Menu
▾
▴
[Web-erp-svn] SF.net SVN: web-erp:[6300] trunk/StockLocTransferReceive.php
|
From: <ice...@us...> - 2013-08-27 09:13:51
|
Revision: 6300
http://sourceforge.net/p/web-erp/reponame/6300
Author: icedlava
Date: 2013-08-27 09:13:48 +0000 (Tue, 27 Aug 2013)
Log Message:
-----------
Finally, use DB_escape_string to cater for both mysql/mysqli - thanks Exson
Modified Paths:
--------------
trunk/StockLocTransferReceive.php
Modified: trunk/StockLocTransferReceive.php
===================================================================
--- trunk/StockLocTransferReceive.php 2013-08-27 07:32:58 UTC (rev 6299)
+++ trunk/StockLocTransferReceive.php 2013-08-27 09:13:48 UTC (rev 6300)
@@ -94,7 +94,7 @@
'" . $_SESSION['Transfer']->StockLocationFrom . "',
'" . $SQLTransferDate . "',
'" . $PeriodNo . "',
- '" . _('To') . ' ' . mysqli_real_escape_string($db,$_SESSION['Transfer']->StockLocationToName) . "',
+ '" . _('To') . ' ' . DB_escape_string($_SESSION['Transfer']->StockLocationToName) . "',
'" . round(-$TrfLine->Quantity, $TrfLine->DecimalPlaces) . "',
'" . round($QtyOnHandPrior - $TrfLine->Quantity, $TrfLine->DecimalPlaces) . "'
)";
@@ -206,7 +206,7 @@
'" . $_SESSION['Transfer']->StockLocationTo . "',
'" . $SQLTransferDate . "',
'" . $PeriodNo . "',
- '" . _('From') . ' ' . mysqli_real_escape_string($db,$_SESSION['Transfer']->StockLocationFromName) ."',
+ '" . _('From') . ' ' . DB_escape_string($_SESSION['Transfer']->StockLocationFromName) ."',
'" . round($TrfLine->Quantity, $TrfLine->DecimalPlaces) . "',
'" . round($QtyOnHandPrior + $TrfLine->Quantity, $TrfLine->DecimalPlaces) . "'
)";
|
