function new_task($list_id, $task_id, $data) { //notification is not selected or no one is assigned if ($_POST['task_assign'] == '-1') { return; } $project_id = 0; if (isset($_POST['project_id'])) { $project_id = intval($_POST['project_id']); } $user = get_user_by('id', intval($_POST['task_assign'])); $to = sprintf('%s <%s>', $user->display_name, $user->user_email); $template_vars = array('%SITE%' => wp_specialchars_decode(get_option('blogname'), ENT_QUOTES), '%PROJECT_NAME%' => get_post_field('post_title', $project_id), '%PROJECT_URL%' => cpm_url_project_details($project_id), '%AUTHOR%' => $user->display_name, '%AUTHOR_EMAIL%' => $user->user_email, '%TASKLIST_URL%' => cpm_url_single_tasklist($project_id, $list_id), '%TASK_URL%' => cpm_url_single_task($project_id, $list_id, $task_id), '%TASK%' => $data['post_content'], '%IP%' => get_ipaddress()); $subject = cpm_get_option('new_task_sub'); $message = cpm_get_option('new_task_body'); // subject foreach ($template_vars as $key => $value) { $subject = str_replace($key, $value, $subject); } // message foreach ($template_vars as $key => $value) { $message = str_replace($key, $value, $message); } $this->send($to, $subject, $message); }
function vote_poll() { global $wpdb, $user_identity, $user_ID; if (isset($_REQUEST['action']) && $_REQUEST['action'] == 'polls') { // Load Headers polls_textdomain(); header('Content-Type: text/html; charset=' . get_option('blog_charset') . ''); // Get Poll ID $poll_id = isset($_REQUEST['poll_id']) ? intval($_REQUEST['poll_id']) : 0; // Ensure Poll ID Is Valid if ($poll_id == 0) { _e('Invalid Poll ID', 'wp-polls'); exit; } // Verify Referer if (!check_ajax_referer('poll_' . $poll_id . '-nonce', 'poll_' . $poll_id . '_nonce', false)) { _e('Failed To Verify Referrer', 'wp-polls'); exit; } // Which View switch ($_REQUEST['view']) { // Poll Vote case 'process': $poll_aid = $_POST["poll_{$poll_id}"]; $poll_aid_array = array_unique(array_map('intval', explode(',', $poll_aid))); if ($poll_id > 0 && !empty($poll_aid_array) && check_allowtovote()) { $check_voted = check_voted($poll_id); if ($check_voted == 0) { if (!empty($user_identity)) { $pollip_user = htmlspecialchars(addslashes($user_identity)); } elseif (!empty($_COOKIE['comment_author_' . COOKIEHASH])) { $pollip_user = htmlspecialchars(addslashes($_COOKIE['comment_author_' . COOKIEHASH])); } else { $pollip_user = __('Guest', 'wp-polls'); } $pollip_userid = intval($user_ID); $pollip_ip = get_ipaddress(); $pollip_host = esc_attr(@gethostbyaddr($pollip_ip)); $pollip_timestamp = current_time('timestamp'); // Only Create Cookie If User Choose Logging Method 1 Or 2 $poll_logging_method = intval(get_option('poll_logging_method')); if ($poll_logging_method == 1 || $poll_logging_method == 3) { $cookie_expiry = intval(get_option('poll_cookielog_expiry')); if ($cookie_expiry == 0) { $cookie_expiry = 30000000; } $vote_cookie = setcookie('voted_' . $poll_id, $poll_aid, $pollip_timestamp + $cookie_expiry, COOKIEPATH); } $i = 0; foreach ($poll_aid_array as $polla_aid) { $update_polla_votes = $wpdb->query("UPDATE {$wpdb->pollsa} SET polla_votes = (polla_votes+1) WHERE polla_qid = {$poll_id} AND polla_aid = {$polla_aid}"); if (!$update_polla_votes) { unset($poll_aid_array[$i]); } $i++; } $vote_q = $wpdb->query("UPDATE {$wpdb->pollsq} SET pollq_totalvotes = (pollq_totalvotes+" . sizeof($poll_aid_array) . "), pollq_totalvoters = (pollq_totalvoters+1) WHERE pollq_id = {$poll_id} AND pollq_active = 1"); if ($vote_q) { foreach ($poll_aid_array as $polla_aid) { $wpdb->query("INSERT INTO {$wpdb->pollsip} VALUES (0, {$poll_id}, {$polla_aid}, '{$pollip_ip}', '{$pollip_host}', '{$pollip_timestamp}', '{$pollip_user}', {$pollip_userid})"); } echo display_pollresult($poll_id, $poll_aid_array, false); } else { printf(__('Unable To Update Poll Total Votes And Poll Total Voters. Poll ID #%s', 'wp-polls'), $poll_id); } // End if($vote_a) } else { printf(__('You Had Already Voted For This Poll. Poll ID #%s', 'wp-polls'), $poll_id); } // End if($check_voted) } else { printf(__('Invalid Poll ID. Poll ID #%s', 'wp-polls'), $poll_id); } // End if($poll_id > 0 && !empty($poll_aid_array) && check_allowtovote()) break; // Poll Result // Poll Result case 'result': echo display_pollresult($poll_id, 0, false); break; // Poll Booth Aka Poll Voting Form // Poll Booth Aka Poll Voting Form case 'booth': echo display_pollvote($poll_id, false); break; } // End switch($_REQUEST['view']) } // End if(isset($_REQUEST['action']) && $_REQUEST['action'] == 'polls') exit; }
