#9 need to escape url string in init.php

[Peter Horadan]

If the url of a feed contains a single quote (as Tim
O'Reilly's rss feed does from O'Reilly.com), the update
will fail since there is a missing escape in init.php.

Adding this line of code solves the problem:

(this is in init.php function fof_update_feed($url), on line
299 of the 0.1 distribution).

$safeurl = mysql_escape_string( $url );
$result = fof_do_query("select id, url from
$FEED_TABLE where url='$safeurl'");

[Anonymous]

Logged In: YES
user_id=794003

Fixed in 0.1.3, even though Tim O'Reilly's feed URL no longer contains a
'. How's that for service?