Fix an internal bug in QB where() escaping This is not a supported use case, but if QB escaping is force-disabled, string values passed to where() or having() aren't escaped. That's wrong because escape-disabling should only be possible for identifiers and not values. Reported via the forums: http://forum.codeigniter.com/thread-62478.html

commit: 43afc71b777b00cfc2638add6fa3c47d333c5e04 [log] [tgz]
author: Andrey Andreev <narf@devilix.net> Mon Jul 20 12:32:02 2015 +0300
committer: Andrey Andreev <narf@devilix.net> Mon Jul 20 12:32:02 2015 +0300
tree: c81e63c99b683cfc1643a3ad2f6cc6d46a3625a4
parent: e17dbe6000a7f5ab3efe42c80bee7ca80dcc23c3 [diff]
diff --git a/system/database/DB_query_builder.php b/system/database/DB_query_builder.php
index a8b5b35..8d21c5a 100644
--- a/system/database/DB_query_builder.php
+++ b/system/database/DB_query_builder.php

@@ -657,10 +657,7 @@
 
 			if ($v !== NULL)
 			{
-				if ($escape === TRUE)
-				{
-					$v = ' '.$this->escape($v);
-				}
+				$v = ' '.$this->escape($v);
 
 				if ( ! $this->_has_operator($k))
 				{
commit	43afc71b777b00cfc2638add6fa3c47d333c5e04	[log] [tgz]
author	Andrey Andreev <narf@devilix.net>	Mon Jul 20 12:32:02 2015 +0300
committer	Andrey Andreev <narf@devilix.net>	Mon Jul 20 12:32:02 2015 +0300
tree	c81e63c99b683cfc1643a3ad2f6cc6d46a3625a4
parent	e17dbe6000a7f5ab3efe42c80bee7ca80dcc23c3 [diff]