Uploaded image for project: 'Moodle'
  1. Moodle
  2. MDL-64003

Messaging: Use sql_like_escape() to escape the search string in message_search_users()

    XMLWordPrintable

    Details

    • Type: Bug
    • Status: Closed
    • Priority: Minor
    • Resolution: Fixed
    • Affects Version/s: 3.6
    • Fix Version/s: 3.6.2
    • Component/s: Messages
    • Labels:

      Description

      Currently, you can use the special chars, like % and _ in the search, and we shouldn't be able to do this.

        Attachments

          Activity

            People

            • Votes:
              0 Vote for this issue
              Watchers:
              5 Start watching this issue

              Dates

              • Created:
                Updated:
                Resolved:
                Fix Release Date:
                14/Jan/19

                Time Tracking

                Estimated:
                Original Estimate - 0 minutes
                0m
                Remaining:
                Remaining Estimate - 0 minutes
                0m
                Logged:
                Time Spent - 20 minutes
                20m