Re: [RCD] Handling invalid address book entries

17 Oct 2008


      Dennis P. Nikolaenko wrote:
...
Err, that is not MySQL driver specific, actually.
In _skipDelimitedStrings() I get for $query when saving my identity:
SET name='Dennis P. Nikolaenko', email='dennis@nikolaenko.ru', 
organization='foo'', reply-to='', bcc='', standard='1', 
signature='Regards,\r\nDennis P. Nikolaenko', html_signature=0
      WHERE  identity_id=?
      AND    user_id=?
      AND    del<>1
This is legal SQL. But _skipDelimitedStrings() essentially counts ' to 
get the idea where strings start and end. It does not handle the case 
when string contains embedded '
I thought it was fixed in MDB2 package, see 
http://trac.roundcube.net/log/trunk/roundcubemail/program/lib/MDB2.php
-- 
Aleksander 'A.L.E.C' Machniak http://alec.pl gg:2275252
LAN Management System Developer http://lms.org.pl
Roundcube Webmail Project Developer http://roundcube.net
_______________________________________________
List info: http://lists.roundcube.net/dev/

2024

2023

2022

2021

2020

2019

2018

2017

2016

2015

2014

2013

2012

2011

2010

2009

2008

2007

2006

2005

Re: [RCD] Handling invalid address book entries