Fixed bug in printer selection introduced during security update and

merged from main trunk.

diff --git a/CHANGELOG.txt b/CHANGELOG.txt
index 6d794a359d637a8627cb8d040cb03294b6f28f2e..7f3d3d8acdfecf94a84ba03aa4dcfbb17058ffa9 100644 (file)
--- a/CHANGELOG.txt
+++ b/CHANGELOG.txt
@@ -19,6 +19,10 @@ Legend:
 ! -> Note
 $ -> Affected files
 
+04-Nov-2009 Janusz Dobrowolski
+# Fixed bug introduced during security update and merged from main trunk.
+$ /admin/db/printers_db.inc
+
 03-Nov-2009 Janusz Dobrowolski
 ! Added optional parameter to add_bank_transaction
 $ /gl/includes/db/gl_db_banking.inc

diff --git a/admin/db/printers_db.inc b/admin/db/printers_db.inc
index 572dca5e2b28eba5b8fc0ddc61911777cded1cda..c1d80368b1d156acb76922d5a9a5a4d24c7eb33d 100644 (file)
--- a/admin/db/printers_db.inc
+++ b/admin/db/printers_db.inc
@@ -71,7 +71,7 @@ function update_printer_profile($name, $dest)
 function get_report_printer($profile, $report)
 {
        $sql = "SELECT printer FROM ".TB_PREF."print_profiles WHERE "
-               ."profile=".db_escape($profile)." AND report=".db_escape($report);
+               ."profile=".db_escape($profile)." AND report=";
 
        $result = db_query($sql.db_escape($report), 'report printer lookup failed');