]> git.mxchange.org Git - mailer.git/blobdiff - inc/modules/admin/what-add_points.php
projects / mailer.git / blobdiff
? search:
summary | shortlog | log | commit | commitdiff | tree
raw | inline | side by side
More SQL rewrites, TODO: Put all table and column names in backticks (`)
[mailer.git] / inc / modules / admin / what-add_points.php
diff --git a/inc/modules/admin/what-add_points.php b/inc/modules/admin/what-add_points.php
index e77b3f24fe9f6cc5f891650604d8ac4cdd03c6ca..97c5c157b038079f99f54ab14062f44c449e4a08 100644 (file)
--- a/inc/modules/admin/what-add_points.php
+++ b/inc/modules/admin/what-add_points.php
@@ -47,19 +47,25 @@ if ($_GET['u_id'] == "all") {
        // Add points to all accounts
        if ((isset($_POST['ok'])) && ($_POST['points'] > 0)) {
                define('__POINTS_VALUE', $_POST['points']);
-               $result_main = SQL_QUERY("SELECT userid FROM "._MYSQL_PREFIX."_user_data WHERE status='CONFIRMED' ORDER BY userid", __FILE__, __LINE__);
+               $result_main = SQL_QUERY("SELECT userid FROM `"._MYSQL_PREFIX."_user_data` WHERE status='CONFIRMED' ORDER BY userid", __FILE__, __LINE__);
                while (list($uid) = SQL_FETCHROW($result_main)) {
                        // User ID found in URL so we use this give him some credits
-                       $result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
-                        array(bigintval($uid)), __FILE__, __LINE__);
+                       $result = SQL_QUERY_ESC("SELECT surname, family, email FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
+                               array(bigintval($uid)), __FILE__, __LINE__);
                        if (SQL_NUMROWS($result) == 1) {
                                // Selected user does exist
                                list($sname, $fname, $email) = SQL_FETCHROW($result);
                                SQL_FREERESULT($result);
 
                                if ((isset($_POST['ok'])) && (!empty($_POST['points']))) {
+                                       global $DEPTH;
+                                       // Remove depth to prevent booking errors. This is a bad coding
+                                       // practice, thats also why we need to write this project from
+                                       // scratch...
+                                       unset($DEPTH);
+
                                        // Ok, add points and send an email to him...
-                                       ADD_POINTS_REFSYSTEM($uid, bigintval($_POST['points']), false, "0", false, "direct");
+                                       ADD_POINTS_REFSYSTEM("admin_all", $uid, bigintval($_POST['points']), false, "0", false, "direct");
 
                                        // Prepare content
                                        $content = array(
@@ -85,16 +91,22 @@ if ($_GET['u_id'] == "all") {
        }
 } elseif (!empty($_GET['u_id'])) {
        // User ID found in URL so we use this give him some credits
-       $result = SQL_QUERY_ESC("SELECT surname, family, email FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
-        array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
+       $result = SQL_QUERY_ESC("SELECT surname, family, email FROM `"._MYSQL_PREFIX."_user_data` WHERE userid=%s AND status='CONFIRMED' LIMIT 1",
+               array(bigintval($_GET['u_id'])), __FILE__, __LINE__);
        if (SQL_NUMROWS($result) == 1) {
                // Selected user does exist
                list($sname, $fname, $email) = SQL_FETCHROW($result);
                SQL_FREERESULT($result);
 
                if ((isset($_POST['ok'])) && (!empty($_POST['points']))) {
+                       global $DEPTH;
+                       // Remove depth to prevent booking errors. This is a bad coding
+                       // practice, thats also why we need to write this project from
+                       // scratch...
+                       unset($DEPTH);
+
                        // Ok, add points and send an email to him...
-                       ADD_POINTS_REFSYSTEM(bigintval($_GET['u_id']), bigintval($_POST['points']), false, "0", false, "direct");
+                       ADD_POINTS_REFSYSTEM("admin_single", bigintval($_GET['u_id']), bigintval($_POST['points']), false, "0", false, "direct");
 
                        // Prepare content
                        $content = array(
Mailer-Project repository