[CRM-3887] Aggregate Contribution Custom Search throws MySQL errors if you use commas in the minimum or maximum - CiviCRM Issue Tracker

Details

Type: Bug
Status: Done/Fixed
Priority: Major
Resolution: Fixed/Completed
Affects Version/s: 2.1
Fix Version/s: 2.2.0
Component/s: CiviCRM Search
Labels:
None

Description

If you use a comma to help designate 1000's places in the Aggregate Contribution custom search, CiviCRM 2.1.0 and up (possibly in 2.0 as well) you get a MySQL error because CiviCRM doesn't first filter the field for acceptable characters. This search needs to filter out unacceptable characters (commas, dollar signs, dashes) before dumping them into a SQL statement.

Attachments

Options
- Sort By Name
- Sort By Date
- Ascending
- Descending
- Download All

Attachments

ContributionAggregate.php
2008-12-04 4:35
7 kB
Lance Dockins

Activity

[CRM-3887] Aggregate Contribution Custom Search throws MySQL errors if you use commas in the minimum or maximum

Lance Dockins added a comment - 2008-12-04 4:35

This fixes the problem with a simple preg_replace that filters out commas and dollar signs in the input values for min and max.

Donald A. Lobo added a comment - 2008-12-04 13:40

We might want to use our cleanMoney function to filter the money argument

Sunil Pawar added a comment - 2008-12-17 12:57

Verified in r18827.

Kurund Jalmi added a comment - 2009-07-16 7:10

Batch move to verification

People

Assignee:

Kurund Jalmi

Reporter:

Lance Dockins

Dates

Created:

2008-12-02 4:37

Updated:

2009-09-24 7:02

Resolved:

2008-12-04 23:15