X-Git-Url: https://git.mxchange.org/?a=blobdiff_plain;f=show_bonus.php;h=90b0024e5ccbcbc9a33a5124be47001cd785eee1;hb=cc5fcb5c6db358d2b41f3a4477d0d4303fdd859f;hp=a6eb714ec53faae9e9585d5e49d6cb8d74ca0f49;hpb=82d72ce0fd29e2714e62bd11997272eaf6110fd6;p=mailer.git
diff --git a/show_bonus.php b/show_bonus.php
index a6eb714ec5..90b0024e5c 100644
--- a/show_bonus.php
+++ b/show_bonus.php
@@ -14,11 +14,9 @@
* $Date:: $ *
* $Tag:: 0.2.1-FINAL $ *
* $Author:: $ *
- * Needs to be in all Files and every File needs "svn propset *
- * svn:keywords Date Revision" (autoprobset!) at least!!!!!! *
* -------------------------------------------------------------------- *
* Copyright (c) 2003 - 2009 by Roland Haeder *
- * Copyright (c) 2009, 2010 by Mailer Developer Team *
+ * Copyright (c) 2009 - 2011 by Mailer Developer Team *
* For more information visit: http://www.mxchange.org *
* *
* This program is free software; you can redistribute it and/or modify *
@@ -59,7 +57,7 @@ redirectOnUninstalledExtension('bonus');
// Include header
loadIncludeOnce('inc/header.php');
-if ((getRequestParameter('userid') > 0) && (getRequestParameter('d') > 0) && (isGetRequestParameterSet('t'))) {
+if ((isValidUserId(getRequestParameter('userid'))) && (getRequestParameter('d') > 0) && (isGetRequestParameterSet('t'))) {
// Set row name
$t = '';
switch (getRequestParameter('t')) {
@@ -80,7 +78,7 @@ if ((getRequestParameter('userid') > 0) && (getRequestParameter('d') > 0) && (is
if (!empty($t)) {
// Check for data
$result = SQL_QUERY_ESC("SELECT
- d.`gender`, d.`surname`, d.`family`, b.`level`, b.`points`
+ d.`userid`, b.`level`, b.`points`
FROM
`{?_MYSQL_PREFIX?}_user_data` AS d
INNER JOIN
@@ -104,7 +102,6 @@ LIMIT 1",
$content = SQL_FETCHARRAY($result);
// Prepare constants for the pre-template
- // @TODO No more needed? $content['points'] = translateComma($content['points']);
$content['mailid'] = bigintval(getRequestParameter('d'));
$content['rows'] = addBonusRanks(bigintval(getRequestParameter('d')), $t, bigintval(getRequestParameter('userid')));
@@ -115,18 +112,18 @@ LIMIT 1",
$content['message'] = loadTemplate('show_bonus_msg', true, $content);
} else {
// No data found
- $content['message'] = '{--BONUS_SHOW_NO_DATA--}';
+ $content['message'] = '{--BONUS_SHOW_NO_DATA--}';
}
// Free memory
SQL_FREERESULT($result);
} else {
// Wrong type entered
- $content['message'] = '{--BONUS_SHOW_WRONG_TYPE--}';
+ $content['message'] = '{--BONUS_SHOW_WRONG_TYPE--}';
}
} else {
// Wrong call!
- $content['message'] = '{--BONUS_SHOW_WRONG_CALL--}';
+ $content['message'] = '{--BONUS_SHOW_WRONG_CALL--}';
}
// Load send_bonus header template (for your banners, e.g.?)