<?php include 'functions.php'; ob_start(); echo "<html>\n"; // grab the connecting ip address. // $connecting_ip = get_ipaddress(); if (empty($connecting_ip)) { return FALSE; } // determine if connecting ip address is allowed to connect to PHP Timeclock // if ($restrict_ips == "yes") { for ($x = 0; $x < count($allowed_networks); $x++) { $is_allowed = ip_range($allowed_networks[$x], $connecting_ip); if (!empty($is_allowed)) { $allowed = TRUE; } } if (!isset($allowed)) { echo "You are not authorized to view this page."; exit; } } // connect to db anc check for correct db version // @($db = mysql_pconnect($db_hostname, $db_username, $db_password)); if (!$db) { echo "Error: Could not connect to the database. Please try again later."; exit; } mysql_select_db($db_name); $table = "dbversion";
function process_ratings() { global $wpdb, $user_identity, $user_ID; if (isset($_REQUEST['action']) && $_REQUEST['action'] == 'postratings') { $rate = intval($_REQUEST['rate']); $post_id = intval($_REQUEST['pid']); // Verify Referer if (!check_ajax_referer('postratings_' . $post_id . '-nonce', 'postratings_' . $post_id . '_nonce', false)) { _e('Failed To Verify Referrer', 'wp-postratings'); exit; } if ($rate > 0 && $post_id > 0 && check_allowtorate()) { // Check For Bot $bots_useragent = array('googlebot', 'google', 'msnbot', 'ia_archiver', 'lycos', 'jeeves', 'scooter', 'fast-webcrawler', 'slurp@inktomi', 'turnitinbot', 'technorati', 'yahoo', 'findexa', 'findlinks', 'gaisbo', 'zyborg', 'surveybot', 'bloglines', 'blogsearch', 'ubsub', 'syndic8', 'userland', 'gigabot', 'become.com'); $useragent = $_SERVER['HTTP_USER_AGENT']; foreach ($bots_useragent as $bot) { if (stristr($useragent, $bot) !== false) { return; } } header('Content-Type: text/html; charset=' . get_option('blog_charset') . ''); postratings_textdomain(); $rated = check_rated($post_id); // Check Whether Post Has Been Rated By User if (!$rated) { // Check Whether Is There A Valid Post $post = get_post($post_id); // If Valid Post Then We Rate It if ($post && !wp_is_post_revision($post)) { $ratings_max = intval(get_option('postratings_max')); $ratings_custom = intval(get_option('postratings_customrating')); $ratings_value = get_option('postratings_ratingsvalue'); $post_title = addslashes($post->post_title); $post_ratings = get_post_custom($post_id); $post_ratings_users = !empty($post_ratings['ratings_users']) ? intval($post_ratings['ratings_users'][0]) : 0; $post_ratings_score = !empty($post_ratings['ratings_score']) ? intval($post_ratings['ratings_score'][0]) : 0; // Check For Ratings Lesser Than 1 And Greater Than $ratings_max if ($rate < 1 || $rate > $ratings_max) { $rate = 0; } $post_ratings_users = $post_ratings_users + 1; $post_ratings_score = $post_ratings_score + intval($ratings_value[$rate - 1]); $post_ratings_average = round($post_ratings_score / $post_ratings_users, 2); update_post_meta($post_id, 'ratings_users', $post_ratings_users); update_post_meta($post_id, 'ratings_score', $post_ratings_score); update_post_meta($post_id, 'ratings_average', $post_ratings_average); // Add Log if (!empty($user_identity)) { $rate_user = addslashes($user_identity); } elseif (!empty($_COOKIE['comment_author_' . COOKIEHASH])) { $rate_user = addslashes($_COOKIE['comment_author_' . COOKIEHASH]); } else { $rate_user = __('Guest', 'wp-postratings'); } $rate_user = apply_filters('wp_postratings_process_ratings_user', $rate_user); $rate_userid = apply_filters('wp_postratings_process_ratings_userid', intval($user_ID)); // Only Create Cookie If User Choose Logging Method 1 Or 3 $postratings_logging_method = intval(get_option('postratings_logging_method')); if ($postratings_logging_method == 1 || $postratings_logging_method == 3) { $rate_cookie = setcookie("rated_" . $post_id, $ratings_value[$rate - 1], time() + 30000000, apply_filters('wp_postratings_cookiepath', SITECOOKIEPATH)); } // Log Ratings No Matter What $rate_log = $wpdb->query($wpdb->prepare("INSERT INTO {$wpdb->ratings} VALUES (%d, %d, %s, %d, %d, %s, %s, %s, %d )", 0, $post_id, $post_title, $ratings_value[$rate - 1], current_time('timestamp'), get_ipaddress(), @gethostbyaddr(get_ipaddress()), $rate_user, $rate_userid)); // Allow Other Plugins To Hook When A Post Is Rated do_action('rate_post', $rate_userid, $post_id, $ratings_value[$rate - 1]); // Output AJAX Result echo the_ratings_results($post_id, $post_ratings_users, $post_ratings_score, $post_ratings_average); exit; } else { printf(__('Invalid Post ID. Post ID #%s.', 'wp-postratings'), $post_id); exit; } // End if($post) } else { printf(__('You Had Already Rated This Post. Post ID #%s.', 'wp-postratings'), $post_id); exit; } // End if(!$rated) } // End if($rate && $post_id && check_allowtorate()) } // End if(isset($_REQUEST['action']) && $_REQUEST['action'] == 'postratings') }
$platform = 'ipad'; } elseif (strpos($agent, 'iphone')) { $platform = 'iphone'; } elseif (strpos($agent, 'android')) { $platform = 'android'; } elseif (strpos($agent, 'unix')) { $platform = 'unix'; } elseif (strpos($agent, 'linux')) { $platform = 'linux'; } else { $platform = 'other'; } return $platform; } // params $ip = get_ipaddress(); $platform = getDeviceOS(); $type = $_POST['type']; $url = $_POST['url']; date_default_timezone_set(PRC); $odate = date("Y-m-d H:i", time()); if ($conn) { // insert to database $query = "INSERT INTO tracking (ip, platform, type, url, odate) VALUES('{$ip}', '{$platform}', '{$type}','{$url}','{$odate}')"; mysqli_query($conn, $query) or die("Error in query: {$query}. " . mysql_error()); } else { echo 'database is disconnect!'; } mysqli_close($conn); ?>
function wprp_handle_reports() { global $wpdb, $wprp_message; // get Post PARAM $post_id = (int) $_POST['postID']; $report_as = $_POST['report_as']; $description = $_POST['description']; $ipaddress = get_ipaddress(); $nonce = $_POST['wpnonce']; // Get the Post $post = get_post($post_id); // Check for POST if (!$post_id || !$post) { echo "<strong>Invalid Post</strong>"; return; } // Security CHECK if (!wp_verify_nonce($nonce, $post_id)) { echo "<strong>Security Check Failed, Please Submit again...</strong>"; return; } include_once 'ReportPost.class.php'; $rp = new ReportPost($wpdb); if ($rp->add($post_id, $report_as, $description)) { $reported = true; } else { echo "! Sorry, Unable to Process your Request. Please contact Site Administrator via Email to Report this Issue"; } /* // tpValirable $reported=false; // Check for Existing Post Report $post_count=$wpdb->get_var($wpdb->prepare("SELECT COUNT(*) FROM $wpdb->reportpost WHERE post_id=%s",$post_id)); if(is_numeric($post_count) && $post_count>0) { // Update the Description $result=$wpdb->query( $wpdb->prepare("UPDATE $wpdb->reportpost SET description=CONCAT(description,%s) WHERE post_id=%s"," <br />[".$ipaddress."] : ".$report_as." | ".$description,$post_id)); $reported=true; }else{ // Do Report! $result=$wpdb->query( $wpdb->prepare("INSERT INTO $wpdb->reportpost(post_id,post_title,user_ip,description,stamp) VALUES(%s,%s,%s,%s,%s)",$post_id, $post->post_title, $ipaddress,"[".$ipaddress."] : ".$report_as." | ".$description,time())); $reported=true; // Send Mail $send_email=get_option("rp_send_email"); if($send_email==1) { // SEND EMAIL $mail_to=get_option("rp_email_address"); $mail_subject="[REPORT] : ".$post->post_title; $mail_body="Following Post has been Reported through ".get_option("blogname")."\n-----\n"; $mail_body.="POST ID: ".$post_id."\n"; $mail_body.="POST TITLE: ".$post->post_title."\n"; $mail_body.="Reported As: ".$report_as."\n"; $mail_body.="Description: \n".$description."\n"; $mail_body.="\n-----\nThank You"; $mail_header="From: Admin <".get_option("admin_email").">"; // Send mail // @ Prvent from Showing Any Error Message JUST in CASE @mail($mail_to,$mail_subject,$mail_body,$mail_header); } }*/ if ($reported) { // get thanks Option $thanksMsg = get_option('rp_thanks_msg'); if (empty($thanksMsg)) { $thanksMsg = "<strong>Thanks for Reporting [TITLE]</strong>"; } $thanksMsg = str_replace("[TITLE]", $post->post_title, $thanksMsg); echo $thanksMsg; echo "<br />Reported as : " . $report_as; if (!empty($description)) { echo "<br />Comments : " . $description; } } }
