From 14df0d4b8d95f4c0240c0bd98c6ce9b74706e3ca Mon Sep 17 00:00:00 2001
From: swiergot <swiergot>
Date: Thu, 16 Aug 2007 00:25:04 +0000
Subject: - Applied a patch from Loui to fix session removal. - Replaced all
 occurences of mysql_escape_string()   with mysql_real_escape_string().

---
 web/html/pkgedit.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'web/html/pkgedit.php')

diff --git a/web/html/pkgedit.php b/web/html/pkgedit.php
index bb19144e..36befbb9 100644
--- a/web/html/pkgedit.php
+++ b/web/html/pkgedit.php
@@ -73,7 +73,7 @@ if ($_REQUEST["add_Comment"]) {
 		$q = "INSERT INTO PackageComments ";
 		$q.= "(PackageID, UsersID, Comments, CommentTS) VALUES (";
 		$q.= intval($_REQUEST["ID"]).", ".uid_from_sid($_COOKIE["AURSID"]) . ", ";
-		$q.= "'".mysql_escape_string($_REQUEST["comment"])."', ";
+		$q.= "'".mysql_real_escape_string($_REQUEST["comment"])."', ";
 		$q.= "UNIX_TIMESTAMP())";
 		db_query($q, $dbh);
 		print __("Comment has been added.")."<br />&nbsp;<br />\n";
-- 
cgit v1.2.3-24-g4f1b