[Devel] r354 - trunk

[svn at agendadulibre.org]

Author: thomas
Date: Sat Jul 12 19:06:35 2008
New Revision: 354

Log:
Ajout d'un appel manquant à $db->quote_smart(), nécessaire pour ne pas
exploser quand le nom d'un LUG contient une apostrophe ou autre
caractère escapé.



Modified:
   trunk/showevent.php

Modified: trunk/showevent.php
==============================================================================
--- trunk/showevent.php	(original)
+++ trunk/showevent.php	Sat Jul 12 19:06:35 2008
@@ -55,7 +55,7 @@
   while ($lug = mysql_fetch_object ($lugs))
     {
       echo "<li><a href=\"" . $lug->url . "\">" . $lug->name . "</a> (";
-      $dpts = $db->query ("select distinct department from lugs where name = '" . $lug->name . "'");
+      $dpts = $db->query ("select distinct department from lugs where name = " . $db->quote_smart($lug->name));
       $i = 1;
       while ($dpt = mysql_fetch_object ($dpts))
 	{