Some old lost copyright lines fixed, edit/delete admin functions rewritten
[mailer.git] / click.php
index 8a08363..d5c3aaa 100644 (file)
--- a/click.php
+++ b/click.php
@@ -37,8 +37,6 @@ require_once("inc/libs/security_functions.php");
 // Init "action" and "what"
 global $what, $action;
 $GLOBALS['what'] = ""; $GLOBALS['action'] = "";
-if (!empty($_GET['action'])) $GLOBALS['action'] = secureString($_GET['action']);
-if (!empty($_GET['what'])) $GLOBALS['what'] = secureString($_GET['what']);
 
 // Set module
 $GLOBALS['module'] = "click"; $CSS = -1;
@@ -49,12 +47,12 @@ require ("inc/config.php");
 if (((!empty($_GET['user'])) || (!empty($_GET['reseller']))) && (!empty($_GET['banner']))) {
        // Update clicks counter...
        $CLICK = 1;
-       $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refbanner SET clicks=clicks+1 WHERE id=%d LIMIT 1", array(bigintval($_GET['banner'])), __FILE__, __LINE__);
+       $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refbanner SET clicks=clicks+1 WHERE id=%s LIMIT 1", array(bigintval($_GET['banner'])), __FILE__, __LINE__);
        if (SQL_AFFECTEDROWS($link) == 1) {
                if (!empty($_GET['user'])) {
-                       LOAD_URL(URL."/ref.php?refid=".bigintval($_GET['user']));
+                       LOAD_URL("ref.php?refid=".bigintval($_GET['user']));
                } else {
-                       LOAD_URL(URL."/shop_reseller.php?reseller=".bigintval($_GET['user']));
+                       LOAD_URL("shop_reseller.php?reseller=".bigintval($_GET['user']));
                }
        }
        exit();