-$result = SQL_QUERY_ESC("SELECT status, receive_warnings, warning_interval, email, surname, family, salut
-FROM "._MYSQL_PREFIX."_sponsor_data
-WHERE id='%s' AND password='%s' LIMIT 1",
- array(bigintval($_COOKIE['sponsorid']), $_COOKIE['sponsorpass']), __FILE__, __LINE__);
-if (SQL_NUMROWS($result) == 1) {
+$result = sqlQueryEscaped("SELECT
+ `status`,
+ `receive_warnings`,
+ `warning_interval`,
+ `email`,
+ `surname`,
+ `family`,
+ `gender`
+FROM
+ `{?_MYSQL_PREFIX?}_sponsor_data`
+WHERE
+ `id`=%s AND
+ `password`='%s'
+LIMIT 1",
+ array(
+ bigintval(getSession('sponsor_id')),
+ getSession('sponsorpass')
+ ), __FILE__, __LINE__);
+
+if (sqlNumRows($result) == 1) {