function Subscribe() { if (!empty($_POST['name'])) { $query = mysql_query("SELECT * FROM emailsubscribe WHERE username = '******'name']}' AND emailaddress = '{$_POST['email']}'") or die(mysql_error()); //fetch data and compaire with username and emailaddress in database to avoid duplicate if (!($row = mysql_fetch_array($query)) or die(mysql_error())) { UserInput(); //if data compaired is not in database } else { echo "SORRY...YOU HAVE ALREADY SUBSCRIBED TO NEWSLETTER "; //if data compaired is in database } } }
// DBConnect(); function UserInput($mark) { global $smarty; $smarty->assign("mark", $mark); } if (empty($CPosGroup)) { $smarty->assign("FieldError", "{$a['position']} - {$a['pos_group']} - {$a['field_error']}"); UserInput("CPosGroup"); $smarty->display('posgroup/editf.tpl'); } else { $query1 = $db->Execute("SELECT POSGROUPID, DESCRIPTION FROM {$TBLName}posgroup WHERE DESCRIPTION='{$CPosGroup}' AND POSGROUPID != {$posgroupID}"); $numrows1 = $query1->RowCount(); if ($numrows1) { $smarty->assign("FieldError", "{$a['entry_exist']}"); UserInput("CPosGroup"); $smarty->display('posgroup/editf.tpl'); } else { $query2 = "UPDATE {$TBLName}posgroup SET DESCRIPTION='{$CPosGroup}', MODIFIEDBY='{$_SESSION['Username']}', MODIFIED='{$CurrentDateTime}' WHERE POSGROUPID={$posgroupID}"; if ($db->Execute($query2) === false) { die($db->ErrorMsg()); } $_SESSION['EditID'] = "1"; if ($infoID == '9') { Header("Location: {$web}/posgroup/searchlist.php?posgroupID={$posgroupID}&page={$page}&Description_1={$Description_1}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$posgroupID}"); } else { Header("Location: {$web}/posgroup/list.php?posgroupID={$posgroupID}&page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$posgroupID}"); } } }
global $smarty; $smarty->assign("mark", $mark); } if (empty($categoryID)) { $smarty->assign("FieldError", "{$a['category']} - {$a['field_error']}"); UserInput(""); $smarty->display('category/deletef.tpl'); } else { // Database connection // DBConnect(); $query1 = $db->Execute("SELECT CATEGORY FROM {$TBLName}addressbook WHERE CATEGORY={$categoryID}"); $numrows1 = $query1->RowCount(); if ($numrows1) { $smarty->assign("FieldError", "{$a['category']} - {$a['entry_not_deleted']}"); UserInput(""); $smarty->display('category/deletef.tpl'); } else { $query4 = "DELETE FROM {$TBLName}category WHERE CATEGORYID={$categoryID}"; if ($db->Execute($query4) === false) { die($db->ErrorMsg()); } $query5 = "INSERT INTO {$TBLName}syslog (SYSLOGID, CREATED, DESCRIPTION, CREATEDBY, USERGROUP1, USERGROUP2)"; $query5 .= "VALUES(NULL, '{$CurrentDateTime}', 'Category-No.: {$categoryID} was DELETED by user {$_SESSION['Username']} (uid={$_SESSION['UserID']}) from {$IPAddress}', 'admin', '1', '2')"; if ($db->Execute($query5) === false) { die($db->ErrorMsg()); } $_SESSION['DeleteID'] = "1"; if ($infoID == '9') { Header("Location: {$web}/category/searchlist.php?categoryID={$categoryID}&page={$page}&Description_1={$Description_1}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}"); } else {
