$MODE = "guest";
-if (!empty($_GET['order'])) {
+if (REQUEST_ISSET_GET(('order'))) {
// Order number placed, is he also logged in?
- if(IS_MEMBER()) {
+ if (IS_MEMBER()) {
// Ok, test passed... :)
- $result = SQL_QUERY_ESC("SELECT subject, url FROM "._MYSQL_PREFIX."_pool WHERE id=%s AND sender=%s AND data_type='TEMP' LIMIT 1",
- array(bigintval($_GET['order']), $GLOBALS['userid']), __FILE__, __LINE__);
+ $result = SQL_QUERY_ESC("SELECT subject, url FROM `{!_MYSQL_PREFIX!}_pool` WHERE id=%s AND sender=%s AND data_type='TEMP' LIMIT 1",
+ array(bigintval(REQUEST_GET('order')), $GLOBALS['userid']), __FILE__, __LINE__);
// Finally is the entry valid?
if (SQL_NUMROWS($result) == 1) {
list($sub, $url) = SQL_FETCHROW($result);
// This fixes a white page
- $_POST['url'] = $url;
+ REQUEST_SET_POST('url', $url);
// Mode is member
$MODE = "member";
}
}
-if ((!empty($_POST['url'])) || (!empty($_GET['url'])) || (!empty($_GET['frame']))) {
+if ((REQUEST_ISSET_POST(('url'))) || (REQUEST_ISSET_GET(('url'))) || (REQUEST_ISSET_GET(('frame')))) {
// Default URL is ours
- $url = URL;
+ $url = constant('URL');
// Decode URL if set in GET parameters
- if (!empty($_GET['url'])) $url = gzuncompress(base64_decode(str_replace(" ", "+", COMPILE_CODE(urldecode($_GET['url'])))));
+ if (REQUEST_ISSET_GET(('url'))) $url = decodeString(str_replace(" ", "+", compileUriCode(urldecode(REQUEST_GET('url')))));
// Use URL from POST data if set
- if (!empty($_POST['url'])) $url = $_POST['url'];
+ if (REQUEST_ISSET_POST(('url'))) $url = REQUEST_POST('url');
// Add missing element
$frame = "";
- if (!empty($_GET['frame'])) $frame = SQL_ESCAPE($_GET['frame']);
+ if (REQUEST_ISSET_GET(('frame'))) $frame = REQUEST_GET(('frame'));
switch ($frame)
{
case "":
{
case "member":
// Build frameset
- define('__ORDER_VALUE', bigintval($_GET['order']));
+ define('__ORDER_VALUE', bigintval(REQUEST_GET('order')));
define('__URL_VALUE' , DEREFERER($url));
LOAD_TEMPLATE("member_order_frametester");
break;
break;
case "test_top":
- OUTPUT_HTML("<STRONG class=\"guest_done\">".GUEST_FRAMETESTER_TOP."</SPAN>");
+ LOAD_TEMPLATE("admin_settings_saved", false, "<div class=\"guest_done\">{--GUEST_FRAMETESTER_TOP--}</span>");
break;
case "back": // Back buttom
- LOAD_TEMPLATE("member_order_back", false, $_GET['order']);
+ LOAD_TEMPLATE("member_order_back", false, REQUEST_GET('order'));
break;
case "send": // Send mail away
- LOAD_TEMPLATE("member_order_send", false, $_GET['order']);
+ LOAD_TEMPLATE("member_order_send", false, REQUEST_GET('order'));
break;
}
} else {