SQL Errors from templates • BuddyBoss

Tagged: sql, sql errors, templates

This topic has 4 replies, 2 contibutors, and was last updated 8 years ago by Varun Dubey.

Viewing 5 posts - 1 through 5 (of 5 total)

Question
April 13, 2016 at 8:13 pm #68175

Karen Thomas
@conscious-crafties
Hello,
Ben from WCVendors has informed me I have lots of SQL errors on my site. He has asked me to tell you to download https://www.consciouscrafties.com/sm.txt so you can view the errors your templates are generating and fix them.
Please can you confirm you are going to fix these please?
Thank you,
Karen
Answers
April 14, 2016 at 11:41 pm #68356

Varun Dubey
@vapvarun
Hi @conscious-crafties,
Thanks for your input, I have notified developers on high priority to fix them.
Regards
Varun Dubey
April 19, 2016 at 5:58 am #68905
Varun Dubey
@vapvarun
Hi @conscious-crafties, It seems it was WC vendor issue.
WCVendors PRO use this syntax:
```
    $feedback = $wpdb->get_results(
        "
        SELECT * FROM $table_name
        WHERE order_id = $order_id
        "
    ); 
```
its not safe syntax.
This is better:
```
$feedback = $wpdb->get_results( $wpdb->prepare(
"
SELECT * FROM %s
WHERE order_id = %s
",
$table_name,
$order_id
) );
```
We will notifiy them to get fixed in coming updates.
Regards
Varun Dubey
April 21, 2016 at 10:57 pm #69248

Karen Thomas
@conscious-crafties
OK thanks @vapvarun 🙂
April 21, 2016 at 11:29 pm #69255

Varun Dubey
@vapvarun
I will close this thread, Feel free create new topic for any further concern.
Regards
Varun Dubey

Viewing 5 posts - 1 through 5 (of 5 total)

The question ‘SQL Errors from templates’ is closed to new replies.

<iframe src="https://www.googletagmanager.com/ns.html?id=GTM-NB2BV5J" height="0" width="0" style="display:none;visibility:hidden"></iframe>

Not recently active