WHERE ".TB_PREF."stock_master.category_id=".TB_PREF."stock_category.category_id
AND (".TB_PREF."stock_master.mb_flag='B' OR ".TB_PREF."stock_master.mb_flag='M')";
if ($category != 0)
- $sql .= " AND ".TB_PREF."stock_master.category_id = '$category'";
+ $sql .= " AND ".TB_PREF."stock_master.category_id = ".db_escape($category);
if ($location != 'all')
- $sql .= " AND IF(".TB_PREF."stock_moves.stock_id IS NULL, '1=1',".TB_PREF."stock_moves.loc_code = '$location')";
+ $sql .= " AND IF(".TB_PREF."stock_moves.stock_id IS NULL, '1=1',".TB_PREF."stock_moves.loc_code = ".db_escape($location).")";
$sql .= " GROUP BY ".TB_PREF."stock_master.category_id,
".TB_PREF."stock_category.description,
".TB_PREF."stock_master.stock_id,
function print_stock_check()
{
- global $comp_path, $path_to_root, $pic_height, $pic_width;
+ global $path_to_root, $pic_height, $pic_width;
$category = $_POST['PARAM_0'];
$location = $_POST['PARAM_1'];
$rep->Font();
$rep->Info($params, $cols, $headers, $aligns);
- $rep->Header();
+ $rep->NewPage();
$res = getTransactions($category, $location);
$catt = '';
}
if ($pictures)
{
- $image = $comp_path .'/'. $user_comp . '/images/'
+ $image = company_path() . '/images/'
. item_img_name($trans['stock_id']) . '.jpg';
if (file_exists($image))
{
$rep->NewLine();
if ($rep->row - $pic_height < $rep->bottomMargin)
- $rep->Header();
+ $rep->NewPage();
$rep->AddImage($image, $rep->cols[1], $rep->row - $pic_height, 0, $pic_height);
$rep->row -= $pic_height;
$rep->NewLine();