} else { if ($Password1 != $Password2) { $smarty->assign("FieldError", "{$a['password_error']}"); UserInput("Password1"); $smarty->display('addressbook/editf.tpl'); } else { if (isset($_SESSION['Username']) && $_SESSION['Username'] != $root && $_SESSION['Usergroup1'] != $admingroup_1 && $_SESSION['Usergroup2'] != $admingroup_2 && $_SESSION['Username'] != $CreatedBy) { $smarty->assign("FieldError", "{$a['no_permission']}"); UserInput(""); $smarty->display('addressbook/editf.tpl'); } else { $query1 = $db->Execute("SELECT MYID, DECODE(USERNAME,'{$pkey}') AS USERNAME FROM {$TBLName}addressbook WHERE DECODE(USERNAME,'{$pkey}')='{$UserName}' AND MYID != {$myID}"); $numrows1 = $query1->RowCount(); if ($numrows1) { $smarty->assign("FieldError", "{$a['entry_exist']} - {$a['username']}"); UserInput("UserName"); $smarty->display('addressbook/editf.tpl'); } else { $query3 = "UPDATE {$TBLName}addressbook SET MODIFIEDBY='{$_SESSION['Username']}', MODIFIED='{$CurrentDateTime}', PASSWORD=ENCODE('{$Password1}','{$pkey}'), USERLANGUAGE='{$UserLanguage}', USERNAME=ENCODE('{$UserName}','{$pkey}'), USER_ACTIVE='{$UserActive}' WHERE MYID={$myID}"; if ($db->Execute($query3) === false) { die($db->ErrorMsg()); } $_SESSION['EditID'] = "1"; } if ($infoID == '9') { Header("Location: {$web}/addressbook/searchlist.php?myID={$myID}&page={$page}&Customer={$Customer}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$myID}"); } else { if ($infoID == '10') { Header("Location: {$web}/addressbook/searchlist_e.php?myID={$myID}&page={$page}{$Searchstring}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$myID}"); } else { Header("Location: {$web}/addressbook/list.php?myID={$myID}&page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$myID}");
UserInput("expenditures"); $smarty->display('cashbook/newf.tpl'); } else { if (empty($description)) { $smarty->assign("FieldError", "{$a['cashbook_description']} - {$a['field_error']}"); UserInput("description"); $smarty->display('cashbook/newf.tpl'); } else { if (isset($startingwith) && $startingwith + $Cash_In_Hand - $expenditures < 0) { $smarty->assign("FieldError", "{$a['cashbook_expenditures']}"); UserInput("expenditures"); $smarty->display('cashbook/newf.tpl'); } else { if ($Cash_In_Hand_Till - $expenditures < 0) { $smarty->assign("FieldError", "{$a['cashbook_expenditures']}"); UserInput("expenditures"); $smarty->display('cashbook/newf.tpl'); } else { $Cash_In_Hand_Day = $Cash_In_Hand + ($takings - $expenditures); $Cash_In_Hand_Day = FormatDBNumber($Cash_In_Hand_Day); $cashbookdate = German_Mysql_Date($cashbookdate); $query4 = "INSERT INTO {$TBLName}cashbook (CASHBOOKID, MYID, INVOICEID, PAYMENTID, DESCRIPTION, CASHBOOK_DATE, TAKINGS, EXPENDITURES, CASH_IN_HAND, CASH_IN_HAND_STARTING_WITH, CANCELED, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)"; $query4 .= "VALUES(NULL, '', '', '', '{$description}', '{$cashbookdate}', '{$takings}', '{$expenditures}', '{$Cash_In_Hand_Day}', '{$startingwith}', '2', '{$_SESSION['Username']}', '{$_SESSION['Username']}', '{$_SESSION['Usergroup1']}', '{$_SESSION['Usergroup2']}', '{$CurrentDateTime}','{$CurrentDateTime}')"; if ($db->Execute($query4) === false) { die($db->ErrorMsg()); } $_SESSION['NewID'] = "1"; Header("Location: {$web}/cashbook/new.php?page={$page}&infoID={$infoID}&Order={$Order}&Sort={$Sort}&Canceled={$Canceled}&{$sessname}={$sessid}"); } } }
