EventView.php

author Chris <chris@roojs.com>

Fri, 12 Oct 2012 08:30:05 +0000 (16:30 +0800)

committer Chris <chris@roojs.com>

Fri, 12 Oct 2012 08:30:05 +0000 (16:30 +0800)
author Chris <chris@roojs.com>
Fri, 12 Oct 2012 08:30:05 +0000 (16:30 +0800)
committer Chris <chris@roojs.com>
Fri, 12 Oct 2012 08:30:05 +0000 (16:30 +0800)
diff --git a/EventView.php b/EventView.php

index 06f3adb..a151d3c 100644 (file)
--- a/EventView.php
+++ b/EventView.php
@@ -81,7 +81,7 @@ class Pman_Admin_EventView extends Pman
                  
          foreach($filesJ->FILES as $f){
              $path = $ff->Pman['event_log_dir']. "/{$user}" . date('/Y/m/d/',strtotime($ev->event_when)). $f->tmp_name;
-            echo '<img src="'.$path.'" />';
+            echo '<img src="'.htmlspecialchars(file_get_contents($path)).'" />';
              //print_r($f);
          }
author	Chris <chris@roojs.com>
	Fri, 12 Oct 2012 08:30:05 +0000 (16:30 +0800)
committer	Chris <chris@roojs.com>
	Fri, 12 Oct 2012 08:30:05 +0000 (16:30 +0800)