Changeset 502

Show
Ignore:
Timestamp:
08/15/06 12:29:30 (2 years ago)
Author:
ben
Message:

Fixed error in apostrophe slash-stripping in database update 2006081000.

Files:

Legend:

Unmodified
Added
Removed
Modified
Copied
Moved

  • devel/lib/db/mysql.php

    r495 r502  
    328328        // Clean up slashes 
    329329         
    330         execute_sql("update {$CFG->prefix}weblog_posts set title = replace(title,'\\\'','\'')"); 
     330        execute_sql("update {$CFG->prefix}weblog_posts set title = replace(title,'\\\\\'','\'')"); 
    331331        execute_sql("update {$CFG->prefix}weblog_posts set title = replace(title,'\\\"','\"')"); 
    332         execute_sql("update {$CFG->prefix}weblog_posts set body = replace(body,'\\\'','\'')"); 
     332        execute_sql("update {$CFG->prefix}weblog_posts set body = replace(body,'\\\\\'','\'')"); 
    333333        execute_sql("update {$CFG->prefix}weblog_posts set body = replace(body,'\\\"','\"')"); 
    334334         
    335         execute_sql("update {$CFG->prefix}weblog_comments set body = replace(body,'\\\'','\'')"); 
     335        execute_sql("update {$CFG->prefix}weblog_comments set body = replace(body,'\\\\\'','\'')"); 
    336336        execute_sql("update {$CFG->prefix}weblog_comments set body = replace(body,'\\\"','\"')"); 
    337         execute_sql("update {$CFG->prefix}weblog_comments set postedname = replace(postedname,'\\\'','\'')"); 
     337        execute_sql("update {$CFG->prefix}weblog_comments set postedname = replace(postedname,'\\\\\'','\'')"); 
    338338        execute_sql("update {$CFG->prefix}weblog_comments set postedname = replace(postedname,'\\\"','\"')"); 
    339339         
    340         execute_sql("update {$CFG->prefix}tags set tag = replace(tag,'\\\'','\'')"); 
     340        execute_sql("update {$CFG->prefix}tags set tag = replace(tag,'\\\\\'','\'')"); 
    341341        execute_sql("update {$CFG->prefix}tags set tag = replace(tag,'\\\"','\"')"); 
    342342         
    343         execute_sql("update {$CFG->prefix}files set title = replace(title,'\\\'','\'')"); 
     343        execute_sql("update {$CFG->prefix}files set title = replace(title,'\\\\\'','\'')"); 
    344344        execute_sql("update {$CFG->prefix}files set title = replace(title,'\\\"','\"')"); 
    345         execute_sql("update {$CFG->prefix}files set description = replace(description,'\\\'','\'')"); 
     345        execute_sql("update {$CFG->prefix}files set description = replace(description,'\\\\\'','\'')"); 
    346346        execute_sql("update {$CFG->prefix}files set description = replace(description,'\\\"','\"')"); 
    347347         
    348         execute_sql("update {$CFG->prefix}file_folders set name = replace(name,'\\\'','\'')"); 
     348        execute_sql("update {$CFG->prefix}file_folders set name = replace(name,'\\\\\'','\'')"); 
    349349        execute_sql("update {$CFG->prefix}file_folders set name = replace(name,'\\\"','\"')"); 
    350350         
    351         execute_sql("update {$CFG->prefix}profile_data set value = replace(value,'\\\'','\'')"); 
     351        execute_sql("update {$CFG->prefix}profile_data set value = replace(value,'\\\\\'','\'')"); 
    352352        execute_sql("update {$CFG->prefix}profile_data set value = replace(value,'\\\"','\"')"); 
    353353         
    354         execute_sql("update {$CFG->prefix}users set name = replace(name,'\\\'','\'')"); 
     354        execute_sql("update {$CFG->prefix}users set name = replace(name,'\\\\\'','\'')"); 
    355355        execute_sql("update {$CFG->prefix}users set name = replace(name,'\\\"','\"')"); 
    356356         
    357         execute_sql("update {$CFG->prefix}groups set name = replace(name,'\\\'','\'')"); 
     357        execute_sql("update {$CFG->prefix}groups set name = replace(name,'\\\\\'','\'')"); 
    358358        execute_sql("update {$CFG->prefix}groups set name = replace(name,'\\\"','\"')"); 
    359359         

