Opis
Ovaj dodatak je zatvoren od 07. ožujka 2024. i nije dostupan za preuzimanje. Ovo zatvaranje je privremeno, puna recenzija u tijeku.
Recenzije
27. travnja 2017.
1 odgovor
In database query inside a plugin file is not as per the standard WordPress queries.
In file "\eg-attachments\inc\eg-attachments-public.inc.php" there is a function "record_click". In this function author is using below query:
$sql = $wpdb->prepare('SELECT click_id,clicks_number FROM wp_eg_attachments_clicks WHERE click_date=CURRENT_DATE() AND attach_id=%d AND post_id=%d',
$attach_id, $parent_id);
Just look at the query, author is using “wp_eg_attachments_clicks” for a table. Here table prefix for that table is “wp_” which is not dynamic. Author should use something like below:
$sql = $wpdb->prepare('SELECT click_id,clicks_number FROM '.$wpdb->prefix.'eg_attachments_clicks WHERE click_date=CURRENT_DATE() AND attach_id=%d AND post_id=%d',
$attach_id, $parent_id);
In place of "wp_" we should always use "$wpdb->prefix" in our queries so that our query will not break even change of table prefix by the user from wp-config.php file.
Request to author, please update it in your next release.
Thanks,
Sunil Chaudhary
Suradnici i Programeri
“EG-Attachments” je softver otvorenog koda. Sljedeće osobe su doprinijele ovom dodatku.
SuradniciPrevedite “EG-Attachments” na svoj jezik.
Zainteresirani ste za razvoj?
Pregledajte kôd, pogledajte SVN spremišteili se pretplatite na dnevnik razvoja od RSS.