- File:
-
- 1 edited
-
branches/3.1/wp-includes/taxonomy.php (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
branches/3.1/wp-includes/taxonomy.php
r17527 r18021 1256 1256 } 1257 1257 1258 if ( !empty($name__like) ) 1259 $where .= " AND t.name LIKE '" . like_escape( $name__like ) . "%'"; 1258 if ( !empty($name__like) ) { 1259 $name__like = like_escape( $name__like ); 1260 $where .= $wpdb->prepare( " AND t.name LIKE %s", $name__like . '%' ); 1261 } 1260 1262 1261 1263 if ( '' !== $parent ) { … … 1279 1281 if ( !empty($search) ) { 1280 1282 $search = like_escape($search); 1281 $where .= " AND (t.name LIKE '%$search%')";1283 $where .= $wpdb->prepare( " AND (t.name LIKE %s)", '%' . $search . '%'); 1282 1284 } 1283 1285
Note: See TracChangeset
for help on using the changeset viewer.