]> git.mxchange.org Git - friendica.git/blobdiff - mod/msearch.php
projects / friendica.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Fix escaping in email notification template
[friendica.git] / mod / msearch.php
diff --git a/mod/msearch.php b/mod/msearch.php
index 56e2266acffe4924098b2a2bfaf2a88e04625382..d3477b0d59127e490c2bc683c70cdd839fc26473 100644 (file)
--- a/mod/msearch.php
+++ b/mod/msearch.php
@@ -15,7 +15,7 @@ function msearch_post(App $a) {
                killme();
 
        $r = q("SELECT COUNT(*) AS `total` FROM `profile` LEFT JOIN `user` ON `user`.`uid` = `profile`.`uid` WHERE `is-default` = 1 AND `user`.`hidewall` = 0 AND MATCH `pub_keywords` AGAINST ('%s') ",
-               dbesc($search)
+               DBA::escape($search)
        );
 
        if (DBA::isResult($r))
@@ -24,7 +24,7 @@ function msearch_post(App $a) {
        $results = [];
 
        $r = q("SELECT `pub_keywords`, `username`, `nickname`, `user`.`uid` FROM `user` LEFT JOIN `profile` ON `user`.`uid` = `profile`.`uid` WHERE `is-default` = 1 AND `user`.`hidewall` = 0 AND MATCH `pub_keywords` AGAINST ('%s') LIMIT %d , %d ",
-               dbesc($search),
+               DBA::escape($search),
                intval($startrec),
                intval($perpage)
        );
Unnamed repository; edit this file 'description' to name the repository.