Menu
▾
▴
[Web-erp-svn] SF.net SVN: web-erp:[6601] trunk
|
From: <ice...@us...> - 2014-03-05 09:14:20
|
Revision: 6601
http://sourceforge.net/p/web-erp/reponame/6601
Author: icedlava
Date: 2014-03-05 09:14:16 +0000 (Wed, 05 Mar 2014)
Log Message:
-----------
ReverseGRN.php - Ensure there are no unescaped characters in existing data when updating purchorders after reversing GRN. This fixes a symptom of a more widespread bug and therefore temporary until more general fix is applied.
Modified Paths:
--------------
trunk/ReverseGRN.php
trunk/doc/Change.log
Modified: trunk/ReverseGRN.php
===================================================================
--- trunk/ReverseGRN.php 2014-03-05 02:22:10 UTC (rev 6600)
+++ trunk/ReverseGRN.php 2014-03-05 09:14:16 UTC (rev 6601)
@@ -133,7 +133,7 @@
/*Now the purchorder header status in case it was completed - now incomplete - just printed */
$SQL = "UPDATE purchorders
SET status = 'Printed',
- stat_comment = CONCAT('" . Date($_SESSION['DefaultDateFormat']) . ' ' . _('GRN Reversed for') . ' ' . $GRN['itemdescription'] . ' ' . _('by') . ' ' . $_SESSION['UsersRealName'] . "<br />', stat_comment )
+ stat_comment = CONCAT('" . Date($_SESSION['DefaultDateFormat']) . ' ' . _('GRN Reversed for') . ' ' . mysql_real_escape_string(stripslashes($GRN['itemdescription'])) . ' ' . _('by') . ' ' . $_SESSION['UsersRealName'] . "<br />', stat_comment )
WHERE orderno = '" . $GRN['orderno'] . "'";
$ErrMsg = _('CRITICAL ERROR') . '! ' . _('NOTE DOWN THIS ERROR AND SEEK ASSISTANCE') . ': ' . _('The purchase order statusand status comment could not be changed because');
Modified: trunk/doc/Change.log
===================================================================
--- trunk/doc/Change.log 2014-03-05 02:22:10 UTC (rev 6600)
+++ trunk/doc/Change.log 2014-03-05 09:14:16 UTC (rev 6601)
@@ -1,4 +1,6 @@
webERP Change Log
+
+05/03/2014 icedlava: Ensure there are no unescaped characters in existing data when updating purchorders after reversing GRN. This fixes a symptom of a more widespread bug and therefore temporary until more general fix is applied.
05/03/2014 icedlava: Remove input fields (Country and Language) and display this data instead on customer view page
03/03/2014 Exson: Remove redundant code in CustomerAllocations.php
03/3/14 icedlava: WhereUsedInquiry.php will no longer accept StockID with dash (-) as input allowed has changed. Still need to check for consistency for StockId input elsewhere in code.
|
