Module: appdb Branch: master Commit: 3069294936229011adbe64de5a52afe5f6c9ed0a URL: http://source.winehq.org/git/appdb.git/?a=commit;h=3069294936229011adbe64de5...
Author: Alexander Nicolaysen Sørnes alex@thehandofagony.com Date: Wed Jun 18 10:27:04 2008 +0200
db_filter_ui: Fix a case where input wasn't escaped
---
include/db_filter_ui.php | 2 +- 1 files changed, 1 insertions(+), 1 deletions(-)
diff --git a/include/db_filter_ui.php b/include/db_filter_ui.php index a2644ce..7fe459d 100644 --- a/include/db_filter_ui.php +++ b/include/db_filter_ui.php @@ -420,7 +420,7 @@ class FilterInterface { $sColumn = $this->escapeChars($oOption->getColumn()); $i = sizeof($aReturn); - $sData = $aClean["s{$sColumn}Data"]; + $sData = query_escape_string($aClean["s{$sColumn}Data"]); $iOp = $aClean["i{$sColumn}Op"];