gnh1201/seeddms-code
1
0
Fork 0
mirror of https://git.code.sf.net/p/seeddms/code synced 2025-07-16 17:38:10 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

put backticks around identifier in sql statements

Browse Source
This commit is contained in:
Uwe Steinmann 2017-02-22 16:15:11 +01:00
parent 7146f038d6
commit d36a97da9b
1 changed files with 9 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

18
SeedDMS_Core/Core/inc.ClassAttribute.php
View File

@ -1126,7 +1126,7 @@ class SeedDMS_Core_AttributeDefinitionGroup { /* {{{ */
switch($orderby) {
default:
$queryStr = "SELECT * FROM tblAttributeDefinitionGroups ORDER BY name";
$queryStr = "SELECT * FROM `tblAttributeDefinitionGroups` ORDER BY `name`";
}
$resArr = $db->getResultArray($queryStr);
@ -1154,7 +1154,7 @@ class SeedDMS_Core_AttributeDefinitionGroup { /* {{{ */
function setName($newName) { /* {{{ */
$db = $this->_dms->getDB();
$queryStr = "UPDATE tblAttributeDefinitionGroups SET name = ".$db->qstr($newName)." WHERE id = " . $this->_id;
$queryStr = "UPDATE `tblAttributeDefinitionGroups` SET `name` = ".$db->qstr($newName)." WHERE `id` = " . $this->_id;
if (!$db->getResult($queryStr))
return false;
@ -1167,7 +1167,7 @@ class SeedDMS_Core_AttributeDefinitionGroup { /* {{{ */
function setComment($newComment) { /* {{{ */
$db = $this->_dms->getDB();
$queryStr = "UPDATE tblAttributeDefinitionGroups SET comment = ".$db->qstr($newComment)." WHERE id = " . $this->_id;
$queryStr = "UPDATE `tblAttributeDefinitionGroups` SET `comment` = ".$db->qstr($newComment)." WHERE `id` = " . $this->_id;
if (!$db->getResult($queryStr))
return false;
@ -1193,7 +1193,7 @@ class SeedDMS_Core_AttributeDefinitionGroup { /* {{{ */
function setSequence($attrdef, $newSequence) { /* {{{ */
$db = $this->_dms->getDB();
$queryStr = "UPDATE tblAttributeDefinitionGroupAttributeDefinition SET `sequence` = ".$db->qstr($newSequence)." WHERE `attrgrp` = " . $this->_id . " AND `attrdef` = " . $attrdef->getID();
$queryStr = "UPDATE `tblAttributeDefinitionGroupAttributeDefinition` SET `sequence` = ".$db->qstr($newSequence)." WHERE `attrgrp` = " . $this->_id . " AND `attrdef` = " . $attrdef->getID();
if (!$db->getResult($queryStr))
return false;
@ -1218,7 +1218,7 @@ class SeedDMS_Core_AttributeDefinitionGroup { /* {{{ */
function setShow($attrdef, $newShow) { /* {{{ */
$db = $this->_dms->getDB();
$queryStr = "UPDATE tblAttributeDefinitionGroupAttributeDefinition SET `show` = ".$db->qstr($newShow)." WHERE `attrgrp` = " . $this->_id . " AND `attrdef` = " . $attrdef->getID();
$queryStr = "UPDATE `tblAttributeDefinitionGroupAttributeDefinition` SET `show` = ".$db->qstr($newShow)." WHERE `attrgrp` = " . $this->_id . " AND `attrdef` = " . $attrdef->getID();
if (!$db->getResult($queryStr))
return false;
@ -1287,7 +1287,7 @@ class SeedDMS_Core_AttributeDefinitionGroup { /* {{{ */
else
$seq = $resArr[0]['m'] + 10.0;
$queryStr = "INSERT INTO tblAttributeDefinitionGroupAttributeDefinition (`attrgrp`, `attrdef`, `sequence`, `show`) VALUES (".$this->_id.", ".$attrdef->getID(). ", " . $seq . ", " . (int) $show ." )";
$queryStr = "INSERT INTO `tblAttributeDefinitionGroupAttributeDefinition` (`attrgrp`, `attrdef`, `sequence`, `show`) VALUES (".$this->_id.", ".$attrdef->getID(). ", " . $seq . ", " . (int) $show ." )";
$res = $db->getResult($queryStr);
if (!$res) return false;
@ -1299,7 +1299,7 @@ class SeedDMS_Core_AttributeDefinitionGroup { /* {{{ */
function removeAttributeDefinition($attrdef) { /* {{{ */
$db = $this->_dms->getDB();
$queryStr = "DELETE FROM tblAttributeDefinitionGroupAttributeDefinition WHERE attrgrp = ".$this->_id." AND attrdef = ".$attrdef->getID();
$queryStr = "DELETE FROM `tblAttributeDefinitionGroupAttributeDefinition` WHERE `attrgrp` = ".$this->_id." AND `attrdef` = ".$attrdef->getID();
$res = $db->getResult($queryStr);
if (!$res) return false;
@ -1315,7 +1315,7 @@ class SeedDMS_Core_AttributeDefinitionGroup { /* {{{ */
*/
function isMember($attrdef) { /* {{{ */
$db = $this->_dms->getDB();
$queryStr = "SELECT * FROM tblAttributeDefinitionGroupAttributeDefinition WHERE attrgrp = " . $this->_id . " AND attrdef = " . $attrdef->getID();
$queryStr = "SELECT * FROM `tblAttributeDefinitionGroupAttributeDefinition` WHERE `attrgrp` = " . $this->_id . " AND `attrdef` = " . $attrdef->getID();
$resArr = $db->getResultArray($queryStr);
@ -1362,7 +1362,7 @@ class SeedDMS_Core_AttributeDefinitionGroup { /* {{{ */
$db->startTransaction();
$queryStr = "DELETE FROM tblAttributeDefinitionGroups WHERE id = " . $this->_id;
$queryStr = "DELETE FROM `tblAttributeDefinitionGroups` WHERE `id` = " . $this->_id;
if (!$db->getResult($queryStr)) {
$db->rollbackTransaction();
return false;