X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=admin%2Fprinters.php;h=d46afeeb0f0ff9aaae9906eca2a20399d61690e7;hb=5bc87f4965ed7601c1580512b41f78762389f3c3;hp=a9137161a2a2763c5084a1ce264d3826a1a8220c;hpb=c4eae7a18f0eb824e6eda7be2ba6fa820e9e58c9;p=fa-stable.git

diff --git a/admin/printers.php b/admin/printers.php
index a9137161..d46afeeb 100644
--- a/admin/printers.php
+++ b/admin/printers.php
@@ -9,11 +9,11 @@
     MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  
     See the License here <http://www.gnu.org/licenses/gpl-3.0.html>.
 ***********************************************************************/
-$page_security = 15;
+$page_security = 'SA_PRINTERS';
 $path_to_root="..";
 include($path_to_root . "/includes/session.inc");
 
-page(_("Printer Locations"));
+page(_($help_context = "Printer Locations"));
 
 include($path_to_root . "/admin/db/printers_db.inc");
 include($path_to_root . "/includes/ui.inc");
@@ -59,7 +59,7 @@ if ($Mode == 'Delete')
 {
 	// PREVENT DELETES IF DEPENDENT RECORDS IN print_profiles
 
-	$sql= "SELECT COUNT(*) FROM ".TB_PREF."print_profiles WHERE printer = '$selected_id'";
+	$sql= "SELECT COUNT(*) FROM ".TB_PREF."print_profiles WHERE printer = ".db_escape($selected_id);
 	$result = db_query($sql,"check printers relations failed");
 	$myrow = db_fetch_row($result);
 	if ($myrow[0] > 0) 
@@ -68,7 +68,7 @@ if ($Mode == 'Delete')
 	} 
 	else 
 	{
-			$sql="DELETE FROM ".TB_PREF."printers WHERE id='$selected_id'";
+			$sql="DELETE FROM ".TB_PREF."printers WHERE id=".db_escape($selected_id);
 			db_query($sql,"could not delete printer definition");
 			display_notification(_('Selected printer definition has been deleted'));
 	}