aboutsummaryrefslogtreecommitdiffstats
path: root/include/functions_comment.inc.php
diff options
context:
space:
mode:
authorEric <eric@piwigo.org>2009-11-18 21:14:58 +0000
committerEric <eric@piwigo.org>2009-11-18 21:14:58 +0000
commit41fe69917c8fc7fd75785eb623897868dccafa81 (patch)
tree0e7f43cf904dbc88c137b0496ce705681f8f29c7 /include/functions_comment.inc.php
parent1235bab5276f8c56ed6ba9cff46563c143c3e240 (diff)
Forgotten Comments author name to be escaped and correctly displayed
git-svn-id: http://piwigo.org/svn/trunk@4305 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'include/functions_comment.inc.php')
-rw-r--r--include/functions_comment.inc.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/include/functions_comment.inc.php b/include/functions_comment.inc.php
index aff7b9a35..3ac005223 100644
--- a/include/functions_comment.inc.php
+++ b/include/functions_comment.inc.php
@@ -156,9 +156,9 @@ SELECT id FROM '.COMMENTS_TABLE.'
INSERT INTO '.COMMENTS_TABLE.'
(author, author_id, content, date, validated, validation_date, image_id)
VALUES (
- "'.$comm['author'].'",
+ "'.addslashes($comm['author']).'",
'.$comm['author_id'].',
- "'.$comm['content'].'",
+ "'.addslashes($comm['content']).'",
NOW(),
"'.($comment_action=='validate' ? 'true':'false').'",
'.($comment_action=='validate' ? 'NOW()':'NULL').',