/[LeafOK_CVS]/fenglin/bbs/article_service_post.php

Diff of /fenglin/bbs/article_service_post.php

- Revision 1.2 by sysadm,
 Fri Apr 25 05:17:50 2025 UTC
+ Revision 1.3 by sysadm,
 Fri Apr 25 07:12:12 2025 UTC
  Line 341
                  if($row = mysqli_fetch_array($rs))
                  {
-                         $nickname = mysqli_escape_string($db_conn, $row["nickname"]); // Nickname may include special characters
+                         $nickname = $row["nickname"];
                          $exp = $row["exp"];
                  }
                  mysqli_free_result($rs);
  Line 624
                          $sql = "UPDATE bbs SET reply_count = reply_count + 1,
                                          last_reply_dt = NOW(), last_reply_UID=" . $_SESSION["BBS_uid"] .
                                          ", last_reply_username = '" . $_SESSION["BBS_username"] .
-                                         "', last_reply_nickname = '$nickname' WHERE Aid = $tid";
+                                         "', last_reply_nickname = '" . mysqli_real_escape_string($db_conn, $nickname) .
+                                         "' WHERE Aid = $tid";
                          $rs = mysqli_query($db_conn, $sql);
                          if ($rs == false)

  Legend:

 
 
 Removed lines/characters
  
 
 
 Changed lines/characters
 
 
  
 Added lines/characters
 Legend:

 
 
 Removed lines/characters
  
 
 
 Changed lines/characters
 
 
  
 Added lines/characters
-Removed lines/characters
+Added lines/characters

webmaster@leafok.com	ViewVC Help
Powered by ViewVC 1.3.0-beta1