From: Andrew Dolgov <fox@bah.org.ru>
Date: Tue, 31 Aug 2010 07:30:28 +0000 (+0400)
Subject: getFeedArticles: properly escape tags
X-Git-Tag: 1.4.3-proper~6
X-Git-Url: https://git.wh0rd.org/?a=commitdiff_plain;h=c5701e70a4950fcaa06e0e775102ccc5caff22f8;p=tt-rss.git

getFeedArticles: properly escape tags
---

diff --git a/functions.php b/functions.php
index 0252c0cf..05eb8590 100644
--- a/functions.php
+++ b/functions.php
@@ -2611,6 +2611,8 @@
 			return getCategoryUnread($link, $n_feed, $owner_uid);		
 		} if ($feed != "0" && $n_feed == 0) {
 
+			$feed = db_escape_string($feed);
+
 			$result = db_query($link, "SELECT SUM((SELECT COUNT(int_id)
 				FROM ttrss_user_entries,ttrss_entries WHERE int_id = post_int_id 
 					AND ref_id = id AND $age_qpart