Changeset 33455

Timestamp:

07/28/2015 06:31:39 AM (10 years ago)

Author:

pento

Message:

WPDB: When checking the encoding of strings against the database, make sure we're only relying on the return value of strings that were sent to the database. Also make sure that we're not trying to sanity check strings that've been marked as not needing sanity checking.

Fixes #32279.

File:

• trunk/src/wp-includes/wp-db.php (modified) (5 diffs)

trunk/src/wp-includes/wp-db.php

@@ -2113 +2113 @@
         $this->func_call = "\$db->get_var(\"$query\", $x, $y)";
 
-        if ( $this->check_safe_collation( $query ) ) {
+        if ( $this->check_current_query && $this->check_safe_collation( $query ) ) {
             $this->check_current_query = false;
         }
@@ -2148 +2148 @@
         $this->func_call = "\$db->get_row(\"$query\",$output,$y)";
 
-        if ( $this->check_safe_collation( $query ) ) {
+        if ( $this->check_current_query && $this->check_safe_collation( $query ) ) {
             $this->check_current_query = false;
         }
@@ -2189 +2189 @@
      */
     public function get_col( $query = null , $x = 0 ) {
-        if ( $this->check_safe_collation( $query ) ) {
+        if ( $this->check_current_query && $this->check_safe_collation( $query ) ) {
             $this->check_current_query = false;
         }
@@ -2223 +2223 @@
         $this->func_call = "\$db->get_results(\"$query\", $output)";
 
-        if ( $this->check_safe_collation( $query ) ) {
+        if ( $this->check_current_query && $this->check_safe_collation( $query ) ) {
             $this->check_current_query = false;
         }
@@ -2749 +2749 @@
 
             foreach ( array_keys( $data ) as $column ) {
-                $data[ $column ]['value'] = $row["x_$column"];
+                if ( isset( $row["x_$column"] ) ) {
+                    $data[ $column ]['value'] = $row["x_$column"];
+                }
             }
         }