Single Quote in Circulation Name Does Not Save
Brought to you by:
thaberkern
If a single quote is in a new circulation name, the SQL Insert fails.
To reproduce:
- New Circulation
- Type into "Circulation Name" field: John Smith's Computer
- Click button: Complete
Error message is:
You have an error in your SQL syntax; check the manual that corresponds to your MySQL server version for the right syntax to use near 's Computer', '4', 0, '3', 0, 0)' at line 1- INSERT INTO cf_circulationform values (null, '1', 'John Smith's Computer', '4', 0, '3', 0, 0)
Suggested fix:
- in the text fields, replace all single quotes (') with two single quotes ('') to have the SQL statement passed properly to the database.