Database error when a member uses an apostrophe ' in the "Location where we met" box.
A database error is triggered when a member uses an apostrophe causing the action to not log into the database. This may be caused because the ' was not escaped. The following error is produced:
Query:
INSERT INTO `modzzz_handshake_main` SET `member_id` = '11', `handshake_id` = '3', `meeting_date` = '1142150400', `location` = 'I've met with him before and here. ', `code`='EP78BDORXW2441CR', `created` = 1486930340, `updated`=1486930340, `status`='pending'
Mysql error: You have an error in your SQL syntax; check the manual that corresponds to your MariaDB server version for the right syntax to use near 've met with him before and here. ', `code`='EP78BDORXW2441CR', `created` = 14869' at line 1
Found error in the file '/home/hypnosis/public_html/modules/modzzz/handshake/classes/BxHandshakeDb.php' at line 101.
Called 'query' function with erroneous argument #0.
Debug backtrace:
Array
(
[1] => Array
(
[file] => /home/[REDACTED]/public_html/inc/classes/BxDolDb.php
[line] => 246
[function] => error
[class] => BxDolDb
[object] => BxHandshakeDb Object
(
[_oConfig] => BxHandshakeConfig Object
(
[_sSealPath] => /home/[REDACTED]/public_html/modules/modzzz/handshake/media/images/
[_sSealUrl] => https://[REDACTED]/modules/modzzz/handshake/media/images/
[_iId] => 34
[_sVendor] => Modzzz
[_sClassPrefix] => BxHandshake
[_sDbPrefix] => modzzz_handshake_
[_sDirectory] => modzzz/handshake/