projects / fa-stable.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Security update merged from 2.1.
[fa-stable.git] / reporting / rep501.php
diff --git a/reporting/rep501.php b/reporting/rep501.php
index 8e9653b46485d2cfb810fa0b1d408c959f681487..45047adc021cbac1139fcbda68595977e5394307 100644 (file)
--- a/reporting/rep501.php
+++ b/reporting/rep501.php
@@ -32,8 +32,8 @@ function getTransactions($from, $to)
        $sql = "SELECT *
                FROM
                        ".TB_PREF."dimensions
-               WHERE reference >= '$from'
-               AND reference <= '$to'
+               WHERE reference >= ".db_escape($from)."
+               AND reference <= ".db_escape($to)."
                ORDER BY
                        reference";
 
FrontAccounting stable branch