Changeset 2096


Ignore:
Timestamp:
05/11/10 13:39:23 (4 years ago)
Author:
lowjoel
Message:

I'm executing a prepared statement! Don't query directly as that's invalid SQL syntax.

File:
1 edited

Legend:

Unmodified
Added
Removed
  • trunk/website/scripts/blackbox/upload.php

    r2065 r2096  
    4444         
    4545        //Query for the list of exceptions containing the given functions 
    46         $statement = $pdo->query(sprintf('SELECT DISTINCT(BlackBox_Exceptions.ID) FROM BlackBox_StackFrames 
     46        $statement = $pdo->prepare(sprintf('SELECT DISTINCT(BlackBox_Exceptions.ID) FROM BlackBox_StackFrames 
    4747            INNER JOIN BlackBox_Exceptions ON BlackBox_StackFrames.ExceptionID=BlackBox_Exceptions.ID 
    4848            WHERE (%s) AND ExceptionDepth=? AND ExceptionType=?', 
Note: See TracChangeset for help on using the changeset viewer.