webERP Forum webERP Discussion Problems / Bugs? v
Inconsistent escaping of problem characters for SQL (' & etc.)

Thread Rating:
  • 0 Vote(s) - 0 Average
  • 1
  • 2
  • 3
  • 4
  • 5
Thread Modes
Inconsistent escaping of problem characters for SQL (' & etc.)
02-26-2014, 06:08 AM,
#5
Forums Offline
Senior Member
****
 		Posts: 155
Threads: 9
Joined: Jan 2014
RE: Inconsistent escaping of problem characters for SQL (' & etc.)
(02-25-2014, 09:55 AM)serakfalcon Wrote: While setting up my chart of accounts I notice the ampersand exists in the default account "Furniture & Fixtures", however adding a new account with the ampersand results in it being stored in the database and returned as "&" the HTML escape code (which actually isn't processed by the
browser for some reason (this is true for GLAccounts.php)).

This is due to the account description being incorrectly encoded for HTML special characters on line 321. Removing this should allow it to be saved and viewed correctly. Line 321 changes from:

htmlspecialchars($myrow[1],ENT_QUOTES,'UTF-8'),
to
$myrow[1],

Thanks
Tim
Website Find
Reply


Messages In This Thread
RE: Inconsistent escaping of problem characters for SQL (' & etc.) - by Forums - 02-26-2014, 06:08 AM

Forum Jump:


Users browsing this thread: 1 Guest(s)