// $query = $db->Execute("SELECT POSGROUPID, DESCRIPTION FROM {$TBLName}posgroup WHERE POSGROUPID={$PosGroupID}"); // If an error has occurred, display the error message // if (!$query) { print $db->ErrorMsg(); } else { // Save position group in $Pos_Group // foreach ($query as $f1) { $Pos_Group = $f1['DESCRIPTION']; } } $query1 = $db->Execute("SELECT POS_NAME FROM {$TBLName}article WHERE POS_NAME='{$Pos_Name}'"); $numrows1 = $query1->RowCount(); if ($numrows1) { $smarty->assign("FieldError", "{$a['entry_exist']} - '{$Pos_Name}'"); UserInput("Pos_Name"); $smarty->display('position/newf.tpl'); } else { $query2 = "INSERT INTO {$TBLName}article (POSITIONID, POS_ACTIVE, POS_NAME, POS_DESC, POS_PRICE, POS_TAX, POSGROUPID, POS_GROUP, NOTE, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)"; $query2 .= "VALUES(NULL, '{$Pos_Active}', '{$Pos_Name}', '{$Pos_Desc}', '{$Pos_Price}', '{$Pos_Tax}', '{$PosGroupID}', '{$Pos_Group}', '{$Note}', '{$_SESSION['Username']}', '{$_SESSION['Username']}', '{$_SESSION['Usergroup1']}', '{$_SESSION['Usergroup2']}', '{$CurrentDateTime}', '{$CurrentDateTime}')"; if ($db->Execute($query2) === false) { die($db->ErrorMsg()); } $_SESSION['NewID'] = "1"; Header("Location: {$web}/position/new.php?{$sessname}={$sessid}"); } } } }
$smarty->assign("{$key}", $val); } function UserInput($mark) { global $smarty; $smarty->assign("mark", $mark); } if (empty($Method_Of_Payment)) { $smarty->assign("FieldError", "{$a['method_of_payment']} - {$a['field_error']}"); UserInput("Method_Of_Payment"); $smarty->display('methodofpayment/newf.tpl'); } else { // Database connection // DBConnect(); $query1 = $db->Execute("SELECT DESCRIPTION FROM {$TBLName}methodofpay WHERE DESCRIPTION='{$Method_Of_Payment}'"); $numrows1 = $query1->RowCount(); if ($numrows1) { $smarty->assign("FieldError", "{$a['entry_exist']}"); UserInput("Method_Of_Payment"); $smarty->display('methodofpayment/newf.tpl'); } else { $query2 = "INSERT INTO {$TBLName}methodofpay (METHODOFPAYID, DESCRIPTION, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)"; $query2 .= "VALUES(NULL, '{$Method_Of_Payment}','{$_SESSION['Username']}','{$_SESSION['Username']}', '{$_SESSION['Usergroup1']}', '{$_SESSION['Usergroup2']}', '{$CurrentDateTime}', '{$CurrentDateTime}')"; if ($db->Execute($query2) === false) { die($db->ErrorMsg()); } $_SESSION['NewID'] = "1"; Header("Location: {$web}/methodofpayment/new.php?page={$page}&{$sessname}={$sessid}"); } }
