From ad7610d7f143cf828ede6e227e5fd021296eacc7 Mon Sep 17 00:00:00 2001
From: samucarc <samuel.carcases>
Date: Tue, 24 Jul 2018 15:02:11 +0200
Subject: [PATCH] Removed html entities in the audit views

---
 pandora_console/godmode/users/configure_user.php |  2 +-
 pandora_console/index.php                        | 10 +++++-----
 2 files changed, 6 insertions(+), 6 deletions(-)

diff --git a/pandora_console/godmode/users/configure_user.php b/pandora_console/godmode/users/configure_user.php
index df5d1a729f..ac0f6eb7b7 100644
--- a/pandora_console/godmode/users/configure_user.php
+++ b/pandora_console/godmode/users/configure_user.php
@@ -252,7 +252,7 @@ if ($create_user) {
 		
 		
 		db_pandora_audit("User management",
-			"Created user ".io_safe_input($id), false, false, $info);
+			"Created user ".io_safe_output($id), false, false, $info);
 		
 		ui_print_result_message ($result,
 			__('Successfully created'),
diff --git a/pandora_console/index.php b/pandora_console/index.php
index d7d7baba3e..4b98179a1b 100755
--- a/pandora_console/index.php
+++ b/pandora_console/index.php
@@ -359,7 +359,7 @@ if (! isset ($config['id_user'])) {
 				
 				if ($blocked) {
 					require_once ('general/login_page.php');
-					db_pandora_audit("Password expired", "Password expired: ".$nick, $nick);
+					db_pandora_audit("Password expired", "Password expired: ".io_safe_output($nick), io_safe_output($nick));
 					while (@ob_end_flush ());
 					exit ("</html>");
 				}
@@ -382,7 +382,7 @@ if (! isset ($config['id_user'])) {
 			
 			require_once ('general/login_page.php');
 			db_pandora_audit("Password expired",
-				"Password expired: " . $nick, $nick);
+				"Password expired: " . io_safe_output($nick), $nick);
 			while (@ob_end_flush ());
 			exit ("</html>");
 		}
@@ -537,20 +537,20 @@ if (! isset ($config['id_user'])) {
 			if ((!is_user_admin($nick) || $config['enable_pass_policy_admin']) && file_exists (ENTERPRISE_DIR . "/load_enterprise.php")) {
 				$blocked = login_check_blocked($nick);
 			}
-			
+			$nick_usable = io_safe_output($nick);
 			if (!$blocked) {
 				if (file_exists (ENTERPRISE_DIR . "/load_enterprise.php")) {
 					login_check_failed($nick); //Checks failed attempts
 				}
 				$login_failed = true;
 				require_once ('general/login_page.php');
-				db_pandora_audit("Logon Failed", "Invalid login: ".$nick, $nick);
+				db_pandora_audit("Logon Failed", "Invalid login: ".$nick_usable, $nick_usable);
 				while (@ob_end_flush ());
 				exit ("</html>");
 			}
 			else {
 				require_once ('general/login_page.php');
-				db_pandora_audit("Logon Failed", "Invalid login: ".$nick, $nick);
+				db_pandora_audit("Logon Failed", "Invalid login: ".$nick_usable, $nick_usable);
 				while (@ob_end_flush ());
 				exit ("</html>");
 			}