Fixed db error after last changes related to bug 313

diff --git a/CHANGELOG.txt b/CHANGELOG.txt
index 289f7348ae0a17903cb221132599861824bb3a5f..edacf4a4f17430d65c84ba03ec92442ebf7ad21a 100644 (file)
--- a/CHANGELOG.txt
+++ b/CHANGELOG.txt
@@ -19,6 +19,10 @@ Legend:
 ! -> Note
 $ -> Affected files
 
+12-Dec-2010 Janusz Dobrowolski
+# [0000318] Database error after last changes related to bu 313
+$ /purchasing/includes/ui/po_ui.inc
+
 ------------------------------- Release 2.3 ------------------------------------
 09-Dec-2010 Joe Hunt
 ! Release 2.3.0

diff --git a/purchasing/includes/ui/po_ui.inc b/purchasing/includes/ui/po_ui.inc
index 5f713a481791f8d3e7eb0b8612489eb3e6639861..d5ae6fc1e3b6f50ef3fe83a0c700bb15b5aa13d9 100644 (file)
--- a/purchasing/includes/ui/po_ui.inc
+++ b/purchasing/includes/ui/po_ui.inc
@@ -201,7 +201,7 @@ function display_po_header(&$order)
        /*If this is the first time the form loaded set up defaults */
 
         //$_POST['StkLocation'] = $_SESSION['UserStockLocation'];
-        $sql = "SELECT delivery_address, phone FROM ".TB_PREF."locations WHERE loc_code='" . db_escape($_POST['StkLocation']) . "'";
+        $sql = "SELECT delivery_address, phone FROM ".TB_PREF."locations WHERE loc_code=".db_escape($_POST['StkLocation']);
         $result = db_query($sql,"could not get location info");
 
         if (db_num_rows($result) == 1)