[Web-erp-svn] SF.net SVN: web-erp:[7885] trunk

[<tu...@us...>]

Revision: 7885
          http://sourceforge.net/p/web-erp/reponame/7885
Author:   turbopt
Date:     2017-12-15 01:06:48 +0000 (Fri, 15 Dec 2017)
Log Message:
-----------
CustomerReceipt.php: Wrap delete link parameter values with urlencode(). (Suggested by Tim in forums)

Modified Paths:
--------------
    trunk/CustomerReceipt.php
    trunk/doc/Change.log

Modified: trunk/CustomerReceipt.php
===================================================================
--- trunk/CustomerReceipt.php	2017-12-14 03:57:51 UTC (rev 7884)
+++ trunk/CustomerReceipt.php	2017-12-15 01:06:48 UTC (rev 7885)
@@ -1018,7 +1018,10 @@
 				<td>' . $ReceiptItem->GLCode.' - '.$myrow['accountname'] . '</td>
 				<td>' .  stripslashes($ReceiptItem->Narrative) . '</td>
 				<td>' .  $ReceiptItem->TagName . '</td>
-				<td><a href="' . htmlspecialchars($_SERVER['PHP_SELF'],ENT_QUOTES,'UTF-8') . '?Delete=' . $ReceiptItem->ID . '&Type=' . $_GET['Type'] . '&identifier=' . $identifier . '">' . _('Delete') . '</a></td>
+				<td><a href="' . htmlspecialchars($_SERVER['PHP_SELF'],ENT_QUOTES,'UTF-8') . '?Delete='     . urlencode($ReceiptItem->ID)
+                                                                                           . '&Type='       . urlencode($_GET['Type'])
+                                                                                           . '&identifier=' . urlencode($identifier) . '">'
+                                                                                           . _('Delete') . '</a></td>
 			</tr>';
 		$BatchTotal= $BatchTotal + $ReceiptItem->Amount;
 	}

Modified: trunk/doc/Change.log
===================================================================
--- trunk/doc/Change.log	2017-12-14 03:57:51 UTC (rev 7884)
+++ trunk/doc/Change.log	2017-12-15 01:06:48 UTC (rev 7885)
@@ -1,5 +1,6 @@
 webERP Change Log
 
+11/13/17 PaulT: CustomerReceipt.php: Wrap delete link parameter values with urlencode(). (Suggested by Tim in forums)
 11/13/17 PaulT: PDFCOA.php: Add column prodspeckey to queries which is used as a description alternative. (Reported in forums by Paul Becker)
 11/13/17 PaulT: PDFCOA.php, PDFProdSpec: Minor value adjust to correct inconsistent footer wrap. (Reported in forums by Paul Becker)
 11/13/17 PaulT: HistoricalTestResults.php, SelectQASamples.php, TestPlanResults.php: Fix date inputs to work with the date picker. (Reported in forums by briantmg)