Wrap mysql_real_escape_string() in a function

Wrap mysql_real_escape_string() in a wrapper function db_escape_string() to ease porting to other databases, and as another step to pulling more of the database code into a central location. This is a rebased version of a patch by elij submitted about half a year ago. Thanks-to: elij <elij.mx@gmail.com> Signed-off-by: Lukas Fleischer <archlinux@cryptocrack.de> Conflicts: web/lib/aur.inc.php
author: Lukas Fleischer <archlinux@cryptocrack.de> 2011-10-20 08:15:02 +0200
committer: Lukas Fleischer <archlinux@cryptocrack.de> 2011-10-25 09:25:30 +0200
commit: 10b6a8fff7e6d407421c74889455b969be7f867f (patch)
tree: 7865ce99ce1d45e7261f32c539ed42ab7f265823 /web/html/account.php
parent: e1687f18302a49b5d1b57aceb703fffe09c76375 (diff)
download: aur-10b6a8fff7e6d407421c74889455b969be7f867f.tar.gz
aur-10b6a8fff7e6d407421c74889455b969be7f867f.tar.xz
1 files changed, 1 insertions, 1 deletions
diff --git a/web/html/account.php b/web/html/account.php
index ca05d1ac..387fd938 100644
--- a/web/html/account.php
+++ b/web/html/account.php
@@ -111,7 +111,7 @@ if (isset($_COOKIE["AURSID"])) {
 			$q.= "WHERE AccountTypes.ID = Users.AccountTypeID ";
 			$q.= "AND Users.ID = Sessions.UsersID ";
 			$q.= "AND Sessions.SessionID = '";
-			$q.= mysql_real_escape_string($_COOKIE["AURSID"])."'";
+			$q.= db_escape_string($_COOKIE["AURSID"])."'";
 			$result = db_query($q, $dbh);
 			if (!mysql_num_rows($result)) {
 				print __("Could not retrieve information for the specified user.");
author	Lukas Fleischer <archlinux@cryptocrack.de>	2011-10-20 08:15:02 +0200
committer	Lukas Fleischer <archlinux@cryptocrack.de>	2011-10-25 09:25:30 +0200
commit	10b6a8fff7e6d407421c74889455b969be7f867f (patch)
tree	7865ce99ce1d45e7261f32c539ed42ab7f265823 /web/html/account.php
parent	e1687f18302a49b5d1b57aceb703fffe09c76375 (diff)
download	aur-10b6a8fff7e6d407421c74889455b969be7f867f.tar.gz aur-10b6a8fff7e6d407421c74889455b969be7f867f.tar.xz