aboutsummaryrefslogtreecommitdiffstats
path: root/include
diff options
context:
space:
mode:
authornikrou <nikrou@piwigo.org>2010-05-29 11:32:01 +0000
committernikrou <nikrou@piwigo.org>2010-05-29 11:32:01 +0000
commit0005a6eec12f544ea2e22a896b0343fa4aa7c86b (patch)
tree1cdd17944a28def1979f44efe6cf27184fddc150 /include
parent1c15024168abb50cc24f25351a448db5dde6cfa8 (diff)
Bug 1705 fixed : double quotes were not escaped
git-svn-id: http://piwigo.org/svn/trunk@6423 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'include')
-rw-r--r--include/functions_comment.inc.php2
1 files changed, 1 insertions, 1 deletions
diff --git a/include/functions_comment.inc.php b/include/functions_comment.inc.php
index feec4d25c..454895832 100644
--- a/include/functions_comment.inc.php
+++ b/include/functions_comment.inc.php
@@ -158,7 +158,7 @@ INSERT INTO '.COMMENTS_TABLE.'
VALUES (
"'.$comm['author'].'",
'.$comm['author_id'].',
- "'.$comm['content'].'",
+ "'.pwg_db_real_escape_string($comm['content']).'",
NOW(),
"'.($comment_action=='validate' ? 'true':'false').'",
'.($comment_action=='validate' ? 'NOW()':'NULL').',