- // Change ref-back for this direct id
- $status = REFBACK_CHANGE_MEMBER_PERCENTS($_POST['id'], $_POST['percents']);
-
- // Check status
- if (isset($status['ok'])) {
- // No message found
- LOAD_TEMPLATE("admin_settings_saved", false, MEMBER_REFBACK_DONE);
- } elseif (isset($status['message'])) {
- // Something went wrong with error message
- LOAD_TEMPLATE("admin_settings_saved", false, sprintf(MEMBER_REFBACK_ERROR_MESSAGE, $status['message']));
+ // Validate percents
+ if (($_POST['percents'] >= $_CONFIG['refback_min_percents']) || ($_POST['percents'] == 0)) && ($_POST['percents'] <= $_CONFIG['refback_max_percents'])) {
+ // Change ref-back for this direct id
+ $status = REFBACK_CHANGE_MEMBER_PERCENTS($_POST['id'], $_POST['percents']);
+
+ // Check status
+ if (isset($status['ok'])) {
+ // No message found
+ LOAD_TEMPLATE("admin_settings_saved", false, MEMBER_REFBACK_DONE);
+ } elseif (isset($status['message'])) {
+ // Something went wrong with error message
+ LOAD_TEMPLATE("admin_settings_saved", false, sprintf(MEMBER_REFBACK_ERROR_MESSAGE, $status['message']));
+ } else {
+ // No message found
+ LOAD_TEMPLATE("admin_settings_saved", false, MEMBER_REFBACK_ERROR_EMPTY_MESSAGE);
+ }