From f89eccf0a6cb434a714466be793683501da2d004 Mon Sep 17 00:00:00 2001
From: Aidan Lister <aidan@php.net>
Date: Wed, 29 Sep 2004 16:26:30 +0000
Subject: [PATCH] Reverting my revert, bug #30274 is correct

git-svn-id: https://svn.php.net/repository/phpdoc/en/trunk@169566 c90b9560-bf6c-de11-be94-00142212c4b1
---
 reference/mysql/functions/mysql-real-escape-string.xml | 6 +++---
 1 file changed, 3 insertions(+), 3 deletions(-)

diff --git a/reference/mysql/functions/mysql-real-escape-string.xml b/reference/mysql/functions/mysql-real-escape-string.xml
index 1bc10ec92d..4348c0a648 100644
--- a/reference/mysql/functions/mysql-real-escape-string.xml
+++ b/reference/mysql/functions/mysql-real-escape-string.xml
@@ -1,5 +1,5 @@
 <?xml version="1.0" encoding="iso-8859-1"?>
-<!-- $Revision: 1.19 $ -->
+<!-- $Revision: 1.20 $ -->
 <!-- splitted from ./en/functions/mysql.xml, last change in rev 1.100 -->
   <refentry id="function.mysql-real-escape-string">
    <refnamediv>
@@ -88,7 +88,7 @@ mysql_query($query);
 
 // We didn't check $_POST['password'], it could be anything the user wanted! For example:
 $_POST['username'] = 'aidan';
-$_POST['password'] = "' OR 1=1";
+$_POST['password'] = "' OR ''='";
 
 // This means the query sent to MySQL would be:
 echo $query;
@@ -100,7 +100,7 @@ echo $query;
        </para>
       <screen>
 <![CDATA[
-SELECT * FROM users WHERE name='aidan' AND password='' OR 1=1
+SELECT * FROM users WHERE name='aidan' AND password='' OR ''=''
 ]]>
       </screen>
       <para>