X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;ds=inline;f=mod%2Fattach.php;h=9ca701ba356ebde93865136b15dd19ef927d33b0;hb=f2ca3e5be44192c486e8e3af2a993e065ad40a7d;hp=e76fe8486960a116de0310cad8c4f575c4e15201;hpb=af6dbc654f82225cfc647fe2072662acae388e47;p=friendica.git

diff --git a/mod/attach.php b/mod/attach.php
index e76fe84869..9ca701ba35 100644
--- a/mod/attach.php
+++ b/mod/attach.php
@@ -6,10 +6,9 @@
 use Friendica\App;
 use Friendica\Core\L10n;
 use Friendica\Database\DBA;
-use Friendica\Database\DBM;
+use Friendica\Util\Security;
 
 require_once 'include/dba.php';
-require_once 'include/security.php';
 
 function attach_init(App $a)
 {
@@ -23,20 +22,20 @@ function attach_init(App $a)
 	// Check for existence, which will also provide us the owner uid
 
 	$r = DBA::selectFirst('attach', [], ['id' => $item_id]);
-	if (!DBM::is_result($r)) {
+	if (!DBA::isResult($r)) {
 		notice(L10n::t('Item was not found.'). EOL);
 		return;
 	}
 
-	$sql_extra = permissions_sql($r['uid']);
+	$sql_extra = Security::getPermissionsSQLByUserId($r['uid']);
 
 	// Now we'll see if we can access the attachment
 
 	$r = q("SELECT * FROM `attach` WHERE `id` = '%d' $sql_extra LIMIT 1",
-		dbesc($item_id)
+		DBA::escape($item_id)
 	);
 
-	if (!DBM::is_result($r)) {
+	if (!DBA::isResult($r)) {
 		notice(L10n::t('Permission denied.') . EOL);
 		return;
 	}