X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=manufacturing%2Fincludes%2Fdb%2Fwork_orders_quick_db.inc;h=cb16e374123e8759e708fd4fc2d89d27bfbfc05f;hb=b32d16b2c0c6c43e569ebe87e2a13ceb892b5788;hp=940145af6a5d64802bcbd0cfc7ede6e8f8ee27dd;hpb=7a50c189ea995d5fe6785feb7710c00396065d2b;p=fa-stable.git

diff --git a/manufacturing/includes/db/work_orders_quick_db.inc b/manufacturing/includes/db/work_orders_quick_db.inc
index 940145af..cb16e374 100644
--- a/manufacturing/includes/db/work_orders_quick_db.inc
+++ b/manufacturing/includes/db/work_orders_quick_db.inc
@@ -18,7 +18,7 @@ function add_work_order_quick($wo_ref, $loc_code, $units_reqd, $stock_id, $type,
 
 	$sql = "INSERT INTO ".TB_PREF."workorders (wo_ref, loc_code, units_reqd, units_issued, stock_id,
 		type, additional_costs, date_, released_date, required_by, released, closed)
-    	VALUES ('$wo_ref', '$loc_code', $units_reqd, $units_reqd, '$stock_id',
+    	VALUES (".db_escape($wo_ref).", ".db_escape($loc_code).", $units_reqd, $units_reqd, '$stock_id',
 		$type, $additional_costs, '$date', '$date', '$date', 1, 1)";
 	db_query($sql, "could not add work order");