lainwir3d/dolibarr
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

db escape

Browse Source
This commit is contained in:
Frédéric FRANCE 2019-10-02 08:02:03 +02:00
parent 16693e08b3
commit 79846b8cdf
No known key found for this signature in database
GPG Key ID: 06809324E4B2ABC1
1 changed files with 4 additions and 4 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

8
htdocs/fichinter/class/fichinterrec.class.php
View File

@ -151,7 +151,7 @@ class FichinterRec extends Fichinter
// $sql.= ", auto_validate";
$sql.= ") VALUES (";
$sql.= "'".$this->title."'";
$sql.= "'".$this->db->escape($this->title)."'";
$sql.= ", ".($this->socid >0 ? $this->socid : 'null');
$sql.= ", ".$conf->entity;
$sql.= ", '".$this->db->idate($now)."'";
@ -168,7 +168,7 @@ class FichinterRec extends Fichinter
$sql.= ", null, null";
}
$sql.= ", ".(! empty($fichintsrc->modelpdf)?"'".$fichintsrc->modelpdf."'":"''");
$sql.= ", ".(! empty($fichintsrc->modelpdf)?"'".$this->db->escape($fichintsrc->modelpdf)."'":"''");
// récurrence
$sql.= ", ".(! empty($this->frequency)? $this->frequency:"null");
@ -562,7 +562,7 @@ class FichinterRec extends Fichinter
// phpcs:enable
if ($user->rights->fichinter->creer) {
$sql = "UPDATE ".MAIN_DB_PREFIX."fichinter_rec ";
$sql .= " SET frequency = '".$freq."', last_gen='".$courant."'";
$sql .= " SET frequency = '".$this->db->escape($freq)."', last_gen='".$this->db-escpae($courant)."'";
$sql .= " WHERE rowid = ".$this->id;
$resql = $this->db->query($sql);
@ -596,7 +596,7 @@ class FichinterRec extends Fichinter
$result='';
$label=$langs->trans("ShowInterventionModel").': '.$this->ref;
$url = dol_buildpath('/management/fichinter/', 1).'fiche-rec.php?fichinterid='.$this->id;
$url = DOL_URL_ROOT.'/fichinter/card-rec.php?id='.$this->id;
if ($short) return $url;