Index: trunk/kernel/action.php
===================================================================
diff -u -N -r5254 -r5289
--- trunk/kernel/action.php	(.../action.php)	(revision 5254)
+++ trunk/kernel/action.php	(.../action.php)	(revision 5289)
@@ -1742,15 +1742,14 @@
     	break;
 
     case "m_sql_query":
-		if($ro_perm) break;
-    	$SqlQuery = $_POST["sql"];
-		$ado = &GetADODBConnection();
-		if(strlen($sql))
-		{
-		  $SqlResult = $ado->Execute(stripslashes($SqlQuery));
-  	  	  $SqlError = $ado->ErrorMsg();
-		  $SqlErrorNum = $ado->ErrorNo();
-		}
+    	if($ro_perm) break;
+    	$sql_query = $application->GetVar('sql');
+    	$ado =& GetADODBConnection();
+    	if ($sql_query) {
+    		$SqlResult = $ado->Execute($sql_query);
+    		$SqlError = $ado->ErrorMsg();
+    		$SqlErrorNum = $ado->ErrorNo();
+    	}
     break;
     
 	case 'm_purge_email_log':