найти
Code
<form action=\"" . $_SERVER["PHP_SELF"] . "?action=add&" . ($resp_type == 1?'good':'bad') . "&type=$type&targetid=$targetid\" method=\"post\">
заменить на
Code
<form action=\"" . $_SERVER["PHP_SELF"] . "?action=add&" . ($resp_type == 1?'good':'bad') . "&type=".htmlspecialchars($type)."&targetid=$targetid\" method=\"post\">