From 324bdad746f97b257f904f4bef48e0c6bb30164f Mon Sep 17 00:00:00 2001 From: nikrou Date: Thu, 17 Jun 2010 18:10:11 +0000 Subject: Bug 1733 fixed : single quotes in queries git-svn-id: http://piwigo.org/svn/trunk@6550 68402e56-0260-453c-a942-63ccdbb3a9ee --- admin/include/functions_permalinks.php | 12 ++++++------ 1 file changed, 6 insertions(+), 6 deletions(-) (limited to 'admin/include/functions_permalinks.php') diff --git a/admin/include/functions_permalinks.php b/admin/include/functions_permalinks.php index 3a613f96b..a61ed32a0 100644 --- a/admin/include/functions_permalinks.php +++ b/admin/include/functions_permalinks.php @@ -28,7 +28,7 @@ function get_cat_id_from_permalink( $permalink ) { $query =' SELECT id FROM '.CATEGORIES_TABLE.' - WHERE permalink="'.$permalink.'"'; + WHERE permalink=\''.$permalink.'\''; $ids = array_from_query($query, 'id'); if (!empty($ids)) { @@ -69,7 +69,7 @@ function delete_cat_permalink( $cat_id, $save ) $query = ' SELECT permalink FROM '.CATEGORIES_TABLE.' - WHERE id="'.$cat_id.'" + WHERE id=\''.$cat_id.'\' ;'; $result = pwg_query($query); if ( pwg_db_num_rows($result) ) @@ -108,7 +108,7 @@ UPDATE '.CATEGORIES_TABLE.' $query = ' UPDATE '.OLD_PERMALINKS_TABLE.' SET date_deleted=NOW() - WHERE cat_id='.$cat_id.' AND permalink="'.$permalink.'"'; + WHERE cat_id='.$cat_id.' AND permalink=\''.$permalink.'\''; } else { @@ -116,7 +116,7 @@ UPDATE '.OLD_PERMALINKS_TABLE.' INSERT INTO '.OLD_PERMALINKS_TABLE.' (permalink, cat_id, date_deleted) VALUES - ( "'.$permalink.'",'.$cat_id.',NOW() )'; + ( \''.$permalink.'\','.$cat_id.',NOW() )'; } pwg_query( $query ); } @@ -185,13 +185,13 @@ function set_cat_permalink( $cat_id, $permalink, $save ) assert( $old_cat_id==$cat_id ); $query = ' DELETE FROM '.OLD_PERMALINKS_TABLE.' - WHERE cat_id='.$old_cat_id.' AND permalink="'.$permalink.'"'; + WHERE cat_id='.$old_cat_id.' AND permalink=\''.$permalink.'\''; pwg_query($query); } $query = ' UPDATE '.CATEGORIES_TABLE.' - SET permalink="'.$permalink.'" + SET permalink=\''.$permalink.'\' WHERE id='.$cat_id; // LIMIT 1'; pwg_query($query); -- cgit v1.2.3