# HG changeset patch
# User Dan
# Date 1232129583 18000
# Node ID 7664d7d38a4a7876655bb7471067b8b60f3a596d
# Parent  3fe11491f512aa6f9d7029ae9b7c53b468906c4b
Whoops! Fixed an SQL injection vulnerability in the CLI installer. (Not like it's a huge deal because the vulnerability was only introduced last commit and if you make it to that stage you already know the database password)

diff -r 3fe11491f512 -r 7664d7d38a4a install/includes/cli-core.php
--- a/install/includes/cli-core.php	Wed Jan 14 23:29:14 2009 -0500
+++ b/install/includes/cli-core.php	Fri Jan 16 13:13:03 2009 -0500
@@ -456,9 +456,9 @@
 
 $vars = array(
     'TABLE_PREFIX'         => table_prefix,
-    'SITE_NAME'            => $sitename,
-    'SITE_DESC'            => $sitedesc,
-    'COPYRIGHT'            => $copyright,
+    'SITE_NAME'            => $db->escape($sitename),
+    'SITE_DESC'            => $db->escape($sitedesc),
+    'COPYRIGHT'            => $db->escape($copyright),
     'WIKI_MODE'            => '0',
     'ENABLE_CACHE'         => ( is_writable( ENANO_ROOT . '/cache/' ) ? '1' : '0' ),
     'VERSION'              => installer_enano_version(),