if ($is_logged) { $log_id = intval($member_id['user_id']); } else { $log_id = $_IP; } $poll = $db->super_query("SELECT * FROM " . PREFIX . "_poll WHERE news_id = '{$news_id}'"); $log = $db->super_query("SELECT COUNT(*) as count FROM " . PREFIX . "_poll_log WHERE news_id = '{$news_id}' AND member ='{$log_id}'"); if ($log['count'] and $_REQUEST['action'] != "list") { $_REQUEST['action'] = "results"; } if ($_REQUEST['action'] != "list" and !$user_group[$member_id['user_group']]['allow_poll']) { $_REQUEST['action'] = "results"; } $votes = ""; if ($_REQUEST['action'] == "vote") { $votes = votes($poll['answer'], $answers); $db->query("UPDATE " . PREFIX . "_poll set answer='{$votes}', votes=votes+" . count($answers) . " WHERE news_id = '{$news_id}'"); $db->query("INSERT INTO " . PREFIX . "_poll_log (news_id, member) VALUES('{$news_id}', '{$log_id}')"); $_REQUEST['action'] = "results"; } if ($_REQUEST['action'] == "results") { if ($votes == "") { $votes = $poll['answer']; $allcount = $poll['votes']; } else { $allcount = count($answers) + $poll['votes']; } $answer = get_votes($votes); $body = explode("<br />", stripslashes($poll['body'])); $pn = 0; for ($i = 0; $i < sizeof($body); $i++) {
$link = unserialize(VOTE_LINK); if (!isset($site) || !isset($link[$site])) { header('Location: index.php'); } else { if (!isset($STORED_loginname)) { votes(); } else { $STORED_loginname = mysql_res($STORED_loginname); $sql->result = $sql->execute_query("SELECT `last_vote" . $site . "` FROM {$CONFIG_sql_dbname}.`vote_point` WHERE `loginname` = '" . $STORED_loginname . "' LIMIT 0,1", "vote.php"); if ($sql->count_rows() > 0) { $row = $sql->fetch_row(); if (time() - $row[0] > 60 * 60 * VOTE_TIME) { $sql->execute_query("UPDATE {$CONFIG_sql_dbname}.`vote_point` SET `point` = `point` + 1 , `last_vote" . $site . "` = '" . time() . "', `date` = '" . date("d-M-Y H:i") . "' WHERE `loginname` = '" . $STORED_loginname . "'", "vote.php"); } votes(); } else { $sql->execute_query("INSERT INTO {$CONFIG_sql_dbname}.`vote_point` ( `loginname` , `point` , `last_vote" . $site . "` , `date` ) VALUES ( '" . $STORED_loginname . "' , 1 , '" . time() . "' , '" . date("d-M-Y H:i") . "')", "vote.php"); votes(); } } } function votes() { global $site, $link; if (isset($link[$site])) { header('Location: ' . $link[$site]); } else { header('Location: index.php'); } die; }