X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=inventory%2Fincludes%2Fdb%2Fitems_purchases_db.inc;h=2cebd696e17f6635938a174f6b9e30d65cf67cba;hb=15ceade075f08d00f299129499197b1358fd63f4;hp=33f765a80dc2d1975c34e7de843cf3cb98a0cbe5;hpb=f44132511cc91b83f20f91af0625d4b112b4c26e;p=fa-stable.git

diff --git a/inventory/includes/db/items_purchases_db.inc b/inventory/includes/db/items_purchases_db.inc
index 33f765a8..2cebd696 100644
--- a/inventory/includes/db/items_purchases_db.inc
+++ b/inventory/includes/db/items_purchases_db.inc
@@ -13,12 +13,15 @@
 function add_item_purchasing_data($supplier_id, $stock_id, $price,
 	$suppliers_uom, $conversion_factor, $supplier_description)
 {
+	$supp_desc = db_escape($supplier_description);
+	if (strlen($supp_desc) > 50) // to be fixed and removed in 2.5
+		$supp_desc = substr($supp_desc, 0, 50)."'";
 	$sql = "INSERT INTO ".TB_PREF."purch_data (supplier_id, stock_id, price, suppliers_uom,
 		conversion_factor, supplier_description) VALUES (";
 	$sql .= db_escape($supplier_id).", ".db_escape($stock_id). ", "
 		.$price . ", ".db_escape($suppliers_uom ). ", "
 		.$conversion_factor . ", "
-		.db_escape($supplier_description) . ")";
+		.$supp_desc . ")";
 
 	db_query($sql,"The supplier purchasing details could not be added");
 }
@@ -26,10 +29,13 @@ function add_item_purchasing_data($supplier_id, $stock_id, $price,
 function update_item_purchasing_data($selected_id, $stock_id, $price,
 	$suppliers_uom, $conversion_factor, $supplier_description)
 {
+	$supp_desc = db_escape($supplier_description);
+	if (strlen($supp_desc) > 50) // to be fixed and removed in 2.5
+		$supp_desc = substr($supp_desc, 0, 50) ."'";
 	$sql = "UPDATE ".TB_PREF."purch_data SET price=" . $price . ",
 		suppliers_uom=".db_escape($suppliers_uom) . ",
 		conversion_factor=" . $conversion_factor . ",
-		supplier_description=" . db_escape($supplier_description) . "
+		supplier_description=" . $supp_desc . "
 		WHERE stock_id=".db_escape($stock_id) . " AND
 		supplier_id=".db_escape($selected_id);
 	db_query($sql,"The supplier purchasing details could not be updated");
@@ -57,7 +63,7 @@ function get_item_purchasing_data($selected_id, $stock_id)
 	$sql = "SELECT pdata.*, supplier.supp_name
 		FROM ".TB_PREF."purch_data pdata
 			INNER JOIN ".TB_PREF."suppliers supplier ON pdata.supplier_id=supplier.supplier_id
-		WHERE pata.supplier_id=".db_escape($selected_id)."
+		WHERE pdata.supplier_id=".db_escape($selected_id)."
 			AND pdata.stock_id=".db_escape($stock_id);
 
 	$result = db_query($sql, "The supplier purchasing details for the selected supplier and item could not be retrieved");