aboutsummaryrefslogtreecommitdiff
path: root/mod/search/start.php
diff options
context:
space:
mode:
Diffstat (limited to 'mod/search/start.php')
-rw-r--r--mod/search/start.php3
1 files changed, 3 insertions, 0 deletions
diff --git a/mod/search/start.php b/mod/search/start.php
index 02f7da494..aa76c13b2 100644
--- a/mod/search/start.php
+++ b/mod/search/start.php
@@ -334,6 +334,7 @@ function search_get_where_sql($table, $fields, $params) {
// switch to literal mode
if (strlen($query) < $CONFIG->search_info['min_chars']) {
$likes = array();
+ $query = sanitise_string($query);
foreach ($fields as $field) {
$likes[] = "$field LIKE '%$query%'";
}
@@ -352,6 +353,8 @@ function search_get_where_sql($table, $fields, $params) {
if (strlen($query) < 6) {
//$options .= ' WITH QUERY EXPANSION';
}
+ $query = sanitise_string($query);
+
// if query is shorter than the ft_min_word_len switch to literal mode.
$fields_str = implode(',', $fields);
//$where = "($table.guid = e.guid AND (MATCH ($fields_str) AGAINST ('$query' $options)))";
generated by cgit v1.2.3 (git 2.39.1) at 2024-11-26 06:54:30 +0000