From 5a05bc1a5b02a9829f9e23578350f8639edf32b4 Mon Sep 17 00:00:00 2001
From: celest <celest@54d463be-8e91-2dee-dedb-b68131a5f0ec>
Date: Wed, 23 Feb 2005 07:42:30 +0000
Subject: * Fixed char server crash when sending wisp with a "'" in the names

git-svn-id: https://rathena.svn.sourceforge.net/svnroot/rathena/branches/stable@1167 54d463be-8e91-2dee-dedb-b68131a5f0ec
---
 src/char_sql/inter.c | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'src/char_sql')

diff --git a/src/char_sql/inter.c b/src/char_sql/inter.c
index 0f956118c..a8e0d4f44 100644
--- a/src/char_sql/inter.c
+++ b/src/char_sql/inter.c
@@ -423,6 +423,7 @@ int mapif_parse_GMmessage(int fd)
 int mapif_parse_WisRequest(int fd) {
 	struct WisData* wd;
 	static int wisid = 0;
+	char t_name[32];
 
 	if (RFIFOW(fd,2)-52 >= sizeof(wd->msg)) {
 		printf("inter: Wis message size too long.\n");
@@ -431,7 +432,8 @@ int mapif_parse_WisRequest(int fd) {
 		printf("inter: Wis message doesn't exist.\n");
 		return 0;
 	}
-	sprintf (tmp_sql, "SELECT `name` FROM `%s` WHERE `name`='%s'",char_db, RFIFOP(fd,28));
+	sprintf (tmp_sql, "SELECT `name` FROM `%s` WHERE `name`='%s'",
+		char_db, jstrescapecpy(t_name, (char *)RFIFOP(fd,28)));
 	if(mysql_query(&mysql_handle, tmp_sql) ) {
 		printf("DB server Error - %s\n", mysql_error(&mysql_handle) );
 	}
-- 
cgit v1.2.3-70-g09d2