onokazu
onoka****@users*****
2005年 6月 30日 (木) 01:40:23 JST
Index: xoops2jp/html/class/criteria.php
diff -u xoops2jp/html/class/criteria.php:1.2.6.1.2.2 xoops2jp/html/class/criteria.php:1.2.6.1.2.3
--- xoops2jp/html/class/criteria.php:1.2.6.1.2.2 Tue Jun 28 20:09:57 2005
+++ xoops2jp/html/class/criteria.php Thu Jun 30 01:40:23 2005
@@ -1,5 +1,5 @@
<?php
-// $Id: criteria.php,v 1.2.6.1.2.2 2005/06/28 11:09:57 minahito Exp $
+// $Id: criteria.php,v 1.2.6.1.2.3 2005/06/29 16:40:23 onokazu Exp $
// ------------------------------------------------------------------------ //
// XOOPS - PHP Content Management System //
// Copyright (c) 2000 XOOPS.org //
@@ -346,7 +346,8 @@
return '';
}
if ( (substr($value, 0, 1) != '`') && (substr($value, -1) != '`') ) {
- $value = "'$value'";
+ $db =& XoopsDatabaseFactory::getDatabaseConnection();
+ $value = $db->quoteString($value);
}
}
$clause = (!empty($this->prefix) ? "{$this->prefix}." : "") . $this->column;