$timestamp = ''; $CLASS["template"]->set_templatefiles(array("admin_edit" => "admin_edit.html")); $admin_edit = $CLASS["template"]->pre_parse("admin_edit"); eval("echo \"{$admin_edit}\";"); } function is_valid_poll_id($poll_id) { global $CLASS, $POLLTBL; if ($poll_id > 0) { $CLASS["db"]->fetch_array($CLASS["db"]->query("SELECT poll_id FROM {$POLLTBL['poll_index']} WHERE poll_id={$poll_id}")); return $CLASS["db"]->record['poll_id'] ? true : false; } else { return false; } } if (!isset($poll_id) || !is_valid_poll_id($poll_id)) { $redirect = "index.php?session={$auth['session']}&uid={$auth['uid']}"; header("Location: {$redirect}"); exit; } if (!isset($action)) { $action = ''; } no_cache_header(); switch ($action) { case "save": $message = save($poll_id); $message = $lang[$message]; poll_edit($poll_id, "{$message}"); break; case "extend":
<?php /**************************************************************************** * DRBPoll * http://www.dbscripts.net/poll/ * * Copyright � 2007-2010 Don B ****************************************************************************/ require_once dirname(__FILE__) . '/poll.php'; // Handle action if (isset($_GET[$POLL_ID_PARAM_NAME])) { // Get poll ID global $requested_poll_id; $requested_poll_id = trim($_GET[$POLL_ID_PARAM_NAME]); // Validate poll ID if (is_valid_poll_id($requested_poll_id)) { // Display results page from template include_once dirname(__FILE__) . '/template/results.php'; } else { die("Invalid poll ID."); } } else { die("Invalid request."); } ?>
function add_new_vote($poll_id, $vote_value_id) { global $vote_error_message; // Make sure vote wasn't left blank if (empty($vote_value_id)) { global $NO_VOTE_SELECTED_ERROR_MSG; $vote_error_message = $NO_VOTE_SELECTED_ERROR_MSG; return FALSE; } // Validate poll ID if (!is_valid_poll_id($poll_id)) { vote_die('ERROR: An invalid poll ID was submitted.'); } // Get poll object global $VALID_POLLS; $poll = $VALID_POLLS[$poll_id]; // Validate vote value ID if (!is_valid_vote($poll, $vote_value_id)) { vote_die('ERROR: An invalid vote was submitted.'); } // Lock vote_lock($poll_id, LOCK_EX); // Check for duplicate vote attempt $ipaddress = $_SERVER['REMOTE_ADDR']; global $PREVENT_DUPLICATE_VOTES; if ($PREVENT_DUPLICATE_VOTES && has_voted($poll_id, $ipaddress)) { global $DUPLICATE_VOTE_ERROR_MSG; $vote_error_message = $DUPLICATE_VOTE_ERROR_MSG; vote_unlock(); return FALSE; } // Add vote vote_history_add($poll_id, $ipaddress, $vote_value_id); vote_summary_add($poll_id, $vote_value_id); // Unlock vote_unlock(); return TRUE; }