- # FIXME - Rewrite this without so much duplication and
- # redundancy
- my $newpr = $rec->{'priority'}; $newpr = $dbh->quote($newpr - 1);
- my $nbib = $rec->{'biblionumber'}; $nbib = $dbh->quote($nbib);
- my $nbor = $rec->{'borrowernumber'}; $nbor = $dbh->quote($nbor);
- my $nresd = $rec->{'reservedate'}; $nresd = $dbh->quote($nresd);
- my $query = "UPDATE reserves SET priority = $newpr
- WHERE biblionumber = $nbib
- AND borrowernumber = $nbor
- AND reservedate = $nresd";
- #warn $query;
- my $sth = $dbh->prepare($query);
- $sth->execute;
+ my $sth = $dbh->prepare("UPDATE reserves SET priority = ?
+ WHERE biblionumber = ?
+ AND borrowernumber = ?
+ AND reservedate = ?");
+ $sth->execute($rec->{'priority'},$rec->{'biblionumber'},$rec->{'borrowernumber'},$rec->{'reservedate'});