Commit 915ee0a9 by Scott

Fix qa_db_escape_string for backwards compatibility

parent b0d15b92
...@@ -136,7 +136,9 @@ function qa_db_escape_string($string) ...@@ -136,7 +136,9 @@ function qa_db_escape_string($string)
if (qa_to_override(__FUNCTION__)) { $args=func_get_args(); return qa_call_override(__FUNCTION__, $args); } if (qa_to_override(__FUNCTION__)) { $args=func_get_args(); return qa_call_override(__FUNCTION__, $args); }
$pdo = qa_service('database')->getPDO(); $pdo = qa_service('database')->getPDO();
return $pdo->quote($string); // PDO::quote wraps the value in single quotes, so remove them for backwards compatibility
$quotedString = $pdo->quote($string);
return substr($quotedString, 1, -1);
} }
...@@ -163,7 +165,9 @@ function qa_db_argument_to_mysql($argument, $alwaysquote, $arraybrackets = false ...@@ -163,7 +165,9 @@ function qa_db_argument_to_mysql($argument, $alwaysquote, $arraybrackets = false
$result = implode(',', $parts); $result = implode(',', $parts);
} elseif (isset($argument)) { } elseif (isset($argument)) {
// PDO adds quotes so no need here if ($alwaysquote || !is_numeric($argument))
$result = "'" . qa_db_escape_string($argument) . "'";
else
$result = qa_db_escape_string($argument); $result = qa_db_escape_string($argument);
} else } else
$result = 'NULL'; $result = 'NULL';
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment