MDL-11857 missing addslashes on idnumber field during backup restore

diff --git a/backup/restorelib.php b/backup/restorelib.php
index 10666adb0d6ef3abc149e4b8870e6067e245c5f4..6351186a926106dc1f6eb7cfb3ba919efbc75bae 100644 (file)
--- a/backup/restorelib.php
+++ b/backup/restorelib.php
@@ -2202,16 +2202,7 @@
                 if ($create_user) {
                     //Unset the id because it's going to be inserted with a new one
                     unset ($user->id);
-                    //We addslashes to necessary fields
-                    $user->username = addslashes($user->username);
-                    $user->firstname = addslashes($user->firstname);
-                    $user->lastname = addslashes($user->lastname);
-                    $user->email = addslashes($user->email);
-                    $user->institution = addslashes($user->institution);
-                    $user->department = addslashes($user->department);
-                    $user->address = addslashes($user->address);
-                    $user->city = addslashes($user->city);
-                    $user->url = addslashes($user->url);
+                    // relink the descriptions
                     $user->description = backup_todb($user->description);
 
                     //We need to analyse the AUTH field to recode it:
@@ -2244,7 +2235,7 @@
 
                     //We are going to create the user
                     //The structure is exactly as we need
-                    $newid = insert_record ("user",$user);
+                    $newid = insert_record ("user", addslashes_recursive($user));
                     //Put the new id
                     $status = backup_putid($restore->backup_unique_code,"user",$userid,$newid,"new");
                 }