[Weberp-cvs] SF.net SVN: web-erp:[3541] trunk

[<tim...@us...>]

Revision: 3541
          http://web-erp.svn.sourceforge.net/web-erp/?rev=3541&view=rev
Author:   tim_schofield
Date:     2010-07-03 21:42:38 +0000 (Sat, 03 Jul 2010)

Log Message:
-----------
Force $_GET[OrderNo] to be an integer

Modified Paths:
--------------
    trunk/PO_OrderDetails.php
    trunk/doc/Change.log.html

Modified: trunk/PO_OrderDetails.php
===================================================================
--- trunk/PO_OrderDetails.php	2010-07-02 13:34:13 UTC (rev 3540)
+++ trunk/PO_OrderDetails.php	2010-07-03 21:42:38 UTC (rev 3541)
@@ -9,6 +9,7 @@
 
 if (isset($_GET['OrderNo'])) {
 	$title = _('Reviewing Purchase Order Number').' ' . $_GET['OrderNo'];
+	$_GET['OrderNo']=(int)$_GET['OrderNo'];
 } else {
 	$title = _('Reviewing A Purchase Order');
 }
@@ -199,4 +200,4 @@
 echo '<br>';
 
 include ('includes/footer.inc');
-?>
\ No newline at end of file
+?>

Modified: trunk/doc/Change.log.html
===================================================================
--- trunk/doc/Change.log.html	2010-07-02 13:34:13 UTC (rev 3540)
+++ trunk/doc/Change.log.html	2010-07-03 21:42:38 UTC (rev 3541)
@@ -1,5 +1,6 @@
 <p><font SIZE=4 COLOR=BLUE><b>webERP Change Log</b></font></p>
 <p></p>
+<p>03/07/10 Tim: PO_OrderDetails.php - Force $_GET['OrderNo'] to be an integer</p>
 <p>02/07/10 Tim: Bulk transfers need to be able to have decimal places in the quantity.</p>
 <p>01/07/10 Tim: PrintCustTransPortrait.php - Error in sql, nor picking up stkmoveno.</p>
 <p>01/07/10 Tim: Numerous problems with stock adjustments for batch controlled items.</p>


This was sent by the SourceForge.net collaborative development platform, the world's largest Open Source development site.