{
// curently outstanding simply means not closed
$outstanding_only = 1;
- page(_("Search Outstanding Work Orders"), false, false, "", $js);
+ page(_($help_context = "Search Outstanding Work Orders"), false, false, "", $js);
}
else
{
$outstanding_only = 0;
- page(_("Search Work Orders"), false, false, "", $js);
+ page(_($help_context = "Search Work Orders"), false, false, "", $js);
}
//-----------------------------------------------------------------------------------
// Ajax updates
end_row();
end_table();
-end_form();
-
//-----------------------------------------------------------------------------
function check_overdue($row)
{
if (isset($_POST['StockLocation']) && $_POST['StockLocation'] != $all_items)
{
- $sql .= " AND workorder.loc_code='" . $_POST['StockLocation'] . "' ";
+ $sql .= " AND workorder.loc_code=".db_escape($_POST['StockLocation']);
}
if (isset($_POST['OrderNumber']) && $_POST['OrderNumber'] != "")
{
- $sql .= " AND workorder.wo_ref LIKE '%". $_POST['OrderNumber'] . "%'";
+ $sql .= " AND workorder.wo_ref LIKE ".db_escape('%'.$_POST['OrderNumber'].'%');
}
if (isset($_POST['SelectedStockItem']) && $_POST['SelectedStockItem'] != $all_items)
{
- $sql .= " AND workorder.stock_id='". $_POST['SelectedStockItem'] . "'";
+ $sql .= " AND workorder.stock_id=".db_escape($_POST['SelectedStockItem']);
}
if (check_value('OverdueOnly'))
$table->set_marker('check_overdue', _("Marked orders are overdue."));
$table->width = "90%";
-start_form();
display_db_pager($table);