CalvinBackup/erpnext
1
0
Fork 0
mirror of https://github.com/frappe/erpnext.git synced 2026-03-24 05:32:46 +01:00
Code Issues Packages Projects Releases Wiki Activity

parameterises sql string

Browse Source
This commit is contained in:
tunde
2017-06-22 11:02:19 +01:00
parent 1b6746e3bc
commit dcd54209fc
1 changed files with 1 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

2
erpnext/templates/pages/rfq.py
View File

@@ -29,7 +29,7 @@ def get_supplier():
def check_supplier_has_docname_access(supplier):
status = True
if frappe.form_dict.name not in frappe.db.sql_list("""select parent from `tabRequest for Quotation Supplier`
where supplier = '{supplier}'""".format(supplier=supplier)):
where supplier = %s""", (supplier,)):
status = False
return status