- if ( $like_s != trim('/', $current_site->path) )
- $blog_s = $current_site->path . $like_s . $wild . '/';
- else
- $blog_s = $like_s;
- $query .= " AND ( {$wpdb->blogs}.path LIKE '$blog_s' )";
+ if ( $s != trim('/', $current_site->path) ) {
+ $blog_s = $wpdb->esc_like( $current_site->path . $s ) . $wild . $wpdb->esc_like( '/' );
+ } else {
+ $blog_s = $wpdb->esc_like( $s );
+ }
+ $query .= $wpdb->prepare( " AND ( {$wpdb->blogs}.path LIKE %s )", $blog_s );