- debtor_no = " . db_quote($order->customer_id) . ",
- branch_code = " . db_quote($order->Branch) . ",
- customer_ref = ". db_quote($order->cust_ref) .",
- comments = ". db_quote($order->Comments) .",
- ord_date = " . db_quote($ord_date) . ",
- order_type = " .db_quote($order->sales_type) . ",
- ship_via = " . db_quote($order->ship_via) .",
- deliver_to = " . db_quote($order->deliver_to) . ",
- delivery_address = " . db_quote($order->delivery_address) . ",
- contact_phone = " .db_quote($order->phone) . ",
- contact_email = " .db_quote($order->email) . ",
- freight_cost = " .db_quote($order->freight_cost) .",
- from_stk_loc = " .db_quote($order->Location) .",
- delivery_date = " .db_quote($del_date). ",
+ debtor_no = " . db_escape($order->customer_id) . ",
+ branch_code = " . db_escape($order->Branch) . ",
+ customer_ref = ". db_escape($order->cust_ref) .",
+ comments = ". db_escape($order->Comments) .",
+ ord_date = " . db_escape($ord_date) . ",
+ order_type = " .db_escape($order->sales_type) . ",
+ ship_via = " . db_escape($order->ship_via) .",
+ deliver_to = " . db_escape($order->deliver_to) . ",
+ delivery_address = " . db_escape($order->delivery_address) . ",
+ contact_phone = " .db_escape($order->phone) . ",
+ contact_email = " .db_escape($order->email) . ",
+ freight_cost = " .db_escape($order->freight_cost) .",
+ from_stk_loc = " .db_escape($order->Location) .",
+ delivery_date = " .db_escape($del_date). ",