Файл: vsime.com/anketa/inc/edit_o_partner.php
Строк: 26
<?
if(isset($_POST['submited']))
{
if (hsc(@$_POST['mdp'])==$mdp)
{
mysqli_query($dbi, "UPDATE `anketa` SET `o_partner` = '".my_esc($_POST['o_partner'])."' WHERE `id_user` = '$ank[id]'");
header("Location: ?id=$ank[id]&edit=for_love");
msg_sess("Изменения успешно сохранены");exit();
} else hacked_by_Killer();
}
echo "<div class=list><form method='post' action=''>n";
echo "<b>О партнере:</b><br/>n";
echo "<textarea name='o_partner' rows='5' cols='17' style='width: 95%' maxlength='400'>".input_value($ank['anketa']['o_partner'])."</textarea><br/>n";
echo "<input type='hidden' name='mdp' value='$mdp'>n";
echo "<input value='Сохранить' name='submited' type='submit' />n";
echo "</form></div>n";
?>