Security line in all includes changed

[mailer.git] / inc / modules / admin / what-payments.php

diff --git a/inc/modules/admin/what-payments.php b/inc/modules/admin/what-payments.php
index fe64ee8c488f1d8a11c16282f6e5faf4678f31f0..fae04f5a98a784f688e121939f17bb4606a59b70 100644 (file)
--- a/inc/modules/admin/what-payments.php
+++ b/inc/modules/admin/what-payments.php
@@ -32,17 +32,13 @@
  ************************************************************************/
 
 // Some security stuff...
-if ((ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) || (!IS_ADMIN()))
-{
+if ((!defined('__SECURITY')) || (!IS_ADMIN())) {
        $INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
        require($INC);
 }
 // Add description as navigation point
 ADD_DESCR("admin", basename(__FILE__));
 
-OPEN_TABLE("100%", "admin_content admin_content_align", "");
-global $link;
-
 if (empty($_GET['do'])) unset($_GET['do']);
 if (((empty($_POST['t_wait'])) || (empty($_POST['payment']))) && (!empty($_GET['do'])) && ($_GET['do'] == "add"))
 {
@@ -67,14 +63,14 @@ if (isset($_POST['ok']))
                break;
 
        case "edit":
-               foreach ($_POST['time'] as $id=>$value)
+               foreach ($_POST['time'] as $id => $value)
                {
                        $SQL[] = "UPDATE "._MYSQL_PREFIX."_payments SET time='".$value."', payment='".$_POST['pay'][$id]."', price='".$_POST['price'][$id]."', mail_title='".$_POST['title'][$id]."' WHERE id='".$id."' LIMIT 1";
                }
                break;
 
        case "del":
-               foreach ($_POST['id'] as $id=>$value)
+               foreach ($_POST['id'] as $id => $value)
                {
                        $SQL[] = "DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_payments WHERE id='".$id."' LIMIT 1";
                }
@@ -91,7 +87,7 @@ if (isset($_POST['ok']))
                                $result = SQL_QUERY(trim($s), __FILE__, __LINE__);
                                if (empty($content))
                                {
-                                       if (SQL_AFFECTEDROWS($link, __FILE__, __LINE__) == 1)
+                                       if (SQL_AFFECTEDROWS() == 1)
                                        {
                                                $content = "<SPAN class=\"admin_done\">".SETTINGS_SAVED."</SPAN>";
                                        }
@@ -113,7 +109,7 @@ if (isset($_POST['ok']))
 {
        // Delete entries here
        $SW = 2; $OUT = "";
-       foreach ($_POST['sel'] as $id=>$value)
+       foreach ($_POST['sel'] as $id => $value)
        {
                $result = SQL_QUERY_ESC("SELECT time, mail_title FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
                 array(bigintval($id)), __FILE__, __LINE__);
@@ -141,7 +137,7 @@ if (isset($_POST['ok']))
 {
        // Edit entries
        $SW = 2; $OUT = "";
-       foreach ($_POST['sel'] as $id=>$value)
+       foreach ($_POST['sel'] as $id => $value)
        {
                $result = SQL_QUERY_ESC("SELECT time, payment, mail_title, price FROM "._MYSQL_PREFIX."_payments WHERE id=%s LIMIT 1",
                 array(bigintval($id)), __FILE__, __LINE__);
@@ -208,6 +204,6 @@ if (isset($_POST['ok']))
        // Form for adding new referral levels
        LOAD_TEMPLATE("admin_add_payment");
 }
-CLOSE_TABLE();
+
 //
 ?>