Gazelle/sections/questions/take_edit_answer.php

<?
authorize();

$ID = $_POST['id'];
$UserID = $_POST['userid'];
$Answer = db_string($_POST['edit']);

if (empty($Answer) || !is_number($ID) || $UserID != $LoggedUser['ID']) {
	error(403);
}

$DB->query("
	UPDATE staff_answers
	SET Answer = '$Answer'
	WHERE QuestionID = '$ID'
		AND UserID = '$UserID'");

header("Location: questions.php?action=view_answers&userid=$UserID");
Empty commit 2013-10-21 08:01:00 +00:00			`<?`
			`authorize();`

			`$ID = $_POST['id'];`
			`$UserID = $_POST['userid'];`
			`$Answer = db_string($_POST['edit']);`

			`if (empty($Answer) \|\| !is_number($ID) \|\| $UserID != $LoggedUser['ID']) {`
			`error(403);`
			`}`

Empty commit 2013-10-22 08:01:07 +00:00			`$DB->query("`
			`UPDATE staff_answers`
			`SET Answer = '$Answer'`
			`WHERE QuestionID = '$ID'`
			`AND UserID = '$UserID'");`
Empty commit 2013-10-21 08:01:00 +00:00
Empty commit 2013-10-22 08:01:07 +00:00			`header("Location: questions.php?action=view_answers&userid=$UserID");`