Changeset 2047
- Timestamp:
- 10/22/2009 12:01:36 PM (15 years ago)
- Location:
- branches/1.1
- Files:
-
- 5 edited
Legend:
- Unmodified
- Added
- Removed
-
branches/1.1/bp-blogs/bp-blogs-classes.php
r1905 r2047 181 181 bp_blogs_setup_globals(); 182 182 183 like_escape( $letter);183 like_escape( $wpdb->escape( $letter ) ); 184 184 185 185 if ( $limit && $page ) { … … 199 199 bp_blogs_setup_globals(); 200 200 201 like_escape( $filter);201 like_escape( $wpdb->escape( $filter ) ); 202 202 203 203 if ( $limit && $page ) { -
branches/1.1/bp-core.php
r2035 r2047 66 66 if ( !defined( 'BP_HOME_BLOG_SLUG' ) ) 67 67 define( 'BP_HOME_BLOG_SLUG', 'blog' ); 68 69 /* Register BuddyPress themes contained within the theme folder */ 70 if ( function_exists( 'register_theme_folder' ) ) 71 register_theme_folder( 'buddypress/bp-themes' ); 68 72 69 73 -
branches/1.1/bp-core/bp-core-classes.php
r2005 r2047 220 220 return false; 221 221 222 like_escape( $letter);222 like_escape( $wpdb->escape( $letter ) ); 223 223 224 224 $total_users_sql = apply_filters( 'bp_core_users_by_letter_count_sql', $wpdb->prepare( "SELECT DISTINCT count(u.ID) FROM " . CUSTOM_USER_TABLE . " u LEFT JOIN {$bp->profile->table_name_data} pd ON u.ID = pd.user_id LEFT JOIN {$bp->profile->table_name_fields} pf ON pd.field_id = pf.id WHERE u.spam = 0 AND u.deleted = 0 AND u.user_status = 0 AND pf.name = %s AND pd.value LIKE '$letter%%' ORDER BY pd.value ASC", BP_XPROFILE_FULLNAME_FIELD_NAME ), $letter ); … … 240 240 $pag_sql = $wpdb->prepare( " LIMIT %d, %d", intval( ( $page - 1 ) * $limit), intval( $limit ) ); 241 241 242 like_escape( $search_terms);242 like_escape( $wpdb->escape( $search_terms ) ); 243 243 244 244 $total_users_sql = apply_filters( 'bp_core_search_users_count_sql', "SELECT DISTINCT count(u.ID) as user_id FROM " . CUSTOM_USER_TABLE . " u LEFT JOIN {$bp->profile->table_name_data} pd ON u.ID = pd.user_id WHERE u.spam = 0 AND u.deleted = 0 AND u.user_status = 0 AND pd.value LIKE '%%$search_terms%%' ORDER BY pd.value ASC", $search_terms ); -
branches/1.1/bp-friends/bp-friends-classes.php
r1905 r2047 150 150 $user_id = $bp->loggedin_user->id; 151 151 152 like_escape( $filter);152 like_escape( $wpdb->escape( $filter ) ); 153 153 154 154 if ( $limit && $page ) … … 222 222 global $wpdb, $bp; 223 223 224 like_escape( $filter);224 like_escape( $wpdb->escape( $filter ) ); 225 225 $usermeta_table = $wpdb->base_prefix . 'usermeta'; 226 226 $users_table = $wpdb->base_prefix . 'users'; … … 247 247 global $wpdb, $bp; 248 248 249 like_escape( $filter);249 like_escape( $wpdb->escape( $filter ) ); 250 250 $usermeta_table = $wpdb->prefix . 'usermeta'; 251 251 $users_table = $wpdb->base_prefix . 'users'; -
branches/1.1/bp-groups/bp-groups-classes.php
r1929 r2047 247 247 $user_id = $bp->displayed_user->id; 248 248 249 like_escape( $filter);249 like_escape( $wpdb->escape( $filter ) ); 250 250 251 251 if ( $limit && $page ) … … 269 269 global $wpdb, $bp; 270 270 271 like_escape( $filter);271 like_escape( $wpdb->escape( $filter ) ); 272 272 273 273 if ( $limit && $page ) … … 463 463 $hidden_sql = $wpdb->prepare( " AND status != 'hidden'"); 464 464 465 like_escape( $letter);465 like_escape( $wpdb->escape( $letter ) ); 466 466 467 467 if ( $limit && $page ) { … … 699 699 700 700 if ( $filter ) { 701 like_escape( $filter);701 like_escape( $wpdb->escape( $filter ) ); 702 702 $filter_sql = " AND ( g.name LIKE '{$filter}%%' OR g.description LIKE '{$filter}%%' )"; 703 703 } … … 719 719 720 720 if ( $filter ) { 721 like_escape( $filter);721 like_escape( $wpdb->escape( $filter ) ); 722 722 $filter_sql = " AND ( g.name LIKE '{$filter}%%' OR g.description LIKE '{$filter}%%' )"; 723 723 } … … 739 739 740 740 if ( $filter ) { 741 like_escape( $filter);741 like_escape( $wpdb->escape( $filter ) ); 742 742 $filter_sql = " AND ( g.name LIKE '{$filter}%%' OR g.description LIKE '{$filter}%%' )"; 743 743 } … … 759 759 760 760 if ( $filter ) { 761 like_escape( $filter);761 like_escape( $wpdb->escape( $filter ) ); 762 762 $filter_sql = " AND ( g.name LIKE '{$filter}%%' OR g.description LIKE '{$filter}%%' )"; 763 763 } … … 779 779 780 780 if ( $filter ) { 781 like_escape( $filter);781 like_escape( $wpdb->escape( $filter ) ); 782 782 $filter_sql = " AND ( g.name LIKE '{$filter}%%' OR g.description LIKE '{$filter}%%' )"; 783 783 } … … 799 799 800 800 if ( $filter ) { 801 like_escape( $filter);801 like_escape( $wpdb->escape( $filter ) ); 802 802 $filter_sql = " AND ( g.name LIKE '{$filter}%%' OR g.description LIKE '{$filter}%%' )"; 803 803 }
Note: See TracChangeset
for help on using the changeset viewer.