public function setUser($User) { $User->setUsername(mysql_real_esca

1. public function setUser($User) {
2. $User->setUsername(mysql_real_escape_string($User->getUsername()));
3. if (!empty($User->getPassword())) {
4. $User->setPassword(hash('sha512', $User->getPassword()));
5. }
6. else {
7. $User->setPassword($User->getPassword());
8. }
9. $User->setEmail(mysql_real_escape_string($User->getEmail()));
10. $User->setBiography(mysql_real_escape_string($User->getBiography()));
11. $User->setAvatar(mysql_real_escape_string($User->getAvatar()));
12. $User->setWebsite(mysql_real_escape_string($User->getWebsite()));
13. $User->setLastlogin(mysql_real_escape_string($User->getLastlogin()));
14. $User->setForumSignature(mysql_real_escape_string($User->getForumSignature()));
15. $User->setLocation(mysql_real_escape_string($User->getLocation()));
16. $User->getGroup(mysql_real_escape_string($User->getGroup()));
17. $User->getForumSignature(mysql_real_escape_string($User->getForumSignature()));
18.  
19.  
20. mysql_query("UPDATE users SET username='" . $User->getUsername() . "', password = '" . $User->getPassword() . "', email='" . $User->getEmail() . "', biography = '" . $User->getBiography() . "', avatarURL = '" . $User->getAvatar() . "', websiteurl = '" . $User->getWebsite() . "', lastlogin = " . $User->getLastlogin() . ", forumsignature = '" . $User->getForumSignature() . "', location = '" . $User->getLocation() . "', users.group = " . $User->getGroup() . " WHERE userid = " . $User->getUserid() . " ");
21. }