diff options
author | patdenice <patdenice@piwigo.org> | 2008-10-15 20:56:23 +0000 |
---|---|---|
committer | patdenice <patdenice@piwigo.org> | 2008-10-15 20:56:23 +0000 |
commit | eb667c7711d61d0c757f2202af6c2e61cba7d1ac (patch) | |
tree | 9e3553bcef990440d086aa4143ce3cbda2d98e04 /include | |
parent | a5aa24e2133978f5ce099255990a5e13ead53f55 (diff) |
- change mysql_escape_string function (deprecated) by mysql_real_escape_string.
- Correction on install.tpl (link color).
git-svn-id: http://piwigo.org/svn/trunk@2752 68402e56-0260-453c-a942-63ccdbb3a9ee
Diffstat (limited to 'include')
-rw-r--r-- | include/functions_user.inc.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/include/functions_user.inc.php b/include/functions_user.inc.php index 472487342..02aa2a5d8 100644 --- a/include/functions_user.inc.php +++ b/include/functions_user.inc.php @@ -115,7 +115,7 @@ SELECT MAX('.$conf['user_fields']['id'].') + 1 $insert = array( $conf['user_fields']['id'] => $next_id, - $conf['user_fields']['username'] => mysql_escape_string($login), + $conf['user_fields']['username'] => mysql_real_escape_string($login), $conf['user_fields']['password'] => $conf['pass_convert']($password), $conf['user_fields']['email'] => $mail_address ); @@ -716,7 +716,7 @@ function get_userid($username) { global $conf; - $username = mysql_escape_string($username); + $username = mysql_real_escape_string($username); $query = ' SELECT '.$conf['user_fields']['id'].' |