X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;ds=sidebyside;f=sales%2Fmanage%2Fcredit_status.php;h=998da84b66927883802c8760e9ab289468cd32fd;hb=e29ab37ef51f39c200c3772e07eeceef0ce39214;hp=8d9400cc886a81757263a7f5b6722137d5b7d95c;hpb=7d9fe15f85c15572535c5fa4555b9a72e9d93f04;p=fa-stable.git

diff --git a/sales/manage/credit_status.php b/sales/manage/credit_status.php
index 8d9400cc..998da84b 100644
--- a/sales/manage/credit_status.php
+++ b/sales/manage/credit_status.php
@@ -59,7 +59,7 @@ if ($Mode=='UPDATE_ITEM' && can_process())
 function can_delete($selected_id)
 {
 	$sql= "SELECT COUNT(*) FROM ".TB_PREF."debtors_master 
-		WHERE credit_status=$selected_id";
+		WHERE credit_status=".db_escape($selected_id);
 	$result = db_query($sql, "could not query customers");
 	$myrow = db_fetch_row($result);
 	if ($myrow[0] > 0)