-
- return mysql_fetch_array($result);
-}
-
-function db_seek (&$result,$record)
-{
- mysql_data_seek($result, $record);
-}
-
-function db_free_result ($result)
-{
- if ($result)
- mysql_free_result($result);
-}
-
-function db_num_rows (&$result)
-{
- return mysql_num_rows($result);
-}
-
-function db_num_fields ($result)
-{
- return mysql_num_fields($result);
-}
-
-function db_escape($value = "", $nullify = false)
-{
- $value = @htmlspecialchars($value, ENT_COMPAT, $_SESSION['language']->encoding);
-
- //reset default if second parameter is skipped
- $nullify = ($nullify === null) ? (false) : ($nullify);
- //undo slashes for poorly configured servers
- $value = (get_magic_quotes_gpc()) ? (stripslashes($value)) : ($value);
-
- //check for null/unset/empty strings
- if ((!isset($value)) || (is_null($value)) || ($value === "")) {
- $value = ($nullify) ? ("NULL") : ("''");
- } else {
- if (is_string($value)) {
- //value is a string and should be quoted; determine best method based on available extensions
- if (function_exists('mysql_real_escape_string')) {
- $value = "'" . mysql_real_escape_string($value) . "'";
- } else {
- $value = "'" . mysql_escape_string($value) . "'";
- }
- } else if (!is_numeric($value)) {
- //value is not a string nor numeric
- display_error("ERROR: incorrect data type send to sql query");
- echo '<br><br>';
- exit();
- }
- }
- return $value;