Compare commits

...

2 Commits

Author SHA1 Message Date
ricky 6434eea906 2026.2.12 2026-02-21 08:24:36 -05:00
ricky 9b656534ae Sanitize search, no little bobby tables 2026-02-21 08:23:58 -05:00
2 changed files with 2 additions and 1 deletions
+1
View File
@@ -169,6 +169,7 @@ class Customer < ActiveRecord::Base
# Searchs the database for a customer by name or phone number with out special chars
def self.search(search)
search = sanitize_sql_like(search)
customers = where("name LIKE ? OR phone_number LIKE ? OR mobile_phone_number LIKE ?", "%#{search}%", "%#{search}%", "%#{search}%")
return customers.order(:name)
end
+1 -1
View File
@@ -14,7 +14,7 @@ Redmine::Plugin.register :redmine_qbo do
name 'Redmine QBO plugin'
author 'Rick Barrette'
description 'A pluging for Redmine to connect with QuickBooks Online to create Time Activity Entries for billable hours logged when an Issue is closed'
version '2026.2.11'
version '2026.2.12'
url 'https://github.com/rickbarrette/redmine_qbo'
author_url 'https://barrettefabrication.com'
settings default: {empty: true}, partial: 'qbo/settings'