[fusion-commits] r2956 - trunk/widgets/Search
svn_fusion at osgeo.org
svn_fusion at osgeo.org
Mon Sep 19 08:43:51 PDT 2016
Author: jng
Date: 2016-09-19 08:43:51 -0700 (Mon, 19 Sep 2016)
New Revision: 2956
Modified:
trunk/widgets/Search/Search.php
Log:
#652: Escape single-quotes in search input
Modified: trunk/widgets/Search/Search.php
===================================================================
--- trunk/widgets/Search/Search.php 2016-07-27 14:32:43 UTC (rev 2955)
+++ trunk/widgets/Search/Search.php 2016-09-19 15:43:51 UTC (rev 2956)
@@ -86,6 +86,8 @@
{
trigger_error(FormatMessage("SEARCHLAYERNOTFOUND", $locale, array($layerName)));
}
+
+ $userInput = str_replace("'", "''", $userInput);
//unescape strings
//
More information about the fusion-commits
mailing list