diff options
| author | Mark Wells <mark@freeside.biz> | 2015-11-03 13:14:24 -0800 |
|---|---|---|
| committer | Mark Wells <mark@freeside.biz> | 2015-11-03 13:14:24 -0800 |
| commit | da046e5f2ceae7df8ea20cc0185d2c63d71a3daa (patch) | |
| tree | ed6661f2d875d359b3baef3921d3f4ab9a6d4381 /httemplate | |
| parent | 3a742395d79d0d6712e5111320c4780fd172b870 (diff) | |
allow punctuation in tax name on XLS download of report, #33255
Diffstat (limited to 'httemplate')
| -rwxr-xr-x | httemplate/search/report_tax-xls.cgi | 5 |
1 files changed, 3 insertions, 2 deletions
diff --git a/httemplate/search/report_tax-xls.cgi b/httemplate/search/report_tax-xls.cgi index 07fcf7cfe..c914d5adc 100755 --- a/httemplate/search/report_tax-xls.cgi +++ b/httemplate/search/report_tax-xls.cgi @@ -24,8 +24,9 @@ if ( $cgi->param('agentnum') =~ /^(\d+)$/ ) { $agentname = $agent->agentname; } -if ( $cgi->param('taxname') =~ /^([\w ]+)$/ ) { - $params{taxname} = $1; +# allow anything in here; FS::Report::Tax will treat it as unsafe +if ( length($cgi->param('taxname')) ) { + $params{taxname} = $cgi->param('taxname'); } else { die "taxname required"; } |