Revision 2018
Added by darkviper almost 11 years ago
| save.php | ||
|---|---|---|
| 390 | 390 |
|
| 391 | 391 |
if ( ($passed == true) ) |
| 392 | 392 |
{
|
| 393 |
$value = $admin->add_slashes($value); |
|
| 394 | 393 |
$sql = 'UPDATE `'.TABLE_PREFIX.'search` '; |
| 395 |
$sql .= 'SET `value` = \''.$value.'\' ';
|
|
| 394 |
$sql .= 'SET `value` = \''.$database->escapeString($value).'\' ';
|
|
| 396 | 395 |
$sql .= 'WHERE `name` = \''.$sSearchName.'\' '; |
| 397 | 396 |
$sql .= 'AND `extra` = \'\' '; |
| 398 |
if($database->query($sql)) {
|
|
| 399 |
|
|
| 400 |
} |
|
| 401 |
$sql_info = mysql_info($database->db_handle); |
|
| 397 |
$database->query($sql); |
|
| 402 | 398 |
} |
| 403 | 399 |
} |
| 404 | 400 |
|
Also available in: Unified diff
! little correction in admin/settings/save.php from line 391