- SQL_QUERY_ESC("INSERT INTO `{!_MYSQL_PREFIX!}_countries` (code, descr, is_active) VALUES ('%s','%s','%s')",
- array(
- strtoupper(substr($_POST['code'], 0, 2)),
- $_POST['descr'],
- $_POST['is_active']
- ), __FILE__, __LINE__);
+ SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_countries` (code, descr, is_active) VALUES ('%s','%s','%s')",
+ array(
+ strtoupper(substr(postRequestElement('code'), 0, 2)),
+ postRequestElement('descr'),
+ postRequestElement('is_active')
+ ), __FILE__, __LINE__);