print $db->ErrorMsg(); } else { while (!$query7->EOF) { $ETotalTakings += $query7->fields['TAKINGS']; $ETotalExpenditures += $query7->fields['EXPENDITURES']; $ECash_In_Hand_Starting_With += $query7->fields['CASH_IN_HAND_STARTING_WITH']; $query7->MoveNext(); } } $ECash_In_Hand = $ECash_In_Hand_Starting_With + ($ETotalTakings - $ETotalExpenditures); $ESum_Paid = FormatDBNumberP($Sum_Paid); $ECash_In_Hand_Day = $ECash_In_Hand - $ESum_Paid; $ECash_In_Hand_Day = FormatDBNumber($ECash_In_Hand_Day); if ($ECash_In_Hand_Day <= 0) { $smarty->assign("FieldError", "{$a['payment']} - {$a['cashbook_expenditures']}"); UserInput("SumPaidForm.Sum_Paid"); die($smarty->display('payment/newf.tpl')); } else { $query8 = "INSERT INTO {$TBLName}cashbook (CASHBOOKID, MYID, INVOICEID, PAYMENTID, DESCRIPTION, CASHBOOK_DATE, CASH_IN_HAND, EXPENDITURES, CANCELED, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)"; $query8 .= "VALUES (NULL, '{$myID}', '{$invoiceID}', '{$maxPaymentID}', '{$MethodOfPayment_Desc} - {$a['invoice_number']} {$invoiceID}', '{$PaymentDate}', '{$ECash_In_Hand_Day}', '{$ESum_Paid}', '2', '{$_SESSION['Username']}', '{$_SESSION['Username']}', '1', '2', " . $db->sysTimeStamp . ", " . $db->sysTimeStamp . ")"; if ($db->Execute($query8) === false) { die($db->ErrorMsg()); } } } // Insert new payment // $query2 = "INSERT INTO {$TBLName}payment (PAYMENTID, MYID, INVOICEID, PAYMENT_DATE, METHODOFPAYID, METHOD_OF_PAY, CARDNR, VALIDTHRU, SUM_PAID, NOTE, CANCELED, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)"; $query2 .= "VALUES (NULL, '{$myID}', '{$invoiceID}', '{$PaymentDate}', '{$MethodOfPayment}', '{$MethodOfPayment_Desc}', '{$Card_Number}', '{$Valid_Thru}', '{$Sum_Paid}', '{$Note}', '2', '{$_SESSION['Username']}', '{$_SESSION['Username']}', '{$_SESSION['Usergroup1']}', '{$_SESSION['Usergroup2']}', '{$CurrentDateTime}', '{$CurrentDateTime}')"; if ($db->Execute($query2) === false) { die($db->ErrorMsg());
global $smarty; $smarty->assign("mark", $mark); } if (!ereg("^([a-zA-Z0-9\\.\\_\\-]+)@([a-zA-Z0-9\\.\\-]+\\.[A-Za-z][A-Za-z]+)\$", $EmailTo)) { $smarty->assign("FieldError", "{$a['email_to']} - {$a['field_error']}"); UserInput("EmailTo"); $smarty->display('addressbook/emailf.tpl'); } else { if (empty($EmailSubject)) { $smarty->assign("FieldError", "{$a['email_subject']} - {$a['field_error']}"); UserInput("EmailSubject"); $smarty->display('addressbook/emailf.tpl'); } else { if (empty($EmailText)) { $smarty->assign("FieldError", "{$a['email_text']} - {$a['field_error']}"); UserInput("EmailText"); $smarty->display('addressbook/emailf.tpl'); } else { if (!empty($EmailTo)) { require_once "../include/mail.inc.php"; if ($PHPSendMail == "1") { PEAR_Email_PlainText($EmailTo, $EmailCc, $EmailBcc, $EmailPriority, $EmailSubject, $EmailText, $_SESSION['Charset']); } else { Email_PlainText($EmailTo, $EmailCc, $EmailBcc, $EmailPriority, $EmailSubject, $EmailText, $_SESSION['Charset']); } // Database connection // DBConnect(); // $syslogid = $db->GenID('syslog_syslogid_seq'); $Description = QuoteString("{$EmailSubject} was send by user {$_SESSION['Username']} (uid={$_SESSION['UserID']}) from {$IPAddress} to E-Mail: {$EmailTo}"); $query2 = "INSERT INTO {$TBLName}syslog (SYSLOGID, CREATED, DESCRIPTION, CREATEDBY, USERGROUP1, USERGROUP2)";
