Saurabh
40d818af90
[hotfix] sanitize fields to avoid mysql injection ( #4994 )
...
* [fix] sanitize fields to avoid mysql injection
* sanitize sql statements to avoid subqueries
* Added test cases
* Raise exception if mysql injection found in fields and related test-cases
* [fix] riase exception if blacklistes function or keyworkds found in fields
2018-02-13 14:45:51 +05:30
Manas Solanki
7031473915
fixed between filters ( #4497 )
2017-11-15 13:57:53 +05:30
Makarand Bauskar
fc715efdbb
[hotfix] fixes for AttributeError: 'NoneType' object has no attribute 'split' ( #3840 )
...
* [hotfix] fixes for AttributeError: 'NoneType' object has no attribute 'split'
* [tests] added test cases for not in and in filters
2017-08-02 12:47:10 +05:30
Rushabh Mehta
262f361021
[minor] ignore permissions option for filters in db_query ( #3234 )
2017-05-06 12:43:47 +05:30
Makarand Bauskar
8eeda18692
[fixes] minor fix for between operator filter ( #3196 )
...
* [fixes] minor fix for between operator filter
* [minor] added a test case for between operator filter
2017-05-01 14:14:04 +05:30
Anand Doshi
2995f02f3b
Web Notes to Frappe, better alerts, css fixes, fixed splash
2015-03-03 15:09:34 +05:30
Anand Doshi
f3b37df2dd
[fix] Added unicode_literals if missing in py files
2015-02-24 12:24:20 +05:30
Rushabh Mehta
2405ed2e81
added or_filters to db_query. link search will not search 'search_fields' by default
2014-05-07 14:09:40 +05:30
Anand Doshi
291cd2777f
Added notification clearing hook, fixed db query test cases
2014-03-05 15:23:22 +05:30
Rushabh Mehta
3964db5d95
refactored reportview.py and added frappe/model/db_query.py
2014-03-03 17:53:25 +05:30
