<?php
/************************************************************************
- * MXChange v0.2.1 Start: 04/23/2005 *
- * =============== Last change: 05/18/2008 *
+ * Mailer v0.2.1-FINAL Start: 04/23/2005 *
+ * =================== Last change: 05/18/2008 *
* *
* -------------------------------------------------------------------- *
* File : sponsor_functions.php *
// Save sponsor?
if ($SAVE === true) {
// Default is no force even when a guest want to abuse this force switch
- if ((empty($postData['force'])) || (!isAdmin())) $postData['force'] = 0;
+ if ((empty($postData['force'])) || (!isAdmin())) $postData['force'] = '0';
// SQL and message string is empty by default
$sql = ''; $message = '';
// Remove last ", " from SQL string
$sql = substr($sql, 0, -2)." WHERE `id`='%s' LIMIT 1";
- $DATA['values'][] = bigintval(getRequestElement('id'));
+ $DATA['values'][] = bigintval(getRequestParameter('id'));
// Generate message
$message = getMessageFromIndexedArray(getMessage('ADMIN_SPONSOR_UPDATED'), 'updated', $messageArray);
$ret = "updated";
- } elseif (($ALREADY === false) || (($postData['force'] == '1') && (isAdmin()))) {
+ } elseif (($ALREADY === false) || (($postData['force'] == 1) && (isAdmin()))) {
// Add new sponsor, first add more data
$DATA['keys'][] = 'sponsor_created'; $DATA['values'][] = time();
$DATA['keys'][] = 'status';
$OUT = '';
foreach ($postData as $k => $v) {
// Do not add 'force' !
- if ($k != "force") {
- $OUT .= "<input type=\"hidden\" name=\"".$k."\" value=\"".stripslashes($v)."\" />\n";
- }
- }
+ if ($k != 'force') {
+ $OUT .= '<input type="hidden" name="' . secureString($k) . '" value="' . SQL_ESCAPE($v) . '" />';
+ } // END - if
+ } // END - foreach
+
+ // Remember data
$content['hidden'] = $OUT;
$content['email'] = $postData['email'];
return;
} else {
// Already added!
- $message = sprintf(getMessage('SPONSOR_ALREADY_FOUND'), $postData['email']);
+ $message = getMaskedMessage('SPONSOR_ALREADY_FOUND', $postData['email']);
$ret = 'already';
}
} else {
// Not found!
logDebugMessage(__FUNCTION__, __LINE__, sprintf("Unknown status %s detected.", $status));
- $ret = sprintf(getMessage('UNKNOWN_STATUS'), $status);
+ $ret = getMaskedMessage('UNKNOWN_STATUS', $status);
}
return $ret;
}
loadIncludeOnce($INC);
} else {
// File not found!
- $OUT .= loadTemplate('admin_settings_saved', true, sprintf(getMessage('SPONSOR_CONTENT_404'), $what));
+ $OUT .= loadTemplate('admin_settings_saved', true, getMaskedMessage('SPONSOR_CONTENT_404', $what));
}
// Return content
default: // Unknown sponsor what value!
logDebugMessage(__FUNCTION__, __LINE__, sprintf("Unknown sponsor module (what) %s detected.", getWhat()));
- $message = sprintf(getMessage('SPONSOR_UNKNOWN_WHAT'), getWhat());
+ $message = getMaskedMessage('SPONSOR_UNKNOWN_WHAT', getWhat());
$templ = ''; $subj = '';
break;
}
projects / mailer.git / blobdiff