continue;
}
+ $word = str_replace("'", "\'", $word);
if ($bugsys->in['mode'] == MODE_ALL)
{
$querybuild['text'] .= " +$word";
}
else if ($field['type'] == 'input_text')
{
- $querybuild[] = "AND bug.custom$field[fieldid] LIKE '%" . $bugsys->in["custom$field[fieldid]"] . "%'";
+ $like = str_replace("'", "\'", $bugsys->in["custom$field[fieldid]"]);
+ $querybuild[] = "AND bug.custom$field[fieldid] LIKE '%$like%'";
}
else if ($field['type'] == 'select_single' AND $bugsys->in["custom$field[fieldid]"] != -1)
{