TheCoreDev/sterivein
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix SQL escape method

Browse Source 
modifié:         core/lib/Thelia/ImportExport/Export/Type/ProductPricesExport.php
This commit is contained in:
Benjamin Perche
2014-07-22 16:43:36 +02:00
parent f4891745a3
commit 496d0bb851
1 changed files with 10 additions and 0 deletions
Download Patch File Download Diff File Expand all files Collapse all files

10
core/lib/Thelia/ImportExport/Export/Type/ProductPricesExport.php
View File

@@ -141,15 +141,25 @@ class ProductPricesExport extends ExportHandler
return $data->loadModelCriteria($query); return $data->loadModelCriteria($query);
} }
/**
* @param $str
* @return string
*
* Really escapes a string for SQL request.
*/
protected function real_escape($str) protected function real_escape($str)
{ {
$return = "CONCAT("; $return = "CONCAT(";
$len = strlen($str); $len = strlen($str);
for($i = 0; $i < $len; ++$i) { for($i = 0; $i < $len; ++$i) {
$return .= "CHAR(".ord($str[$i])."),"; $return .= "CHAR(".ord($str[$i])."),";
} }
if ($i > 0) { if ($i > 0) {
$return = substr($return, 0, -1); $return = substr($return, 0, -1);
} else {
$return = "\"\"";
} }
$return .= ")"; $return .= ")";