← Back to branch summary

~dangarner/xibo/bug-471636

« back to all changes in this revision

Viewing changes to server/modules/video.module.php

  • Committer: Dan Garner
  • Date: 2009-08-02 17:19:21 UTC
  • mfrom: (55.1.1 1.0.0)
  • Revision ID: mail@dangarner.co.uk-20090802171921-vwkp0j6v0o0qevh6
MergedĀ lp:~dangarner/xibo/393062

Show diffs side-by-side

added added

removed removed

Lines of Context:
server/modules/video.module.php
771
771
                        // Editing the existing record
772
772
                        $new_mediaid = $mediaid;
773
773
                        
774
 
                        $SQL =  "UPDATE media SET name = '$name', duration = '$duration', permissionID = $permissionid";
775
 
                        $SQL .= " WHERE mediaID = $mediaid ";
 
774
                        $SQL =  "UPDATE media SET name = '%s', duration = %d, permissionID = %d";
 
775
                        $SQL .= " WHERE mediaID = %d ";
 
776
                        $SQL = sprintf($SQL, $db->escape_string($name), $duration, $permissionid, $mediaid);
 
777
                        
 
778
                        Debug::LogEntry($db, 'audit', $SQL);
776
779
        
777
780
                        if (!$db->query($SQL))
778
781
                        {