  • devel/lib/db/postgres7.php

    r496 r502  
    290290        // Clean up slashes 
    291291         
    292         execute_sql("update {$CFG->prefix}weblog_posts set title = replace(title,'\\\'','\'')"); 
     292        execute_sql("update {$CFG->prefix}weblog_posts set title = replace(title,'\\\\\'','\'')"); 
    293293        execute_sql("update {$CFG->prefix}weblog_posts set title = replace(title,'\\\"','\"')"); 
    294         execute_sql("update {$CFG->prefix}weblog_posts set body = replace(body,'\\\'','\'')"); 
     294        execute_sql("update {$CFG->prefix}weblog_posts set body = replace(body,'\\\\\'','\'')"); 
    295295        execute_sql("update {$CFG->prefix}weblog_posts set body = replace(body,'\\\"','\"')"); 
    296296         
    297         execute_sql("update {$CFG->prefix}weblog_comments set body = replace(body,'\\\'','\'')"); 
     297        execute_sql("update {$CFG->prefix}weblog_comments set body = replace(body,'\\\\\'','\'')"); 
    298298        execute_sql("update {$CFG->prefix}weblog_comments set body = replace(body,'\\\"','\"')"); 
    299         execute_sql("update {$CFG->prefix}weblog_comments set postedname = replace(postedname,'\\\'','\'')"); 
     299        execute_sql("update {$CFG->prefix}weblog_comments set postedname = replace(postedname,'\\\\\'','\'')"); 
    300300        execute_sql("update {$CFG->prefix}weblog_comments set postedname = replace(postedname,'\\\"','\"')"); 
    301301         
    302         execute_sql("update {$CFG->prefix}tags set tag = replace(tag,'\\\'','\'')"); 
     302        execute_sql("update {$CFG->prefix}tags set tag = replace(tag,'\\\\\'','\'')"); 
    303303        execute_sql("update {$CFG->prefix}tags set tag = replace(tag,'\\\"','\"')"); 
    304304         
    305         execute_sql("update {$CFG->prefix}files set title = replace(title,'\\\'','\'')"); 
     305        execute_sql("update {$CFG->prefix}files set title = replace(title,'\\\\\'','\'')"); 
    306306        execute_sql("update {$CFG->prefix}files set title = replace(title,'\\\"','\"')"); 
    307         execute_sql("update {$CFG->prefix}files set description = replace(description,'\\\'','\'')"); 
     307        execute_sql("update {$CFG->prefix}files set description = replace(description,'\\\\\'','\'')"); 
    308308        execute_sql("update {$CFG->prefix}files set description = replace(description,'\\\"','\"')"); 
    309309         
    310         execute_sql("update {$CFG->prefix}file_folders set name = replace(name,'\\\'','\'')"); 
     310        execute_sql("update {$CFG->prefix}file_folders set name = replace(name,'\\\\\'','\'')"); 
    311311        execute_sql("update {$CFG->prefix}file_folders set name = replace(name,'\\\"','\"')"); 
    312312         
    313         execute_sql("update {$CFG->prefix}profile_data set value = replace(value,'\\\'','\'')"); 
     313        execute_sql("update {$CFG->prefix}profile_data set value = replace(value,'\\\\\'','\'')"); 
    314314        execute_sql("update {$CFG->prefix}profile_data set value = replace(value,'\\\"','\"')"); 
    315315         
    316         execute_sql("update {$CFG->prefix}users set name = replace(name,'\\\'','\'')"); 
     316        execute_sql("update {$CFG->prefix}users set name = replace(name,'\\\\\'','\'')"); 
    317317        execute_sql("update {$CFG->prefix}users set name = replace(name,'\\\"','\"')"); 
    318318         
    319         execute_sql("update {$CFG->prefix}groups set name = replace(name,'\\\'','\'')"); 
     319        execute_sql("update {$CFG->prefix}groups set name = replace(name,'\\\\\'','\'')"); 
    320320        execute_sql("update {$CFG->prefix}groups set name = replace(name,'\\\"','\"')"); 
    321321