Commit 9ad5d974 authored by Alexander Butenko's avatar Alexander Butenko

get rid of FILTER_SANITIZE_STRING everywhere

parent 90ab25df
...@@ -395,7 +395,7 @@ class MysqliDb ...@@ -395,7 +395,7 @@ class MysqliDb
*/ */
public function query($query, $numRows = null) public function query($query, $numRows = null)
{ {
$this->_query = filter_var($query, FILTER_SANITIZE_STRING); $this->_query = $query;
$stmt = $this->_buildQuery($numRows); $stmt = $this->_buildQuery($numRows);
$stmt->execute(); $stmt->execute();
$this->_stmtError = $stmt->error; $this->_stmtError = $stmt->error;
...@@ -693,7 +693,7 @@ class MysqliDb ...@@ -693,7 +693,7 @@ class MysqliDb
die ('Wrong JOIN type: '.$joinType); die ('Wrong JOIN type: '.$joinType);
if (!is_object ($joinTable)) if (!is_object ($joinTable))
$joinTable = self::$prefix . filter_var($joinTable, FILTER_SANITIZE_STRING); $joinTable = self::$prefix . $joinTable;
$this->_join[] = Array ($joinType, $joinTable, $joinCondition); $this->_join[] = Array ($joinType, $joinTable, $joinCondition);
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment