From 81c20ec884eefec81cefde8712a20956c57547d3 Mon Sep 17 00:00:00 2001
From: Ryan Boren <ryan@git.wordpress.org>
Date: Fri, 2 May 2008 17:28:19 +0000
Subject: [PATCH] Fix post name check prepare. Props westi. see #6894

git-svn-id: https://develop.svn.wordpress.org/trunk@7876 602fd350-edb4-49c9-b593-d223f7449a82
---
 wp-includes/post.php | 3 +--
 1 file changed, 1 insertion(+), 2 deletions(-)

diff --git a/wp-includes/post.php b/wp-includes/post.php
index 8130af22cb..53372f4802 100644
--- a/wp-includes/post.php
+++ b/wp-includes/post.php
@@ -1285,8 +1285,7 @@ function wp_insert_post($postarr = array()) {
 			$suffix = 2;
 			do {
 				$alt_post_name = substr($post_name, 0, 200-(strlen($suffix)+1)). "-$suffix";
-				// expected_slashed ($alt_post_name, $post_name, $post_type)
-				$post_name_check = $wpdb->get_var($wpdb->prepare("SELECT post_name FROM $wpdb->posts WHERE post_name = '$alt_post_name' AND post_type = '$post_type' AND ID != %d AND post_parent = %d LIMIT 1", $post_ID, $post_parent));
+				$post_name_check = $wpdb->get_var($wpdb->prepare("SELECT post_name FROM $wpdb->posts WHERE post_name = %s AND post_type = %s AND ID != %d AND post_parent = %d LIMIT 1", $alt_post_name, $post_type, $post_ID, $post_parent));
 				$suffix++;
 			} while ($post_name_check);
 			$post_name = $alt_post_name;