From 3c84c0eefcf751a3661d65f60238d83fbada9a8a Mon Sep 17 00:00:00 2001
From: Ilia Alshanetsky <iliaa@php.net>
Date: Tue, 14 Oct 2003 03:49:13 +0000
Subject: Fixed bug #25836 (last key of multi-dimensional array passed via GPC
 not being escaped when magic_quotes_gpc is on).

---
 main/php_variables.c | 4 +++-
 1 file changed, 3 insertions(+), 1 deletion(-)

(limited to 'main/php_variables.c')

diff --git a/main/php_variables.c b/main/php_variables.c
index 13e21b500c..78b1863fd9 100644
--- a/main/php_variables.c
+++ b/main/php_variables.c
@@ -182,7 +182,9 @@ plain_var:
 			if (!index) {
 				zend_hash_next_index_insert(symtable1, &gpc_element, sizeof(zval *), (void **) &gpc_element_p);
 			} else {
-				zend_symtable_update(symtable1, index, index_len+1, &gpc_element, sizeof(zval *), (void **) &gpc_element_p);
+				char *escaped_index = php_addslashes(index, index_len, &index_len, 0 TSRMLS_CC);
+				zend_symtable_update(symtable1, escaped_index, index_len+1, &gpc_element, sizeof(zval *), (void **) &gpc_element_p);
+				efree(escaped_index);
 			}
 			break;
 		}
-- 
cgit v1.2.1