From: Alan Jack Pippin Date: Tue, 18 Sep 2007 13:52:31 +0000 (-0600) Subject: Removed all calls to db->db_addslashes. This seems to be unnecessary. X-Git-Tag: release_0_1_0~17 X-Git-Url: http://git.pippins.net/embedvideo/.git/%27%20%20%20%20.%20%24GLOBALS%5B%27phpgw%27%5D-%3Elink%28%27inc/jquery/%22%22.%24thumbnail.%22/static/%7Badd%7D?a=commitdiff_plain;h=d606bcf23ab3cc274e432950364fa783c52c9c00;p=eq%2F.git Removed all calls to db->db_addslashes. This seems to be unnecessary. --- diff --git a/inc/class.eq.inc.php b/inc/class.eq.inc.php index 53de695..1c25d7a 100644 --- a/inc/class.eq.inc.php +++ b/inc/class.eq.inc.php @@ -726,9 +726,9 @@ class eq if($action == 'save') { - $activity['assignment'] = $this->db->db_addslashes(get_var('assignment',array('POST'))); - $activity['date'] = $this->db->db_addslashes(get_var('date',array('POST'))); - $activity['notes']= $this->db->db_addslashes(get_var('notes',array('POST'))); + $activity['assignment'] = get_var('assignment',array('POST')); + $activity['date'] = get_var('date',array('POST')); + $activity['notes']= get_var('notes',array('POST')); $this->db->query("UPDATE eq_activity set " . " assignment='" . $activity['assignment'] . "', date='" . $activity['date'] . "'" . @@ -752,9 +752,9 @@ class eq if($action == 'insert') { - $activity['assignment'] = $this->db->db_addslashes(get_var('assignment',array('POST'))); - $activity['date'] = $this->db->db_addslashes(get_var('date',array('POST'))); - $activity['notes']= $this->db->db_addslashes(get_var('notes',array('POST'))); + $activity['assignment'] = get_var('assignment',array('POST')); + $activity['date'] = get_var('date',array('POST')); + $activity['notes']= get_var('notes',array('POST')); $this->db->query("INSERT INTO eq_activity (assignment,date,notes) " . "VALUES ('" . $activity['assignment'] . "','" . $activity['date'] . "','" . $activity['notes'] . "')",__LINE__,__FILE__); @@ -937,8 +937,8 @@ class eq if($action == 'save') { - $assignment['name'] = $this->db->db_addslashes(get_var('name',array('POST'))); - $assignment['code'] = $this->db->db_addslashes(get_var('code',array('POST'))); + $assignment['name'] = get_var('name',array('POST')); + $assignment['code'] = get_var('code',array('POST')); $this->db->query("UPDATE eq_assignment set " . " name='" . $assignment['name'] . "'" . ", code='" . $assignment['code'] . "'" . @@ -950,8 +950,8 @@ class eq if($action == 'insert') { - $assignment['name'] = $this->db->db_addslashes(get_var('name',array('POST'))); - $assignment['code'] = $this->db->db_addslashes(get_var('code',array('POST'))); + $assignment['name'] = get_var('name',array('POST')); + $assignment['code'] = get_var('code',array('POST')); $this->db->query("INSERT INTO eq_assignment (name,code) " . "VALUES ('" . $assignment['name'] . "','" . $assignment['code'] . "')",__LINE__,__FILE__); @@ -2201,7 +2201,7 @@ class eq $families_with_yearly_visit++; $date = $this->db2->f('date'); $vis_notes = $this->db2->f('notes'); - if(strlen($vis_notes) > 40) { $vis_notes = substr($vis_notes,0,40) . "..."; } + if(strlen($vis_notes) > 40) { $vis_notes = stripslashes(substr($vis_notes,0,40) . "..."); } $completed_data.= "$name Family"; $completed_data.= "$phone"; $completed_data.= "$date"; @@ -2423,7 +2423,7 @@ class eq if($action == 'save') { - $notes = $this->db->db_addslashes(get_var('notes',array('POST'))); + $notes = get_var('notes',array('POST')); $this->db->query("UPDATE eq_ppi set " . " ppi='" . $ppi . "'" . ", interviewer='" . $interviewer . "'" . @@ -2438,7 +2438,7 @@ class eq if($action == 'insert') { - $notes = $this->db->db_addslashes(get_var('notes',array('POST'))); + $notes = get_var('notes',array('POST')); $this->db->query("INSERT INTO eq_ppi (interviewer,elder,date,notes,eqpresppi) " . "VALUES ('" . $interviewer . "','" . $elder . "','" . $date . "','" . $notes . "','" . $eqpresppi ."')",__LINE__,__FILE__); @@ -2752,7 +2752,7 @@ class eq if($action == 'save') { - $notes = $this->db->db_addslashes(get_var('notes',array('POST'))); + $notes = get_var('notes',array('POST')); $this->db->query("UPDATE eq_interview set " . " interview='" . $interview . "'" . ", interviewer='" . $interviewer . "'" . @@ -2767,7 +2767,7 @@ class eq if($action == 'insert') { - $notes = $this->db->db_addslashes(get_var('notes',array('POST'))); + $notes = get_var('notes',array('POST')); $this->db->query("INSERT INTO eq_interview (interviewer,elder,aaronic,date,notes) " . "VALUES ('" . $interviewer . "','" . $elder . "','" . $aaronic . "','" . $date . "','" . $notes ."')",__LINE__,__FILE__); @@ -2965,7 +2965,7 @@ class eq if($action == 'save') { - $notes = $this->db->db_addslashes(get_var('notes',array('POST'))); + $notes = get_var('notes',array('POST')); $this->db->query("UPDATE eq_visit set " . " date='" . $date . "'" . ", notes='" . $notes . "'" . @@ -2976,7 +2976,7 @@ class eq if($action == 'insert') { - $notes = $this->db->db_addslashes(get_var('notes',array('POST'))); + $notes = get_var('notes',array('POST')); $this->db->query("INSERT INTO eq_visit (family,companionship,date,notes) " . "VALUES ('" . $family . "','" . $companionship . "','" . $date . "','" . $notes . "')",__LINE__,__FILE__);