An order was recently placed on a website I work on. On the admin control panel the order says "Pending", but when you click on the pending orders it does not show up. If I type in the oID order number directly I get a syntax error:
**1064 - You have an error in your SQL syntax. Check the manual that corresponds to your MySQL server version for the right syntax to use near ''CustomersName''' at line 1
select * from zones where zone_country_id = '176' and zone_name = '**CustomersName**''**
*******where customers name is the actual name of the customer.**
I need you to restore the data from the order, as well as fix this issue so it does not happen again. I would also like a detailed explanation as to what happened. I would like to get this done today, and I will be available for contact.
The order must be restored (not including maxmind data if its not possible.)
You must stop this from happening again.
Provide an explanation as to what happened.
Any files you change backup the old ones by renaming them [url removed, login to view]
Any questions please ask.