lainwir3d/dolibarr
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

Fix: missing addslashes

Browse Source
This commit is contained in:
Regis Houssin 2009-12-01 16:48:14 +00:00
parent c18885d4ff
commit 5ed25ab539
1 changed files with 6 additions and 6 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

12
htdocs/don.class.php
View File

@ -363,13 +363,13 @@ class Don extends CommonObject
$sql = "UPDATE ".MAIN_DB_PREFIX."don SET ";
$sql .= "amount = " . $this->amount;
$sql .= ",fk_paiement = ".$this->modepaiementid;
$sql .= ",prenom = '".$this->prenom ."'";
$sql .= ",nom='".$this->nom."'";
$sql .= ",societe='".$this->societe."'";
$sql .= ",adresse='".$this->adresse."'";
$sql .= ",prenom = '".addslashes($this->prenom)."'";
$sql .= ",nom='".addslashes($this->nom)."'";
$sql .= ",societe='".addslashes($this->societe)."'";
$sql .= ",adresse='".addslashes($this->adresse)."'";
$sql .= ",cp='".$this->cp."'";
$sql .= ",ville='".$this->ville."'";
$sql .= ",pays='".$this->pays."'";
$sql .= ",ville='".addslashes($this->ville)."'";
$sql .= ",pays='".addslashes($this->pays)."'"; // TODO use fk_pays
$sql .= ",public=".$this->public;
$sql .= ",fk_don_projet=".($this->projetid>0?$this->projetid:'null');
$sql .= ",note='".addslashes($this->note)."'";