Location: PHPKode > projects > Pointter PHP CMS > pointtercms_package/pointtercms_package/pointtercms/functions/editmember.php
<?php 

/***************************************************************************
 * Product Name			: Pointter PHP Content Management System
 * Version 			: V 1.2
 * Release Date			: 01/02/11
 * Copyright			: (C) 2011 PangramSoft / Murat Cevik
 * Program URL			: http://www.pointter.com
 * Company URL			: http://www.pangramsoft.com
 * Email Address                : hide@address.com
 
 ***************************************************************************/
 

/****************************************************************************

Pointter PHP Content Management System is licensed under Creative Commons Attribution Non-commercial No Derivatives 3.0 Unported (by-nc-nd) License.
To view a copy of this license, (a) visit http://creativecommons.org/licenses/by-nc-nd/3.0/ or (b) send a letter to Creative Commons, 171 2nd Street, 
Suite 300, San Francisco, California, 94105, USA.” 

You must not remove/modify/alter the copyright informations both visible and invisible forms in the source code and you must not remove/modify/alter 
the copyright informations in the footer part of the script including the Pointter image (png format file), hard link and title tag.

Please contact the copyright holder PangramSoft / Murat Cevik for a commercial license to remove the copyright information in the footer part of the script.


*****************************************************************************/

//Encode UTF-8 Characters Correctly 

$firstname=htmlentities($_POST[firstname],ENT_NOQUOTES,'UTF-8');
$firstname=stripslashes($firstname);

$lastname=htmlentities($_POST[lastname],ENT_NOQUOTES,'UTF-8');
$lastname=stripslashes($lastname);

$city=htmlentities($_POST[city],ENT_NOQUOTES,'UTF-8');
$city=stripslashes($city);


$country=$_POST[country];
$news=$_POST[news];

include '../configset/conn.php';

//Mysql Injection Control

$firstname=mysql_real_escape_string($firstname);
$lastname=mysql_real_escape_string($lastname);
$city=mysql_real_escape_string($city);

if ($news=="agree")
$news_check=1;
else
$news_check=0;


if ($country!="NoChange")
mysql_query("UPDATE Members SET FirstName='$firstname',LastName='$lastname',City='$city',Country='$country',News='$news_check' WHERE EmailAddress='$_COOKIE[tuser]' AND Password='$_COOKIE[tpass]'");
else
mysql_query("UPDATE Members SET FirstName='$firstname',LastName='$lastname',City='$city',News='$news_check' WHERE EmailAddress='$_COOKIE[tuser]' AND Password='$_COOKIE[tpass]'");

header("location:../memberinfo.php");


?>
Return current item: Pointter PHP CMS