Skip to content

Commit 2a3086e

Browse files
rkrxrkrx
committed
Changed pdo::query to pdo::prepare to enable value-binding
1 parent ad5354d commit 2a3086e

File tree

1 file changed

+1
-1
lines changed

1 file changed

+1
-1
lines changed

src/Builder/RunnableSelect.php

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -166,7 +166,7 @@ public function getFoundRows() {
166166
private function createStatement() {
167167
$db = $this->db();
168168
$query = $this->__toString();
169-
$statement = $db->query($query);
169+
$statement = $db->prepare($query);
170170
$statement->execute($this->values);
171171
if($this->getCalcFoundRows()) {
172172
$this->foundRows = $db->query('SELECT FOUND_ROWS()')->fetchColumn();

0 commit comments

Comments
 (0)