function vote_poll() { global $wpdb, $user_identity, $user_ID; if (!empty($_POST['vote'])) { polls_textdomain(); header('Content-Type: text/html; charset=' . get_option('blog_charset') . ''); $poll_id = intval($_POST['poll_id']); $poll_aid = $_POST["poll_{$poll_id}"]; $poll_aid_array = explode(',', $poll_aid); if ($poll_id > 0 && !empty($poll_aid_array) && check_allowtovote()) { $check_voted = check_voted($poll_id); if ($check_voted == 0) { if (!empty($user_identity)) { $pollip_user = addslashes($user_identity); } elseif (!empty($_COOKIE['comment_author_' . COOKIEHASH])) { $pollip_user = addslashes($_COOKIE['comment_author_' . COOKIEHASH]); } else { $pollip_user = __('Guest', 'wp-polls'); } $pollip_userid = intval($user_ID); $pollip_ip = get_ipaddress(); $pollip_host = @gethostbyaddr($pollip_ip); $pollip_timestamp = current_time('timestamp'); // Only Create Cookie If User Choose Logging Method 1 Or 2 $poll_logging_method = intval(get_option('poll_logging_method')); if ($poll_logging_method == 1 || $poll_logging_method == 3) { $cookie_expiry = intval(get_option('poll_cookielog_expiry')); if ($cookie_expiry == 0) { $cookie_expiry = 30000000; } $vote_cookie = setcookie('voted_' . $poll_id, $poll_aid, $pollip_timestamp + $cookie_expiry, COOKIEPATH); } $i = 0; foreach ($poll_aid_array as $polla_aid) { $update_polla_votes = $wpdb->query("UPDATE {$wpdb->pollsa} SET polla_votes = (polla_votes+1) WHERE polla_qid = {$poll_id} AND polla_aid = {$polla_aid}"); if (!$update_polla_votes) { unset($poll_aid_array[$i]); } $i++; } $vote_q = $wpdb->query("UPDATE {$wpdb->pollsq} SET pollq_totalvotes = (pollq_totalvotes+" . sizeof($poll_aid_array) . "), pollq_totalvoters = (pollq_totalvoters+1) WHERE pollq_id = {$poll_id} AND pollq_active = 1"); if ($vote_q) { foreach ($poll_aid_array as $polla_aid) { $wpdb->query("INSERT INTO {$wpdb->pollsip} VALUES (0, {$poll_id}, {$polla_aid}, '{$pollip_ip}', '{$pollip_host}', '{$pollip_timestamp}', '{$pollip_user}', {$pollip_userid})"); } echo display_pollresult($poll_id, $poll_aid_array, false); exit; } else { printf(__('Unable To Update Poll Total Votes And Poll Total Voters. Poll ID #%s', 'wp-polls'), $poll_id); exit; } // End if($vote_a) } else { printf(__('You Had Already Voted For This Poll. Poll ID #%s', 'wp-polls'), $poll_id); exit; } // End if($check_voted) } else { printf(__('Invalid Poll ID. Poll ID #%s', 'wp-polls'), $poll_id); exit; } // End if($poll_id > 0 && $poll_aid > 0) } elseif (intval($_GET['pollresult']) > 0) { header('Content-Type: text/html; charset=' . get_option('blog_charset') . ''); $poll_id = intval($_GET['pollresult']); echo display_pollresult($poll_id, 0, false); exit; } elseif (intval($_GET['pollbooth']) > 0) { header('Content-Type: text/html; charset=' . get_option('blog_charset') . ''); $poll_id = intval($_GET['pollbooth']); echo display_pollvote($poll_id, false); exit; } // End if(!empty($_POST['vote'])) }
$q_notes = mysql_real_escape_string($notes); $h_notes = htmlentities($notes); $q_empfullname = mysql_real_escape_string($empfullname); // Validate and get inout display color. $query = "select color from " . $db_prefix . "punchlist where punchitems = '{$q_inout}'"; $punchlist_result = mysql_query($query); $inout_color = mysql_result($punchlist_result, 0, 0); if (!$inout_color) { #print error_msg("In/Out Status is not in the database."); trigger_error('In/Out Status is not in the database.', E_USER_WARNING); exit; } $h_color = htmlentities($inout_color); // Record time. $tz_stamp = utm_timestamp(); $ip = strtolower($ip_logging) == "yes" ? "'" . get_ipaddress() . "'" : 'NULL'; $insert_query = <<<End_Of_SQL insert into {$db_prefix}info (fullname, `inout`, timestamp, notes, ipaddress) values ('{$q_empfullname}', '{$q_inout}', '{$tz_stamp}', '{$q_notes}', {$ip}) End_Of_SQL; $update_query = <<<End_Of_SQL update {$db_prefix}employees set tstamp = '{$tz_stamp}' where empfullname = '{$q_empfullname}' End_Of_SQL; if (mysql_query($insert_query)) { mysql_query($update_query) or trigger_error('entry: cannot update tstamp in employee record. ' . mysql_error(), E_USER_WARNING); } else { trigger_error('entry: cannot insert timestamp into info record. ' . mysql_error(), E_USER_WARNING); } # Uncomment next to display success message. The entry status display also shows last punch-in/out.
