Git-Url: http://git.frugalware.org/gitweb/gitweb.cgi?p=homepage-ng.git;a=commitdiff;h=25dfda0244cc387c1938823a817470e71d3d6ac8
commit 25dfda0244cc387c1938823a817470e71d3d6ac8 Author: Krisztian VASAS <[EMAIL PROTECTED]> Date: Mon Oct 8 10:09:31 2007 +0200 fwng: last quote patch was not good, maybe now solved diff --git a/frugalware/db.inc.php b/frugalware/db.inc.php index feef300..97e0776 100644 --- a/frugalware/db.inc.php +++ b/frugalware/db.inc.php @@ -139,11 +139,6 @@ class FwDB { return $res->RecordCount(); } - - function doQuoteString( &$query ) - { - $query = $this->db->qstr( $query ); - } } ?> diff --git a/frugalware/packages.php b/frugalware/packages.php index a73383d..03e08f2 100644 --- a/frugalware/packages.php +++ b/frugalware/packages.php @@ -150,7 +150,8 @@ function search_pkg() main(); return; } - $search = $_GET['srch']; + $search = addcslashes( $_GET['srch'], '+' ); + $search = str_replace( '+', '\+', $search ); $arch = $_GET['arch']; $fwver = $_GET['ver']; $sub = ($_GET['sub'] == "on") ? 1 : 0; # whether the search is for a substring or exact match @@ -169,7 +170,6 @@ function search_pkg() } $query .= " order by fwver desc"; $db = new FwDB(); - $db->doQuoteString( &$query ); $db->doConnect($sqlhost, $sqluser, $sqlpass, "frugalware2"); $res = $db->doQuery($query); if ($db->doCountRows($res) > 0) _______________________________________________ Frugalware-git mailing list Frugalware-git@frugalware.org http://frugalware.org/mailman/listinfo/frugalware-git