{
if ($selected_id == -1)
return false;
- $sql = "SELECT COUNT(*) FROM ".TB_PREF."cust_branch WHERE tax_group_id=$selected_id";
+ $sql = "SELECT COUNT(*) FROM ".TB_PREF."cust_branch WHERE tax_group_id=".db_escape($selected_id);
$result = db_query($sql, "could not query customers");
$myrow = db_fetch_row($result);
if ($myrow[0] > 0)
return false;
}
- $sql = "SELECT COUNT(*) FROM ".TB_PREF."suppliers WHERE tax_group_id=$selected_id";
+ $sql = "SELECT COUNT(*) FROM ".TB_PREF."suppliers WHERE tax_group_id=".db_escape($selected_id);
$result = db_query($sql, "could not query suppliers");
$myrow = db_fetch_row($result);
if ($myrow[0] > 0)
inactive_control_row($th);
end_table(1);
-end_form(); // was missing
+
//-----------------------------------------------------------------------------------
-start_form(); // was missing
+
start_table($table_style2);
if ($selected_id != -1)
$_POST['rate' . $i] = percent_format($tax_item["rate"]);
$i ++;
}
+ while($i<5) unset($_POST['tax_type_id'.$i++]);
}
hidden('selected_id', $selected_id);