Upstream/WordPress
1
0
Fork 0
mirror of https://github.com/WordPress/WordPress.git synced 2025-02-01 21:21:24 +01:00
Code Issues Projects Releases Wiki Activity

Escape content and title before inserting into the DB. http://wordpress.org/support/2/12153

Browse Source 
git-svn-id: http://svn.automattic.com/wordpress/trunk@1590 1a063a9b-81f0-0310-95a4-ce76da25c4cd
This commit is contained in:
rboren 2004-09-04 08:03:20 +00:00
parent 48e72c3061
commit 9ed736f7cf
1 changed files with 2 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
wp-admin/import-textpattern.php
View File

@ -97,8 +97,8 @@ while ($post = mysql_fetch_array($posts)) {
$timestamp = mktime($hour, $minute, $second, $month, $day, $year);
$posted = date('Y-m-d H:i:s', $timestamp);
$content = $post['Body_html'];
$title = $post['Title'];
$content = addslashes($post['Body_html']);
$title = addslashes($post['Title']);
$post_name = sanitize_title($title);
$wpdb->query("INSERT INTO $wpdb->posts