- $result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_pool (sender, subject, text, receivers, payment_id, data_type, timestamp, url, cat_id, target_send, zip, html_msg)
- VALUES ('%s','%s','%s','%s','%s','TEMP','%s','%s','%s','%s','%s','%s')",
-array(
- $GLOBALS['userid'],
- $_POST['subject'],
- $_POST['text'],
- $RECEIVER,
- bigintval($_POST['type']),
- $TIME,
- $_POST['url'],
- bigintval($_POST['cat']),
- $MAX_SEND,
- bigintval($_POST['zip']),
- $_POST['html']
-), __FILE__, __LINE__);
- }
- else
- {
+ SQL_QUERY_ESC("INSERT INTO `{?_MYSQL_PREFIX?}_pool` (`sender`, `subject`, `text`, `receivers`, `payment_id`, `data_type`, `timestamp`, `url`, `cat_id`, `target_send`, `zip`, `html_msg`)
+VALUES (%s,'%s','%s','%s','%s','TEMP',UNIX_TIMESTAMP(),'%s',%s,%s,%s,'%s')",
+ array(
+ getMemberId(),
+ postRequestParameter('subject'),
+ postRequestParameter('text'),
+ $receiver,
+ bigintval(postRequestParameter('mail_type')),
+ postRequestParameter('url'),
+ bigintval(postRequestParameter('cat')),
+ $content['target_send'],
+ bigintval(postRequestParameter('zip'), true, false),
+ postRequestParameter('html')
+ ), __FILE__, __LINE__);
+ } else {