From dd80636773dda3f673903462ee761d4414b0a77d Mon Sep 17 00:00:00 2001 From: Laurent Destailleur Date: Sat, 2 Apr 2005 10:56:53 +0000 Subject: [PATCH] =?UTF-8?q?Fix:=20Probl=E8me=20activation=20droits=20fiche?= =?UTF-8?q?s=20interventions?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- htdocs/includes/modules/DolibarrModules.class.php | 11 ++++------- 1 file changed, 4 insertions(+), 7 deletions(-) diff --git a/htdocs/includes/modules/DolibarrModules.class.php b/htdocs/includes/modules/DolibarrModules.class.php index da0b618ac2b..da8256e5133 100644 --- a/htdocs/includes/modules/DolibarrModules.class.php +++ b/htdocs/includes/modules/DolibarrModules.class.php @@ -158,14 +158,14 @@ class DolibarrModules $sql = "INSERT INTO ".MAIN_DB_PREFIX."rights_def "; $sql .= " (id, libelle, module, type, bydefault, perms, subperms)"; $sql .= " VALUES "; - $sql .= "(".$r_id.",'".$r_desc."','".$r_modul."','".$r_type."',".$r_def.",'".$r_perms."','".$r_subperms."');"; + $sql .= "(".$r_id.",'".addslashes($r_desc)."','".$r_modul."','".$r_type."',".$r_def.",'".$r_perms."','".$r_subperms."');"; } else { $sql = "INSERT INTO ".MAIN_DB_PREFIX."rights_def "; $sql .= " (id, libelle, module, type, bydefault, perms)"; $sql .= " VALUES "; - $sql .= "(".$r_id.",'".$r_desc."','".$r_modul."','".$r_type."',".$r_def.",'".$r_perms."');"; + $sql .= "(".$r_id.",'".addslashes($r_desc)."','".$r_modul."','".$r_type."',".$r_def.",'".$r_perms."');"; } } else @@ -173,13 +173,10 @@ class DolibarrModules $sql = "INSERT INTO ".MAIN_DB_PREFIX."rights_def "; $sql .= " (id, libelle, module, type, bydefault)"; $sql .= " VALUES "; - $sql .= "(".$r_id.",'".$r_desc."','".$r_modul."','".$r_type."',".$r_def.");"; - } - - if ( $this->db->query($sql) ) - { + $sql .= "(".$r_id.",'".addslashes($r_desc)."','".$r_modul."','".$r_type."',".$r_def.");"; } + $this->db->query($sql); } }