From 9f418eb0426dcaf7a208a1279dc86ba353b564ec Mon Sep 17 00:00:00 2001 From: Regis Houssin Date: Tue, 12 Jan 2010 15:54:53 +0000 Subject: [PATCH] Fix: missing quotes --- htdocs/admin/commande.php | 4 ++-- htdocs/admin/expedition.php | 4 ++-- htdocs/admin/facture.php | 4 ++-- htdocs/admin/fichinter.php | 2 +- htdocs/admin/fournisseur.php | 4 ++-- htdocs/admin/livraison.php | 4 ++-- htdocs/admin/propale.php | 2 +- 7 files changed, 12 insertions(+), 12 deletions(-) diff --git a/htdocs/admin/commande.php b/htdocs/admin/commande.php index 84125fba181..9323a95fdca 100644 --- a/htdocs/admin/commande.php +++ b/htdocs/admin/commande.php @@ -101,7 +101,7 @@ if ($_GET["action"] == 'del') { $type='order'; $sql = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql.= " WHERE nom = '".$_GET["value"]; + $sql.= " WHERE nom = '".$_GET["value"]."'"; $sql.= " AND type = '".$type."'"; $sql.= " AND entity = ".$conf->entity; @@ -123,7 +123,7 @@ if ($_GET["action"] == 'setdoc') // On active le modele $type='order'; $sql_del = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql_del.= " WHERE nom = '".$_GET["value"]; + $sql_del.= " WHERE nom = '".$_GET["value"]."'"; $sql_del.= " AND type = '".$type."'"; $sql_del.= " AND entity = ".$conf->entity; $result1=$db->query($sql_del); diff --git a/htdocs/admin/expedition.php b/htdocs/admin/expedition.php index 07d9d1ffb90..85d76777e2c 100644 --- a/htdocs/admin/expedition.php +++ b/htdocs/admin/expedition.php @@ -94,7 +94,7 @@ if ($_GET["action"] == 'del') { $type='shipping'; $sql = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql.= " WHERE nom = '".$_GET["value"]; + $sql.= " WHERE nom = '".$_GET["value"]."'"; $sql.= " AND type = '".$type."'"; $sql.= " AND entity = ".$conf->entity; @@ -116,7 +116,7 @@ if ($_GET["action"] == 'setdoc') // On active le modele $type='shipping'; $sql_del = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql_del.= " WHERE nom = '".$_GET["value"]; + $sql_del.= " WHERE nom = '".$_GET["value"]."'"; $sql_del.= " AND type = '".$type."'"; $sql_del.= " AND entity = ".$conf->entity; $result1=$db->query($sql_del); diff --git a/htdocs/admin/facture.php b/htdocs/admin/facture.php index 7532638bd16..9ad675780ca 100644 --- a/htdocs/admin/facture.php +++ b/htdocs/admin/facture.php @@ -105,7 +105,7 @@ if ($_GET["action"] == 'del') { $type='invoice'; $sql = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql.= " WHERE nom = '".$_GET["value"]; + $sql.= " WHERE nom = '".$_GET["value"]."'"; $sql.= " AND type = '".$type."'"; $sql.= " AND entity = ".$conf->entity; @@ -127,7 +127,7 @@ if ($_GET["action"] == 'setdoc') // On active le modele $type='invoice'; $sql_del = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql_del.= " WHERE nom = '".$_GET["value"]; + $sql_del.= " WHERE nom = '".$_GET["value"]."'"; $sql_del.= " AND type = '".$type."'"; $sql_del.= " AND entity = ".$conf->entity; $result1=$db->query($sql_del); diff --git a/htdocs/admin/fichinter.php b/htdocs/admin/fichinter.php index b4415f0f851..16ca35f45b4 100644 --- a/htdocs/admin/fichinter.php +++ b/htdocs/admin/fichinter.php @@ -110,7 +110,7 @@ if ($_GET["action"] == 'del') { $type='ficheinter'; $sql = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql.= " WHERE nom = '".$_GET["value"]; + $sql.= " WHERE nom = '".$_GET["value"]."'"; $sql.= " AND type = '".$type."'"; $sql.= " AND entity = ".$conf->entity; diff --git a/htdocs/admin/fournisseur.php b/htdocs/admin/fournisseur.php index 224b8c9a199..90d20ab55ab 100644 --- a/htdocs/admin/fournisseur.php +++ b/htdocs/admin/fournisseur.php @@ -101,7 +101,7 @@ if ($_GET["action"] == 'del') { $type='supplier_order'; $sql = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql.= " WHERE nom = '".$_GET["value"]; + $sql.= " WHERE nom = '".$_GET["value"]."'"; $sql.= " AND type = '".$type."'"; $sql.= " AND entity = ".$conf->entity; if ($db->query($sql)) @@ -122,7 +122,7 @@ if ($_GET["action"] == 'setdoc') // On active le modele $type='supplier_order'; $sql_del = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql_del.= " WHERE nom = '".$_GET["value"]; + $sql_del.= " WHERE nom = '".$_GET["value"]."'"; $sql_del.= " AND type = '".$type."'"; $sql_del.= " AND entity = ".$conf->entity; $result1=$db->query($sql_del); diff --git a/htdocs/admin/livraison.php b/htdocs/admin/livraison.php index efe02973d56..7b948124ab5 100644 --- a/htdocs/admin/livraison.php +++ b/htdocs/admin/livraison.php @@ -101,7 +101,7 @@ if ($_GET["action"] == 'del') { $type='delivery'; $sql = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql.= " WHERE nom = '".$_GET["value"]; + $sql.= " WHERE nom = '".$_GET["value"]."'"; $sql.= " AND type = '".$type."'"; $sql.= " AND entity = ".$conf->entity; @@ -123,7 +123,7 @@ if ($_GET["action"] == 'setdoc') // On active le modele $type='delivery'; $sql_del = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql_del.= " WHERE nom = '".$_GET["value"]; + $sql_del.= " WHERE nom = '".$_GET["value"]."'"; $sql_del.= " AND type = '".$type."'"; $sql_del.= " AND entity = ".$conf->entity; $result1=$db->query($sql_del); diff --git a/htdocs/admin/propale.php b/htdocs/admin/propale.php index 25fd9736719..6f5adf4b689 100644 --- a/htdocs/admin/propale.php +++ b/htdocs/admin/propale.php @@ -155,7 +155,7 @@ if ($_GET["action"] == 'setdoc') // On active le modele $type='propal'; $sql_del = "DELETE FROM ".MAIN_DB_PREFIX."document_model"; - $sql_del.= " WHERE nom = '".$_GET["value"]; + $sql_del.= " WHERE nom = '".$_GET["value"]."'"; $sql_del.= " AND type = '".$type."'"; $sql_del.= " AND entity = ".$conf->entity; $result1=$db->query($sql_del);