Lesser use of double-quotes

[mailer.git] / inc / libs / sponsor_functions.php

diff --git a/inc/libs/sponsor_functions.php b/inc/libs/sponsor_functions.php
index 81810de1d1a09172836f1310bc037f2566f85b2d..97034d5b9bc9a75fdd8fdc30277e4ed95db1b3cc 100644 (file)
--- a/inc/libs/sponsor_functions.php
+++ b/inc/libs/sponsor_functions.php
@@ -423,7 +423,7 @@ function saveSponsorData ($postData, $content) {
        $sql = "UPDATE `{?_MYSQL_PREFIX?}_sponsor_data` SET";
        foreach ($postData as $key => $value) {
                // Mmmmm, too less security here???
-               $sql   .= " `".secureString($key)."`='%s',";
+               $sql   .= " `" . secureString($key) . "`='%s',";
 
                // We will secure this later inside the SQL_QUERY_ESC() function
                $DATA[] = secureString($value);
@@ -448,7 +448,7 @@ function saveSponsorData ($postData, $content) {
        $sql = substr($sql, 0, -1);
 
        // Add SQL tail data
-       $sql .= " WHERE `id`=%s AND password='%s' LIMIT 1";
+       $sql .= " WHERE `id`=%s AND `password`='%s' LIMIT 1";
        $DATA[] = bigintval(getSession('sponsorid'));
        $DATA[] = getSession('sponsorpass');