Файл: vsime.com/anketa/inc/edit_body.php
Строк: 55
<?
if(isset($_POST['submited']))
{
if (hsc(@$_POST['mdp'])==$mdp)
{
mysqli_query($dbi, "UPDATE `anketa` SET `body` = '".my_esc($_POST['body'])."' WHERE `id_user` = '$ank[id]'");
header("Location:?id=$ank[id]&edit=tipazh");
msg_sess("Изменения успешно сохранены");exit();
} else hacked_by_Killer();
}
echo "<div class=list><form method='post' action=''>n";
echo "Телосложение:<br/>";
echo "<input type='radio' name='body' value='0'".($ank['anketa']['body']==0?' checked="checked"':NULL)."> Не скажу!<br/>n";
echo "<input type='radio' name='body' value='default'".($ank['anketa']['body']=='default'?' checked="checked"':NULL)."> Обычное<br/>n";
echo "<input type='radio' name='body' value='thin'".($ank['anketa']['body']=='thin'?" checked='checked'":NULL)."> Худощавое<br/>";
echo "<input type='radio' name='body' value='sports'".($ank['anketa']['body']=='sports'?" checked='checked'":NULL)."> Спортивное<br/>n";
echo "<input type='radio' name='body' value='brawny'".($ank['anketa']['body']=='brawny'?" checked='checked'":NULL)."> Мускулистое<br/>n";
echo "<input type='radio' name='body' value='dense'".($ank['anketa']['body']=='dense'?" checked='checked'":NULL)."> Плотное<br/>n";
echo "<input type='radio' name='body' value='full'".($ank['anketa']['body']=='full'?" checked='checked'":NULL)."> Полное<br/>n";
echo "<input type='hidden' name='mdp' value='$mdp'>n";
echo "<input type='submit' name='submited' value='Сохранить' />n";
echo "</form></div>n";
?>