X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=reporting%2Frep203.php;h=f61e4bbf69a337a128f14fbf67847ea5ec7d904a;hb=e29ab37ef51f39c200c3772e07eeceef0ce39214;hp=c276188f8a6d0befbcb2cab9f91cb57c31c0fb85;hpb=7d9fe15f85c15572535c5fa4555b9a72e9d93f04;p=fa-stable.git

diff --git a/reporting/rep203.php b/reporting/rep203.php
index c276188f..f61e4bbf 100644
--- a/reporting/rep203.php
+++ b/reporting/rep203.php
@@ -107,7 +107,7 @@ function print_payment_report()
 	$sql = "SELECT supplier_id, supp_name AS name, curr_code, ".TB_PREF."payment_terms.terms FROM ".TB_PREF."suppliers, ".TB_PREF."payment_terms
 		WHERE ";
 	if ($fromsupp != reserved_words::get_all_numeric())
-		$sql .= "supplier_id=$fromsupp AND ";
+		$sql .= "supplier_id=".db_escape($fromsupp)." AND ";
 	$sql .= "".TB_PREF."suppliers.payment_terms = ".TB_PREF."payment_terms.terms_indicator
 		ORDER BY supp_name";
 	$result = db_query($sql, "The customers could not be retrieved");