X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=inc%2Fmodules%2Fmember%2Fwhat-categories.php;h=fcb03bd042f9461d7ea30bf739933989e3ff9d75;hb=143e78d4231adddd9e706cbf55ec5dd8c1651890;hp=9a4473c5417028236f88c92663aeab356f6cfbc6;hpb=307a4e11763f0914e73dc756b219356e1c29ab25;p=mailer.git

diff --git a/inc/modules/member/what-categories.php b/inc/modules/member/what-categories.php
index 9a4473c541..fcb03bd042 100644
--- a/inc/modules/member/what-categories.php
+++ b/inc/modules/member/what-categories.php
@@ -32,13 +32,10 @@
  ************************************************************************/
 
 // Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF']))
-{
+if (!defined('__SECURITY')) {
 	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
 	require($INC);
-}
- elseif (!IS_LOGGED_IN())
-{
+} elseif (!IS_MEMBER()) {
 	LOAD_URL("modules.php[13~?module=index");
 }
 
@@ -58,7 +55,7 @@ if ($cats > 0)
 	if (isset($_POST['ok']))
 	{
 		$cnt = 0;
-		foreach ($_POST['cat'] as $cat=>$joined)
+		foreach ($_POST['cat'] as $cat => $joined)
 		{
 			if ($joined == "N") $cnt++;
 		}
@@ -70,18 +67,18 @@ if ($cats > 0)
 	}
 	if (isset($_POST['ok']))
 	{
-		foreach ($_POST['cat'] as $cat=>$joined)
+		foreach ($_POST['cat'] as $cat => $joined)
 		{
 			switch ($joined)
 			{
 				case 'Y':
 					$sql = "";
-					$result_user = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%d AND cat_id=%d LIMIT 1",
+					$result_user = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%s AND cat_id=%s LIMIT 1",
 					 array($UID, bigintval($cat)), __FILE__, __LINE__);
 
 					if (SQL_NUMROWS($result_user) == 0)
 					{
-						$sql = "INSERT INTO "._MYSQL_PREFIX."_user_cats (userid, cat_id) VALUES ('%s', '%s')";
+						$sql = "INSERT INTO "._MYSQL_PREFIX."_user_cats (userid, cat_id) VALUES ('%s','%s')";
 					}
 					 else
 					{
@@ -91,7 +88,7 @@ if ($cats > 0)
 					break;
 
 				case 'N':
-					$sql = "DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%d AND cat_id=%d LIMIT 1";
+					$sql = "DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%s AND cat_id=%s LIMIT 1";
 					break;
 			}
 			if (!empty($sql))
@@ -121,22 +118,22 @@ if ($cats > 0)
 		while (list($id, $cat) = SQL_FETCHROW($result))
 		{
 			// Default he has not joined
-			$JOINED_N = ' checked'; $JOINED_Y = "";
+			$JOINED_N = " checked"; $JOINED_Y = "";
 
 			// Check category selection
-			$result_user = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%d AND cat_id=%d LIMIT 1",
+			$result_user = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_user_cats WHERE userid=%s AND cat_id=%s LIMIT 1",
 			 array($UID, bigintval($id)), __FILE__, __LINE__);
 
 			// When we found an entry don't read it, just change the JOINED_x variables
 			if (isset($_POST['cat']))
 			{
-				if ($_POST['cat'][$id] =='Y') { $JOINED_Y = ' checked'; $JOINED_N = ""; }
+				if ($_POST['cat'][$id] =='Y') { $JOINED_Y = " checked"; $JOINED_N = ""; }
 			}
 			 else
 			{
 				if (SQL_NUMROWS($result_user) == 1)
 				{
-					$JOINED_Y = ' checked'; $JOINED_N = "";
+					$JOINED_Y = " checked"; $JOINED_N = "";
 				}
 
 				// Free memory