mysql_real_escape_string

This topic contains 1 reply, has 2 voices, and was last updated by  Stiofan O’Connor 9 years, 10 months ago.

We have moved to a support ticketing system and our forums are now closed.

Open Support Ticket
  • Author
    Posts
  • June 26, 2014 at 3:41 pm #6269

    physicaltherapistcom
    Full Member
    Post count: 35

    mysql_real_escape_string is used several times within the files:
    geodirectory/geodirectory-functions/map-functions/get_markers.php
    geodirectory/geodirectory-functions/signup_function.php
    geodirectory/geodirectory-functions/listing_filters.php
    geodir_location_manager/geodir_location_functions.php

    If you are on php 5.5 or above WordPress uses mysqli by default so mysql_real_escape_string will throw a warning and return false. This can lead to incorrect functionality.

    mysql_real_escape_string has been marked deprecated as of 5.5.

    June 26, 2014 at 4:03 pm #6272

    Stiofan O’Connor
    Site Admin
    Post count: 22956

    Yes thanks for spotting, not sure why these were here as we now escape everything with wpdb prepare, i have removed them all and fix will be in the next version in a few hours.

    Thanks again.

    Stiofan

  • Author
    Posts
Viewing 2 posts - 1 through 2 (of 2 total)

We have moved to a support ticketing system and our forums are now closed.

Open Support Ticket