* -------------------------------------------------------------------- *
* Kurzbeschreibung : Spezialle Funktionen fuer die Anfragebehandlung *
* -------------------------------------------------------------------- *
- * $Revision:: $ *
- * $Date:: $ *
- * $Tag:: 0.2.1-FINAL $ *
- * $Author:: $ *
- * -------------------------------------------------------------------- *
* Copyright (c) 2003 - 2009 by Roland Haeder *
- * Copyright (c) 2009 - 2012 by Mailer Developer Team *
+ * Copyright (c) 2009 - 2013 by Mailer Developer Team *
* For more information visit: http://mxchange.org *
* *
* This program is free software; you can redistribute it and/or modify *
$value = $GLOBALS['cache_request']['get'][$element];
} elseif (isGetRequestElementSet($element)) {
// Then get it directly
- $value = SQL_ESCAPE($GLOBALS['raw_request']['get'][$element]);
+ $value = sqlEscapeString($GLOBALS['raw_request']['get'][$element]);
// Store it in cache
$GLOBALS['cache_request']['get'][$element] = $value;
// Setter for element in $_GET
function setGetRequestElement ($element, $value) {
// Escape both
- $element = SQL_ESCAPE($element);
- $value = SQL_ESCAPE($value);
+ $element = sqlEscapeString($element);
+ $value = sqlEscapeString($value);
// Set in $_GET
$GLOBALS['raw_request']['get'][$element] = $value;
// Is $subElement set?
if ((!is_null($subElement)) && (isPostRequestElementSet($element, $subElement))) {
// Then use this
- $value = SQL_ESCAPE($value[$subElement]);
+ $value = sqlEscapeString($value[$subElement]);
//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'element=' . $element . ',subElement=' . $subElement . ' - SUB!');
- } elseif (!is_array($value)) {
+ } elseif ((!is_array($value)) && (function_exists('sqlEscapeString'))) {
// Escape it here
- $value = SQL_ESCAPE($value);
+ $value = sqlEscapeString($value);
//* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'element=' . $element . ' - REGULAR!');
}
$eval .= implode("']['", $element);
// Finish eval() command
- $eval .= sprintf("'] = \"%s\";", SQL_ESCAPE($value));
+ $eval .= sprintf("'] = \"%s\";", sqlEscapeString($value));
// And run it
eval($eval);
} elseif (is_array($value)) {
// Escape element
- $element = SQL_ESCAPE($element);
+ $element = sqlEscapeString($element);
// Value is an array so set it directly
$GLOBALS['raw_request']['post'][$element] = $value;
} else {
+ // Debug message
+ //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'element=' . $element . ',value=' . $value . ' - BEFORE!');
+
// Escape both
- $element = SQL_ESCAPE($element);
- $value = SQL_ESCAPE($value);
+ $element = sqlEscapeString($element);
+ $value = sqlEscapeString($value);
+
+ // Debug message
+ //* DEBUG: */ logDebugMessage(__FUNCTION__, __LINE__, 'element=' . $element . ',value=' . $value . ' - AFTER!');
// Set regular entry
$GLOBALS['raw_request']['post'][$element] = $value;
}
// Update cache
- $GLOBALS['cache_request']['post'][$element][null] = $value;
+ $GLOBALS['cache_request']['post'][$element][NULL] = $value;
}
// Checks whether a form was sent. If so, the $_POST['ok'] element must be set
// Now add all parameters
foreach (getRequestArray() as $key => $value) {
// Add it secured
- $return .= SQL_ESCAPE($key) . '=' . SQL_ESCAPE($value) . '&';
+ $return .= sqlEscapeString($key) . '=' . sqlEscapeString($value) . '&';
} // END - foreach
// Remove trailing &