// Class was found and loaded
if (isFormSent()) {
// Save settings
- SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_user_data` SET `html`='%s' WHERE `userid`=%s LIMIT 1",
+ sqlQueryEscaped("UPDATE `{?_MYSQL_PREFIX?}_user_data` SET `html`='%s' WHERE `userid`=%s LIMIT 1",
array(postRequestElement('html'), getMemberId()), __FILE__, __LINE__);
displayMessage('{--MEMBER_SETTINGS_SAVED--}');
} else {