}
// Checks whether $login is a valid hruid or not.
- $res = XDB::query("SELECT uid
+ $res = XDB::query('SELECT uid
FROM accounts
- WHERE hruid LIKE CONCAT('%', {?}, '%')", $login);
- if ($res->numRows()) {
+ WHERE hruid' . XDB::formatWildcards(XDB::WILDCARD_CONTAINS, $login));
+ if ($res->numRows() == 1) {
return $res->fetchOneCell();
}