Update pdo_db::escape() to accept an array

mrtorrent · Nov 13, 2011 · 1a72bac · 1a72bac
1 parent 1981d1f
commit 1a72bac
Showing 1 changed file with 14 additions and 3 deletions.
diff --git a/pdo/db.php b/pdo/db.php
@@ -110,11 +110,22 @@ function createDBObject(){
 	 *	similarly, using mysql_escape_string() (which you would think would be logical) screws things up to.
 	 *	basically does not honour line terminators.
 	 *
-	 *	@param $string	string	the variable to be escaped
+	 * @param string|array $data to escape
 	 *	@return	string	escaped variable
 	 */
-	function escape($string) {
-		return addslashes($string);
+	function escape($data) {
+		if (is_array($data)) {
+			foreach ($data as $k => $v) {
+				if (is_array($v))
+					$data[$k] = $this->escape($v);
+				else
+					$data[$k] = addslashes($v);
+			}
+		} else {
+			$data = addslashes($data);
+		}
+
+		return $data;
 	}
 
 	/**