diff --git a/admin/ville.php b/admin/ville.php
index f3876f7..8b7931f 100644
--- a/admin/ville.php
+++ b/admin/ville.php
@@ -121,12 +121,12 @@ if(isset($_POST['reset_ekip'])){
 
 if(isset($_POST['copier_chemin'])){
     $sql = "INSERT INTO ville_epreuve (id_equipe, indice, reponse, photo, est_finale, ordre)
-    SELECT ".htmlspecialchars((int)$_POST["id_equipe_dst"]).", indice, reponse, photo, est_finale, ordre
+    SELECT ?, indice, reponse, photo, est_finale, ordre
     FROM ville_epreuve
-    WHERE id_equipe=".htmlspecialchars((int)$_POST["id_equipe_og"]);
+    WHERE id_equipe = ?";
 
-    $stmt = $pdo->prepare($sql);
-    $stmt->execute();
+    $stmt = $db->prepare($sql);
+    $stmt->execute([htmlspecialchars((int)$_POST["id_equipe_dst"]), htmlspecialchars((int)$_POST["id_equipe_og"])]);
 
 
 }