瀏覽代碼

Add files via upload

wibyweb 2 年之前
父節點
當前提交
ce6685e33e
共有 1 個文件被更改,包括 4 次插入4 次删除
  1. 4 4
      html/feedback/index.php

+ 4 - 4
html/feedback/index.php

@@ -47,14 +47,14 @@
 		  exit(); 
 		}
  
-		$feedback = str_replace("\'", "\'\'", $_POST['feedback']); //single quotes must be handled correctly
-		$feedback = str_replace("\"", "\"\"", $feedback);//double quotes must be handled correctly
-	    	//$feedback = mysqli_real_escape_string($link, $_POST['feedback']);//doesn't read back properly
+		//$feedback = str_replace("\'", "\'\'", $_POST['feedback']); //single quotes must be handled correctly
+		//$feedback = str_replace("\"", "\"\"", $feedback);//double quotes must be handled correctly
+	    $feedback = mysqli_real_escape_string($link, $_POST['feedback']);
 
 		$feedback = substr($feedback,0,8000); //don't allow user to post a longer string than 8k (also limited in form)
 
 
-		$sql = 'INSERT INTO feedback (message) VALUES ("'.$feedback.'")';
+		$sql = "INSERT INTO feedback (message) VALUES ('".$feedback."')";
 
 
 		if (!mysqli_query($link, $sql))