use raw db queries wherever query items could contain '%'

2025-04-23 23:10:10 +00:00 · 2010-11-09 15:11:47 -08:00 · 2010-11-09 15:11:47 -08:00 · f7c0480f1b
commit f7c0480f1b
parent c50f491c3d
4 changed files with 13 additions and 3 deletions
--- a/include/dba.php
+++ b/include/dba.php
@ -134,6 +134,16 @@ function q($sql) {
 	return $ret;
 }}

+// raw db query, no arguments
+
+if(! function_exists('dbq')) { 
+function dbq($sql) {
+
+	global $db;
+	$ret = $db->q($sql);
+	return $ret;
+}}
+

 // Caller is responsible for ensuring that any integer arguments to 
 // dbesc_array are actually integers and not malformed strings containing