From: Platonides <platonides@users.mediawiki.org>
Date: Tue, 30 Nov 2010 18:21:55 +0000 (+0000)
Subject: Replace addslashes with Database::addQuotes()
X-Git-Tag: 1.31.0-rc.0~33681
X-Git-Url: https://git.cyclocoop.org/%27.WWW_URL.%27admin/?a=commitdiff_plain;h=bd6b4d7af8c51301b6da9efe1fa2abc76ebd866e;p=lhc%2Fweb%2Fwiklou.git

Replace addslashes with Database::addQuotes()
---

diff --git a/includes/db/Database.php b/includes/db/Database.php
index 174b8f2d6b..8f19635032 100644
--- a/includes/db/Database.php
+++ b/includes/db/Database.php
@@ -2478,7 +2478,7 @@ abstract class DatabaseBase implements DatabaseType {
 		// Ordinary variables
 		foreach ( $varnames as $var ) {
 			if ( isset( $GLOBALS[$var] ) ) {
-				$val = addslashes( $GLOBALS[$var] ); // FIXME: safety check?
+				$val = $this->addQuotes( $GLOBALS[$var] ); // FIXME: safety check?
 				$ins = str_replace( '{$' . $var . '}', $val, $ins );
 				$ins = str_replace( '/*$' . $var . '*/`', '`' . $val, $ins );
 				$ins = str_replace( '/*$' . $var . '*/', $val, $ins );
diff --git a/includes/db/DatabaseOracle.php b/includes/db/DatabaseOracle.php
index be974d6e39..42b798e168 100644
--- a/includes/db/DatabaseOracle.php
+++ b/includes/db/DatabaseOracle.php
@@ -1348,7 +1348,7 @@ class DatabaseOracle extends DatabaseBase {
 		// Ordinary variables
 		foreach ( $varnames as $var ) {
 			if ( isset( $GLOBALS[$var] ) ) {
-				$val = addslashes( $GLOBALS[$var] ); // FIXME: safety check?
+				$val = $this->addQuotes( $GLOBALS[$var] ); // FIXME: safety check?
 				$ins = str_replace( '{$' . $var . '}', $val, $ins );
 				$ins = str_replace( '/*$' . $var . '*/`', '`' . $val, $ins );
 				$ins = str_replace( '/*$' . $var . '*/', $val, $ins );