aboutsummaryrefslogtreecommitdiffstats
path: root/mod
diff options
context:
space:
mode:
authorfriendica <info@friendica.com>2012-05-29 16:44:02 -0700
committerfriendica <info@friendica.com>2012-05-29 16:44:02 -0700
commit419cf91aae555f6e42767765f476b1f1cc85e5df (patch)
treee1389042de771dc9784ba3b0217500b914a7cf35 /mod
parent2eafa9a47519f9f35c5eb568cf4235c092c1dcce (diff)
downloadvolse-hubzilla-419cf91aae555f6e42767765f476b1f1cc85e5df.tar.gz
volse-hubzilla-419cf91aae555f6e42767765f476b1f1cc85e5df.tar.bz2
volse-hubzilla-419cf91aae555f6e42767765f476b1f1cc85e5df.zip
bugfixes: private photo embeds and search for strings with %
Diffstat (limited to 'mod')
-rw-r--r--mod/search.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/mod/search.php b/mod/search.php
index 3e6bf68aa..6d4bd07e3 100644
--- a/mod/search.php
+++ b/mod/search.php
@@ -110,9 +110,9 @@ function search_content(&$a) {
return $o;
if($tag)
- $sql_extra = sprintf(" AND `item`.`tag` REGEXP '%s' ", dbesc('\\]' . preg_quote($search) . '\\['));
+ $sql_extra = sprintf(" AND `item`.`tag` REGEXP '%s' ", dbesc('\\]' . protect_sprintf(preg_quote($search)) . '\\['));
else
- $sql_extra = sprintf(" AND `item`.`body` REGEXP '%s' ", dbesc(preg_quote($search)));
+ $sql_extra = sprintf(" AND `item`.`body` REGEXP '%s' ", dbesc(protect_sprintf(preg_quote($search))));