0)) { $result_main = SQL_QUERY("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' ORDER BY userid", __FILE__, __LINE__); while (list($uid) = SQL_FETCHROW($result_main)) { // User ID found in URL so we use this give him some credits $result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1", array(bigintval($uid)), __FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { // Selected user does exist list($sname, $fname, $email) = SQL_FETCHROW($result); SQL_FREERESULT($result); if ((isset($_POST['ok'])) && (!empty($_POST['points']))) { // Ok, add points to used points and send an email to him... SUB_POINTS($uid, $_POST['points']); // Load message and send it away $msg = LOAD_EMAIL_TEMPLATE("sub-points", $_POST['reason'], $uid); SEND_EMAIL($email, ADMIN_SUB_SUBJ, $msg); } } } // Free memory SQL_FREERESULT($result_main); // Output message LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_ALL_POINTS_SUBTRACTED); } else { // Display form add points LOAD_TEMPLATE("admin_sub_points_all"); } } elseif (!empty($_GET['u_id'])) { // User ID found in URL so we use this give him some credits $result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1", array(bigintval($_GET['u_id'])),__FILE__, __LINE__); if (SQL_NUMROWS($result) == 1) { // Selected user does exist list($sname, $fname, $email) = SQL_FETCHROW($result); SQL_FREERESULT($result); if ((isset($_POST['ok'])) && (!empty($_POST['points']))) { // Ok, add to used points and send an email to him... SUB_POINTS(bigintval($_GET['u_id']), $_POST['points']); // Remember points in template define('__POINTS_VALUE', bigintval($_POST['points'])); // Load email and send it away $msg = LOAD_EMAIL_TEMPLATE("sub-points", $_POST['reason'], $_GET['u_id']); SEND_EMAIL($email, ADMIN_SUB_SUBJ, $msg); // Output message LOAD_TEMPLATE("admin_settings_saved", false, ADMIN_POINTS_SUBTRACTED); } else { // Opps, missing form here define('__USER_VALUE', "".$sname." ".$fname.""); define('__UID_VALUE', $_GET['u_id']); LOAD_TEMPLATE("admin_sub_points"); } } else { // User not found! OUTPUT_HTML("".ADMIN_MEMBER_404_1.$_GET['u_id'].ADMIN_MEMBER_404_2.""); } } else { // Output selection form with all confirmed user accounts listed ADD_MEMBER_SELECTION_BOX(true); } CLOSE_TABLE(); // ?>