From 7f3f860c580046c17d18f2149f6c24a6bda2c901 Mon Sep 17 00:00:00 2001 From: =?utf8?q?Roland=20H=C3=A4der?= Date: Thu, 5 Nov 2009 14:32:56 +0000 Subject: [PATCH] Should now work again, missed to fill out mask --- inc/modules/admin/what-list_rallyes.php | 30 +++++++++++++++++-------- 1 file changed, 21 insertions(+), 9 deletions(-) diff --git a/inc/modules/admin/what-list_rallyes.php b/inc/modules/admin/what-list_rallyes.php index 8c46526b68..9a4c3b13c6 100644 --- a/inc/modules/admin/what-list_rallyes.php +++ b/inc/modules/admin/what-list_rallyes.php @@ -56,33 +56,45 @@ if (isGetRequestElementSet('rallye')) { // Activate / deactivate switch (getRequestElement('activate')) { case 1: // Activate - addSql("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `is_active`='Y' WHERE `id`=%s AND `is_active`='N' LIMIT 1"); + addSql(SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `is_active`='Y' WHERE `id`=%s AND `is_active`='N' LIMIT 1" + array(bigintval(getRequestElement('rallye'))), __FILE__, __LINE__, false) + ); break; case 0: // Deactivate - addSql("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `is_active`='N' WHERE `id`=%s AND `is_active`='Y' LIMIT 1"); + addSql(SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `is_active`='N' WHERE `id`=%s AND `is_active`='Y' LIMIT 1" + array(bigintval(getRequestElement('rallye'))), __FILE__, __LINE__, false) + ); break; } } elseif (isGetRequestElementSet('notify')) { // Automatic notification switch (getRequestElement('notify')) { case 1: // Activate - addSql("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `send_notify`='Y' WHERE `id`=%s AND `send_notify`='N' LIMIT 1"); + addSql(SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `send_notify`='Y' WHERE `id`=%s AND `send_notify`='N' LIMIT 1" + array(bigintval(getRequestElement('rallye'))), __FILE__, __LINE__, false) + ); break; case 0: // Deactivate - addSql("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `send_notify`='N' WHERE `id`=%s AND `send_notify`='Y' LIMIT 1"); + addSql(SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `send_notify`='N' WHERE `id`=%s AND `send_notify`='Y' LIMIT 1" + array(bigintval(getRequestElement('rallye'))), __FILE__, __LINE__, false) + ); break; } } elseif (isGetRequestElementSet('auto')) { // Automatic adding of new members switch (getRequestElement('auto')) { case 1: // Activate - addSql("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `auto_add_new_user`='Y' WHERE `id`=%s AND `auto_add_new_user`='N' LIMIT 1"); + addSql(SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `auto_add_new_user`='Y' WHERE `id`=%s AND `auto_add_new_user`='N' LIMIT 1" + array(bigintval(getRequestElement('rallye'))), __FILE__, __LINE__, false) + ); break; case 0: // Deactivate - addSql("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `auto_add_new_user`='N' WHERE `id`=%s AND `auto_add_new_user`='Y' LIMIT 1"); + addSql(SQL_QUERY_ESC("UPDATE `{?_MYSQL_PREFIX?}_rallye_data` SET `auto_add_new_user`='N' WHERE `id`=%s AND `auto_add_new_user`='Y' LIMIT 1" + array(bigintval(getRequestElement('rallye'))), __FILE__, __LINE__, false) + ); break; } } @@ -100,11 +112,11 @@ if (isGetRequestElementSet('rallye')) { foreach (postRequestElement('sel') as $id => $selected) { // Remove selected rallye entirely... addSql(SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_rallye_data` WHERE `id`=%s LIMIT 1", - array(bigintval($id)), __FILE__, __LINE__, false)); + array(bigintval($id)), __FILE__, __LINE__, false)); addSql(SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_rallye_prices` WHERE rallye_id=%s", - array(bigintval($id)), __FILE__, __LINE__, false)); + array(bigintval($id)), __FILE__, __LINE__, false)); addSql(SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{?_MYSQL_PREFIX?}_rallye_users` WHERE rallye_id=%s", - array(bigintval($id)), __FILE__, __LINE__, false)); + array(bigintval($id)), __FILE__, __LINE__, false)); } // END - foreach // Run SQLS -- 2.39.5