Details
-
Bug
-
Status: Closed (View Workflow)
-
Major
-
Resolution: Fixed
-
1.1.9
-
None
-
3.11
Description
In Cursor._substitute_parameters, double quotes are used unconditionally to quote strings. Single quotes should be used instead, preferably via mysql_real_escape_string_quote for compatibility with NO_BACKSLASH_ESCAPES.