summaryrefslogtreecommitdiff
path: root/LedgerSMB/Form.pm
diff options
context:
space:
mode:
Diffstat (limited to 'LedgerSMB/Form.pm')
-rw-r--r--LedgerSMB/Form.pm5
1 files changed, 4 insertions, 1 deletions
diff --git a/LedgerSMB/Form.pm b/LedgerSMB/Form.pm
index 723e86bf..6566b80a 100644
--- a/LedgerSMB/Form.pm
+++ b/LedgerSMB/Form.pm
@@ -1350,6 +1350,9 @@ sub update_balance {
my ( $self, $dbh, $table, $field, $where, $value ) = @_;
+
+ $table = $dbh->quote_identifier($table);
+ $field = $dbh->quote_identifier($field);
# if we have a value, go do it
if ($value) {
@@ -1357,7 +1360,7 @@ sub update_balance {
my $query = "SELECT $field FROM $table WHERE $where FOR UPDATE";
my ($balance) = $dbh->selectrow_array($query);
- $balance += $value;
+ $balance = $dbh->quote($balance + $value);
# update balance
$query = "UPDATE $table SET $field = $balance WHERE $where";
generated by cgit v1.2.3 (git 2.39.1) at 2024-07-01 00:29:01 +0000