$sql = "INSERT INTO ".TB_PREF."workorders (wo_ref, loc_code, units_reqd, stock_id,
type, date_, required_by)
- VALUES ('$wo_ref', '$loc_code', $units_reqd, '$stock_id',
+ VALUES (".db_escape($wo_ref).", ".db_escape($loc_code).", $units_reqd, '$stock_id',
$type, '$date', '$required')";
db_query($sql, "could not add work order");
add_comments(systypes::work_order(), $woid, $required_by, $memo_);
- add_forms_for_sys_type(systypes::work_order(), $woid);
-
references::save_last($wo_ref, systypes::work_order());
commit_transaction();
$date = date2sql($date_);
$required = date2sql($required_by);
- $sql = "UPDATE ".TB_PREF."workorders SET loc_code='$loc_code',
+ $sql = "UPDATE ".TB_PREF."workorders SET loc_code=".db_escape($loc_code).",
units_reqd=$units_reqd, stock_id='$stock_id',
required_by='$required',
date_='$date'
delete_comments(systypes::work_order(), $woid);
- delete_forms_for_systype(systypes::work_order(), $woid);
-
commit_transaction();
}
$result = db_query($sql, "The work order issues could not be retrieved");
if (!$allow_null && db_num_rows($result) == 0)
- display_db_error("Could not find work order $workOrder", $sql);
+ display_db_error("Could not find work order $woid", $sql);
return db_fetch($result);
}