require_once $gfcommon.'docman/DocumentFactory.class.php';
require_once $gfcommon.'docman/DocumentGroupFactory.class.php';
require_once $gfcommon.'docman/DocumentFactory.class.php';
require_once $gfcommon.'docman/DocumentGroupFactory.class.php';
- $res = $p->get_parse_data($data1, $item["title"], $item["description"], $item["filetype"]);
+ $res = $p->get_parse_data($data1, htmlspecialchars($item['title']), htmlspecialchars($item['description']), $item["filetype"]);
$len = strlen($res);
$resUp = db_query_params('UPDATE doc_data SET data_words=$1 WHERE docid=$2',
array ($res, $item["docid"]));
$len = strlen($res);
$resUp = db_query_params('UPDATE doc_data SET data_words=$1 WHERE docid=$2',
array ($res, $item["docid"]));