Skip to content

Commit

Permalink
Add missing LIMIT 1 to ajax edit items
Browse files Browse the repository at this point in the history
  • Loading branch information
@johnnyq
johnnyq committed Feb 19, 2025
1 parent 6f8cc40 commit 1dee1b4
Show file tree
Hide file tree
Showing 15 changed files with 15 additions and 15 deletions.
2 changes: 1 addition & 1 deletion ajax/ajax_asset_copy.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@

$sql = mysqli_query($mysqli, "SELECT * FROM assets
LEFT JOIN asset_interfaces ON interface_asset_id = asset_id AND interface_primary = 1
WHERE asset_id = $asset_id"
WHERE asset_id = $asset_id LIMIT 1"
);

$row = mysqli_fetch_array($sql);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_asset_edit.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -6,7 +6,7 @@

$sql = mysqli_query($mysqli, "SELECT * FROM assets
LEFT JOIN asset_interfaces ON interface_asset_id = asset_id AND interface_primary = 1
WHERE asset_id = $asset_id"
WHERE asset_id = $asset_id LIMIT 1"
);

$row = mysqli_fetch_array($sql);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_custom_link_edit.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$custom_link_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM custom_links WHERE custom_link_id = $custom_link_id");
$sql = mysqli_query($mysqli, "SELECT * FROM custom_links WHERE custom_link_id = $custom_link_id LIMIT 1");
$row = mysqli_fetch_array($sql);
$custom_link_name = nullable_htmlentities($row['custom_link_name']);
$custom_link_uri = nullable_htmlentities($row['custom_link_uri']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_custom_ticket_status_edit.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$ticket_status_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM ticket_statuses WHERE ticket_status_id = $ticket_status_id");
$sql = mysqli_query($mysqli, "SELECT * FROM ticket_statuses WHERE ticket_status_id = $ticket_status_id LIMIT 1");
$row = mysqli_fetch_array($sql);
$ticket_status_name = nullable_htmlentities($row['ticket_status_name']);
$ticket_status_color = nullable_htmlentities($row['ticket_status_color']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_document_edit.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$document_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_id = $document_id");
$sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_id = $document_id LIMIT 1");

$row = mysqli_fetch_array($sql);
$document_name = nullable_htmlentities($row['document_name']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_document_move.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$document_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_id = $document_id");
$sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_id = $document_id LIMIT 1");

$row = mysqli_fetch_array($sql);
$client_id = intval($row['document_client_id']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_document_rename.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$document_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_id = $document_id");
$sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_id = $document_id LIMIT 1");

$row = mysqli_fetch_array($sql);
$client_id = intval($row['document_client_id']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_document_template_edit.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$document_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_id = $document_id");
$sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_id = $document_id LIMIT 1");
$row = mysqli_fetch_array($sql);
$document_name = nullable_htmlentities($row['document_name']);
$document_description = nullable_htmlentities($row['document_description']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_document_view.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -12,7 +12,7 @@

$document_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_id = $document_id");
$sql = mysqli_query($mysqli, "SELECT * FROM documents WHERE document_id = $document_id LIMIT 1");

$row = mysqli_fetch_array($sql);
$document_name = nullable_htmlentities($row['document_name']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_file_move.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$file_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM files WHERE file_id = $file_id");
$sql = mysqli_query($mysqli, "SELECT * FROM files WHERE file_id = $file_id LIMIT 1");

$row = mysqli_fetch_array($sql);
$client_id = intval($row['file_client_id']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_file_rename.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$file_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM files WHERE file_id = $file_id");
$sql = mysqli_query($mysqli, "SELECT * FROM files WHERE file_id = $file_id LIMIT 1");

$row = mysqli_fetch_array($sql);
$client_id = intval($row['file_client_id']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_folder_rename.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$folder_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM folders WHERE folder_id = $folder_id");
$sql = mysqli_query($mysqli, "SELECT * FROM folders WHERE folder_id = $folder_id LIMIT 1");

$row = mysqli_fetch_array($sql);
$folder_name = nullable_htmlentities($row['folder_name']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_item_edit.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$item_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM invoice_items WHERE item_id = $item_id");
$sql = mysqli_query($mysqli, "SELECT * FROM invoice_items WHERE item_id = $item_id LIMIT 1");
$row = mysqli_fetch_array($sql);
$item_name = nullable_htmlentities($row['item_name']);
$item_description = nullable_htmlentities($row['item_description']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_software_template_edit.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$software_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM software WHERE software_id = $software_id");
$sql = mysqli_query($mysqli, "SELECT * FROM software WHERE software_id = $software_id LIMIT 1");
$row = mysqli_fetch_array($sql);
$software_name = nullable_htmlentities($row['software_name']);
$software_version = nullable_htmlentities($row['software_version']);
Expand Down
2 changes: 1 addition & 1 deletion ajax/ajax_tax_edit.php
View file
Original file line number Diff line number Diff line change
Expand Up @@ -4,7 +4,7 @@

$tax_id = intval($_GET['id']);

$sql = mysqli_query($mysqli, "SELECT * FROM taxes WHERE tax_id = $tax_id");
$sql = mysqli_query($mysqli, "SELECT * FROM taxes WHERE tax_id = $tax_id LIMIT 1");
$row = mysqli_fetch_array($sql);
$tax_name = nullable_htmlentities($row['tax_name']);
$tax_percent = floatval($row['tax_percent']);
Expand Down

0 comments on commit 1dee1b4

Please sign in to comment.