if (isset($_POST['status']))
{
// Change status
- if ($_POST['active'][$id] == "Y")
+ if ($_POST['active'][$id] == 'Y')
{
$SQL = "UPDATE "._MYSQL_PREFIX."_themes SET theme_active='N' WHERE id='".$id."' LIMIT 1";
}
// Output generated?
if (empty($OUT)) ADMIN_THEME_NO_OUTPUT;
-}
- elseif (!empty($_GET['default_theme']))
-{
+} elseif (!empty($_GET['default_theme'])) {
// Save theme
- $POST['default_theme'] = $_GET['default_theme'];
- @setcookie("mxchange_theme", $POST['default_theme'], (time() + 60*60*24*365), COOKIE_PATH);
- $_COOKIE['mxchange_theme'] = $POST['default_theme'];
- ADMIN_SAVE_SETTINGS($POST, "_config", "config='0'");
+ $POST['default_theme'] = SQL_ESCAPE($_GET['default_theme']);
+ set_session("mxchange_theme", $POST['default_theme'], (time() + 60*60*24*365), COOKIE_PATH);
+ ADMIN_SAVE_SETTINGS($POST);
}
// Switch to testing mode