X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;ds=sidebyside;f=purchasing%2Fincludes%2Fdb%2Fsuppalloc_db.inc;h=959be3e2f2d6a1274737a739c27fb4a838df62a9;hb=64d4d934eeecbc56ce59b60ec12183878f69b6f6;hp=a68c9cfe6ee481845d96c0ca678cc61467e9524f;hpb=e2fa1c1b9543dedb3cd0a3a36dc539c86f7ff473;p=fa-stable.git

diff --git a/purchasing/includes/db/suppalloc_db.inc b/purchasing/includes/db/suppalloc_db.inc
index a68c9cfe..959be3e2 100644
--- a/purchasing/includes/db/suppalloc_db.inc
+++ b/purchasing/includes/db/suppalloc_db.inc
@@ -170,7 +170,7 @@ function get_allocatable_to_supp_transactions($supplier_id, $trans_no=null, $typ
 	{
 		$sql = get_alloc_supp_sql(null, "round(ABS(ov_amount+ov_gst+ov_discount)-alloc,6) > 0
 			AND trans.type != ".ST_SUPPAYMENT."
-			AND trans.supplier_id=$supplier_id");
+			AND trans.supplier_id=".db_escape($supplier_id));
 	}
 
 	return db_query($sql." ORDER BY trans_no", "Cannot retreive alloc to transactions");