From 14df0d4b8d95f4c0240c0bd98c6ce9b74706e3ca Mon Sep 17 00:00:00 2001
From: swiergot <swiergot>
Date: Thu, 16 Aug 2007 00:25:04 +0000
Subject: - Applied a patch from Loui to fix session removal. - Replaced all
 occurences of mysql_escape_string()   with mysql_real_escape_string().

---
 web/html/logout.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'web/html/logout.php')

diff --git a/web/html/logout.php b/web/html/logout.php
index dac7831b..be4027f7 100644
--- a/web/html/logout.php
+++ b/web/html/logout.php
@@ -11,9 +11,9 @@ set_lang();                 # this sets up the visitor's language
 # sending any HTML output.
 #
 if (isset($_COOKIE["AURSID"])) {
-	$q = "DELETE FROM Sessions WHERE SessionID = '";
-	$q.= mysql_escape_string($_COOKIE["AURSID"]) . "'";
 	$dbh = db_connect();
+	$q = "DELETE FROM Sessions WHERE SessionID = '";
+	$q.= mysql_real_escape_string($_COOKIE["AURSID"]) . "'";
 	db_query($q, $dbh);
 	setcookie("AURSID", "", time() - (60*60*24*30), "/");
 	setcookie("AURLANG", "", time() - (60*60*24*30), "/");
-- 
cgit v1.2.3-24-g4f1b