projects
/
fa-stable.git
/ blobdiff
commit
grep
author
committer
pickaxe
?
search:
re
summary
|
shortlog
|
log
|
commit
|
commitdiff
|
tree
raw
|
inline
| side by side
A couple of security issues fixed.
[fa-stable.git]
/
taxes
/
db
/
tax_types_db.inc
diff --git
a/taxes/db/tax_types_db.inc
b/taxes/db/tax_types_db.inc
index f42470eff9b5b3134a02d70e9520ad44e211510f..a9325b60b10fd8b561beffc2ff19394e0e5da2d6 100644
(file)
--- a/
taxes/db/tax_types_db.inc
+++ b/
taxes/db/tax_types_db.inc
@@
-83,7
+83,7
@@
function delete_tax_type($type_id)
db_query($sql, "could not delete tax type");
// also delete any item tax exemptions associated with this type
db_query($sql, "could not delete tax type");
// also delete any item tax exemptions associated with this type
- $sql = "DELETE FROM ".TB_PREF."item_tax_type_exemptions WHERE tax_type_id=
$type_id"
;
+ $sql = "DELETE FROM ".TB_PREF."item_tax_type_exemptions WHERE tax_type_id=
".db_escape($type_id)
;
db_query($sql, "could not delete item tax type exemptions");
db_query($sql, "could not delete item tax type exemptions");
@@
-127,4
+127,4
@@
function is_tax_account($account_code)
}
}
-?>
\ No newline at end of file
+?>