} else { if (empty($D_Company_Postal)) { $smarty->assign("FieldError", "{$a['company_postal']} - {$a['field_error']}"); UserInput("D_Company_Postal"); } else { if (empty($D_Company_City)) { $smarty->assign("FieldError", "{$a['company_city']} - {$a['field_error']}"); UserInput("D_Company_City"); } else { if (empty($D_Company_Country)) { $smarty->assign("FieldError", "{$a['company_country']} - {$a['field_error']}"); UserInput("D_Company_Country"); } else { if (empty($D_Company_Currency)) { $smarty->assign("FieldError", "{$a['company_currency']} - {$a['field_error']}"); UserInput("D_Company_Currency"); } else { $D_Company_Date = German_Mysql_Date($D_Company_Date); if (empty($D_Sales_Prices)) { $query = $db->Execute("UPDATE {$TBLName}setting SET COMPANY_DATE='{$D_Company_Date}', COMPANY_NAME='{$D_Company_Name}', COMPANY_ADDRESS='{$D_Company_Address}', COMPANY_POSTAL='{$D_Company_Postal}', COMPANY_CITY='{$D_Company_City}', COMPANY_COUNTRY='{$D_Company_Country}', COMPANY_PHONE='{$D_Company_Phone}', COMPANY_FAX='{$D_Company_Fax}', COMPANY_EMAIL='{$D_Company_Email}', COMPANY_URL='{$D_Company_URL}', COMPANY_CURRENCY='{$D_Company_Currency}', TAX_FREE='{$D_Company_Tax_Free}', COMPANY_TAXNR='{$D_Company_Taxnr}', COMPANY_BUSINESS_TAXNR='{$D_Business_Taxnr}', COMPANY_BANKNAME='{$D_Bank_Name}', COMPANY_BANKACCOUNT='{$D_Bank_Account}', COMPANY_BANKNUMBER='{$D_Bank_Number}', COMPANY_BANKIBAN='{$D_Bank_IBAN}', COMPANY_BANKBIC='{$D_Bank_BIC}', MODIFIEDBY='{$_SESSION['Username']}' WHERE SETTINGID={$settingID}"); } else { $query = $db->Execute("UPDATE {$TBLName}setting SET COMPANY_DATE='{$D_Company_Date}', COMPANY_NAME='{$D_Company_Name}', COMPANY_ADDRESS='{$D_Company_Address}', COMPANY_POSTAL='{$D_Company_Postal}', COMPANY_CITY='{$D_Company_City}', COMPANY_COUNTRY='{$D_Company_Country}', COMPANY_PHONE='{$D_Company_Phone}', COMPANY_FAX='{$D_Company_Fax}', COMPANY_EMAIL='{$D_Company_Email}', COMPANY_URL='{$D_Company_URL}', COMPANY_CURRENCY='{$D_Company_Currency}', COMPANY_SALESPRICE='{$D_Sales_Prices}', TAX_FREE='{$D_Company_Tax_Free}', COMPANY_TAXNR='{$D_Company_Taxnr}', COMPANY_BUSINESS_TAXNR='{$D_Business_Taxnr}', COMPANY_BANKNAME='{$D_Bank_Name}', COMPANY_BANKACCOUNT='{$D_Bank_Account}', COMPANY_BANKNUMBER='{$D_Bank_Number}', COMPANY_BANKIBAN='{$D_Bank_IBAN}', COMPANY_BANKBIC='{$D_Bank_BIC}', MODIFIEDBY='{$_SESSION['Username']}' WHERE SETTINGID={$settingID}"); } Header("Location: {$web}/config/list.php?page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$settingID}"); } } } } } } }
