Changeset 6664 for trunk/include


Ignore:
Timestamp:
Jul 5, 2010, 11:18:14 PM (14 years ago)
Author:
nikrou
Message:

Bug 1763 fixed : [PostgreSQL] double quote used in queries

Location:
trunk/include
Files:
3 edited

Legend:

Unmodified
Added
Removed
  • trunk/include/functions_category.inc.php

    r6654 r6664  
    407407  {
    408408    if ( !empty($in) ) $in.=', ';
    409     $in .= '"'.$permalink.'"';
     409    $in .= '\''.$permalink.'\'';
    410410  }
    411411  $query ='
  • trunk/include/functions_search.inc.php

    r6518 r6664  
    394394    if ( strlen($tokens[$i])==0)
    395395      continue;
    396     $clauses[] = $field.' LIKE "'.$before.addslashes($tokens[$i]).$after.'"';
     396    $clauses[] = $field.' LIKE \''.$before.addslashes($tokens[$i]).$after.'\'';
    397397  }
    398398
     
    435435
    436436  // Step 1 - first we find matches in #images table ===========================
    437   $where_clauses='MATCH(i.name, i.comment) AGAINST( "'.$q.'" IN BOOLEAN MODE)';
     437  $where_clauses='MATCH(i.name, i.comment) AGAINST( \''.$q.'\' IN BOOLEAN MODE)';
    438438  if (!empty($q_like_clause))
    439439  {
     
    453453  $query = '
    454454SELECT i.id,
    455     MATCH(i.name, i.comment) AGAINST( "'.$q.'" IN BOOLEAN MODE) AS weight
     455    MATCH(i.name, i.comment) AGAINST( \''.$q.'\' IN BOOLEAN MODE) AS weight
    456456  FROM '.IMAGES_TABLE.' i
    457457  WHERE '.implode("\n AND ", $where_clauses);
     
    506506    INNER JOIN '.USER_CACHE_CATEGORIES_TABLE.' ON id=cat_id
    507507  WHERE user_id='.$user['id'].'
    508     AND MATCH(name, comment) AGAINST( "'.$q.'" IN BOOLEAN MODE)'.
     508    AND MATCH(name, comment) AGAINST( \''.$q.'\' IN BOOLEAN MODE)'.
    509509  get_sql_condition_FandF (
    510510      array( 'visible_categories' => 'cat_id' ), "\n    AND"
  • trunk/include/section_init.inc.php

    r6615 r6664  
    260260  FROM '.CATEGORIES_TABLE.'
    261261  WHERE
    262     uppercats LIKE "'.$page['category']['uppercats'].',%" '
     262    uppercats LIKE \''.$page['category']['uppercats'].',%\' '
    263263    .get_sql_condition_FandF(
    264264      array
Note: See TracChangeset for help on using the changeset viewer.