diff options
author | nikrou <nikrou@piwigo.org> | 2010-05-29 11:35:26 +0000 |
---|---|---|
committer | nikrou <nikrou@piwigo.org> | 2010-05-29 11:35:26 +0000 |
commit | bc12301421a7bebb2bbe7801ddc2eeba6f55db8f (patch) | |
tree | d2f969a9d561115f429a10bcfc747e6e6b2177ac | |
parent | 3826af3ba4fd769c44fb1098e0acd674c3ac9bcb (diff) |
Bug 1705 fixed : User cannot add comment with double quotes
Merge from trunk
git-svn-id: http://piwigo.org/svn/branches/2.1@6424 68402e56-0260-453c-a942-63ccdbb3a9ee
-rw-r--r-- | include/functions_comment.inc.php | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/include/functions_comment.inc.php b/include/functions_comment.inc.php index feec4d25c..454895832 100644 --- a/include/functions_comment.inc.php +++ b/include/functions_comment.inc.php @@ -158,7 +158,7 @@ INSERT INTO '.COMMENTS_TABLE.' VALUES ( "'.$comm['author'].'", '.$comm['author_id'].', - "'.$comm['content'].'", + "'.pwg_db_real_escape_string($comm['content']).'", NOW(), "'.($comment_action=='validate' ? 'true':'false').'", '.($comment_action=='validate' ? 'NOW()':'NULL').', |