From bd6b4d7af8c51301b6da9efe1fa2abc76ebd866e Mon Sep 17 00:00:00 2001
From: Platonides <platonides@users.mediawiki.org>
Date: Tue, 30 Nov 2010 18:21:55 +0000
Subject: [PATCH] Replace addslashes with Database::addQuotes()

---
 includes/db/Database.php       | 2 +-
 includes/db/DatabaseOracle.php | 2 +-
 2 files changed, 2 insertions(+), 2 deletions(-)

diff --git a/includes/db/Database.php b/includes/db/Database.php
index 174b8f2d6b..8f19635032 100644
--- a/includes/db/Database.php
+++ b/includes/db/Database.php
@@ -2478,7 +2478,7 @@ abstract class DatabaseBase implements DatabaseType {
 		// Ordinary variables
 		foreach ( $varnames as $var ) {
 			if ( isset( $GLOBALS[$var] ) ) {
-				$val = addslashes( $GLOBALS[$var] ); // FIXME: safety check?
+				$val = $this->addQuotes( $GLOBALS[$var] ); // FIXME: safety check?
 				$ins = str_replace( '{$' . $var . '}', $val, $ins );
 				$ins = str_replace( '/*$' . $var . '*/`', '`' . $val, $ins );
 				$ins = str_replace( '/*$' . $var . '*/', $val, $ins );
diff --git a/includes/db/DatabaseOracle.php b/includes/db/DatabaseOracle.php
index be974d6e39..42b798e168 100644
--- a/includes/db/DatabaseOracle.php
+++ b/includes/db/DatabaseOracle.php
@@ -1348,7 +1348,7 @@ class DatabaseOracle extends DatabaseBase {
 		// Ordinary variables
 		foreach ( $varnames as $var ) {
 			if ( isset( $GLOBALS[$var] ) ) {
-				$val = addslashes( $GLOBALS[$var] ); // FIXME: safety check?
+				$val = $this->addQuotes( $GLOBALS[$var] ); // FIXME: safety check?
 				$ins = str_replace( '{$' . $var . '}', $val, $ins );
 				$ins = str_replace( '/*$' . $var . '*/`', '`' . $val, $ins );
 				$ins = str_replace( '/*$' . $var . '*/', $val, $ins );
-- 
2.20.1