Git-Url:
http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=25dfda0244cc387c1938823a817470e71d3d6ac8
commit 25dfda0244cc387c1938823a817470e71d3d6ac8
Author: Krisztian VASAS <[EMAIL PROTECTED]>
Date: Mon Oct 8 10:09:31 2007 +0200
fwng: last quote patch was not good, maybe now solved
diff --git a/frugalware/db.inc.php b/frugalware/db.inc.php
index feef300..97e0776 100644
--- a/frugalware/db.inc.php
+++ b/frugalware/db.inc.php
@@ -139,11 +139,6 @@ class FwDB
{
return $res->RecordCount();
}
-
- function doQuoteString( &$query )
- {
- $query = $this->db->qstr( $query );
- }
}
?>
diff --git a/frugalware/packages.php b/frugalware/packages.php
index a73383d..03e08f2 100644
--- a/frugalware/packages.php
+++ b/frugalware/packages.php
@@ -150,7 +150,8 @@ function search_pkg()
main();
return;
}
- $search = $_GET['srch'];
+ $search = addcslashes( $_GET['srch'], '+' );
+ $search = str_replace( '+', '\+', $search );
$arch = $_GET['arch'];
$fwver = $_GET['ver'];
$sub = ($_GET['sub'] == "on") ? 1 : 0; # whether the search is for a substring
or exact match
@@ -169,7 +170,6 @@ function search_pkg()
}
$query .= " order by fwver desc";
$db = new FwDB();
- $db->doQuoteString( &$query );
$db->doConnect($sqlhost, $sqluser, $sqlpass, "frugalware2");
$res = $db->doQuery($query);
if ($db->doCountRows($res) > 0)
_______________________________________________
Frugalware-git mailing list
Frugalware-git@frugalware.org
http://frugalware.org/mailman/listinfo/frugalware-git
