- SQL_QUERY_ESC("UPDATE `{!MYSQL_PREFIX!}_user_data` SET
-gender='%s',
-surname='%s',
-family='%s',
-street_nr='%s',
-country='%s',
-zip=%s,
-city='%s',
-email='%s'
-".$ADD."
-WHERE userid=%s LIMIT 1",
- array(
- substr($_POST['gender'], 0, 1),
- $_POST['surname'],
- $_POST['family_name'],
- $_POST['street_nr'],
- $_POST['country'],
- bigintval($_POST['zip']),
- $_POST['city'],
- $_POST['email'],
- bigintval($_GET['u_id']),
-), __FILE__, __LINE__);
- $content = USER_ACCOUNT_SAVED;
- }
- else
- {
+ SQL_QUERY_ESC("UPDATE
+ `{?_MYSQL_PREFIX?}_user_data`
+SET
+ `gender`='%s',
+ `surname`='%s',
+ `family`='%s',
+ `street_nr`='%s',
+ `country`='%s',
+ `zip`=%s,
+ `city`='%s',
+ `email`='%s'
+ ".$add."
+WHERE
+ `userid`=%s
+LIMIT 1",
+ array(
+ substr(postRequestParameter('gender'), 0, 1),
+ postRequestParameter('surname'),
+ postRequestParameter('family'),
+ postRequestParameter('street_nr'),
+ postRequestParameter('country'),
+ bigintval(postRequestParameter('zip')),
+ postRequestParameter('city'),
+ postRequestParameter('email'),
+ bigintval(getRequestParameter('userid')),
+ ), __FILE__, __LINE__);
+ $content = '{--USER_ACCOUNT_SAVED--}';
+ } else {