diff options
author | Eric <eric@piwigo.org> | 2009-11-18 21:14:58 +0000 |
---|---|---|
committer | Eric <eric@piwigo.org> | 2009-11-18 21:14:58 +0000 |
commit | 41fe69917c8fc7fd75785eb623897868dccafa81 (patch) | |
tree | 0e7f43cf904dbc88c137b0496ce705681f8f29c7 /include | |
parent | 1235bab5276f8c56ed6ba9cff46563c143c3e240 (diff) |
Forgotten Comments author name to be escaped and correctly displayed
git-svn-id: http://piwigo.org/svn/trunk@4305 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'include')
-rw-r--r-- | include/functions_comment.inc.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/include/functions_comment.inc.php b/include/functions_comment.inc.php index aff7b9a35..3ac005223 100644 --- a/include/functions_comment.inc.php +++ b/include/functions_comment.inc.php @@ -156,9 +156,9 @@ SELECT id FROM '.COMMENTS_TABLE.' INSERT INTO '.COMMENTS_TABLE.' (author, author_id, content, date, validated, validation_date, image_id) VALUES ( - "'.$comm['author'].'", + "'.addslashes($comm['author']).'", '.$comm['author_id'].', - "'.$comm['content'].'", + "'.addslashes($comm['content']).'", NOW(), "'.($comment_action=='validate' ? 'true':'false').'", '.($comment_action=='validate' ? 'NOW()':'NULL').', |