Файл: vsime.com/anketa/inc/edit_pol_type.php
Строк: 40
<?
if(isset($_POST['submited']))
{
if (hsc(@$_POST['mdp'])==$mdp)
{
mysqli_query($dbi, "UPDATE `anketa` SET `pol_type` = '".my_esc($_POST['pol_type'])."' WHERE `id_user` = '$ank[id]'");
header("Location: ?id=$ank[id]&edit=for_love");
msg_sess("Изменения успешно сохранены");exit();
} else hacked_by_Killer();
}
echo "<div class=list><form method='POST' action=''>n";
echo "Ориентация:<br/>n";
echo "<input type='radio' name='pol_type' value='0'".($ank['anketa']['pol_type']==0?" checked='checked'":null)."> Не скажу!<br/>n";
echo "<input type='radio' name='pol_type' value='getero'".($ank['anketa']['pol_type']=='getero'?" checked='checked'":null)."> Гетеро<br/>n";
echo "<input type='radio' name='pol_type' value='gl'".($ank['anketa']['pol_type']=='gl'?" checked='checked'":null)."> Гей/лесби<br/>n";
echo "<input type='radio' name='pol_type' value='bi'".($ank['anketa']['pol_type']=='bi'?" checked='checked'":null)."> Би<br/>n";
echo "<input type='hidden' name='mdp' value='$mdp'>n";
echo "<input type='submit' name='submited' value='Изменить' />n";
echo "</form></div>n";
?>