about summary refs log tree commit diff stats
path: root/series
diff options
context:
space:
mode:
Diffstat (limited to 'series')
-rw-r--r--series/core/trunk/admin/addsub.php4
-rw-r--r--series/core/trunk/includes/instadisc.php2
2 files changed, 3 insertions, 3 deletions
diff --git a/series/core/trunk/admin/addsub.php b/series/core/trunk/admin/addsub.php index 26a8109..f462d3f 100644 --- a/series/core/trunk/admin/addsub.php +++ b/series/core/trunk/admin/addsub.php
@@ -77,8 +77,8 @@ function showForm($id, $title, $url, $category, $password, $errors)
77 $template->add('ID_ERR', ifErrors($errors, 'id')); 77 $template->add('ID_ERR', ifErrors($errors, 'id'));
78 $template->add('TITLE_ERR', ifErrors($errors, 'title')); 78 $template->add('TITLE_ERR', ifErrors($errors, 'title'));
79 $template->add('URL_ERR', ifErrors($errors, 'url')); 79 $template->add('URL_ERR', ifErrors($errors, 'url'));
80 $template->add('CATEGORY_ERR', ifErrors($category, 'url')); 80 $template->add('CATEGORY_ERR', ifErrors($errors, 'url'));
81 $template->add('PASSWORD_ERR', ifErrors($password, 'url')); 81 $template->add('PASSWORD_ERR', ifErrors($errors, 'url'));
82 82
83 doErrors($template, $errors, 'id'); 83 doErrors($template, $errors, 'id');
84 doErrors($template, $errors, 'title'); 84 doErrors($template, $errors, 'title');
diff --git a/series/core/trunk/includes/instadisc.php b/series/core/trunk/includes/instadisc.php index 6cf4657..dd879c6 100644 --- a/series/core/trunk/includes/instadisc.php +++ b/series/core/trunk/includes/instadisc.php
@@ -65,7 +65,7 @@ function instaDisc_changePassword($password)
65 65
66function instaDisc_addSubscription($id, $title, $url, $category, $password = '') 66function instaDisc_addSubscription($id, $title, $url, $category, $password = '')
67{ 67{
68 $inssub = "INSERT INTO subscriptions (identity, title, url, category, password) VALUES (\"" . mysql_real_escape_string($id) . "\",\"" . mysql_real_escape_string($title) . "\",\"" . mysql_real_escape_string($url) . "\",\"" . mysql_real_escape_string($category) . "\",\"" . mysql_real_escape_string(($password == '' ? '' : md5($password))) . "\")"; 68 $inssub = "INSERT INTO subscriptions (identity, title, url, category, password, personal) VALUES (\"" . mysql_real_escape_string($id) . "\",\"" . mysql_real_escape_string($title) . "\",\"" . mysql_real_escape_string($url) . "\",\"" . mysql_real_escape_string($category) . "\",\"" . mysql_real_escape_string(($password == '' ? '' : md5($password))) . "\",\"false\")";
69 $inssub2 = mysql_query($inssub); 69 $inssub2 = mysql_query($inssub);
70} 70}
71 71