- Patch 13180 by chx: renamed check_query() to db_escape_string() and implemtented it properly per database backend. Read the manual for pg_escape_string: "Use of this function is recommended instead of addslashes()." Or read sqlite_escape_string: "addslashes() should NOT be used to quote your strings for SQLite queries; it will lead to strange results when retrieving your data."
Showing
- includes/bootstrap.inc 0 additions, 7 deletionsincludes/bootstrap.inc
- includes/common.inc 1 addition, 1 deletionincludes/common.inc
- includes/database.mysql.inc 12 additions, 5 deletionsincludes/database.mysql.inc
- includes/database.pear.inc 12 additions, 5 deletionsincludes/database.pear.inc
- includes/database.pgsql.inc 13 additions, 5 deletionsincludes/database.pgsql.inc
- includes/locale.inc 5 additions, 5 deletionsincludes/locale.inc
- includes/tablesort.inc 2 additions, 2 deletionsincludes/tablesort.inc
- modules/book.module 1 addition, 1 deletionmodules/book.module
- modules/book/book.module 1 addition, 1 deletionmodules/book/book.module
- modules/comment.module 7 additions, 7 deletionsmodules/comment.module
- modules/comment/comment.module 7 additions, 7 deletionsmodules/comment/comment.module
- modules/forum.module 2 additions, 2 deletionsmodules/forum.module
- modules/forum/forum.module 2 additions, 2 deletionsmodules/forum/forum.module
- modules/locale.module 3 additions, 3 deletionsmodules/locale.module
- modules/locale/locale.module 3 additions, 3 deletionsmodules/locale/locale.module
- modules/node.module 3 additions, 3 deletionsmodules/node.module
- modules/node/node.module 3 additions, 3 deletionsmodules/node/node.module
- modules/profile.module 2 additions, 2 deletionsmodules/profile.module
- modules/profile/profile.module 2 additions, 2 deletionsmodules/profile/profile.module
- modules/statistics.module 7 additions, 7 deletionsmodules/statistics.module
Loading
Please register or sign in to comment