Revision 1416
Added by Dietmar almost 14 years ago
| index.php | ||
|---|---|---|
| 227 | 227 |
{
|
| 228 | 228 |
$sql = 'SELECT `publ_start`, `publ_end` FROM `'.TABLE_PREFIX.'sections` '; |
| 229 | 229 |
$sql .= 'WHERE `page_id` = '.$page['page_id'].' AND `module` != \'menu_link\' '; |
| 230 |
$query_sections = $database->query($sql); |
|
| 231 |
|
|
| 232 | 230 |
// $query_sections = $database->query("SELECT publ_start, publ_end FROM ".TABLE_PREFIX."sections WHERE page_id = '{$page['page_id']}' AND module != 'menu_link'");
|
| 233 |
|
|
| 234 |
if (isset($query_sections) && $query_sections->numRows() > 0) |
|
| 231 |
if( ($query_sections = $database->query($sql)) ) |
|
| 235 | 232 |
{
|
| 236 | 233 |
$mdate_display=false; |
| 237 | 234 |
while($mdate_res = $query_sections->fetchRow()) |
Also available in: Unified diff
fixed unsafe sql queries