diff options
Diffstat (limited to 'detail.php')
-rw-r--r-- | detail.php | 9 |
1 files changed, 7 insertions, 2 deletions
@@ -46,7 +46,10 @@ foreach($CONFIG['term'] as $key => $s) { | |||
46 | $args['s'] = $s; | 46 | $args['s'] = $s; |
47 | $selected = selected_timerange($seconds, $s); | 47 | $selected = selected_timerange($seconds, $s); |
48 | printf('<li><a %s href="%s%s">%s</a></li>'."\n", | 48 | printf('<li><a %s href="%s%s">%s</a></li>'."\n", |
49 | $selected, $CONFIG['weburl'], build_url('detail.php', $args), $key); | 49 | $selected, |
50 | htmlentities($CONFIG['weburl']), | ||
51 | htmlentities(build_url('detail.php', $args)), | ||
52 | htmlentities($key)); | ||
50 | } | 53 | } |
51 | print "</ul>\n"; | 54 | print "</ul>\n"; |
52 | 55 | ||
@@ -54,7 +57,9 @@ if ($CONFIG['graph_type'] == 'canvas') { | |||
54 | chdir($CONFIG['webdir']); | 57 | chdir($CONFIG['webdir']); |
55 | include $CONFIG['webdir'].'/graph.php'; | 58 | include $CONFIG['webdir'].'/graph.php'; |
56 | } else { | 59 | } else { |
57 | printf('<img src="%s%s">'."\n", $CONFIG['weburl'], build_url('graph.php', $_GET)); | 60 | printf("<img src=\"%s%s\">\n", |
61 | htmlentities($CONFIG['weburl']), | ||
62 | htmlentities(build_url('graph.php', $_GET))); | ||
58 | } | 63 | } |
59 | echo '</div>'; | 64 | echo '</div>'; |
60 | echo "</fieldset>\n"; | 65 | echo "</fieldset>\n"; |