchars($item['url']);?>" />
17- </td>
18- </tr>
19- <tr>
20- <td>Your Title</td>
21- <td>
22- <input type="text" value="" name="title" size="60" value="<?php echo htmlspecialchars($item['title']);?>" />
23- </td>
24- </tr>
25- <tr>
26- <td>Your Excerpt</td>
27- <td>
28- <textarea name="excerpt" cols="40" rows="5"><?php echo $item['excerpt'];?></textarea>
29- </td>
30- </tr>
31- <tr>
32- <td>Your Blog Name</td>
33- <td>
34- <input type="text" name="blog_name" size="60" value="<?php echo htmlspecialchars($item['blogname']);?>" />
35- </td>
36- </tr>
37- <tr>
38- <td>External Ping URL</td>
39- <td>
40- <input type="text" value="" name="ping_url" size="60" />
41- </td>
42- </tr>
43- <tr>
44- <td>Send Ping</td>
45- <td><input type="submit" value="Send Ping" /></td>
46- </tr>
47- </table>
10+ <table>
11+ <tr>
12+ <th colspan='2'>Manually Ping</th>
13+ </tr>
14+ <tr>
15+ <td>Your URL</td>
16+ <td>
17+ <input type="text" name="url" size="60" value="<?php echo htmlspecialchars($item['url']);?>" />
18+ </td>
19+ </tr>
20+ <tr>
21+ <td>Your Title</td>
22+ <td>
23+ <input type="text" name="title" size="60" value="<?php echo htmlspecialchars($item['title']);?>" />
24+ </td>
25+ </tr>
26+ <tr>
27+ <td>Your Excerpt</td>
28+ <td>
29+ <textarea name="excerpt" cols="40" rows="5"><?php echo $item['excerpt'];?></textarea>
30+ </td>
31+ </tr>
32+ <tr>
33+ <td>Your Blog Name</td>
34+ <td>
35+ <input type="text" name="blog_name" size="60" value="<?php echo htmlspecialchars($item['blogname']);?>" />
36+ </td>
37+ </tr>
38+ <tr>
39+ <td>External Ping URL</td>
40+ <td>
41+ <input type="text" value="" name="ping_url" size="60" />
42+ </td>
43+ </tr>
44+ <tr>
45+ <td>Send Ping</td>
46+ <td><input type="submit" value="Send Ping" /></td>
47+ </tr>
48+ </table>
4849
4950 </form>
\ No newline at end of file
--- /dev/null
+++ b/trunk/NP_TrackBack/trackback/templates/updatetable.html
@@ -0,0 +1,9 @@
1+<?php global $manager; ?>
2+<blockquote style="color: red;border:1px solid red;padding:1em;"><b>Table update:</b><br />
3+ <form method="post"><div>
4+ <input type="hidden" name="action" value="tableUpgrade" />
5+ <input type="submit" tabindex="10" value="upgrade table" />
6+ <?php $manager->addTicketHidden(); ?>
7+ </div></form>
8+</blockquote>
9+
--- /dev/null
+++ b/trunk/NP_TrackBack/trackback/templates/updatetablefinished.html
@@ -0,0 +1,5 @@
1+<?php global $manager; ?>
2+<blockquote style="color: red;border:1px solid red;padding:1em;">
3+Table update done !
4+</blockquote>
5+
Show on old repository browser