X-Git-Url: https://git.mxchange.org/?p=mailer.git;a=blobdiff_plain;f=ref.php;h=7edc3ed7d09c6ac434b7110393415e529fb51ed6;hp=d3fdc56e33f5fc24a404249cfc2f55d6810c0fce;hb=7b8e99bea1bd896d7d984bb5a04fdbf974890a7c;hpb=8a9324b2d931f54f54f4319fd7234910af77012c diff --git a/ref.php b/ref.php index d3fdc56e33..7edc3ed7d0 100644 --- a/ref.php +++ b/ref.php @@ -45,10 +45,10 @@ $GLOBALS['module'] = "ref"; $CSS = -1; require ("inc/config.php"); // Redirect only to registration page when this script is installed -if (defined('mxchange_installed') && (mxchange_installed)) +if (defined('mxchange_installed') && (isBooleanConstantAndTrue('mxchange_installed'))) { // Base URL for redirection - switch ($CONFIG['refid_target']) + switch ($_CONFIG['refid_target']) { case "register": $URL = URL."/modules.php?module=index&what=register&refid="; @@ -60,7 +60,7 @@ if (defined('mxchange_installed') && (mxchange_installed)) } // Get referral ID from ref or refid variable - if (!empty($_GET['ref'])) $ref = strip_tags(htmlentities($_GET['ref'])); + if (!empty($_GET['ref'])) $ref = secureString($_GET['ref']); elseif (!empty($_GET['refid'])) $ref = bigintval($_GET['refid']); if (!empty($ref)) @@ -74,6 +74,7 @@ if (defined('mxchange_installed') && (mxchange_installed)) list($ref) = SQL_FETCHROW($result); SQL_FREERESULT($result); } + // Also edit this 0 ! if (empty($ref)) $ref = "0"; @@ -81,7 +82,7 @@ if (defined('mxchange_installed') && (mxchange_installed)) $URL .= bigintval($ref); // Update ref counter - $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET ref_clicks=ref_clicks+1 WHERE userid=%d LIMIT 1", + $result = SQL_QUERY_ESC("UPDATE "._MYSQL_PREFIX."_user_data SET ref_clicks=ref_clicks+1 WHERE userid=%s LIMIT 1", array(bigintval($ref)), __FILE__, __LINE__); } else @@ -96,7 +97,7 @@ if (defined('mxchange_installed') && (mxchange_installed)) else { // You have to configure first! - LOAD_URL(URL."/install.php"); + LOAD_URL("install.php"); } // Really all done here... ;-)