From 6b6e632d858d2371525242e394e692da291c7502 Mon Sep 17 00:00:00 2001 From: Kelly Rauchenberger Date: Sun, 14 Sep 2008 16:14:03 +0000 Subject: Series: [15] Refs #53 --- series/trunk/includes/instadisc.php | 4 ++-- 1 file changed, 2 insertions(+), 2 deletions(-) (limited to 'series/trunk/includes/instadisc.php') diff --git a/series/trunk/includes/instadisc.php b/series/trunk/includes/instadisc.php index 189cf96..b7b5ed0 100644 --- a/series/trunk/includes/instadisc.php +++ b/series/trunk/includes/instadisc.php @@ -77,7 +77,7 @@ function instaDisc_initSubscription($username, $subscriptionID, $subscriptionURL $getsub = "SELECT * FROM subscriptions WHERE identity = \"" . mysql_real_escape_string($seriesID) . "\""; $getsub2 = mysql_query($getsub); $getsub3 = mysql_fetch_array($getsub2); - if ($getsub3['identity'] == $seriesID) + if ($getsub3['identity'] == $subscriptionID) { if (!instaDisc_isAdmin($username) && ($getsub3['username'] != $username)) { @@ -87,7 +87,7 @@ function instaDisc_initSubscription($username, $subscriptionID, $subscriptionURL $setsub = "UPDATE subscriptions SET title = \"" . mysql_real_escape_string($subscriptionTitle) . "\", url = \"" . mysql_real_escape_string($subscriptionURL) . "\", category = \"" . mysql_real_escape_string($subscriptionCategory) . "\", personal = \"" . mysql_real_escape_string($subscriptionPersonal) . "\", password = \"" . mysql_real_escape_string($subscriptionPassword) . "\" WHERE identity = \"" . mysql_real_escape_string($subscriptionID) . "\""; $setsub2 = mysql_query($setsub); } else { - $inssub = "INSERT INTO subscriptions (identity, title, url, category, personal, username, password) VALUES (\"" . mysql_real_escape_string($seriesID) . "\",\"" . mysql_real_escape_string($subscriptionTitle) . "\",\"" . mysql_real_escape_string($subscriptionURL) . "\",\"" . mysql_real_escape_string($subscriptionCategory) . "\",\"" . mysql_real_escape_string($subscriptionPersonal) . "\",\"" . mysql_real_escape_string($username) . "\",\"" . mysql_real_escape_string($subscriptionPassword) . "\")"; + $inssub = "INSERT INTO subscriptions (identity, title, url, category, personal, username, password) VALUES (\"" . mysql_real_escape_string($subscriptionID) . "\",\"" . mysql_real_escape_string($subscriptionTitle) . "\",\"" . mysql_real_escape_string($subscriptionURL) . "\",\"" . mysql_real_escape_string($subscriptionCategory) . "\",\"" . mysql_real_escape_string($subscriptionPersonal) . "\",\"" . mysql_real_escape_string($username) . "\",\"" . mysql_real_escape_string($subscriptionPassword) . "\")"; $inssub2 = mysql_query($inssub); } -- cgit 1.4.1