X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=blobdiff_plain;f=taxes%2Ftax_calc.inc;h=7107cdca7a75c8f6732e533231faeda6c84cc92e;hb=e29ab37ef51f39c200c3772e07eeceef0ce39214;hp=1209d62133eca1f355f073e7f2a464b95b999aaa;hpb=86e4d1627183fb4d97fe145a5dd33b43b03284ee;p=fa-stable.git

diff --git a/taxes/tax_calc.inc b/taxes/tax_calc.inc
index 1209d621..7107cdca 100644
--- a/taxes/tax_calc.inc
+++ b/taxes/tax_calc.inc
@@ -210,7 +210,7 @@ function get_tax_for_items($items, $prices, $shipping_cost, $tax_group, $tax_inc
 function is_tax_account($account_code)
 {
 	$sql= "SELECT id FROM ".TB_PREF."tax_types WHERE 
-		sales_gl_code='$account_code' OR purchasing_gl_code='$account_code'";
+		sales_gl_code=".db_escape($account_code)." OR purchasing_gl_code=".db_escape($account_code);
 	$result = db_query($sql, "checking account is tax account");
 	if (db_num_rows($result) > 0) {
 		$acct = db_fetch($result);