Skip to content

Commit

Permalink
fix unescaped ' on udger_devicename_list tab
Browse files Browse the repository at this point in the history
  • Loading branch information
@mallat
mallat committed May 3, 2017
1 parent aa253c2 commit 2899965
Showing 1 changed file with 1 addition and 1 deletion.
2 changes: 1 addition & 1 deletion src/Parser.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -435,7 +435,7 @@ public function parse()
$qC=$this->dbdat->query("SELECT marketname,brand_code,brand,brand_url,icon,icon_big
FROM udger_devicename_list
JOIN udger_devicename_brand ON udger_devicename_brand.id=udger_devicename_list.brand_id
WHERE regex_id=".$r["id"]." and code = '".trim($result[1])."' COLLATE NOCASE ");
WHERE regex_id=".$r["id"]." and code = '".\SQLite3::escapeString(trim($result[1]))."' COLLATE NOCASE ");

if($rC = $qC->fetchArray(SQLITE3_ASSOC)) {
$this->logger->debug("parse useragent string: device marketname found");
Expand Down

0 comments on commit 2899965

Please sign in to comment.