<?php cpm_get_email_header(); $new = CPM_URL . '/assets/images/new.png'; $triangle = CPM_URL . '/assets/images/triangle.png'; $template_vars = array('%SITE%' => wp_specialchars_decode(get_option('blogname'), ENT_QUOTES), '%PROJECT_NAME%' => get_post_field('post_title', $project_id), '%PROJECT_URL%' => '<a style="text-decoration: none;" href="' . cpm_url_project_details($project_id) . '">' . get_post_field('post_title', $project_id) . '</a>', '%AUTHOR%' => $user->display_name, '%AUTHOR_EMAIL%' => $user->user_email, '%TASKLIST_URL%' => '<a style="text-decoration: none;" href="' . cpm_url_single_tasklist($project_id, $list_id) . '">' . get_post_field('post_title', $list_id) . '</a>', '%TASK_URL%' => '<a style="text-decoration: none;" href="' . cpm_url_single_task($project_id, $list_id, $task_id) . '">' . get_post_field('post_title', $task_id) . '</a>', '%TASK%' => $data['post_content'], '%IP%' => get_ipaddress()); $subject = cpm_get_option('new_task_sub'); $message = cpm_get_content(cpm_get_option('new_task_body')); // subject foreach ($template_vars as $key => $value) { $subject = str_replace($key, $value, $subject); } // message foreach ($template_vars as $key => $value) { $message = str_replace($key, $value, $message); } ?> <table width="600" style="margin-top: 50px; background: #fff;"> <tr> <td> <center><img src="<?php echo $new; ?> "/></center> </td> </tr> <tr> <td> <center><div style="font-size: 45px; padding-top: 38px;"><?php
function rtp_display_template($post_id = 0) { global $id; $rtp_options = get_option('aft_options_array'); $session_key = $_COOKIE[RTP_COOKIE_NAME]; if (intval($post_id) > 0) { $postid = $post_id; } else { $postid = $id; } $is_rated = rtp_is_rated($postid); $is_page = 'post' === get_post_type() ? 'false' : 'true'; // Show the current rating data if logged by IP or by IP and Cookie if ($rtp_options['rtp_logged_by'] == 1 || $rtp_options['rtp_logged_by'] == 3) { $data = rtp_fetch_ratings_byip($postid, get_ipaddress(), $is_page); } else { $data = aft_plgn_fetch_ratings($postid, $session_key, $is_page); } $ave_data = aft_plgn_fetch_rate_summary($postid, $is_page); $display = '<!--Main Content--> <div class="rtp-feedback"> <div class="rtp-feedback-panel"> <div class="rtp-feedback-buffer"> <div id="rtp-report" class="rtp-switch rtp-switch-form">View ratings</div> <div id="rtp-form" class="rtp-switch rtp-switch-report">Rate this article</div> <div class="feedback-title rtp-switch-form">%TITLE_LABEL%</div> <div class="feedback-title rtp-switch-report" id="rtp-report-title">%TITLE_LABEL_REPORT%<br /><span>Current average ratings.</span></div> <div style="clear:both;"></div> <!--Primary Feedback--> <div class="feedback-rating"> <div class="feedback-ratings"> <div class="feedback-label">%LABEL_TRUSTWORTHY%</div> <span class="rtp-average-report rtp-switch-report">%AVE_TRUSTWORTHY%</span> <div id="rtp-trustworthy-bar" class="rtp-switch-report"></div> <div class="rtp-switch-form" id="feedback-trustworthy"> <input type="hidden" id="rtp-trustworthy-val" name="trustworthy-score" value="%VAL_TRUSTWORTHY%" /> </div> <div class="rtp-rating-count rtp-switch-report">%COUNT_TRUSTWORTHY%</div> <div class="rtp-trustworthy-hint"></div> </div> <div class="feedback-ratings"> <div class="feedback-label">%LABEL_OBJECTIVE%</div> <span class="rtp-average-report rtp-switch-report">%AVE_OBJECTIVE%</span> <div id="rtp-objective-bar" class="rtp-switch-report"></div> <div class="rtp-switch-form" id="feedback-objective"> <input type="hidden" id="rtp-objective-val" name="objective-score" value="%VAL_OBJECTIVE%" /> </div> <div class="rtp-rating-count rtp-switch-report">%COUNT_OBJECTIVE%</div> <div class="rtp-objective-hint"></div> </div> <div class="feedback-ratings"> <div class="feedback-label">%LABEL_COMPLETE%</div> <span class="rtp-average-report rtp-switch-report">%AVE_COMPLETE%</span> <div id="rtp-complete-bar" class="rtp-switch-report"></div> <div class="rtp-switch-form" id="feedback-complete"> <input type="hidden" id="rtp-complete-val" name="complete-score" value="%VAL_COMPLETE%" /> </div> <div class="rtp-rating-count rtp-switch-report">%COUNT_COMPLETE%</div> <div class="rtp-complete-hint"></div> </div> <div class="feedback-ratings"> <div class="feedback-label">%LABEL_WELLWRITTEN%</div> <span class="rtp-average-report rtp-switch-report">%AVE_WELLWRITTEN%</span> <div id="rtp-wellwritten-bar" class="rtp-switch-report"></div> <div class="rtp-switch-form" id="feedback-wellwritten"> <input type="hidden" id="rtp-wellwritten-val" name="wellwritten-score" value="%VAL_WELLWRITTEN%" /> </div> <div class="rtp-rating-count rtp-switch-report">%COUNT_WELLWRITTEN%</div> <div class="rtp-wellwritten-hint"></div> </div> </div> <div style="clear:both;"></div> <!--For Feedback Options--> <div class="feedback-options rtp-switch-form"> <div class="feedback-options-selection"> <input id="feedback-options-general" type="checkbox" name="feedback-general" value="" /> <label class="feedback-label" for="feedback-options-general">' . __('I am highly knowledgeable about this topic (optional)') . '</label> </div> <div class="feeback-helpimprove-hidden" style="display:none;"> <ul id="feedback-helpimprove"> <li><input id="feedbackStudies" type="checkbox" name="feedback-studies" value="" /><label class="feedback-label" for="feedbackStudies">' . __('I have a relevant college/university degree') . '</label></li> <li><input id="feedbackProfession" type="checkbox" name="feedback-profession" value="" /><label class="feedback-label" for="feedbackProfession">' . __('It is part of my profession') . '</label></li> <li><input id="feedbackPassion" type="checkbox" name="feedback-passion" value="" /><label class="feedback-label" for="feedbackPassion">' . __('It is a deep personal passion') . '</label></li> </ul> </div> </div> <button class="rtp-button rtp-switch-form" id="submit-feedback" type="submit" name="aft-submit-feedback" value="aft-submit-feedback"><span id="rtp-button-label">' . __('Submit Ratings') . '</span></button> <div id="formstatus" class="rtp-switch-form"></div> </div> </div> <input type="hidden" id="feedback-postid" name="feedback-postid" value="%POST_ID%" /> <input type="hidden" id="feedback-datetime" name="feedback-datetime" value="%RATE_DATE%" /> <input type="hidden" id="feedback-ispage" name="feedback-ispage" value="%IS_PAGE%" /> </div>'; return rtp_extend_template($display, $postid, $data, $ave_data); }
function process_ratings() { global $wpdb, $user_identity, $user_ID; $rate = intval($_GET['rate']); $post_id = intval($_GET['pid']); if ($rate > 0 && $post_id > 0 && check_allowtorate()) { // Check For Bot $bots_useragent = array('googlebot', 'google', 'msnbot', 'ia_archiver', 'lycos', 'jeeves', 'scooter', 'fast-webcrawler', 'slurp@inktomi', 'turnitinbot', 'technorati', 'yahoo', 'findexa', 'findlinks', 'gaisbo', 'zyborg', 'surveybot', 'bloglines', 'blogsearch', 'ubsub', 'syndic8', 'userland', 'gigabot', 'become.com'); $useragent = $_SERVER['HTTP_USER_AGENT']; foreach ($bots_useragent as $bot) { if (stristr($useragent, $bot) !== false) { return; } } header('Content-Type: text/html; charset=' . get_option('blog_charset') . ''); postratings_textdomain(); $rated = check_rated($post_id); // Check Whether Post Has Been Rated By User if (!$rated) { // Check Whether Is There A Valid Post $post = get_post($post_id); // If Valid Post Then We Rate It if ($post && !wp_is_post_revision($post)) { $ratings_max = intval(get_option('postratings_max')); $ratings_custom = intval(get_option('postratings_customrating')); $ratings_value = get_option('postratings_ratingsvalue'); $post_title = addslashes($post->post_title); $post_ratings = get_post_custom($post_id); $post_ratings_users = intval($post_ratings['ratings_users'][0]); $post_ratings_score = intval($post_ratings['ratings_score'][0]); // Check For Ratings Lesser Than 1 And Greater Than $ratings_max if ($rate < 1 || $rate > $ratings_max) { $rate = 0; } $post_ratings_users = $post_ratings_users + 1; $post_ratings_score = $post_ratings_score + intval($ratings_value[$rate - 1]); $post_ratings_average = round($post_ratings_score / $post_ratings_users, 2); if (!update_post_meta($post_id, 'ratings_users', $post_ratings_users)) { add_post_meta($post_id, 'ratings_users', $post_ratings_users, true); } if (!update_post_meta($post_id, 'ratings_score', $post_ratings_score)) { add_post_meta($post_id, 'ratings_score', $post_ratings_score, true); } if (!update_post_meta($post_id, 'ratings_average', $post_ratings_average)) { add_post_meta($post_id, 'ratings_average', $post_ratings_average, true); } // Add Log if (!empty($user_identity)) { $rate_user = addslashes($user_identity); } elseif (!empty($_COOKIE['comment_author_' . COOKIEHASH])) { $rate_user = addslashes($_COOKIE['comment_author_' . COOKIEHASH]); } else { $rate_user = __('Guest', 'wp-postratings'); } $rate_userid = intval($user_ID); // Only Create Cookie If User Choose Logging Method 1 Or 3 $postratings_logging_method = intval(get_option('postratings_logging_method')); if ($postratings_logging_method == 1 || $postratings_logging_method == 3) { $rate_cookie = setcookie("rated_" . $post_id, $ratings_value[$rate - 1], time() + 30000000, COOKIEPATH); } // Log Ratings No Matter What $rate_log = $wpdb->query("INSERT INTO {$wpdb->ratings} VALUES (0, {$post_id}, '{$post_title}', " . $ratings_value[$rate - 1] . ",'" . current_time('timestamp') . "', '" . get_ipaddress() . "', '" . esc_attr(@gethostbyaddr(get_ipaddress())) . "' ,'{$rate_user}', {$rate_userid})"); # store into transver LHG database lhg_store_ratings($post_id, $post_ratings_users, $post_ratings_score, $ratings_value[$rate - 1]); // Output AJAX Result //echo the_ratings_results($post_id, $post_ratings_users, $post_ratings_score, $post_ratings_average); //show my rating, not the average echo the_ratings_results($post_id, $post_ratings_users, $post_ratings_score, $ratings_value[$rate - 1]); exit; } else { printf(__('Invalid Post ID. Post ID #%s.', 'wp-postratings'), $post_id); exit; } // End if($post) } else { printf(__('You Had Already Rated This Post. Post ID #%s.', 'wp-postratings'), $post_id); exit; } // End if(!$rated) } // End if($rate && $post_id && check_allowtorate()) }
<?php $users = $this->prepare_contacts(); if (!$users) { return; } cpm_get_email_header(); $new = CPM_URL . '/assets/images/new.png'; $triangle = CPM_URL . '/assets/images/triangle.png'; $pro_obj = CPM_Project::getInstance(); $msg_obj = CPM_Message::getInstance(); $project = $pro_obj->get($project_id); $msg = $msg_obj->get($message_id); $author = wp_get_current_user(); $template_vars = array('%SITE%' => wp_specialchars_decode(get_option('blogname'), ENT_QUOTES), '%PROJECT_NAME%' => $project->post_title, '%PROJECT_URL%' => '<a style="text-decoration: none;" href="' . cpm_url_project_details($project_id) . '">' . get_post_field('post_title', $project_id) . '</a>', '%AUTHOR%' => $author->display_name, '%AUTHOR_EMAIL%' => $author->user_email, '%MESSAGE_URL%' => '<a style="text-decoration: none;" href="' . cpm_url_single_message($project_id, $message_id) . '">' . get_post_field('post_title', $message_id) . '</a>', '%MESSAGE%' => $msg->post_content, '%IP%' => get_ipaddress()); $subject = cpm_get_option('new_message_sub'); $message = cpm_get_content(cpm_get_option('new_message_body')); // subject foreach ($template_vars as $key => $value) { $subject = str_replace($key, $value, $subject); } // message foreach ($template_vars as $key => $value) { $message = str_replace($key, $value, $message); } ?> <table width="600" style="margin-top: 50px; background: #fff;"> <tr> <td> <center><img src="<?php
