From 6d33c36cb08d952d22fc18fda31b62a955852b7e Mon Sep 17 00:00:00 2001
From: Daniel Cebrian <daniel.cebrian@pandorafms.com>
Date: Tue, 23 Apr 2024 17:01:47 +0200
Subject: [PATCH] #13264 fixed sql injection

---
 pandora_console/include/functions_events.php | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/pandora_console/include/functions_events.php b/pandora_console/include/functions_events.php
index 6e3d2e1f01..54fdbec4bf 100644
--- a/pandora_console/include/functions_events.php
+++ b/pandora_console/include/functions_events.php
@@ -1193,7 +1193,7 @@ function events_get_all(
                     ($key === 0) ? '' : $nexo,
                     $field,
                     $not_search,
-                    io_safe_output($filter['search'])
+                    str_replace('"', '', io_safe_output($filter['search'])),
                 );
                 $sql_search .= ' ';
             }