Merge pull request #11024 from TheCartpenter/patch-920

Added backward escaped quotes on total - catalog/model/account/customer.php file
opencart · Jun 6, 2022 · f3c747b · f3c747b
2 parents d5967b8 + 5540fa1
commit f3c747b
Showing 1 changed file with 1 addition and 1 deletion.
diff --git a/upload/catalog/model/account/customer.php b/upload/catalog/model/account/customer.php
@@ -125,7 +125,7 @@ public function addLoginAttempt(string $email): void {
 		if (!$query->num_rows) {
 			$this->db->query("INSERT INTO `" . DB_PREFIX . "customer_login` SET `email` = '" . $this->db->escape(utf8_strtolower((string)$email)) . "', `ip` = '" . $this->db->escape($this->request->server['REMOTE_ADDR']) . "', `total` = '1', `date_added` = '" . $this->db->escape(date('Y-m-d H:i:s')) . "', `date_modified` = '" . $this->db->escape(date('Y-m-d H:i:s')) . "'");
 		} else {
-			$this->db->query("UPDATE `" . DB_PREFIX . "customer_login` SET `total` = (total + 1), `date_modified` = '" . $this->db->escape(date('Y-m-d H:i:s')) . "' WHERE `customer_login_id` = '" . (int)$query->row['customer_login_id'] . "'");
+			$this->db->query("UPDATE `" . DB_PREFIX . "customer_login` SET `total` = (`total` + 1), `date_modified` = '" . $this->db->escape(date('Y-m-d H:i:s')) . "' WHERE `customer_login_id` = '" . (int)$query->row['customer_login_id'] . "'");
 		}
 	}