X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmodules%2Fframetester.php;h=97d8c32bb6b6ffb97f4431810eff2a2d32b69ca1;hp=4e3f4f305400f05a757f135d01a4c2aba88dfeca;hb=d8148e3f1f3a6762b2e786dbe99ada269dcf2ea0;hpb=7f104f6fe558bb56b4205241435a2357c2feece1 diff --git a/inc/modules/frametester.php b/inc/modules/frametester.php index 4e3f4f3054..97d8c32bb6 100644 --- a/inc/modules/frametester.php +++ b/inc/modules/frametester.php @@ -39,12 +39,12 @@ if (!defined('__SECURITY')) { $MODE = "guest"; -if (!empty($_GET['order'])) { +if (REQUEST_ISSET_GET(('order'))) { // Order number placed, is he also logged in? - if(IS_MEMBER()) { + if (IS_MEMBER()) { // Ok, test passed... :) - $result = SQL_QUERY_ESC("SELECT subject, url FROM "._MYSQL_PREFIX."_pool WHERE id=%s AND sender=%s AND data_type='TEMP' LIMIT 1", - array(bigintval($_GET['order']), $GLOBALS['userid']), __FILE__, __LINE__); + $result = SQL_QUERY_ESC("SELECT subject, url FROM `{!_MYSQL_PREFIX!}_pool` WHERE id=%s AND sender=%s AND data_type='TEMP' LIMIT 1", + array(bigintval(REQUEST_GET('order')), $GLOBALS['userid']), __FILE__, __LINE__); // Finally is the entry valid? if (SQL_NUMROWS($result) == 1) { @@ -52,7 +52,7 @@ if (!empty($_GET['order'])) { list($sub, $url) = SQL_FETCHROW($result); // This fixes a white page - $_POST['url'] = $url; + REQUEST_SET_POST('url', $url); // Mode is member $MODE = "member"; @@ -69,19 +69,19 @@ if (!empty($_GET['order'])) { } } -if ((!empty($_POST['url'])) || (!empty($_GET['url'])) || (!empty($_GET['frame']))) { +if ((REQUEST_ISSET_POST(('url'))) || (REQUEST_ISSET_GET(('url'))) || (REQUEST_ISSET_GET(('frame')))) { // Default URL is ours - $url = URL; + $url = constant('URL'); // Decode URL if set in GET parameters - if (!empty($_GET['url'])) $url = gzuncompress(base64_decode(str_replace(" ", "+", COMPILE_CODE(urldecode($_GET['url']))))); + if (REQUEST_ISSET_GET(('url'))) $url = decodeString(str_replace(" ", "+", compileUriCode(urldecode(REQUEST_GET('url'))))); // Use URL from POST data if set - if (!empty($_POST['url'])) $url = $_POST['url']; + if (REQUEST_ISSET_POST(('url'))) $url = REQUEST_POST('url'); // Add missing element $frame = ""; - if (!empty($_GET['frame'])) $frame = SQL_ESCAPE($_GET['frame']); + if (REQUEST_ISSET_GET(('frame'))) $frame = SQL_ESCAPE(REQUEST_GET('frame')); switch ($frame) { case "": @@ -89,7 +89,7 @@ if ((!empty($_POST['url'])) || (!empty($_GET['url'])) || (!empty($_GET['frame']) { case "member": // Build frameset - define('__ORDER_VALUE', bigintval($_GET['order'])); + define('__ORDER_VALUE', bigintval(REQUEST_GET('order'))); define('__URL_VALUE' , DEREFERER($url)); LOAD_TEMPLATE("member_order_frametester"); break; @@ -102,15 +102,15 @@ if ((!empty($_POST['url'])) || (!empty($_GET['url'])) || (!empty($_GET['frame']) break; case "test_top": - OUTPUT_HTML("".GUEST_FRAMETESTER_TOP.""); + LOAD_TEMPLATE("admin_settings_saved", false, "
{--GUEST_FRAMETESTER_TOP--}"); break; case "back": // Back buttom - LOAD_TEMPLATE("member_order_back", false, $_GET['order']); + LOAD_TEMPLATE("member_order_back", false, REQUEST_GET('order')); break; case "send": // Send mail away - LOAD_TEMPLATE("member_order_send", false, $_GET['order']); + LOAD_TEMPLATE("member_order_send", false, REQUEST_GET('order')); break; } } else {