All database names are now 'back-ticked' and constant _MYSQL_PREFIX is wrapped. Partl...

[mailer.git] / inc / modules / admin / what-refbanner.php

diff --git a/inc/modules/admin/what-refbanner.php b/inc/modules/admin/what-refbanner.php
index 7de1f9d38e6e6c960ba03093c257ca3b08798d4d..d9a27694f23dc92b498567cb4bd787eff9d2f220 100644 (file)
--- a/inc/modules/admin/what-refbanner.php
+++ b/inc/modules/admin/what-refbanner.php
@@ -59,11 +59,11 @@ if (isset($_POST['ok'])) {
        {
        case "add":
                // Check if banner is already added
-               $result = SQL_QUERY_ESC("SELECT id FROM "._MYSQL_PREFIX."_refbanner WHERE url='%s' LIMIT 1",
+               $result = SQL_QUERY_ESC("SELECT id FROM `{!MYSQL_PREFIX!}_refbanner` WHERE url='%s' LIMIT 1",
                        array($_POST['url']), __FILE__, __LINE__);
                if (SQL_NUMROWS($result) == 0) {
                        // Add banner
-                       SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_refbanner (url, alternate, visible)
+                       SQL_QUERY_ESC("INSERT INTO `{!MYSQL_PREFIX!}_refbanner` (url, alternate, visible)
 VALUES ('%s','%s','%s')",
                                array($_POST['url'], $_POST['alternate'], $_POST['visible']), __FILE__, __LINE__);
                } else {
@@ -78,7 +78,7 @@ VALUES ('%s','%s','%s')",
                        $id = bigintval($id);
 
                        // Update entry
-                       SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refbanner SET url='%s', alternate='%s', visible='%s' WHERE id=%s LIMIT 1",
+                       SQL_QUERY_ESC("UPDATE `{!MYSQL_PREFIX!}_refbanner` SET url='%s', alternate='%s', visible='%s' WHERE id=%s LIMIT 1",
                                array($_POST['url'][$id], $_POST['alternate'][$id], $_POST['visible'], $id), __FILE__, __LINE__);
                }
                break;
@@ -87,7 +87,7 @@ VALUES ('%s','%s','%s')",
        if (SQL_AFFECTEDROWS() == 1) {
                $content = SETTINGS_SAVED;
        } else {
-               $content = "<SPAN class=\"admin_failed\">".SETTINGS_NOT_SAVED."</SPAN>";
+               $content = "<span class=\"admin_failed\">".SETTINGS_NOT_SAVED."</span>";
        }
        LOAD_TEMPLATE("admin_settings_saved", false, $content);
 } elseif (($SEL > 0) && (isset($_POST['edit']))) {
@@ -95,7 +95,7 @@ VALUES ('%s','%s','%s')",
        $SW = ""; $OUT = "";
        foreach ($_POST['sel'] as $id => $sel) {
                // Load data
-               $result = SQL_QUERY_ESC("SELECT url, alternate, visible FROM "._MYSQL_PREFIX."_refbanner WHERE id=%s LIMIT 1",
+               $result = SQL_QUERY_ESC("SELECT url, alternate, visible FROM `{!MYSQL_PREFIX!}_refbanner` WHERE id=%s LIMIT 1",
                 array(bigintval($id)), __FILE__, __LINE__);
                list($url, $alt, $vis) = SQL_FETCHROW($result);
                SQL_FREERESULT($result);
@@ -122,13 +122,13 @@ VALUES ('%s','%s','%s')",
        {
                // Delete banner
                foreach ($_POST['sel'] as $id => $sel) {
-                       SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM "._MYSQL_PREFIX."_refbanner WHERE id=%s LIMIT 1",
+                       SQL_QUERY_ESC("DELETE LOW_PRIORITY FROM `{!MYSQL_PREFIX!}_refbanner` WHERE id=%s LIMIT 1",
                                array(bigintval($id)), __FILE__, __LINE__);
                }
        }
 
        // Referal levels
-       $result = SQL_QUERY("SELECT id, url, alternate, visible, counter, clicks FROM "._MYSQL_PREFIX."_refbanner ORDER BY url", __FILE__, __LINE__);
+       $result = SQL_QUERY("SELECT id, url, alternate, visible, counter, clicks FROM `{!MYSQL_PREFIX!}_refbanner` ORDER BY url", __FILE__, __LINE__);
        if (SQL_NUMROWS($result) > 0)
        {
                // Make referal banner editable and deletable