Commit a0ff4263 authored by Alexander Butenko's avatar Alexander Butenko

More relaxed filtering for rawQuery()

parent 4188a491
...@@ -160,7 +160,8 @@ class MysqliDb ...@@ -160,7 +160,8 @@ class MysqliDb
*/ */
public function rawQuery($query, $bindParams = null) public function rawQuery($query, $bindParams = null)
{ {
$this->_query = filter_var($query, FILTER_SANITIZE_STRING); $this->_query = filter_var ($query, FILTER_SANITIZE_MAGIC_QUOTES,
FILTER_FLAG_NO_ENCODE_QUOTES);
$stmt = $this->_prepareQuery(); $stmt = $this->_prepareQuery();
if (is_array($bindParams) === true) { if (is_array($bindParams) === true) {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment