CMXX - Product query updates

api/v1/post/products_software.php

@@ -108,7 +108,7 @@ if (isset($post_content['productrowid']) && $post_content['productrowid'] != '')
                 $stmt->execute([$post_content['productrowid'], $hw_eq_version ]);
             }
             
-            $sql = 'UPDATE products_software SET '.$clause.' WHERE rowID = ? '.$whereclause.'';
+            $sql = 'UPDATE products_software SET '.$clause.' WHERE rowID = ? ';
             $execute_input[] = $id;
             $stmt = $pdo->prepare($sql);
             $stmt->execute($execute_input);
@@ -129,7 +129,7 @@ if (isset($post_content['productrowid']) && $post_content['productrowid'] != '')
         elseif ($command == 'delete' && isAllowed('products_software',$profile,$permission,'D') === 1){
             
             //GET FILENAME AND REMOVE FROM SERVER
-            $sql = 'SELECT * FROM products_software WHERE rowID = ? '.$whereclause.'';
+            $sql = 'SELECT * FROM products_software WHERE rowID = ? ';
             $stmt = $pdo->prepare($sql);
             $stmt->execute([$id]);
             //Get results
@@ -142,7 +142,7 @@ if (isset($post_content['productrowid']) && $post_content['productrowid'] != '')
                     unlink($software_file); 
                 }
             }
-            $stmt = $pdo->prepare('DELETE FROM products_software WHERE rowID = ? '.$whereclause.'');
+            $stmt = $pdo->prepare('DELETE FROM products_software WHERE rowID = ? ');
             $stmt->execute([ $id ]); 
 
             //Add deletion to changelog