function rtp_logged_ip($post_id) { global $wpdb; $sql = "SELECT ip FROM %sfeedbacks WHERE post_id = %d AND ip = %d"; $sql = sprintf($sql, $wpdb->prefix, $post_id, get_ipaddress()); return intval($wpdb->get_var($sql)); }
$msg_obj = CPM_Message::getInstance(); $parent_post = get_post($data['comment_post_ID']); $author = wp_get_current_user(); $comment_url = ''; switch ($parent_post->post_type) { case 'message': $comment_url = cpm_url_single_message($project_id, $data['comment_post_ID']); break; case 'task_list': $comment_url = cpm_url_single_tasklist($project_id, $parent_post->ID); break; case 'task': $comment_url = cpm_url_single_task($project_id, $parent_post->post_parent, $parent_post->ID); break; } $template_vars = array('%SITE%' => wp_specialchars_decode(get_option('blogname'), ENT_QUOTES), '%PROJECT_NAME%' => get_post_field('post_title', $project_id), '%PROJECT_URL%' => '<a style="text-decoration: none;" href="' . cpm_url_project_details($project_id) . '">' . get_post_field('post_title', $project_id) . '</a>', '%AUTHOR%' => $author->display_name, '%AUTHOR_EMAIL%' => $author->user_email, '%COMMENT_URL%' => '<a style="text-decoration: none;" href="' . $comment_url . '/#cpm-comment-' . $comment_id . '">' . __('comment link', 'cpm') . '</a>', '%COMMENT%' => $data['comment_content'], '%IP%' => get_ipaddress()); $subject = cpm_get_option('new_comment_sub'); $message = cpm_get_content(cpm_get_option('new_comment_body')); // subject foreach ($template_vars as $key => $value) { $subject = str_replace($key, $value, $subject); } // message foreach ($template_vars as $key => $value) { $message = str_replace($key, $value, $message); } ?> <table width="600" style="margin-top: 50px; background: #fff;"> <tr> <td>
/** * Tries to find any session id in $_GET, $_POST or $_COOKIE * * @param string $sessionname - the name of this session.. * @param bool $allow_ip_host_sessions - finding session id based on ip and host (identity) * @param string $identitystring - host/ip string * * @global object $mydatabase mysql database object. * @global array $_POST * @global array $_GET * @global array $_COOKIE * * @return string Session ID (if exists) or empty string */ function detectID($sessionname, $allowhostiplogins, $identitystring) { global $mydatabase, $CSLH_Config, $UNTRUSTED; $PHPSESSID = ""; if (!empty($UNTRUSTED[$sessionname])) { $PHPSESSID = $UNTRUSTED[$sessionname]; } if (!empty($_GET[$sessionname])) { $PHPSESSID = $_GET[$sessionname]; } if (!empty($_POST[$sessionname])) { $PHPSESSID = $_POST[$sessionname]; } if (!empty($_COOKIE[$sessionname])) { $PHPSESSID = $_COOKIE[$sessionname]; } // Security : If SESSIONID is aquired make sure it is sent from // the same class C ip address.. This is so people following referer // links do not gain access to the account by having the // operators sessionid. the class C is used because of proxies. if ($CSLH_Config['matchip'] == "Y" && !empty($PHPSESSID)) { $hostip_array = explode(".", get_ipaddress()); $classc = "{$hostip_array['0']}.{$hostip_array['1']}.{$hostip_array['2']}"; $sqlquery = "SELECT sessionid FROM livehelp_users WHERE sessionid='" . filter_sql($PHPSESSID) . "' AND ipaddress LIKE '" . $classc . "%' LIMIT 1"; $test = $mydatabase->query($sqlquery); if ($test->numrows() == 0) { $PHPSESSID = ""; } } // if we allow same host ip logins and this is a Database session: // this is useful when we absolutly can not set the cookie. if ($allowhostiplogins && empty($PHPSESSID)) { // query database for this hostip. $sqlquery = "SELECT sessionid FROM livehelp_users WHERE identity='" . filter_sql($identitystring) . "' AND cookied='N'"; $people = $mydatabase->query($sqlquery); if ($people->numrows() != 0) { $row = $people->fetchRow(DB_FETCHMODE_ORDERED); $PHPSESSID = $row[0]; } } if (!preg_match('/^[A-Za-z0-9]*$/', $PHPSESSID)) { $PHPSESSID = ""; } return $PHPSESSID; }