projects / infodrom.org / service.infodrom.org / commitdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | patch | inline | side by side (parent: 5132eae)
The server does not escape slashes anymore, we'll need to do that manually
authorJoey Schulze <joey@infodrom.org>
Fri, 5 Jul 2002 15:16:33 +0000 (15:16 +0000)
committerJoey Schulze <joey@infodrom.org>
Fri, 5 Jul 2002 15:16:33 +0000 (15:16 +0000)
src/Infodrom/patches/update.wml patch | blob | history
src/Infodrom/zeitungen/update.wml patch | blob | history

diff --git a/src/Infodrom/patches/update.wml b/src/Infodrom/patches/update.wml
index 8c1ed09..59f8fc4 100644 (file)
--- a/src/Infodrom/patches/update.wml
+++ b/src/Infodrom/patches/update.wml
@@ -32,11 +32,12 @@
       $query = "DELETE FROM patches WHERE oid = $id";
     } else {
       $query = "UPDATE patches SET "
-       . "subject='$subject',"
-       . "package='$package',"
-       . "version='$version',"
-       . "description='$description',"
-       . "download='$download'"
+        . sprintf ("subject='%s',package='%s',version='%s',description='%s',download='%s'",
+                 addslashes ($subject),
+                 addslashes ($package),
+                 addslashes ($version),
+                 addslashes ($description),
+                 addslashes ($download))
        . " WHERE oid = $id";
     }
   } else {
diff --git a/src/Infodrom/zeitungen/update.wml b/src/Infodrom/zeitungen/update.wml
index 848148a..1f57e4d 100644 (file)
--- a/src/Infodrom/zeitungen/update.wml
+++ b/src/Infodrom/zeitungen/update.wml
@@ -22,23 +22,25 @@
        . " WHERE oid = $oid";
     } else {
       $query = "UPDATE zeitungen SET "
-       . "name='$name',"
-       . "url='$url',"
-       . "description='$description',"
-       . "city='$city',"
-       . "type='$type',"
-       . "changed='$date'"
+        . sprintf ("name='%s',url='%s',description='%s',city='%s',type='%s',changed='%s'",
+                 addslashes ($name),
+                 addslashes ($url),
+                 addslashes ($description),
+                 addslashes ($city),
+                 addslashes ($type),
+                 addslashes ($changed))
        . " WHERE oid = $oid";
     }
   } else {
     $query = "INSERT INTO zeitungen "
       . "(name,url,description,city,type,changed) VALUES ("
-      . "'$name',"
-      . "'$url',"
-      . "'$description',"
-      . "'$city',"
-      . "'$type',"
-      . "'$date'"
+        . sprintf ("'%s','%s','%s','%s','%s','%s'",
+                 addslashes ($name),
+                 addslashes ($url),
+                 addslashes ($description),
+                 addslashes ($city),
+                 addslashes ($type),
+                 addslashes ($date))
       . ")";
 
   }
Website service.infodrom.org