From 318418b0f266998895f88e9fcbcd3873a518c4b5 Mon Sep 17 00:00:00 2001
From: Meik Sievertsen <acydburn@phpbb.com>
Date: Sat, 23 Jun 2007 12:16:20 +0000
Subject: new wrapper for LIKE expressions to streamline the fixes. We actually
 need to adjust them for different DBMS as well as SQLite2 not supporting
 escaping characters in LIKE statements (which is a reason why we think about
 dropping sqlite support completely).

git-svn-id: file:///svn/phpbb/trunk@7788 89ea8834-ac86-4346-8a33-228a782c2dd0
---
 phpBB/includes/template.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

(limited to 'phpBB/includes/template.php')

diff --git a/phpBB/includes/template.php b/phpBB/includes/template.php
index 3326852ee7..9a4d259df2 100644
--- a/phpBB/includes/template.php
+++ b/phpBB/includes/template.php
@@ -226,7 +226,7 @@ class template
 				FROM ' . STYLES_TEMPLATE_DATA_TABLE . '
 				WHERE template_id = ' . $user->theme['template_id'] . "
 					AND (template_filename = '" . $db->sql_escape($this->filename[$handle]) . "'
-						OR template_included LIKE '%" . $db->sql_escape($this->filename[$handle]) . ":%')";
+						OR template_included " . $db->sql_like_expression('%' . $this->filename[$handle] . ':%') . ')';
 			$result = $db->sql_query($sql);
 			$row = $db->sql_fetchrow($result);
 
-- 
cgit v1.2.1