Index: fix.php
===================================================================
RCS file: /repository/php-bugs-web/fix.php,v
retrieving revision 1.19
diff -u -r1.19 fix.php
--- fix.php	8 May 2005 16:04:08 -0000	1.19
+++ fix.php	1 Nov 2005 11:04:25 -0000
@@ -97,7 +97,7 @@
 } else {
   $qftext = $RESOLVE_REASONS[$r]['message'];
 }
-$ncomment = $qftext . (!empty($ncomment) ? "\n\n".$ncomment : "");
+$ncomment = addslashes($qftext) . (!empty($ncomment) ? "\n\n".$ncomment : "");
 
 /* if the already has the status of the resolution, bounce over to the
    main bug form. it will show the appropriate error message. */
@@ -111,7 +111,7 @@
 		
 /* add comment */
 if ($success && !empty($ncomment)) {
-  $query = "INSERT INTO bugdb_comments (bug, email, ts, comment) VALUES ($id,'$user@php.net',NOW(),'".addslashes($ncomment)."')";
+  $query = "INSERT INTO bugdb_comments (bug, email, ts, comment) VALUES ($id,'$user@php.net',NOW(),'$ncomment')";
   $success = @mysql_query($query);
 }
 
Index: search.php
===================================================================
RCS file: /repository/php-bugs-web/search.php,v
retrieving revision 1.62
diff -u -r1.62 search.php
--- search.php	1 Sep 2005 14:05:25 -0000	1.62
+++ search.php	1 Nov 2005 11:04:23 -0000
@@ -59,7 +59,7 @@
 	}
 
 	if (strlen($search_for)) {
-		list($sql_search, $ignored) = format_search_string($search_for);
+		list($sql_search, $ignored) = format_search_string(stripslashes($search_for));
 		$where_clause .= $sql_search;
 		if (count($ignored) > 0 ) {
 			array_push($warnings, "The following words were ignored: " . htmlentities(implode(', ', array_unique($ignored))));
Index: rss/search.php
===================================================================
RCS file: /repository/php-bugs-web/rss/search.php,v
retrieving revision 1.3
diff -u -r1.3 search.php
--- rss/search.php	1 Sep 2004 17:07:49 -0000	1.3
+++ rss/search.php	1 Nov 2005 11:04:23 -0000
@@ -69,7 +69,7 @@
 }
 
 if (isset($_REQUEST['search_for']) && (strlen($_REQUEST['search_for']) > 0)) {
-	list($sql_search, $ignored) = format_search_string($_REQUEST['search_for']);
+	list($sql_search, $ignored) = format_search_string(stripslashes($_REQUEST['search_for']));
 	$query .= $sql_search;
 	if (count($ignored) > 0) {
 		$warnings[] = "The following words were ignored: " . implode(', ', array_unique($ignored));