projects
/
fa-stable.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
Changed Journal Inquiries so it shows the Bank Deposit/Payment amount instead of...
[fa-stable.git]
/
admin
/
payment_terms.php
diff --git
a/admin/payment_terms.php
b/admin/payment_terms.php
index 1dd5dc67d9b533af4a79efd18634046d4ebe76ec..1e0f8c652bb8529c0e1605db8b1789692e378ac0 100644
(file)
--- a/
admin/payment_terms.php
+++ b/
admin/payment_terms.php
@@
-13,7
+13,7
@@
$page_security = 'SA_PAYTERMS';
$path_to_root="..";
include($path_to_root . "/includes/session.inc");
$path_to_root="..";
include($path_to_root . "/includes/session.inc");
-page(_("Payment Terms"));
+page(_(
$help_context =
"Payment Terms"));
include($path_to_root . "/includes/ui.inc");
include($path_to_root . "/includes/ui.inc");
@@
-103,7
+103,7
@@
if ($Mode == 'Delete')
{
// PREVENT DELETES IF DEPENDENT RECORDS IN debtors_master
{
// PREVENT DELETES IF DEPENDENT RECORDS IN debtors_master
- $sql= "SELECT COUNT(*) FROM ".TB_PREF."debtors_master WHERE payment_terms =
'$selected_id'"
;
+ $sql= "SELECT COUNT(*) FROM ".TB_PREF."debtors_master WHERE payment_terms =
".db_escape($selected_id)
;
$result = db_query($sql,"check failed");
$myrow = db_fetch_row($result);
if ($myrow[0] > 0)
$result = db_query($sql,"check failed");
$myrow = db_fetch_row($result);
if ($myrow[0] > 0)
@@
-112,7
+112,7
@@
if ($Mode == 'Delete')
}
else
{
}
else
{
- $sql= "SELECT COUNT(*) FROM ".TB_PREF."suppliers WHERE payment_terms =
'$selected_id'"
;
+ $sql= "SELECT COUNT(*) FROM ".TB_PREF."suppliers WHERE payment_terms =
".db_escape($selected_id)
;
$result = db_query($sql,"check failed");
$myrow = db_fetch_row($result);
if ($myrow[0] > 0)
$result = db_query($sql,"check failed");
$myrow = db_fetch_row($result);
if ($myrow[0] > 0)
@@
-123,7
+123,7
@@
if ($Mode == 'Delete')
{
//only delete if used in neither customer or supplier accounts
{
//only delete if used in neither customer or supplier accounts
- $sql="DELETE FROM ".TB_PREF."payment_terms WHERE terms_indicator=
'$selected_id'"
;
+ $sql="DELETE FROM ".TB_PREF."payment_terms WHERE terms_indicator=
".db_escape($selected_id)
;
db_query($sql,"could not delete a payment terms");
display_notification(_('Selected payment terms have been deleted'));
}
db_query($sql,"could not delete a payment terms");
display_notification(_('Selected payment terms have been deleted'));
}
@@
-198,7
+198,7
@@
if ($selected_id != -1)
if ($Mode == 'Edit') {
//editing an existing payment terms
$sql = "SELECT * FROM ".TB_PREF."payment_terms
if ($Mode == 'Edit') {
//editing an existing payment terms
$sql = "SELECT * FROM ".TB_PREF."payment_terms
- WHERE terms_indicator=
'$selected_id'"
;
+ WHERE terms_indicator=
".db_escape($selected_id)
;
$result = db_query($sql,"could not get payment term");
$myrow = db_fetch($result);
$result = db_query($sql,"could not get payment term");
$myrow = db_fetch($result);