Moving 2.0 development version to main trunk.

[fa-stable.git] / gl / includes / db / gl_db_bank_trans_types.inc

diff --git a/gl/includes/db/gl_db_bank_trans_types.inc b/gl/includes/db/gl_db_bank_trans_types.inc
index 66e1cdd6f9b55863c0e1e107cdb8f2ca55802b60..7a6e580735054d456160fdab9a8282a228dfb9dd 100644 (file)
--- a/gl/includes/db/gl_db_bank_trans_types.inc
+++ b/gl/includes/db/gl_db_bank_trans_types.inc
@@ -2,39 +2,39 @@
 
 function add_bank_trans_type($name)
 {
-       $sql = "INSERT INTO ".TB_PREF."bank_trans_types (name) VALUES ('$name')";
-               
-       db_query($sql, "could not add bank transaction type");          
+       $sql = "INSERT INTO ".TB_PREF."bank_trans_types (name) VALUES (".db_escape($name).")";
+
+       db_query($sql, "could not add bank transaction type");
 }
 
 function update_bank_trans_type($type_id, $name)
 {
-       $sql = "UPDATE ".TB_PREF."bank_trans_types SET name='$name'     WHERE id=$type_id";
-       
-       db_query($sql, "could not update bank transaction type");                       
+       $sql = "UPDATE ".TB_PREF."bank_trans_types SET name=".db_escape($name)."        WHERE id=$type_id";
+
+       db_query($sql, "could not update bank transaction type");
 }
 
 function get_all_bank_trans_type()
 {
        $sql = "SELECT * FROM ".TB_PREF."bank_trans_types";
-       
+
        return db_query($sql, "could not get all bank transaction type");
-} 
+}
 
 function get_bank_trans_type($type_id)
 {
        $sql = "SELECT * FROM ".TB_PREF."bank_trans_types WHERE id=$type_id";
-       
+
        $result = db_query($sql, "could not get bank transaction type");
-       
+
        return db_fetch($result);
 }
 
 function delete_bank_trans_type($type_id)
 {
        $sql="DELETE FROM ".TB_PREF."bank_trans_types WHERE id=$type_id";
-               
-       db_query($sql, "could not delete bank transaction type");       
+
+       db_query($sql, "could not delete bank transaction type");
 }
 
 ?>
\ No newline at end of file