More queries and language constants rewritten

[mailer.git] / view.php

diff --git a/view.php b/view.php
index 6993c8ba37ec5f075784e1b7149e259828c61ae1..262227e7a52328595574bd7ddd8991da60b2c391 100644 (file)
--- a/view.php
+++ b/view.php
@@ -32,7 +32,7 @@
  ************************************************************************/
 
 // Load security stuff here (Oh, I hope this is not unsecure? Am I paranoia??? ;-) )
-require_once("inc/libs/security_functions.php");
+require("inc/libs/security_functions.php");
 
 // Init "action" and "what"
 global $what, $action;
@@ -49,14 +49,16 @@ if (((!empty($_GET['user'])) || (!empty($_GET['reseller']))) && (!empty($_GET['b
        $VIEW = 1;
 
        // for later things... ;-)
-       $result = SQL_QUERY_ESC("SELECT url FROM "._MYSQL_PREFIX."_refbanner WHERE id=%s LIMIT 1", array(bigintval($_GET['banner'])), __FILE__, __LINE__);
+       $result = SQL_QUERY_ESC("SELECT url FROM `{!_MYSQL_PREFIX!}_refbanner` WHERE id=%s LIMIT 1",
+               array(bigintval($_GET['banner'])), __FILE__, __LINE__);
        if (SQL_NUMROWS($result) == 1)  {
                list($url) = SQL_FETCHROW($result);
                SQL_FREERESULT($result);
-               $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_refbanner SET counter=counter+1 WHERE id=%s LIMIT 1", array(bigintval($_GET['banner'])), __FILE__, __LINE__);
+               SQL_QUERY_ESC("UPDATE `{!_MYSQL_PREFIX!}_refbanner` SET counter=counter+1 WHERE id=%s LIMIT 1",
+                       array(bigintval($_GET['banner'])), __FILE__, __LINE__);
 
                $type = substr($url, -3);
-               @header ("Content-Type: image/".$type);
+               header ("Content-Type: image/".$type);
                LOAD_URL($url, false);
        } else {
                // Free memory
@@ -67,5 +69,5 @@ if (((!empty($_GET['user'])) || (!empty($_GET['reseller']))) && (!empty($_GET['b
        LOAD_URL (URL."/index.php");
 }
 
-// // END - if
+// END - if
 ?>