diff --git a/logs.php b/logs.php index 40b6170a..459e6ea6 100644 --- a/logs.php +++ b/logs.php @@ -135,7 +135,7 @@ $num_rows = mysqli_fetch_row(mysqli_query($mysqli,"SELECT FOUND_ROWS()"));
- +
"> diff --git a/post.php b/post.php index 7ca63de0..da65492b 100644 --- a/post.php +++ b/post.php @@ -251,7 +251,7 @@ if(isset($_POST['edit_profile'])){ if(isset($_POST['edit_user_companies'])){ $user_id = intval($_POST['user_id']); - $companies = $_POST['companies']; + $companies = mysqli_real_escape_string($_POST['companies']); //Turn the Array into a string with , seperation $companies_imploded = implode(",",$companies); @@ -270,7 +270,7 @@ if(isset($_POST['edit_user_companies'])){ if(isset($_POST['edit_user_clients'])){ $user_id = intval($_POST['user_id']); - $clients = $_POST['clients']; + $clients = mysqli_real_escape_string($_POST['clients']); //Turn the Array into a string with , seperation $clients_imploded = implode(",",$clients);
Timestamp