From b7a8b2f3c41335fa15c65e6d830927ad4178e85b Mon Sep 17 00:00:00 2001 From: rob Date: Fri, 25 Apr 2003 13:23:10 +0000 Subject: [PATCH] Added mysql escaping to search string --- presentation/lookAndFeel/knowledgeTree/search/standardSearchBL.php | 2 ++ 1 file changed, 2 insertions(+), 0 deletions(-) diff --git a/presentation/lookAndFeel/knowledgeTree/search/standardSearchBL.php b/presentation/lookAndFeel/knowledgeTree/search/standardSearchBL.php index 9356e04..eccbd27 100644 --- a/presentation/lookAndFeel/knowledgeTree/search/standardSearchBL.php +++ b/presentation/lookAndFeel/knowledgeTree/search/standardSearchBL.php @@ -24,6 +24,8 @@ if (checkSession()) { if (!isset($fStartIndex)) { $fStartIndex = 0; } + //escape the search string + $fStandardSearchString = addslashes($fStandardSearchString); if (strlen($fBrowseType) > 0) { //the user was browsing by a specific type -- libgit2 0.21.4