Add escape to SQLite _listTables()

MGatner · web-flow · commit 7e2cafa1586c · 2019-09-17T12:23:51.000-04:00
diff --git a/system/Database/SQLite3/Connection.php b/system/Database/SQLite3/Connection.php
@@ -207,7 +207,7 @@ protected function _escapeString(string $str): string
 	protected function _listTables(bool $prefixLimit = false): string
 	{
 		return 'SELECT "NAME" FROM "SQLITE_MASTER" WHERE "TYPE" = \'table\''
-			   . ' AND "NAME" NOT LIKE \'sqlite_%\''
+			   . ' AND "NAME" NOT LIKE \'sqlite!_%\' ESCAPE \'!\''
 			   . (($prefixLimit !== false && $this->DBPrefix !== '')
 				? ' AND "NAME" LIKE \'' . $this->escapeLikeString($this->DBPrefix) . '%\' ' . sprintf($this->likeEscapeStr,
 					$this->likeEscapeChar)

Original file line number	Diff line number	Diff line change
`@@ -207,7 +207,7 @@ protected function _escapeString(string $str): string`
`207`	`207`	`protected function _listTables(bool $prefixLimit = false): string`
`208`	`208`	`{`
`209`	`209`	`return 'SELECT "NAME" FROM "SQLITE_MASTER" WHERE "TYPE" = \'table\''`
`210`		`- . ' AND "NAME" NOT LIKE \'sqlite_%\''`
	`210`	`+ . ' AND "NAME" NOT LIKE \'sqlite!_%\' ESCAPE \'!\''`
`211`	`211`	`. (($prefixLimit !== false && $this->DBPrefix !== '')`
`212`	`212`	`? ' AND "NAME" LIKE \'' . $this->escapeLikeString($this->DBPrefix) . '%\' ' . sprintf($this->likeEscapeStr,`
`213`	`213`	`$this->likeEscapeChar)`