diff options
| -rwxr-xr-x | mat | 3 |
1 files changed, 2 insertions, 1 deletions
@@ -304,7 +304,8 @@ sub cmd_addrecipe { $db->do($sql); } - $sql = "SELECT id FROM recipes WHERE name='$recipe_name' AND uri='$uri';"; + $sql = "SELECT id FROM recipes WHERE name=".$db->quote($recipe_name). + " AND uri=".$db->quote($uri).";"; my @recipe_id = $db->selectrow_array($sql); return interactive_edit_recipe_ingredients($recipe_id[0]); } |