diff options
Diffstat (limited to 'includes/lib/general.php')
-rw-r--r-- | includes/lib/general.php | 4 |
1 files changed, 2 insertions, 2 deletions
diff --git a/includes/lib/general.php b/includes/lib/general.php index 85b132d..32a24bc 100644 --- a/includes/lib/general.php +++ b/includes/lib/general.php @@ -32,9 +32,9 @@ function get_user_id_from_cert($serial, $issuer_cn) { $query = "select `memid` from `emailcerts` where - `serial`='".mysql_escape_string($serial)."' and + `serial`='".mysql_real_escape_string($serial)."' and `rootcert`= (select `id` from `root_certs` where - `Cert_Text`='".mysql_escape_string($issuer_cn)."') and + `Cert_Text`='".mysql_real_escape_string($issuer_cn)."') and `revoked`=0 and disablelogin=0 and UNIX_TIMESTAMP(`expire`) - UNIX_TIMESTAMP() > 0"; $res = mysql_query($query); |