diff options
Diffstat (limited to 'httemplate/search/sql.html')
-rw-r--r-- | httemplate/search/sql.html | 8 |
1 files changed, 5 insertions, 3 deletions
diff --git a/httemplate/search/sql.html b/httemplate/search/sql.html index df9b8cddb..bf5446975 100644 --- a/httemplate/search/sql.html +++ b/httemplate/search/sql.html @@ -1,13 +1,15 @@ <% include( 'elements/search.html', 'title' => 'Query Results', 'name' => 'rows', - 'query' => 'SELECT '. ( $cgi->param('sql') - || errorpage('Empty query') ), - ) + 'query' => "SELECT $sql", + ) %> <%init> die "access denied" unless $FS::CurrentUser::CurrentUser->access_right('Raw SQL'); +my $sql = $cgi->param('sql') or errorpage('Empty query'); +$sql =~ s/;+\s*$//; #remove trailing ; + </%init> |