diff --git a/classes/api.php b/classes/api.php index ad0372dbf..8ffa74d9e 100644 --- a/classes/api.php +++ b/classes/api.php @@ -297,7 +297,7 @@ class API extends Handler { $num_updated = $sth->rowCount(); if ($num_updated > 0 && $field == "unread") { - $sth = $this->pdo->query("SELECT DISTINCT feed_id FROM ttrss_user_entries + $sth = $this->pdo->prepare("SELECT DISTINCT feed_id FROM ttrss_user_entries WHERE ref_id IN ($article_qmarks)"); $sth->execute($article_ids);