diff options
| -rwxr-xr-x | LedgerSMB/CT.pm | 8 |
1 files changed, 4 insertions, 4 deletions
diff --git a/LedgerSMB/CT.pm b/LedgerSMB/CT.pm index 54bdd556..e57af3b6 100755 --- a/LedgerSMB/CT.pm +++ b/LedgerSMB/CT.pm @@ -593,15 +593,15 @@ sub search { push @a, qw(name contact city state zipcode country notes phone email); if ( $form->{employee} ) { - $var = $form->like( lc $form->{employee} ); - $where .= " AND lower(e.name) LIKE '$var'"; + $var = $dbh->quote($form->like(lc $form->{employee})); + $where .= " AND lower(e.name) LIKE $var"; } foreach $item (@a) { if ( $form->{$item} ne "" ) { - $var = $form->like( lc $form->{$item} ); - $where .= " AND lower(ct.$item) LIKE '$var'"; + $var = $dbh->quote($form->like( lc $form->{$item}) ); + $where .= " AND lower(ct.$item) LIKE $var"; } } |