$SAVE = false;
} else {
// Do we want to add a new sponsor or update his data?
- $result = SQL_QUERY_ESC("SELECT id FROM `"._MYSQL_PREFIX."_sponsor_data` WHERE email='%s' LIMIT 1",
+ $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_sponsor_data` WHERE email='%s' LIMIT 1",
array($POST['email']), __FILE__, __LINE__);
// Is a sponsor alread in the db?
// Update?
if ($UPDATE) {
// Update his data
- $SQL = "UPDATE `"._MYSQL_PREFIX."_sponsor_data` SET ";
+ $SQL = "UPDATE `{!_MYSQL_PREFIX!}_sponsor_data` SET ";
foreach ($DATA['keys'] as $k => $v) {
$SQL .= $v."='%s', ";
}
$VALUES = str_repeat("%s', '", count($DATA['values']) - 1);
// Generate string
- $SQL = "INSERT INTO `"._MYSQL_PREFIX."_sponsor_data` (".$KEYS.") VALUES ('".$VALUES."%s')";
+ $SQL = "INSERT INTO `{!_MYSQL_PREFIX!}_sponsor_data` (".$KEYS.") VALUES ('".$VALUES."%s')";
// Generate message
$MSG = SPONSOR_GET_MESSAGE(ADMIN_SPONSOR_ADDED, "added", $MSGs);
$ret = false;
if ((isSessionVariableSet('sponsorid'))) && (isSessionVariableSet('sponsorpass')))) {
// Check cookies against database records...
- $result = SQL_QUERY_ESC("SELECT id FROM `"._MYSQL_PREFIX."_sponsor_data`
+ $result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_sponsor_data`
WHERE id='%s' AND password='%s' AND status='CONFIRMED' LIMIT 1",
array(bigintval(get_session('sponsorid')), get_session('sponsorpass')), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1) {
if (IS_ADMIN()) $WHERE = "";
// Load main menu entries
- $result_main = SQL_QUERY("SELECT action, title FROM `"._MYSQL_PREFIX."_sponsor_menu`
-WHERE (what='' OR what IS NULL) ".$WHERE."
-ORDER BY sort", __FILE__, __LINE__);
+ $result_main = SQL_QUERY("SELECT action, title FROM `{!_MYSQL_PREFIX!}_sponsor_menu`
+WHERE (what='' OR `what` IS NULL) ".$WHERE."
+ORDER BY `sort`", __FILE__, __LINE__);
if (SQL_NUMROWS($result_main) > 0)
{
// Load every menu and it's sub menus
- while(list($action, $title_main) = SQL_FETCHROW($result_main))
+ while (list($action, $title_main) = SQL_FETCHROW($result_main))
{
// Load sub menus
- $result_sub = SQL_QUERY_ESC("SELECT what, title FROM `"._MYSQL_PREFIX."_sponsor_menu`
-WHERE action='%s' AND what != '' AND what IS NOT NULL ".$WHERE."
-ORDER BY sort", array($action), __FILE__, __LINE__);
+ $result_sub = SQL_QUERY_ESC("SELECT what, title FROM `{!_MYSQL_PREFIX!}_sponsor_menu`
+WHERE action='%s' AND `what` != '' AND `what` IS NOT NULL ".$WHERE."
+ORDER BY `sort`", array($action), __FILE__, __LINE__);
if (SQL_NUMROWS($result_sub) > 0)
{
// Load sub menus
$SUB = "";
- while(list($what, $title_sub) = SQL_FETCHROW($result_sub))
+ while (list($what, $title_sub) = SQL_FETCHROW($result_sub))
{
// Check if current selected menu is matching the loaded one
if ($current == $what) $title_sub = "<strong>".$title_sub."</strong>";
// Is sponsor?
if (IS_SPONSOR()) {
// Update last online timestamp
- SQL_QUERY_ESC("UPDATE `"._MYSQL_PREFIX."_sponsor_data`
+ SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_sponsor_data`
SET last_online=UNIX_TIMESTAMP()
WHERE id='%s' AND password='%s' LIMIT 1",
array(bigintval(get_session('sponsorid')), get_session('sponsorpass')), __FILE__, __LINE__);
$DATA = array();
// Prepare SQL string
- $SQL = "UPDATE `"._MYSQL_PREFIX."_sponsor_data` SET";
+ $SQL = "UPDATE `{!_MYSQL_PREFIX!}_sponsor_data` SET";
foreach ($POST as $key => $value) {
// Mmmmm, too less security here???
$SQL .= " ".strip_tags($key)."='%s',";
projects / mailer.git / blobdiff