From b1091f91dc8a74f71b2edf9f47067bf69d914848 Mon Sep 17 00:00:00 2001
From: Sebastiaan Janssen <sebastiaan@umbraco.com>
Date: Thu, 13 Dec 2012 15:48:18 -0100
Subject: [PATCH] Fixes U4-1320 - Dictionary delete query isn't paremterized

---
 src/umbraco.cms/businesslogic/Dictionary.cs | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/src/umbraco.cms/businesslogic/Dictionary.cs b/src/umbraco.cms/businesslogic/Dictionary.cs
index 3d11d9e855..80646d9f65 100644
--- a/src/umbraco.cms/businesslogic/Dictionary.cs
+++ b/src/umbraco.cms/businesslogic/Dictionary.cs
@@ -359,7 +359,7 @@ namespace umbraco.cms.businesslogic
                 Item.removeText(UniqueId);
 
                 // remove key from database
-                SqlHelper.ExecuteNonQuery("delete from cmsDictionary where [key] ='" + key + "'");
+                SqlHelper.ExecuteNonQuery("delete from cmsDictionary where [key] = @key", SqlHelper.CreateParameter("@key", key));
 
                 // Remove key from cache
                 DictionaryItems.Remove(key);