From 620df024f3d8960a89eb4ed71d3ea61e2b9aa3db Mon Sep 17 00:00:00 2001
From: quentusrex <quentusrex@ispconfig3>
Date: Thu, 30 Oct 2008 13:59:40 -0400
Subject: [PATCH] Now a client can view e-mail filters created by admin, but the client can't edit them. The client can submit a change, but it isn't input in the database, nor is the client told that the changes aren't made.

---
 install/lib/mysql.lib.php |    3 ++-
 1 files changed, 2 insertions(+), 1 deletions(-)

diff --git a/install/lib/mysql.lib.php b/install/lib/mysql.lib.php
index b930bba..e24fcc6 100644
--- a/install/lib/mysql.lib.php
+++ b/install/lib/mysql.lib.php
@@ -171,7 +171,7 @@
 		// Check der variablen
         function quote($formfield)
         {
-            return addslashes($formfield);
+            return mysql_real_escape_string($formfield);
         }
 		
 		// Check der variablen
@@ -356,6 +356,7 @@
                 $database_name = $this->dbName;
             }
             $result = mysql_query("SHOW TABLES FROM `$database_name`");
+            $tb_names = array();
             for ($i = 0; $i < mysql_num_rows($result); $i++) {
                 $tb_names[$i] = mysql_tablename($result, $i);
             }

--
Gitblit v1.9.1