/[drupal]/contributions/modules/banner/banner.module

Diff of /contributions/modules/banner/banner.module

-revision 1.42,
Mon Nov  1 03:07:08 2004 UTC
+revision 1.43,
Wed Nov 24 22:03:32 2004 UTC
 Line 1
  <?php
- // $Id: banner.module,v 1.41 2004/10/30 19:46:56 jeremy Exp $
+ // $Id: banner.module,v 1.42 2004/11/01 03:07:08 jeremy Exp $
  function banner_help($section) {
    switch($section) {
 Line 468 
 function banner_user_save($edit) {
    $edit['uid'] = $user->uid;
    foreach ($fields as $field) {
-     $values[] = (string)check_query($edit[$field]);
+     $values[] = (string)db_escape_string($edit[$field]);
    }
    db_query('INSERT INTO {banner} (' .implode(', ', $fields). ") VALUES ('" .implode("', '", $values). "')");
 Line 852 
 function banner_save($edit) {
    if ($edit['id']) {
      // update
      foreach ($fields as $field) {
-       $update[] = "$field = '" .check_query($edit[$field]). "'";
+       $update[] = "$field = '" .db_escape_string($edit[$field]). "'";
      }
      _banner_refresh_cache();
 Line 866 
 function banner_save($edit) {
      $edit['id'] = db_next_id('banner');
      foreach ($fields as $field) {
-       $values[] = (string)check_query($edit[$field]);
+       $values[] = (string)db_escape_string($edit[$field]);
      }
      db_query('INSERT INTO {banner} (' .implode(', ', $fields). ") VALUES ('" .implode("', '", $values). "')");

 Legend:



Removed from v.1.42
 


changed lines


 
Added in v.1.43
 Legend:



Removed from v.1.42
 


changed lines


 
Added in v.1.43
-Removed from v.1.42
+Added in v.1.43

	ViewVC Help
Powered by ViewVC 1.1.2