Changeset 41628 for trunk/src/wp-admin/includes/class-wp-importer.php

Timestamp:

09/28/2017 04:31:05 AM (7 years ago)

Author:

pento

Message:

Database: Don't quote placeholders in queries going through $wpdb->prepare()

To bring Core into line with the changes to $wpdb->prepare() in WordPress 4.8.2, query placeholders shouldn't be quoted.

Props jrf, johnjamesjacoby.
Fixes #41983.

File:

• trunk/src/wp-admin/includes/class-wp-importer.php (modified) (1 diff)

trunk/src/wp-admin/includes/class-wp-importer.php

@@ -30 +30 @@
         do {
             $meta_key = $importer_name . '_' . $bid . '_permalink';
-            $sql = $wpdb->prepare( "SELECT post_id, meta_value FROM $wpdb->postmeta WHERE meta_key = '%s' LIMIT %d,%d", $meta_key, $offset, $limit );
+            $sql = $wpdb->prepare( "SELECT post_id, meta_value FROM $wpdb->postmeta WHERE meta_key = %s LIMIT %d,%d", $meta_key, $offset, $limit );
             $results = $wpdb->get_results( $sql );