inc/modules/frametester.php

   1 <?php
   2 /************************************************************************
   3  * MXChange v0.2.1                                    Start: 10/24/2003 *
   4  * ===============                              Last change: 06/30/2004 *
   5  *                                                                      *
   6  * -------------------------------------------------------------------- *
   7  * File              : frametester.php                                  *
   8  * -------------------------------------------------------------------- *
   9  * Short description : Test your website against frame killers          *
  10  * -------------------------------------------------------------------- *
  11  * Kurzbeschreibung  : Testet die Mitgliedsseite gegen Frame-Killer     *
  12  * -------------------------------------------------------------------- *
  13  *                                                                      *
  14  * -------------------------------------------------------------------- *
  15  * Copyright (c) 2003 - 2008 by Roland Haeder                           *
  16  * For more information visit: http://www.mxchange.org                  *
  17  *                                                                      *
  18  * This program is free software; you can redistribute it and/or modify *
  19  * it under the terms of the GNU General Public License as published by *
  20  * the Free Software Foundation; either version 2 of the License, or    *
  21  * (at your option) any later version.                                  *
  22  *                                                                      *
  23  * This program is distributed in the hope that it will be useful,      *
  24  * but WITHOUT ANY WARRANTY; without even the implied warranty of       *
  25  * MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the        *
  26  * GNU General Public License for more details.                         *
  27  *                                                                      *
  28  * You should have received a copy of the GNU General Public License    *
  29  * along with this program; if not, write to the Free Software          *
  30  * Foundation, Inc., 51 Franklin St, Fifth Floor, Boston,               *
  31  * MA  02110-1301  USA                                                  *
  32  ************************************************************************/
  33
  34 // Some security stuff...
  35 if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) {
  36         $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
  37         require($INC);
  38 }
  39
  40 $MODE = "guest";
  41
  42 if (!empty($_GET['order'])) {
  43         // Order number placed, is he also logged in?
  44         if(IS_LOGGED_IN()) {
  45                 // Ok, test passed... :)
  46                 $result = SQL_QUERY_ESC("SELECT subject, url FROM "._MYSQL_PREFIX."_pool WHERE id=%d AND sender=%d AND data_type='TEMP' LIMIT 1",
  47                  array(bigintval($_GET['order']), $GLOBALS['userid']), __FILE__, __LINE__);
  48
  49                 // Finally is the entry valid?
  50                 if (SQL_NUMROWS($result) == 1) {
  51                         // Load subject and URL (but forwhat do we need the subject line here???
  52                         list($sub, $url) = SQL_FETCHROW($result);
  53
  54                         // This fixes a white page
  55                         $_POST['url'] = $url;
  56
  57                         // Update his login data
  58                         UPDATE_LOGIN_DATA();
  59                         $MODE = "member";
  60                 } else {
  61                         // Matching line not found!
  62                         LOAD_URL("modules.php?module=index&amp;what=login");
  63                 }
  64
  65                 // Free memory
  66                 SQL_FREERESULT($result);
  67         } else {
  68                 // He is no longer logged in
  69                 LOAD_URL("modules.php?module=index&amp;what=login");
  70         }
  71 }
  72
  73 if ((!empty($_POST['url'])) || (!empty($_GET['url'])) || (!empty($_GET['frame']))) {
  74         $url = URL;
  75         if (!empty($_POST['url'])) $url = $_POST['url'];
  76         if (!empty($_GET['url']))  $url = base64_decode(urldecode(COMPILE_CODE($_GET['url'])));
  77         switch ($_GET['frame'])
  78         {
  79         case "":
  80                 switch ($MODE)
  81                 {
  82                 case "member":
  83                         // Build frameset
  84                         define('__ORDER_VALUE', bigintval($_GET['order']));
  85                         define('__URL_VALUE'  , DEREFERER($url));
  86                         LOAD_TEMPLATE("member_order_frametester");
  87                         break;
  88
  89                 case "guest":
  90                         define('__URL_VALUE'  , DEREFERER($url));
  91                         LOAD_TEMPLATE("guest_frametester");
  92                         break;
  93                 }
  94                 break;
  95
  96         case "test_top":
  97                 OUTPUT_HTML("<STRONG class=\"guest_done\">".GUEST_FRAMETESTER_TOP."</SPAN>");
  98                 break;
  99
 100         case "back": // Back buttom
 101                 LOAD_TEMPLATE("member_order_back", false, $_GET['order']);
 102                 break;
 103
 104         case "send": // Send mail away
 105                 LOAD_TEMPLATE("member_order_send", false, $_GET['order']);
 106                 break;
 107         }
 108 } else {
 109         // Go away...
 110         LOAD_URL("modules.php?module=login");
 111 }
 112 //
 113 ?>