Ticket #3783: mythweb_handler_patch.txt

--- /usr/src/myth/mythplugins/mythweb/modules/video/handler.php 2007-07-30 16:26:52.000000000 -0600
+++ handler.php 2007-07-31 12:20:42.000000000 -0600
@@ -220,8 +220,11 @@
    if (isset($_REQUEST['path']))
        $_SESSION['video']['path'] = $_REQUEST['path'];

-    if (isset($_SESSION['video']['path']))
-        $where .= ' AND videometadata.filename RLIKE '.$db->escape($_SESSION['video']['path'].'[/]*[^/]*$');
+    if (isset($_SESSION['video']['path'])) {
+               $escaped_path = str_replace('(', '\\(', $_SESSION['video']['path']);
+               $escaped_path = str_replace(')', '\\)', $escaped_path);
+        $where .= ' AND videometadata.filename RLIKE '.$db->escape($escaped_path.'[/]*[^/]*$');
+       }
 // Deal with the parental locks
    if (isset($_REQUEST['VideoAdminPassword']))
        $_SESSION['video']['VideoAdminPassword'] =
$_REQUEST['VideoAdminPassword'];