[buddypress-trac] [BuddyPress] #5100: $wpdb->escape() deprecated in WordPress 3.6.

buddypress-trac noreply at wordpress.org
Mon Aug 5 14:42:17 UTC 2013

#5100: $wpdb->escape() deprecated in WordPress 3.6.
 Reporter:  johnjamesjacoby  |       Owner:  boonebgorges
     Type:  defect (bug)     |      Status:  closed
 Priority:  highest          |   Milestone:  1.8.1
Component:  Core             |     Version:  1.5
 Severity:  normal           |  Resolution:  fixed
 Keywords:  has-patch        |

Comment (by boonebgorges):

 In [changeset:"7338"]:
 #!CommitTicketReference repository="" revision="7338"
 Use esc_sql() instead of $wpdb->escape() throughout

 WordPress 3.6 deprecated the use of $wpdb->escape() for sanitizing SQL
 query fragments, in favor of the rewritten esc_sql(). This changeset
 makes the appropriate changes throughout BuddyPress.

 In a few places, this changeset also removes redundant sanitization, in
 particular when using wp_parse_id_list().

 Also adds a unit test for a touched method (BP_User_Query, when using
 the 'exclude' parameter).

 Fixes #5100

 Props needle

Ticket URL: <https://buddypress.trac.wordpress.org/ticket/5100#comment:5>
BuddyPress <http://buddypress.org/>

More information about the buddypress-trac mailing list