Changeset 1b28e2e


Ignore:
Timestamp:
09/01/10 13:55:40 (21 months ago)
Author:
Benoit Grégoire <benoitg@…>
Branches:
('master', '8434b8322dd6f8ff37c17bd45b94e7a826f86b53')('vitrine', 'afe109c61a407808bd54d88bcccb1cde726a010a')
Children:
a8bbc942c2ceb4d9ec58dc0ed3c81612d84a940c
Parents:
f3f37e8a5be17f14731449f26b5ab1e7cc6c85d4
git-author:
Benoit Grégoire <benoitg@coeus.ca>2010-09-01 13:55:40-04:00
git-committer:
Benoit Grégoire <benoitg@coeus.ca>2010-09-01 13:55:40-04:00
Message:

Fix strings escaping bug in Theme.php

File:
1 edited

Legend:

Unmodified
Added
Removed

  • html/classes/Theme.php

    r3550449 r1b28e2e  
    8787        } 
    8888 
    89         $sql_select = "SELECT * FROM theme_info WHERE theme_vdex_6_1_identifier='$id_array[0]' AND theme_vdex_4_vocabulary_identifier='$id_array[1]'"; 
     89        $sql_select = "SELECT * FROM theme_info WHERE theme_vdex_6_1_identifier='".$this->mBd->escapeString($id_array[0])."' AND theme_vdex_4_vocabulary_identifier='".$this->mBd->escapeString($id_array[1])."'"; 
    9090        $this->mBd->ExecuterSqlResUnique($sql_select, $row, false); 
    9191        $this->mInfo = $row; 
Note: See TracChangeset for help on using the changeset viewer.