Piwigo · daniele-athome · Jan 2, 2017
diff --git a/include/dblayer/functions_mysqli.inc.php b/include/dblayer/functions_mysqli.inc.php
@@ -311,7 +311,7 @@ function mass_updates($tablename, $dbfields, $datas, $flags=0)
 
         if (isset($data[$key]) and $data[$key] != '')
         {
-          $query.= $separator.$key.' = \''.$data[$key].'\'';
+          $query.= $separator.$key.' = \''.pwg_db_real_escape_string($data[$key]).'\'';
         }
         else
         {
@@ -338,7 +338,7 @@ function mass_updates($tablename, $dbfields, $datas, $flags=0)
           }
           if (isset($data[$key]))
           {
-            $query.= $key.' = \''.$data[$key].'\'';
+            $query.= $key.' = \''.pwg_db_real_escape_string($data[$key]).'\'';
           }
           else
           {
@@ -453,7 +453,7 @@ function single_update($tablename, $datas, $where, $flags=0)
 
     if (isset($value) and $value !== '')
     {
-      $query.= $separator.$key.' = \''.$value.'\'';
+      $query.= $separator.$key.' = \''.pwg_db_real_escape_string($value).'\'';
     }
     else
     {
@@ -481,7 +481,7 @@ function single_update($tablename, $datas, $where, $flags=0)
       }
       if (isset($value))
       {
-        $query.= $key.' = \''.$value.'\'';
+        $query.= $key.' = \''.pwg_db_real_escape_string($value).'\'';
       }
       else
       {
@@ -556,7 +556,7 @@ function mass_inserts($table_name, $dbfields, $datas, $options=array())
         }
         else
         {
-          $query .= "'".$insert[$dbfield]."'";
+          $query .= "'".pwg_db_real_escape_string($insert[$dbfield])."'";
         }
       }
       $query .= ')';
@@ -600,7 +600,7 @@ function single_insert($table_name, $data)
       }
       else
       {
-        $query .= "'".$value."'";
+        $query .= "'".pwg_db_real_escape_string($value)."'";
       }
     }
     $query .= ')';