use Friendica\Database\DBA;
use Friendica\Model;
use Friendica\Module;
+use Friendica\Util\Strings;
$frio = 'view/theme/frio';
*/
function frio_acl_lookup(App $a, &$results)
{
- $nets = x($_GET, 'nets') ? notags(trim($_GET['nets'])) : '';
+ $nets = !empty($_GET['nets']) ? Strings::escapeTags(trim($_GET['nets'])) : '';
// we introduce a new search type, r should do the same query like it's
// done in /src/Module/Contact.php for connections
$sql_extra = '';
if ($results['search']) {
- $search_txt = DBA::escape(protect_sprintf(preg_quote($results['search'])));
+ $search_txt = DBA::escape(Strings::protectSprintf(preg_quote($results['search'])));
$sql_extra .= " AND (`attag` LIKE '%%" . $search_txt . "%%' OR `name` LIKE '%%" . $search_txt . "%%' OR `nick` LIKE '%%" . $search_txt . "%%') ";
}