03-05-2014, 06:22 PM
At many places, While inputting data it checks for special characters like single quote (') and it is entered in DB with a "/" in front of the single quote in the SQL table. But while retrieving data, the same single quote is not handled properly and it is causing SQL syntax error due to the single quote.
This caused a problem when I had entered a product description with single quote in the supplier's pricelist. This single quote was causing a problem in the sQL syntax when I was trying to reverse the GRN. I guess the single quote was not handled when the data was read back from the DB.
May be this kind of errors can be there in other pages too.
May be it is good to remove or restrict such characters which can cause errors in SQL syntax. This way the code for checking the data at multiple places can be avoided.
This caused a problem when I had entered a product description with single quote in the supplier's pricelist. This single quote was causing a problem in the sQL syntax when I was trying to reverse the GRN. I guess the single quote was not handled when the data was read back from the DB.
May be this kind of errors can be there in other pages too.
May be it is good to remove or restrict such characters which can cause errors in SQL syntax. This way the code for checking the data at multiple places can be avoided.