X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Flibs%2Fnickname_functions.php;h=fde09eadf90ed5784c44097cabec4f3dd6700d93;hb=963e55ca1ea79e255f235e359cde9f7862191dc5;hp=dbaee3b66ec871287ed80e14fc10f4c1e2e1a811;hpb=d7fb965b76faf6e4f3e6d7827abf8e173349e749;p=mailer.git

diff --git a/inc/libs/nickname_functions.php b/inc/libs/nickname_functions.php
index dbaee3b66e..fde09eadf9 100644
--- a/inc/libs/nickname_functions.php
+++ b/inc/libs/nickname_functions.php
@@ -32,16 +32,16 @@
  ************************************************************************/
 
 // Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))
-{
+if (!defined('__SECURITY')) {
 	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
 	require($INC);
 }
+
 //
 function NICKNAME_IS_ACTIVE($uidNick)
 {
 	$ret = false;
-	$result = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE (userid=%d AND userid > 0) OR nickname='%s' LIMIT 1",
+	$result = SQL_QUERY_ESC("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE (userid=%s AND userid > 0) OR nickname='%s' LIMIT 1",
 	 array(bigintval($uidNick), $uidNick), __FILE__, __LINE__);
 
 	// Check existence of nickname
@@ -60,7 +60,7 @@ function NICKNAME_GET_NICK($userid)
 	$ret = "";
 
 	// Search for non-empty nickname
-	$result = SQL_QUERY_ESC("SELECT nickname FROM "._MYSQL_PREFIX."_user_data WHERE userid=%d AND nickname != '' LIMIT 1",
+	$result = SQL_QUERY_ESC("SELECT nickname FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND nickname != '' LIMIT 1",
 	 array(bigintval($userid)), __FILE__, __LINE__);
 
 	// Found?