[ros-diffs] [cfinck] 36555: $rdf_uri_2 is used later again for getting the full profile, so already decode it at the beginning and not just for one call

[cfinck at svn.reactos.org]

Author: cfinck
Date: Sat Sep 27 13:56:33 2008
New Revision: 36555

URL: http://svn.reactos.org/svn/reactos?rev=36555&view=rev
Log:
$rdf_uri_2 is used later again for getting the full profile, so already decode it at the beginning and not just for one call

Modified:
    trunk/web/reactos.org/htdocs/roscms/logon/user_profil_public.php

Modified: trunk/web/reactos.org/htdocs/roscms/logon/user_profil_public.php
URL: http://svn.reactos.org/svn/reactos/trunk/web/reactos.org/htdocs/roscms/logon/user_profil_public.php?rev=36555&r1=36554&r2=36555&view=diff
==============================================================================
--- trunk/web/reactos.org/htdocs/roscms/logon/user_profil_public.php [iso-8859-1] (original)
+++ trunk/web/reactos.org/htdocs/roscms/logon/user_profil_public.php [iso-8859-1] Sat Sep 27 13:56:33 2008
@@ -55,12 +55,13 @@
 	
 	}
 	else {
-	
+		$rdf_uri_2 = rawurldecode($rdf_uri_2);
+		
 		$sql_user_profil = "SELECT user_id, user_name, user_register, user_fullname, user_email, user_email_activation, user_website, 
 								user_country, user_timezone, user_occupation, user_setting_multisession, 
 								user_setting_browseragent, user_setting_ipaddress, user_setting_timeout  
 							FROM users 
-							WHERE user_name = '".mysql_real_escape_string(rawurldecode($rdf_uri_2))."'
+							WHERE user_name = '".mysql_real_escape_string($rdf_uri_2)."'
 							LIMIT 1;";
 		$query_user_profil = mysql_query($sql_user_profil);
 		$result_user_profil = mysql_fetch_array($query_user_profil);