// DBConnect(); function UserInput($mark) { global $smarty; $smarty->assign("mark", $mark); } if (empty($CMessage)) { $smarty->assign("FieldError", "{$a['message']} - {$a['field_error']}"); UserInput("CMessage"); $smarty->display('message/editf.tpl'); } else { $query1 = $db->Execute("SELECT MESSAGEID, DESCRIPTION FROM {$TBLName}message WHERE DESCRIPTION='{$CMessage}' AND MESSAGEID != {$messageID}"); $numrows1 = $query1->RowCount(); if ($numrows1) { $smarty->assign("FieldError", "{$a['entry_exist']}"); UserInput("CMessage"); $smarty->display('message/editf.tpl'); } else { $query2 = "UPDATE {$TBLName}message SET DESCRIPTION='{$CMessage}', MODIFIEDBY='{$_SESSION['Username']}', MODIFIED='{$CurrentDateTime}' WHERE MESSAGEID={$messageID}"; if ($db->Execute($query2) === false) { die($db->ErrorMsg()); } $_SESSION['EditID'] = "1"; if ($infoID == '9') { Header("Location: {$web}/message/searchlist.php?messageID={$messageID}&page={$page}&Description_1={$Description_1}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$messageID}"); } else { Header("Location: {$web}/message/list.php?messageID={$messageID}&page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$messageID}"); } } }
} else { if (empty($TaxMultiply) && $taxID != 4) { $smarty->assign("FieldError", "{$a['tax_multiply']} - {$a['field_error']}"); UserInput("TaxMultiply"); $smarty->display('tax/editf.tpl'); } else { if (empty($TaxDescription)) { $smarty->assign("FieldError", "{$a['tax_description']} - {$a['field_error']}"); UserInput("TaxDescription"); $smarty->display('tax/editf.tpl'); } else { $query1 = $db->Execute("SELECT TAXID, TAX_DESC, TAX_DIVIDE, TAX_MULTI FROM {$TBLName}tax WHERE TAX_DESC='{$TaxDescription}' AND TAX_DIVIDE='{$TaxDivide}' AND TAX_MULTI='{$TaxMultiply}' AND TAXID != {$taxID}"); $numrows1 = $query1->RowCount(); if ($numrows1) { $smarty->assign("FieldError", "{$a['entry_exist']}"); UserInput("TaxDivide"); $smarty->display('tax/editf.tpl'); } else { $query2 = "UPDATE {$TBLName}tax SET TAX_DESC='{$TaxDescription}', TAX_DIVIDE='{$TaxDivide}', TAX_MULTI='{$TaxMultiply}', MODIFIEDBY='{$_SESSION['Username']}', MODIFIED='{$CurrentDateTime}' WHERE TAXID={$taxID}"; if ($db->Execute($query2) === false) { die($db->ErrorMsg()); } $query3 = "INSERT INTO {$TBLName}syslog (SYSLOGID, CREATED, DESCRIPTION, CREATEDBY, USERGROUP1, USERGROUP2)"; $query3 .= "VALUES(NULL, '{$CurrentDateTime}', '{$TaxDescription} - Tax-No.: {$taxID} was MODIFIED by user {$_SESSION['Username']} (uid={$_SESSION['UserID']}) from {$IPAddress}', 'admin', '1', '2')"; if ($db->Execute($query3) === false) { die($db->ErrorMsg()); } $_SESSION['EditID'] = "1"; Header("Location: {$web}/tax/list.php?taxID={$taxID}&page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$taxID}"); } }
// DBConnect(); function UserInput($mark) { global $smarty; $smarty->assign("mark", $mark); } if (empty($CCategory)) { $smarty->assign("FieldError", "{$a['category']} - {$a['field_error']}"); UserInput("CCategory"); $smarty->display('category/editf.tpl'); } else { $query1 = $db->Execute("SELECT CATEGORYID, DESCRIPTION FROM {$TBLName}category WHERE DESCRIPTION='{$CCategory}' AND CATEGORYID != {$categoryID}"); $numrows1 = $query1->RowCount(); if ($numrows1) { $smarty->assign("FieldError", "{$a['entry_exist']}"); UserInput("CCategory"); $smarty->display('category/editf.tpl'); } else { $query2 = "UPDATE {$TBLName}category SET DESCRIPTION='{$CCategory}', MODIFIEDBY='{$_SESSION['Username']}', MODIFIED='{$CurrentDateTime}' WHERE CATEGORYID={$categoryID}"; if ($db->Execute($query2) === false) { die($db->ErrorMsg()); } $_SESSION['EditID'] = "1"; if ($infoID == '9') { Header("Location: {$web}/category/searchlist.php?categoryID={$categoryID}&page={$page}&Description_1={$Description_1}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$categoryID}"); } else { Header("Location: {$web}/category/list.php?categoryID={$categoryID}&page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$categoryID}"); } } }
$smarty->assign("FieldError", "{$a['pdf_text1']} - {$a['field_error']}"); UserInput("D_PDF_Text1"); } else { if (empty($D_PDF_Text2)) { $smarty->assign("FieldError", "{$a['pdf_text2']} - {$a['field_error']}"); UserInput("D_PDF_Text2"); } else { if (empty($D_PDF_Text3)) { $smarty->assign("FieldError", "{$a['pdf_text3']} - {$a['field_error']}"); UserInput("D_PDF_Text3"); } else { if (empty($D_PDF_Directory)) { $smarty->assign("FieldError", "{$a['pdf_dir']} - {$a['field_error']}"); UserInput("D_PDF_Directory"); } else { if (empty($D_PDF_Attachment_Text)) { $smarty->assign("FieldError", "{$a['pdf_attachment_text']} - {$a['field_error']}"); UserInput("D_PDF_Attachment_Text"); } else { $query = $db->Execute("UPDATE {$TBLName}setting SET COMPANY_LOGO='{$D_PDF_Company_Logo}', PDF_COMPANY_LOGO_WIDTH='{$D_PDF_Company_Logo_Width}', PDF_COMPANY_LOGO_HEIGHT='{$D_PDF_Company_Logo_Height}', PDF_FONT='{$D_PDF_Font}', PDF_FONT_SIZE1='{$D_PDF_Text1}', PDF_FONT_SIZE2='{$D_PDF_Text2}', PDF_TYPE_HEIGHT='{$D_PDF_Text3}', PDF_DIR='{$D_PDF_Directory}', PDF_ATTACHMENT_TEXT='{$D_PDF_Attachment_Text}', MODIFIEDBY='{$_SESSION['Username']}' WHERE SETTINGID={$settingID}"); Header("Location: {$web}/config/list.php?page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$settingID}"); } } } } } } } } } $smarty->display('config/editf_pdf.tpl');
CheckSession(); $ArrayValue = CheckArrayValue($_REQUEST); foreach ($ArrayValue as $key => $val) { ${$key} = $val; $smarty->assign("{$key}", $val); } if (!is_numeric($settingID) || $settingID <= 0) { die(header("Location: {$web}")); } // Database connection // DBConnect(); function UserInput($mark) { global $smarty; $smarty->assign("mark", "{$mark}"); } if ($D_Entries_Per_Page < 25) { $smarty->assign("FieldError", "{$a['entries_per_page']} - {$a['field_error']}"); UserInput("D_Entries_Per_Page"); $smarty->display('config/editf.tpl'); } else { if ($D_Session_Sec < 120) { $smarty->assign("FieldError", "{$a['session_sec']} - {$a['field_error']}"); UserInput("D_Session_Sec"); $smarty->display('config/editf.tpl'); } else { $query = $db->Execute("UPDATE {$TBLName}setting SET PRINT_COMPANY_DATA='{$D_Print_Company_Data}', PRINT_POSITION_NAME='{$D_Print_Position_Name}', EMAIL_INTERNAL='{$D_Email_Internal}', EMAIL_USE_SIGNATURE='{$D_Email_Use_Signature}', EMAIL_SIGNATURE='{$D_Email_Signature}', INVENTORY_CHECK_ACTIVE='2', REMINDER='{$D_Reminder}', REMINDER_DAYS='{$D_Reminder_Days}', REMINDER_PRICE='0.00', ENTRYS_PER_PAGE='{$D_Entries_Per_Page}', SESSION_SEC='{$D_Session_Sec}', MODIFIEDBY='{$_SESSION['Username']}' WHERE SETTINGID={$settingID}"); Header("Location: {$web}/config/list.php?page={$page}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}#{$settingID}"); } }
