diff --git a/plugins/mail/init.php b/plugins/mail/init.php index 045fd798..28e16054 100644 --- a/plugins/mail/init.php +++ b/plugins/mail/init.php @@ -86,7 +86,7 @@ class Mail extends Plugin { print_hidden("method", "sendEmail"); $sth = $this->pdo->prepare("SELECT email, full_name FROM ttrss_users WHERE - id = " . $_SESSION["uid"]); + id = ?"); $sth->execute([$_SESSION['uid']]); if ($row = $sth->fetch()) {