bitPickups/friendica_2020-09-1_sharedHosting
1
0
Fork 0
Code Pull requests Activity

protect_sprintf calls

Browse source 
implement protectSprintf function
This commit is contained in:
Adam Magness 2018-11-08 10:30:45 -05:00
commit 0efcbe5d15
5 changed files with 10 additions and 10 deletions
Download patch file Download diff file Expand all files Collapse all files

2
view/theme/frio/theme.php
View file

@ -311,7 +311,7 @@ function frio_acl_lookup(App $a, &$results)
$sql_extra = '';
if ($results['search']) {
$search_txt = DBA::escape(protect_sprintf(preg_quote($results['search'])));
$search_txt = DBA::escape(Strings::protectSprintf(preg_quote($results['search'])));
$sql_extra .= " AND (`attag` LIKE '%%" . $search_txt . "%%' OR `name` LIKE '%%" . $search_txt . "%%' OR `nick` LIKE '%%" . $search_txt . "%%') ";
}