} else { // Database connection // DBConnect(); $query1 = $db->Execute("SELECT FIRSTNAME, LASTNAME, ADDRESS, POSTALCODE, CITY FROM {$TBLName}addressbook WHERE FIRSTNAME='{$firstname}' AND LASTNAME='{$lastname}' AND ADDRESS='{$address}' AND POSTALCODE='{$postalcode}' AND CITY='{$city}'"); $numrows1 = $query1->RowCount(); $query2 = $db->Execute("SELECT DECODE(USERNAME,'{$pkey}') AS USERNAME FROM {$TBLName}addressbook WHERE DECODE(USERNAME,'{$pkey}')='{$username}'"); $numrows2 = $query2->RowCount(); if ($numrows1) { $smarty->assign("FieldError", "{$a['entry_exist']}"); UserInput(""); $smarty->display('addressbook/newf.tpl'); } else { if (!empty($UserName) && $numrows2) { $smarty->assign("FieldError", "{$a['entry_exist']} -> {$a['username']}"); UserInput("username"); $smarty->display('addressbook/newf.tpl'); } else { list($day, $month, $year) = explode(".", $birthday); $birthday = German_Mysql_Date($birthday); $query3 = "INSERT INTO {$TBLName}addressbook (MYID, PRINT_NAME, PREFIX, FIRSTNAME, LASTNAME, TITLE, COMPANY, DEPARTMENT, ADDRESS, CITY, STATEPROV, POSTALCODE, COUNTRY, POSITION, INITIALS, SALUTATION, PHONEHOME, PHONEOFFI, PHONEOTHE, PHONEWORK, MOBILE, PAGER, FAX, EMAIL, URL, NOTE, CHANGELOG, ALTFIELD1, ALTFIELD2, URL2, EMAIL2, CATEGORY, METHODOFPAY, MESSAGE, BIRTHDAY, BANKNAME, BANKACCOUNT, BANKNUMBER, BANKIBAN, BANKBIC, TAX_FREE, TAXNR, BUSINESS_TAXNR, USERNAME, PASSWORD, USERLANGUAGE, USER_ACTIVE, CREATEDBY, MODIFIEDBY, USERGROUP1, USERGROUP2, CREATED, MODIFIED)"; $query3 .= "VALUES (NULL, '{$printname}', '{$prefix}', '{$firstname}', '{$lastname}', '{$title}', '{$company}', '{$department}', '{$address}', '{$city}', '{$stateprov}', '{$postalcode}', '{$country}', '{$position}', '{$initials}', '{$salutation}', '{$phonehome}', '{$phoneoffi}', '{$phoneothe}', '{$phonework}', '{$mobile}', '{$pager}', '{$fax}', '{$email}', '{$url}', '{$note}', '{$changelog}', '{$altfield1}', '{$altfield2}', '{$url2}', '{$email2}', '{$category}', '{$methodofpayment}', '{$message}', '{$birthday}', '{$bankname}', '{$bankaccount}', '{$banknumber}', '{$bankiban}', '{$bankbic}', '2', '{$taxnr}', '{$businesstaxnr}', ENCODE('{$username}','{$pkey}'), ENCODE('{$password1}','{$pkey}'), '{$userlanguage}', '{$useractive}', '{$_SESSION['Username']}', '{$_SESSION['Username']}', '{$_SESSION['Usergroup1']}', '{$_SESSION['Usergroup2']}', '{$CurrentDateTime}', '{$CurrentDateTime}')"; if ($db->Execute($query3) === false) { die($db->ErrorMsg()); } $_SESSION['NewID'] = "1"; Header("Location: {$web}/addressbook/new.php?page={$page}&infoID={$infoID}&Order={$Order}&Sort={$Sort}&{$sessname}={$sessid}"); } } } }