extern/egroupware_official
1
0
Fork 0
mirror of https://github.com/EGroupware/egroupware.git synced 2024-11-26 18:03:39 +01:00
Code Issues Packages Projects Releases Wiki Activity

Added the db_addslashes() call to name2id().

Browse Source
This commit is contained in:
skeeter 2002-03-26 19:25:49 +00:00
parent b0999ae0e1
commit b221f83ec2
1 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

5
phpgwapi/inc/class.categories.inc.php
View File

@ -553,8 +553,9 @@
function name2id($cat_name)
{
$this->db->query("SELECT cat_id FROM phpgw_categories WHERE cat_name='" . $cat_name . "' AND cat_appname='" . $this->app_name
. "' AND cat_owner=" . $this->account_id,__LINE__,__FILE__);
$this->db->query("SELECT cat_id FROM phpgw_categories WHERE cat_name='" . $this->db->db_addslashes($cat_name) . "' "
."AND cat_appname='" . $this->app_name . "' "
."AND cat_owner=" . $this->account_id,__LINE__,__FILE__);
if(!$this->db->num_rows())
{