Changeset 82 for branches/1.1dev/lib/MySQLSessionHandler.inc.php
- Timestamp:
- Apr 8, 2006 3:07:57 AM (18 years ago)
- File:
-
- 1 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/1.1dev/lib/MySQLSessionHandler.inc.php
r81 r82 52 52 53 53 // Select the data belonging to session $session_id from the MySQL session table 54 $qid = mysql_query("SELECT session_data FROM " . $sess_mysql['table'] . " WHERE session_id = '" . addslashes($session_id) . "'", $sess_mysql['dbh']);54 $qid = mysql_query("SELECT session_data FROM " . $sess_mysql['table'] . " WHERE session_id = '" . mysql_real_escape_string($session_id) . "'", $sess_mysql['dbh']); 55 55 56 56 // Check for errors … … 75 75 76 76 // Write the serialized session data ($session_data) to the MySQL session table 77 mysql_query("REPLACE INTO " . $sess_mysql['table'] . "(session_id, session_data, last_access) VALUES ('" . addslashes($session_id) . "', '" . addslashes($session_data) . "', null)", $sess_mysql['dbh']);77 mysql_query("REPLACE INTO " . $sess_mysql['table'] . "(session_id, session_data, last_access) VALUES ('" . mysql_real_escape_string($session_id) . "', '" . mysql_real_escape_string($session_data) . "', null)", $sess_mysql['dbh']); 78 78 79 79 // Check for errors … … 91 91 92 92 // Delete from the MySQL table all data for the session $session_id 93 mysql_query("DELETE FROM " . $sess_mysql['table'] . " WHERE session_id = '" . addslashes($session_id) . "'", $sess_mysql['dbh']);93 mysql_query("DELETE FROM " . $sess_mysql['table'] . " WHERE session_id = '" . mysql_real_escape_string($session_id) . "'", $sess_mysql['dbh']); 94 94 95 95 // Check for errors
Note: See TracChangeset
for help on using the changeset viewer.