diff options
| author | Frédéric Guillot <fred@kanboard.net> | 2014-10-08 21:49:25 -0400 |
|---|---|---|
| committer | Frédéric Guillot <fred@kanboard.net> | 2014-10-08 21:49:25 -0400 |
| commit | a8418afdebe92dde495bc5010645779c73939b7b (patch) | |
| tree | da2928fbd0dda33b43b94fadd8fd8f89e297429f /vendor/PicoDb/Table.php | |
| parent | 0d4e12d6e5992749c31cc36036c12d600046f828 (diff) | |
Add Mysql escaping
Diffstat (limited to 'vendor/PicoDb/Table.php')
| -rw-r--r-- | vendor/PicoDb/Table.php | 4 |
1 files changed, 4 insertions, 0 deletions
diff --git a/vendor/PicoDb/Table.php b/vendor/PicoDb/Table.php index f13b4e11..9c6bf4f9 100644 --- a/vendor/PicoDb/Table.php +++ b/vendor/PicoDb/Table.php @@ -173,6 +173,10 @@ class Table public function buildSelectQuery() { + foreach ($this->columns as $key => $value) { + $this->columns[$key] = $this->db->escapeIdentifier($value); + } + return sprintf( 'SELECT %s %s FROM %s %s %s %s %s %s %s', $this->distinct ? 'DISTINCT' : '', |