From: Janusz Dobrowolski <janusz@frontaccounting.eu>
Date: Fri, 18 Apr 2008 20:45:34 +0000 (+0000)
Subject: db_escape() protection in rest of source code
X-Git-Tag: v2.4.2~19^2~2097
X-Git-Url: https://delta.frontaccounting.com/gitweb/?a=commitdiff_plain;h=902dc617093bacaa492899be36484fe4f3dc16a6;p=fa-stable.git

db_escape() protection in rest of source code
---

diff --git a/CHANGELOG.txt b/CHANGELOG.txt
index da6f5bba..efcd633a 100644
--- a/CHANGELOG.txt
+++ b/CHANGELOG.txt
@@ -19,6 +19,30 @@ Legend:
 ! -> Note
 $ -> Affected files
 
+18-Apr-2008 Janusz Dobrowolski
+# Additional checks on provisions and break point entry.
+$ /sales/manage/sales_people.php
+! Modules purchasing, sales and taxes sealed against XSS attacks
+$ /install/save.php
+  /admin/db/maintenance_db.inc
+  /purchasing/includes/db/grn_db.inc
+  /purchasing/includes/db/invoice_items_db.inc
+  /purchasing/includes/db/po_db.inc
+  /purchasing/includes/db/supp_trans_db.inc
+  /purchasing/manage/suppliers.php
+  /sales/includes/db/credit_status_db.inc
+  /sales/includes/db/cust_trans_db.inc
+  /sales/includes/db/cust_trans_details_db.inc
+  /sales/includes/db/sales_order_db.inc
+  /sales/includes/db/sales_types_db.inc
+  /sales/manage/customer_branches.php
+  /sales/manage/customers.php
+  /sales/manage/sales_areas.php
+  /sales/manage/sales_people.php
+  /taxes/db/item_tax_types_db.inc
+  /taxes/db/tax_groups_db.inc
+  /taxes/db/tax_types_db.inc
+
 18-Apr-2008 Joe Hunt
 ! Module gl sealed against XSS Attacks
 $ /gl/includes/db/gl_db_accounts.inc