summaryrefslogtreecommitdiff
path: root/www/functions/func_folder.php
diff options
context:
space:
mode:
Diffstat (limited to 'www/functions/func_folder.php')
-rw-r--r--www/functions/func_folder.php4
1 files changed, 2 insertions, 2 deletions
diff --git a/www/functions/func_folder.php b/www/functions/func_folder.php
index 145f14a..376cdd6 100644
--- a/www/functions/func_folder.php
+++ b/www/functions/func_folder.php
@@ -10,7 +10,7 @@ function create_folder($path, $new_folder_name, $share){
$file_id = select_file_id($db, $_SESSION["userid"], $path);
- $owner_db = $db->query("SELECT owner FROM files WHERE id=" . SQLite3::escapeString('$file_id') . ";");
+ $owner_db = $db->query("SELECT owner FROM files WHERE id=" . SQLite3::escapeString($file_id) . ";");
$owner_ar = $owner_db->fetchArray(SQLITE3_NUM);
if($owner_ar[0] != $_SESSION["userid"]){
@@ -19,7 +19,7 @@ function create_folder($path, $new_folder_name, $share){
if($db->exec("
BEGIN TRANSACTION;
- INSERT INTO files (id, parent, owner, name, folder, size, share, hash) VALUES (Null, " . $file_id . ", " . $_SESSION['userid'] . ", " . SQLite3::escapeString('$new_folder_name') . ", 'DIRECTORY', 0, " . SQLite3::escapeString('$share') . ", '');
+ INSERT INTO files (id, parent, owner, name, folder, size, share, hash) VALUES (Null, " . $file_id . ", " . $_SESSION['userid'] . ", '" . SQLite3::escapeString($new_folder_name) . "', 'DIRECTORY', 0, '" . SQLite3::escapeString($share) . "', '');
COMMIT;
")){
return MKDIR_SUCCESS;