if ((isSessionVariableSet('sponsorid'))) && (isSessionVariableSet('sponsorpass')))) {
// Check cookies against database records...
$result = SQL_QUERY_ESC("SELECT id FROM `{!_MYSQL_PREFIX!}_sponsor_data`
-WHERE id='%s' AND password='%s' AND status='CONFIRMED' LIMIT 1",
+WHERE id='%s' AND password='%s' AND `status`='CONFIRMED' LIMIT 1",
array(bigintval(get_session('sponsorid')), get_session('sponsorpass')), __FILE__, __LINE__);
if (SQL_NUMROWS($result) == 1) {
// All is fine
{
global $_CONFIG;
$OUT = "";
- $FILE = sprintf("%sinc/modules/sponsor/%s.php", PATH, $what);
- if (FILE_READABLE($FILE)) {
+ $INC = sprintf("inc/modules/sponsor/%s.php", $what);
+ if (FILE_READABLE($INC)) {
// Every sponsor action will output nothing directly. It will be written into $OUT!
- require_once($FILE);
+ LOAD_INC_ONCE($INC);
} else {
// File not found!
$OUT .= LOAD_TEMPLATE("admin_settings_saved", true, SPONSOR_CONTENT_404_1.$what.SPONSOR_CONTENT_404_2);
$EMAIL = true;
// Okay, has changed then add status with UNCONFIRMED and new hash code
- $SQL .= " status='EMAIL', hash='%s',";
+ $SQL .= " `status`='EMAIL', hash='%s',";
// Generate hash code
$HASH = md5(session_id().":".$POST['email'].":".GET_REMOTE_ADDR().":".GET_USER_AGENT().":".time());