diff options
author | friendica <info@friendica.com> | 2012-05-29 16:44:02 -0700 |
---|---|---|
committer | friendica <info@friendica.com> | 2012-05-29 16:44:02 -0700 |
commit | 419cf91aae555f6e42767765f476b1f1cc85e5df (patch) | |
tree | e1389042de771dc9784ba3b0217500b914a7cf35 /mod | |
parent | 2eafa9a47519f9f35c5eb568cf4235c092c1dcce (diff) | |
download | volse-hubzilla-419cf91aae555f6e42767765f476b1f1cc85e5df.tar.gz volse-hubzilla-419cf91aae555f6e42767765f476b1f1cc85e5df.tar.bz2 volse-hubzilla-419cf91aae555f6e42767765f476b1f1cc85e5df.zip |
bugfixes: private photo embeds and search for strings with %
Diffstat (limited to 'mod')
-rw-r--r-- | mod/search.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/mod/search.php b/mod/search.php index 3e6bf68aa..6d4bd07e3 100644 --- a/mod/search.php +++ b/mod/search.php @@ -110,9 +110,9 @@ function search_content(&$a) { return $o; if($tag) - $sql_extra = sprintf(" AND `item`.`tag` REGEXP '%s' ", dbesc('\\]' . preg_quote($search) . '\\[')); + $sql_extra = sprintf(" AND `item`.`tag` REGEXP '%s' ", dbesc('\\]' . protect_sprintf(preg_quote($search)) . '\\[')); else - $sql_extra = sprintf(" AND `item`.`body` REGEXP '%s' ", dbesc(preg_quote($search))); + $sql_extra = sprintf(" AND `item`.`body` REGEXP '%s' ", dbesc(protect_sprintf(preg_quote($search)))); |