X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=inc%2Fmodules%2Fmember%2Fwhat-payout.php;h=9a555afefac2caaced3f24cfa115067694a7b810;hp=1a828cdb9c88d6270c1014e5e83e6ee500a2720c;hb=9976231a6912f167006012db6a3b757e097c46b9;hpb=ae80e170b5d25a4782af90a7c3d81fbb176fa293

diff --git a/inc/modules/member/what-payout.php b/inc/modules/member/what-payout.php
index 1a828cdb9c..9a555afefa 100644
--- a/inc/modules/member/what-payout.php
+++ b/inc/modules/member/what-payout.php
@@ -32,28 +32,28 @@
  ************************************************************************/
 
 // Some security stuff...
-if (ereg(basename(__FILE__), $_SERVER['PHP_SELF'])) {
+if (!defined('__SECURITY')) {
 	// Don't call this directly!
 	$INC = substr(dirname(__FILE__), 0, strpos(dirname(__FILE__), "/inc") + 4) . "/security.php";
 	require($INC);
 } elseif (!IS_MEMBER()) {
 	// Not logged in
 	LOAD_URL("modules.php?module=index");
-} elseif ((!EXT_IS_ACTIVE("payout")) && (!IS_ADMIN())) {
+} elseif (!EXT_IS_ACTIVE("payout"))
 	// Extension "payout" is not active
 	ADD_FATAL(EXTENSION_PROBLEM_EXT_INACTIVE, "payout");
 	return;
 }
 
 // Add description as navigation point
-ADD_DESCR("member", basename(__FILE__));
+ADD_DESCR("member", __FILE__);
 
 $result_depths = SQL_QUERY("SELECT level, percents FROM "._MYSQL_PREFIX."_refdepths ORDER BY level", __FILE__, __LINE__);
-$TPTS = "0";
+$TPTS = 0;
 while (list($lvl, $per) = SQL_FETCHROW($result_depths))
 {
-	// Load referral points
-	$result_points = SQL_QUERY_ESC("SELECT points FROM "._MYSQL_PREFIX."_user_points WHERE userid=%s AND ref_depth=%s LIMIT 1",
+	// Load referal points
+	$result_points = SQL_QUERY_ESC("SELECT points FROM "._MYSQL_PREFIX."_user_points WHERE userid=%s AND ref_depth=%d LIMIT 1",
 	 array($GLOBALS['userid'], bigintval($lvl)), __FILE__, __LINE__);
 	if (SQL_NUMROWS($result_points) == 1)
 	{
@@ -66,10 +66,8 @@ while (list($lvl, $per) = SQL_FETCHROW($result_depths))
 // Free memory
 SQL_FREERESULT($result_depths);
 
-$result = SQL_QUERY_ESC("SELECT used_points FROM "._MYSQL_PREFIX."_user_data WHERE userid=%s LIMIT 1",
- array($GLOBALS['userid']), __FILE__, __LINE__);
-list($USED) = SQL_FETCHROW($result);
-SQL_FREERESULT($result);
+// Get used points
+$USED = GET_TOTAL_DATA($GLOBALS['userid'], "user_data", "used_points");
 
 // Translate point into comma
 $TPTS = TRANSLATE_COMMA($TPTS - $USED);
@@ -83,7 +81,7 @@ if (empty($_GET['payout']))
 	$result = SQL_QUERY_ESC("SELECT id, type, rate, min_points, allow_url
 FROM "._MYSQL_PREFIX."_payout_types
 WHERE %s >= min_points
-ORDER BY type", array(str_replace(",", ".", $TPTS)), __FILE__, __LINE__);
+ORDER BY type", array(REVERT_COMMA($TPTS)), __FILE__, __LINE__);
 	if (SQL_NUMROWS($result) > 0)
 	{
 		// Free memory
@@ -104,8 +102,7 @@ ORDER BY p.payout_timestamp DESC",
 			while (list($pid, $total, $account, $bank, $type, $tstamp, $status, $allow, $url, $alt, $banner) = SQL_FETCHROW($result_payouts))
 			{
 				// Translate status
-				$evl = "\$status = PAYOUT_MEMBER_STATUS_".strtoupper($status).";";
-				eval($evl);
+				$status = constant('PAYOUT_MEMBER_STATUS_'.strtoupper($status).'');
 				$status = "<FONT class=\"member_failed\">".$status."</FONT>";
 
 				// Nothing entered must be secured in member/what-payputs.php !
@@ -186,7 +183,7 @@ ORDER BY p.payout_timestamp DESC",
 		define('PAYOUT_MAX_VALUE' , $max);
 		define('PAYOUT_TYPE_VALUE', COMPILE_CODE($type));
 
