From 0b92839bee80fc2ba6ea67be1e48d176c0d242bc Mon Sep 17 00:00:00 2001
From: swiergot <swiergot>
Date: Thu, 20 Sep 2007 15:33:04 +0000
Subject: - Applied a patch from Loui to fix session removal. - Replaced all
 occurences of mysql_escape_string()   with mysql_real_escape_string().

---
 web/html/logout.php | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

(limited to 'web/html/logout.php')

diff --git a/web/html/logout.php b/web/html/logout.php
index dac7831..be4027f 100644
--- a/web/html/logout.php
+++ b/web/html/logout.php
@@ -11,9 +11,9 @@ set_lang();                 # this sets up the visitor's language
 # sending any HTML output.
 #
 if (isset($_COOKIE["AURSID"])) {
-	$q = "DELETE FROM Sessions WHERE SessionID = '";
-	$q.= mysql_escape_string($_COOKIE["AURSID"]) . "'";
 	$dbh = db_connect();
+	$q = "DELETE FROM Sessions WHERE SessionID = '";
+	$q.= mysql_real_escape_string($_COOKIE["AURSID"]) . "'";
 	db_query($q, $dbh);
 	setcookie("AURSID", "", time() - (60*60*24*30), "/");
 	setcookie("AURLANG", "", time() - (60*60*24*30), "/");
-- 
cgit v1.2.3-54-g00ecf