$sth = pg_exec ($dbh, $query);
echo('<p><strong>Deleted.</strong></p>');
} else {
- $query = sprintf("UPDATE stempel SET time=%d, task='%s', status=%d WHERE oid = %d",
+ $query = sprintf("UPDATE stempel SET time=%d, start='%s', stop='%s', task='%s', status=%d WHERE oid = %d",
hour2min($_POST['time']),
+ pg_escape_string($dbh, $_POST['start']),
+ pg_escape_string($dbh, $_POST['stop']),
pg_escape_string($dbh, $_POST['task']),
$_POST['status'],
$_POST['oid']);