addslashes() did escape also single quotes (') which breaks some banner rotation...

[mailer.git] / inc / session-functions.php

diff --git a/inc/session-functions.php b/inc/session-functions.php
index ce329769dce456e9cbb588edd375e40fe40398bd..18ed9d0661030917ccd72b7da05a747530b02244 100644 (file)
--- a/inc/session-functions.php
+++ b/inc/session-functions.php
@@ -47,7 +47,7 @@ function setSession ($var, $value) {
        if (getOutputMode() == 1) return true;
 
        // Trim value and session variable
-       $var = trim(SQL_ESCAPE($var)); $value = trim($value);
+       $var = trim(secureString($var)); $value = trim($value);
 
        // Is the session variable set?
        if (('' . $value . '' == '') && (isSessionVariableSet($var))) {