- if ($_POST['supplier_id'] != ALL_TEXT) {
- $sql .= " AND trans.supplier_id = ".db_escape($_POST['supplier_id']);
- $sql2 .= " AND trans.supplier_id = ".db_escape($_POST['supplier_id']);
+ if ($supplier_id != ALL_TEXT) {
+ $sql .= " AND trans.supplier_id = ".db_escape($supplier_id);
+ $sql2 .= " AND trans.supplier_id = ".db_escape($supplier_id);