$form['contact'] = xoops_getLinkedUnameFromId($form['priuid']); } } elseif ($form['cgroup']) { $form['contact'] = '[' . $groups[$form['cgroup']] . ']'; } else { $form['contact'] = _MD_CONTACT_NOTYET; } $forms[] = $form; } $xoopsTpl->assign('forms', $forms); include XOOPS_ROOT_PATH . "/footer.php"; exit; } // check access permition $form = $xoopsDB->fetchArray($res); if (!cc_check_perm($form)) { redirect_header('index.php', 3, _NOPERM); exit; } include XOOPS_ROOT_PATH . "/header.php"; $xoopsOption['template_main'] = "ccenter_reception.html"; $id = $form['formid']; $items = get_form_attribute($form['defs']); $breadcrumbs->set(htmlspecialchars($form['title']), "reception.php?formid={$id}"); $breadcrumbs->assign(); $start = isset($_GET['start']) ? intval($_GET['start']) : 0; if ($form['custom']) { $reg = array('/\\[desc\\](.*)\\[\\/desc\\]/sU', '/<form[^>]*>(.*)<\\/form[^>]*>/sU', '/{CHECK_SCRIPT}/'); $rep = array('\\1', '', ''); $form['action'] = ''; $form['description'] = preg_replace($reg, $rep, custom_template($form, $items));
include "functions.php"; if (!function_exists('mime_content_type')) { function mime_content_type($f) { return trim(exec('file -bi ' . escapeshellarg($f))); } } $msgid = isset($_GET['id']) ? intval($_GET['id']) : 0; $file = basename($_GET['file']); if ($msgid) { $res = $xoopsDB->query("SELECT msgid,uid,touid,onepass FROM " . CCMES . " WHERE msgid={$msgid}"); if (!$res || $xoopsDB->getRowsNum($res) == 0) { die("No File"); } $data = $xoopsDB->fetchArray($res); if (!cc_check_perm($data)) { redirect_header(XOOPS_URL . '/user.php', 3, _NOPERM); exit; } } $path = XOOPS_UPLOAD_PATH . cc_attach_path($msgid, $file); $type = cc_mime_content_type($path); $stat = stat($path); if (!$stat) { die('No File'); } //header("Last-Modified: ".formatTimestamp($stat['mtime'], "r")); header("Content-Type: {$type}"); //header("Content-Length: ".$stat['size']); if ($stat && $_SERVER["REQUEST_METHOD"] == "GET") { header('Content-Disposition: inline;filename="' . $file . '"');
function cc_get_message($msgid) { global $xoopsDB; $res = $xoopsDB->query("SELECT m.*, title, cgroup FROM " . CCMES . " m," . FORMS . " WHERE msgid=" . (int) $msgid . " AND status<>" . $xoopsDB->quoteString(_STATUS_DEL) . " AND fidref=formid"); $data = $xoopsDB->fetchArray($res); if (!cc_check_perm($data)) { redirect_header(XOOPS_URL . '/user.php', 3, _NOPERM); exit; } return $data; }