Support » Plugin: Cyr to Lat enhanced » Unesacaped var in SELECT

  • In line 69

    $term = $is_term ? $wpdb->get_var("SELECT slug FROM {$wpdb->terms} WHERE name = '$title'") : '';
    

    $title is not esacped
    So I got “You have an error in your SQL syntax;” on title with the apostrophe.

  • The topic ‘Unesacaped var in SELECT’ is closed to new replies.