Autres/Rivendellaudio
1
0
Fork 0
mirror of https://github.com/ElvishArtisan/rivendell.git synced 2025-11-26 15:20:29 +01:00
Code Issues Projects Releases Wiki Activity

2021-04-19 Fred Gleason <fredg@paravelsystems.com>

Browse Source 
* Escaped all SQL identifiers in 'rdairplay/'.
	* Replaced " with ' delimiters in all SQL literal strings in
	'rdairplay/'.

Signed-off-by: Fred Gleason <fredg@paravelsystems.com>
This commit is contained in:
Fred Gleason
2021-04-19 18:44:14 -04:00
parent a1ce33e344
commit 3e0c293c09
3 changed files with 10 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files

8
rdairplay/rdairplay.cpp
View File

@@ -835,8 +835,8 @@ void MainWidget::ripcConnectedData(bool state)
}
}
if(!air_start_logname[i].isEmpty()) {
sql=QString("select NAME from LOGS where ")+
"NAME=\""+RDEscapeString(air_start_logname[i])+"\"";
sql=QString("select `NAME` from `LOGS` where ")+
"`NAME`='"+RDEscapeString(air_start_logname[i])+"'";
q=new RDSqlQuery(sql);
if(q->first()) {
rml.clear();
@@ -2180,8 +2180,8 @@ void MainWidget::SetActionMode(StartButton::Mode mode)
}
}
if(svc_quan==0) {
sql=QString("select SERVICE_NAME from SERVICE_PERMS where ")+
"STATION_NAME=\""+RDEscapeString(rda->station()->name())+"\"";
sql=QString("select `SERVICE_NAME` from `SERVICE_PERMS` where ")+
"`STATION_NAME`='"+RDEscapeString(rda->station()->name())+"'";
q=new RDSqlQuery(sql);
while(q->next()) {
services_list.append( q->value(0).toString() );