- $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_max_receive (value, comment) VALUES ('%s', '%s')",
- array(bigintval($_POST['max']), stripslashes($_POST['comment'])),__FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_max_receive (value, comment) VALUES ('%s','%s')",
+ array(bigintval($_POST['max']), $_POST['comment']),__FILE__, __LINE__);