From eef5445e38a793e337d6497542ab7ed2de9667c7 Mon Sep 17 00:00:00 2001 From: Mark Jaquith Date: Mon, 10 Nov 2008 22:16:50 +0000 Subject: [PATCH] Use prepare() in get_comments() git-svn-id: https://develop.svn.wordpress.org/trunk@9601 602fd350-edb4-49c9-b593-d223f7449a82 --- wp-includes/comment.php | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/wp-includes/comment.php b/wp-includes/comment.php index 85c0af926e..2e9e205ba2 100644 --- a/wp-includes/comment.php +++ b/wp-includes/comment.php @@ -227,7 +227,7 @@ function get_comments( $args = '' ) { } if ( ! empty($post_id) ) - $post_where = "comment_post_ID = $post_id AND"; + $post_where = $wpdb->prepare( 'comment_post_ID = %d AND', $post_id ); else $post_where = '';