-		if (str_replace(",", ".", $TPTS) >= $min)
+		if (REVERT_COMMA($TPTS) >= $min)
 		{
 			// Ok, he can get be paid
 			if ((isset($_POST['ok'])) && ($PAYOUT <= $PAY_MAX) && ($PAYOUT >= $min))
@@ -202,7 +199,7 @@ ORDER BY p.payout_timestamp DESC",
 				{
 					// Banner/textlink ordered
 					$result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_payouts (userid, payout_total, payout_id, payout_timestamp, status, target_url, link_text, banner_url)
-VALUES (%s, %s, %s, UNIX_TIMESTAMP(), 'NEW', '%s', '%s', '%s')",
+VALUES (%s,%s,%s, UNIX_TIMESTAMP(), 'NEW','%s','%s','%s')",
  array(
 	$GLOBALS['userid'],
 	bigintval($_POST['payout']),
@@ -213,21 +210,21 @@ VALUES (%s, %s, %s, UNIX_TIMESTAMP(), 'NEW', '%s', '%s', '%s')",
 ), __FILE__, __LINE__);
 
 					// Load templates
-					$msg_mem = LOAD_EMAIL_TEMPLATE("member_payout_request_banner", "", $GLOBALS['userid']);
+					$msg_mem = LOAD_EMAIL_TEMPLATE("member_payout_request_banner", array(), $GLOBALS['userid']);
 					if (GET_EXT_VERSION("admins") >= "0.4.1")
 					{
 						$adm_tpl = "admin_payout_request_banner";
 					}
 					 else
 					{
-						$msg_adm = addslashes(LOAD_EMAIL_TEMPLATE("admin_payout_request_banner", "", $GLOBALS['userid']));
+						$msg_adm = LOAD_EMAIL_TEMPLATE("admin_payout_request_banner", array(), $GLOBALS['userid']);
 					}
 				}
 				 else
 				{
 					// e-currency payout requested
 					$result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_user_payouts (userid, payout_total, target_account, target_bank, payout_id, payout_timestamp, status, password)
-VALUES (%s, %s, %s, '%s', %s, UNIX_TIMESTAMP(), 'NEW', '%s')",
+VALUES (%s,%s,%s,'%s',%s, UNIX_TIMESTAMP(), 'NEW','%s')",
  array(
 	$GLOBALS['userid'],
 	bigintval($_POST['payout']),
@@ -238,8 +235,8 @@ VALUES (%s, %s, %s, '%s', %s, UNIX_TIMESTAMP(), 'NEW', '%s')",
 ), __FILE__, __LINE__);
 
 					// Load templates
-					$msg_mem = LOAD_EMAIL_TEMPLATE("member_payout_request", "", $GLOBALS['userid']);
-					$msg_adm = addslashes(LOAD_EMAIL_TEMPLATE("admin_payout_request", "", $GLOBALS['userid']));
+					$msg_mem = LOAD_EMAIL_TEMPLATE("member_payout_request", array(), $GLOBALS['userid']);
+					$msg_adm = LOAD_EMAIL_TEMPLATE("admin_payout_request", array(), $GLOBALS['userid']);
 					$admin_tpl = "";
 					if (GET_EXT_VERSION("admins") >= "0.4.1")
 					{
@@ -249,7 +246,7 @@ VALUES (%s, %s, %s, '%s', %s, UNIX_TIMESTAMP(), 'NEW', '%s')",
 
 				// Generate task
 				$result = SQL_QUERY_ESC("INSERT INTO "._MYSQL_PREFIX."_task_system (assigned_admin, status, task_type, subject, text, task_created, userid)
-VALUES (0, 'NEW', 'PAYOUT_REQUEST', '[payout:] ".PAYOUT_REQUEST_ADMIN."', '%s', UNIX_TIMESTAMP(), %s)",
+VALUES (0, 'NEW','PAYOUT_REQUEST','[payout:] ".PAYOUT_REQUEST_ADMIN."','%s', UNIX_TIMESTAMP(), %s)",
  array(
 	$msg_adm,
 	$GLOBALS['userid']
@@ -259,7 +256,7 @@ VALUES (0, 'NEW', 'PAYOUT_REQUEST', '[payout:] ".PAYOUT_REQUEST_ADMIN."', '%s',
 				SEND_EMAIL($GLOBALS['userid'], PAYOUT_REQUEST_MEMBER, $msg_mem);
 
 				// To admin(s)
-				SEND_ADMIN_NOTIFICATION(PAYOUT_REQUEST_ADMIN, $admin_tpl, "", $GLOBALS['userid']);
+				SEND_ADMIN_NOTIFICATION(PAYOUT_REQUEST_ADMIN, $admin_tpl, array(), $GLOBALS['userid']);
 
 				// Load template and output it
 				LOAD_TEMPLATE("admin_settings_saved", false, PAYOUT_REQUEST_SENT);