From 2af58c77572fbc32c1c617764ebdd0252be24292 Mon Sep 17 00:00:00 2001
From: Marius Cramer <m.cramer@pixcept.de>
Date: Tue, 14 Apr 2015 12:54:42 -0400
Subject: [PATCH] - finished rewriting of sql statements

---
 interface/lib/classes/remote.d/client.inc.php |    2 --
 1 files changed, 0 insertions(+), 2 deletions(-)

diff --git a/interface/lib/classes/remote.d/client.inc.php b/interface/lib/classes/remote.d/client.inc.php
index f0c7b8f..2fb4363 100644
--- a/interface/lib/classes/remote.d/client.inc.php
+++ b/interface/lib/classes/remote.d/client.inc.php
@@ -468,7 +468,6 @@
 			throw new SoapFault('permission_denied', 'You do not have the permissions to access this function.');
 			return false;
 		}
-		$username = $app->db->quote($username);
 		$rec = $app->db->queryOneRecord("SELECT * FROM sys_user WHERE username = ?", $username);
 		if (isset($rec)) {
 			return $rec;
@@ -519,7 +518,6 @@
 		$client_id = $app->functions->intval($client_id);
 		$client = $app->db->queryOneRecord("SELECT client_id FROM client WHERE client_id = ?", $client_id);
 		if($client['client_id'] > 0) {
-			$new_password = $app->db->quote($new_password);
 			$sql = "UPDATE client SET password = md5(?) 	WHERE client_id = ?";
 			$app->db->query($sql, $new_password, $client_id);
 			$sql = "UPDATE sys_user SET passwort = md5(?) 	WHERE client_id = ?";

--
Gitblit v1.9.1