if ($type_name)
$sql .= ", t.$type_name as type";
$sql .= " FROM $table_name t LEFT JOIN ".TB_PREF."voided v ON"
- ." t.$trans_no_name=v.id AND v.type=$filtertype";
+ ." t.$trans_no_name=v.id AND v.type=".db_escape($filtertype);
$sql .= " WHERE ISNULL(v.`memo_`)";
if ($from != null && $to != null)
$type_fld = $db_info[1];
$tno_fld = $db_info[2];
$ref_fld = $db_info[3];
+ $type = db_escape($type);
// retrieve last ref number in the refline from original transaction table
$sql = "SELECT MAX(CAST(SUBSTR($ref_fld, ".(strlen($prefix)+1).",LENGTH($ref_fld)-".(strlen($postfix)+strlen($prefix)).") AS UNSIGNED))"
projects / fa-stable.git / commitdiff