summaryrefslogtreecommitdiffstats
path: root/web/html/pkgedit.php
diff options
context:
space:
mode:
authorswiergot <swiergot>2007-08-16 02:25:04 +0200
committerswiergot <swiergot>2007-08-16 02:25:04 +0200
commit14df0d4b8d95f4c0240c0bd98c6ce9b74706e3ca (patch)
tree6aa8f1250ffe26ffe980d5aa77205586a236dfb0 /web/html/pkgedit.php
parentfe84915465ac941356f50cc07925e3fd42615955 (diff)
downloadaur-14df0d4b8d95f4c0240c0bd98c6ce9b74706e3ca.tar.gz
aur-14df0d4b8d95f4c0240c0bd98c6ce9b74706e3ca.tar.xz
- Applied a patch from Loui to fix session removal.
- Replaced all occurences of mysql_escape_string() with mysql_real_escape_string().
Diffstat (limited to 'web/html/pkgedit.php')
-rw-r--r--web/html/pkgedit.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/web/html/pkgedit.php b/web/html/pkgedit.php
index bb19144e..36befbb9 100644
--- a/web/html/pkgedit.php
+++ b/web/html/pkgedit.php
@@ -73,7 +73,7 @@ if ($_REQUEST["add_Comment"]) {
$q = "INSERT INTO PackageComments ";
$q.= "(PackageID, UsersID, Comments, CommentTS) VALUES (";
$q.= intval($_REQUEST["ID"]).", ".uid_from_sid($_COOKIE["AURSID"]) . ", ";
- $q.= "'".mysql_escape_string($_REQUEST["comment"])."', ";
+ $q.= "'".mysql_real_escape_string($_REQUEST["comment"])."', ";
$q.= "UNIX_TIMESTAMP())";
db_query($q, $dbh);
print __("Comment has been added.")."<br />&nbsp;<br />\n";