projects / fa-stable.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
Security update merged from 2.1.
[fa-stable.git] / reporting / rep204.php
diff --git a/reporting/rep204.php b/reporting/rep204.php
index 5521c7450e40eec5673b46c28e685fbadcbc07a6..2c8250cd3ba33d195ef7ce0aa277a227b02e5500 100644 (file)
--- a/reporting/rep204.php
+++ b/reporting/rep204.php
@@ -48,8 +48,9 @@ function getTransactions($fromsupp)
                AND ".TB_PREF."grn_batch.id = ".TB_PREF."grn_items.grn_batch_id
                AND ".TB_PREF."grn_items.po_detail_item = ".TB_PREF."purch_order_details.po_detail_item
                AND qty_recd-quantity_inv <>0 ";
+
        if ($fromsupp != ALL_NUMERIC)
-               $sql .= "AND ".TB_PREF."grn_batch.supplier_id ='" . $fromsupp . "' ";
+               $sql .= "AND ".TB_PREF."grn_batch.supplier_id =".db_escape($fromsupp)." ";
        $sql .= "ORDER BY ".TB_PREF."grn_batch.supplier_id,
                        ".TB_PREF."grn_batch.id";
 
FrontAccounting stable branch