Where are you putting this?
If its class.client.php, then it will print, but won't be clickable, just remember that when this variable ($errors) is expanded on login.inc.php, it is run through htmlentities and others:
<strong><?php echo Format:($errors); ?></strong>
Which takes you back to:
class.format.php:
function htmlchars($var) {
return Format:($var);
}
function htmlencode($var) {
$flags = ENT_COMPAT | ENT_QUOTES;
if (phpversion() >= '5.4.0')
$flags |= ENT_HTML401;
return is_array($var) ? array_map(array('Format', 'htmlencode'), $var) : htmlentities($var, $flags, 'UTF-8');
}
This is a recursive call to itself, using the entities flags:
ENT_COMPAT Will convert double-quotes and leave single-quotes alone.
ENT_QUOTES Will convert both double and single quotes.
See: http://php.net/manual/en/function.htmlentities.php(http://php.net/manual/en/function.htmlentities.php)
This means that anything in the array will in fact be converted to "safe" values, and will not be HTML any more.
So you can't do it, I'd just change the display page, like:
login.inc.php, round line 11:
Change:
<strong><?php echo Format:($errors); ?></strong>
Into:
<strong><?php if(isset($errors)){ echo 'pls use <a href="http://google.com">this link </a>'; } echo Format:($errors); ?></strong>
Give it a go!
