Early Bird Registration for DrupalCon Portland 2024 is open! Register by 23:59 PST on 31 March 2024, to get $100 off your ticket.
views_handler_arg_nodetype() ends up calling db_escape_string() twice when filtering. Apparently, that's because add_where() didn't used to support placeholders. See attached patch.
Comment | File | Size | Author |
---|---|---|---|
views_handler_arg_nodetype_extra_db_escape.patch | 775 bytes | dww | |
Comments
Comment #1
esmerel CreditAttribution: esmerel commentedAt this time, only security fixes will be made to the 5.x version of Views.