Php photo gallery TWG | JFUploader | TWG Flash upload | WFU | Forum

Hi Michael,

I bought you Pro version, there is a problem in the variables that I include in the URL. If the value contains:

' it is transform in \'
" in \"

If I do the same with the orginal page there is no problem, so I think it is caused by the plugin. What could I do?

Thank you for your help!

Ale

Do you talk about ' or " inside the src attribute?

They are escaped with esc_url because otherwise I cannot enter them into the iframe parameter.

Can you give an example because e.g. <iframe src="http://ddd.ccc/?param=as"df"> would be invalid...

Best,
Michael

Sure, for example in this case you see the correct one:

xxx

As you can see:
D'Onofrio
Centro "Sorriso"

If I insert this page in the frame I see this:

xxx

Now it is:
D\'Onofrio
Centro \"Sorriso\"

Do you enter it in the administration or the src attribut?

Because in the administration I do the escaping because of securtiy reasons.
Best, Michael

Hi insert the code in the page:

[advanced_iframe securitykey="xxx" src="xxx"]

Did you refer to this?

Ale

o.k. - if you foreward url parameters I do url encode them also.

If you don't want this you need to modify

function param in advanced_iframe.php.

and return the value directly.

Thank you for your help.

I don't understand what you want to say in "if you forward url parameters I do url encode them also."

In my code I'm using the command urlencode so I think that the url parameters are encoded.

Or do you refer something different?

All parameters for url_forward_parameter are decoded and encoded again. This might not be the best way for your purpose.
So you might check the function I have written and return the value directly.

Best, Michael

Maybe the server where you have the parent does the escaping! If this is the case you need to unescape the values.

You need to use stripcslashes than. Check if you have set magic_quotes_gpc "on" on your server...

Best, Michael

Great!

You're right, I resolved everything using stripslashes in my code, so I don't modify your file but my ones!

Thank you very much for your help!

Ale

great.

Best, Michael