sql += " SET ";
sql += key;
sql += " = '";
- sql += value;
+ sql += convert(value);
sql += "' WHERE ID = '";
sql += n->GetAttribute("ID");
sql +="'";
out<<"commit transaction;";
UPDATEDB(out.str());
}
+ const std::string SQLiteTreeHandler::convert(const std::string &i_word)
+ {
+ std::string temp = i_word;
+ boost::algorithm::replace_all(temp,"'","''");
+ return temp.c_str();
+ }
} // namespace creaImageIO