Changeset 1470 for release-branches/0.5.4/gregarius/author.php
- Timestamp:
- 05/15/06 16:53:07 (3 years ago)
- Files:
-
- 1 modified
-
release-branches/0.5.4/gregarius/author.php (modified) (2 diffs)
Legend:
- Unmodified
- Added
- Removed
-
release-branches/0.5.4/gregarius/author.php
r1190 r1470 28 28 require_once ('init.php'); 29 29 30 $a = preg_replace("/[^A-Za-z0-9\.]/","%",rss_real_escape_string($_REQUEST['author'])); 31 30 $a =trim(sanitize($_REQUEST['author'], RSS_SANITIZER_WORDS)); 32 31 list ($ra) = rss_fetch_row(rss_query( 33 32 "select distinct(author) from " .getTable('item') 34 ." where author like ' %$a%'"33 ." where author like '$a'" 35 34 )); 36 35 37 36 if (!$ra) { 38 rss_redirect(); 37 rss_404(); 38 exit; 39 39 } 40 40 … … 43 43 $GLOBALS['rss']->feedList = new FeedList(false); 44 44 $authorItems = new ItemList(); 45 $sqlWhere = " i.author like '%$a%' "; 46 $authorItems->populate($sqlWhere); 45 $sqlWhere = " i.author like '$a' "; 46 $numItems = getConfig('rss.output.frontpage.numitems'); 47 $authorItems->populate($sqlWhere, "", 0, $numItems); 47 48 $authorItems->setTitle($t); 48 49 $authorItems->setRenderOptions(IL_NO_COLLAPSE|IL_TITLE_NO_ESCAPE);
