we need to encode the message so it won't interfere with

the <input> tag

git-svn-id: https://svn.code.sf.net/p/squirrelmail/code/trunk/squirrelmail@10980 7612ce4b-ef26-0410-bec9-ea0150e637f0

diff --git a/plugins/translate/functions.php b/plugins/translate/functions.php
index cee0d681fa3a150c390c0fc5ba127b1004361d29..edde502567051ce5c2f16bb3cfca928aeaacab59 100644 (file)
--- a/plugins/translate/functions.php
+++ b/plugins/translate/functions.php
@@ -466,7 +466,7 @@ function translate_form_babelfish($message) {
     <input type="hidden" name="doit" value="done" />
     <input type="hidden" name="intl" value="1" />
     <input type="hidden" name="tt" value="urltext" />
     <input type="hidden" name="doit" value="done" />
     <input type="hidden" name="intl" value="1" />
     <input type="hidden" name="tt" value="urltext" />

-    <input type="hidden" name="trtext" value="<?php echo $message; ?>" />
+    <input type="hidden" name="trtext" value="<?php echo htmlspecialchars($message); ?>" />

     <select name="lp"><?php
         echo translate_lang_opt('zh_CN',  '',     'zh_en',
                             sprintf( _("%s to %s"),_("Chinese, Simplified"),_("English"))) .
     <select name="lp"><?php
         echo translate_lang_opt('zh_CN',  '',     'zh_en',
                             sprintf( _("%s to %s"),_("Chinese, Simplified"),_("English"))) .


@@ -928,4 +928,4 @@ function translate_form_google($message) {
 
     translate_table_end();
 }
 
     translate_table_end();
 }

-?>
\ No newline at end of file
+?>