X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=gl%2Fmanage%2Fexchange_rates.php;h=0127b40be7fa6212bd3b7ff8aaac7aacc98a470e;hb=510d6e1925c4d1621ae3efd85e117cc9bb4320f0;hp=dd2ee6e6dbe7295ee201118d6a6af24fd0acaea2;hpb=902f1015d874c33bd7946b17de2ad80b4f2144b6;p=fa-stable.git

diff --git a/gl/manage/exchange_rates.php b/gl/manage/exchange_rates.php
index dd2ee6e6..0127b40b 100644
--- a/gl/manage/exchange_rates.php
+++ b/gl/manage/exchange_rates.php
@@ -186,7 +186,7 @@ set_global_curr_code($_POST['curr_abrev']);
 
 $sql = "SELECT date_, rate_buy, id FROM "
 	.TB_PREF."exchange_rates "
-	."WHERE curr_code='".$_POST['curr_abrev']."'
+	."WHERE curr_code=".db_escape($_POST['curr_abrev'])."
 	 ORDER BY date_ DESC";
 
 $cols = array(
@@ -207,10 +207,6 @@ else
 {
 
 	br(1);
-   	if (list_updated('curr_abrev')) {
-		$table->set_sql($sql);
-		$table->set_columns($cols);
-	}
 	$table->width = "40%";
 	display_db_pager($table);
    	br(1);