From 3d52203d943c8e0fbee2b65cc4003e6b58b3a1c0 Mon Sep 17 00:00:00 2001
From: Daniel Seifert <git@daniel-seifert.com>
Date: Wed, 28 Apr 2021 22:41:03 +0200
Subject: [PATCH] fix prepared statement combination

---
 src/Modules/Application/Model/d3_dev_oxorder.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/Modules/Application/Model/d3_dev_oxorder.php b/src/Modules/Application/Model/d3_dev_oxorder.php
index 8338832..bf00dc5 100644
--- a/src/Modules/Application/Model/d3_dev_oxorder.php
+++ b/src/Modules/Application/Model/d3_dev_oxorder.php
@@ -58,10 +58,11 @@ class d3_dev_oxorder extends d3_dev_oxorder_parent
     {
         $orderNr = (int) Registry::getRequest()->getRequestEscapedParameter('d3ordernr');
         $sWhere = 1;
+        $parameters = [];
         if ($orderNr) {
             $sWhere = ' oxordernr = ? ';
+            $parameters[] = $orderNr;
         }
-        $parameters = [$orderNr];
 
         $sSelect = "SELECT oxid FROM ".oxNew(Order::class)->getViewName()." WHERE ".
             "oxuserid != '' AND ".