header("location: forum.php"); } settype($forum, "integer"); $rowQ1 = Q_Select("SELECT forum_name, forum_moderator, forum_type, forum_pass, forum_access, arbre FROM " . $NPDS_Prefix . "forums WHERE forum_id = '{$forum}'", 3600); if (!$rowQ1) { forumerror('0002'); } list(, $myrow) = each($rowQ1); $forum_name = stripslashes($myrow['forum_name']); $moderator = get_moderator($myrow['forum_moderator']); $forum_access = $myrow['forum_access']; if ($op == "solved" and $topic_id and $forum and $sec_clef) { if ($user) { $local_sec_clef = md5($forum . $topic_id . md5($NPDS_Key)); if ($local_sec_clef == $sec_clef) { $sqlS = "UPDATE " . $NPDS_Prefix . "forumtopics SET topic_status='2', topic_title='[" . translate("Solved") . "] - " . removehack($topic_title) . "' WHERE topic_id='{$topic_id}'"; if (!($r = sql_query($sqlS))) { forumerror('0011'); } } unset($local_sec_clef); } unset($sec_clef); } // Pour les forums de type Groupe, le Mot de Passe stock l'ID du groupe ... // Pour les forums de type Extended Text, le Mot de Passe stock le nom du fichier de formulaire ... if ($myrow['forum_type'] == 5 or $myrow['forum_type'] == 7) { $ok_affiche = false; $tab_groupe = valid_group($user); $ok_affiche = groupe_forum($myrow['forum_pass'], $tab_groupe); if ($ok_affiche) {
function PostEcard($galid, $pos, $pid, $from_name, $from_mail, $to_name, $to_mail, $card_sujet, $card_msg) { global $NPDS_Prefix, $ThisRedo, $nuke_url, $sitename, $adminmail, $mail_fonction, $ModPath; $from_name = removehack(stripslashes(FixQuotes($from_name))); $from_mail = removehack(stripslashes(FixQuotes($from_mail))); if (!validate_email($to_mail)) { $error = "01"; } else { $to_name = removehack(stripslashes(FixQuotes($to_name))); if (empty($to_name)) { $error = "02"; } else { $to_mail = removehack(stripslashes(FixQuotes($to_mail))); if (!validate_email($to_mail)) { $error = "03"; } else { $card_sujet = removehack(stripslashes(FixQuotes($card_sujet))); if (empty($card_sujet)) { $error = "04"; } else { $card_msg = removehack(stripslashes(FixQuotes($card_msg))); if (empty($card_msg)) { $error = "05"; } } } } } if (empty($error)) { $query = sql_query("SELECT * FROM " . $NPDS_Prefix . "tdgal_img WHERE id='" . $pid . "' and noaff='0'"); $row = sql_fetch_row($query); $fichier_img = "modules/{$ModPath}/imgs/{$row['2']}"; $data = array('rn' => $to_name, 'sn' => $from_name, 'se' => $from_mail, 'pf' => $fichier_img, 'su' => $card_sujet, 'ms' => $card_msg); $coded_data = urlencode(base64_encode(serialize($data))); $message = "<!DOCTYPE html>"; $message .= "<head>"; $message .= "<title>" . gal_trans("Une e-carte pour vous") . "</title>"; $message .= '<meta http-equiv="content-type" content="text/html" />'; $message .= '<meta charset="utf-8" />'; $message .= '<meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" />'; $message .= '<meta http-equiv="x-ua-compatible" content="ie=edge" />'; $message .= '<meta http-equiv="content-script-type" content="text/javascript" />'; $message .= '<meta http-equiv="content-style-type" content="text/css" />'; $message .= '<meta http-equiv="expires" content="0" />'; $message .= '<meta http-equiv="pragma" content="no-cache" />'; $message .= '<meta http-equiv="cache-control" content="no-cache" />'; $message .= '<meta http-equiv="identifier-url" content="" />'; $message .= "</head>"; $message .= "<body>"; $message .= "<br />"; $message .= "<p align=\"center\"><a href=\"{$nuke_url}/modules.php?ModPath={$ModPath}&ModStart=gal_viewcard&data={$coded_data}\">"; $message .= "<b>" . gal_trans("Si votre e-carte ne s'affiche pas correctement, cliquez ici") . "</b></a></p>"; $message .= "<table border=\"0\" cellspacing=\"0\" cellpadding=\"1\" align=\"center\">"; $message .= "<tr><td bgcolor=\"#000000\">"; $message .= "<table border=\"0\" cellspacing=\"0\" cellpadding=\"10\" bgcolor=\"#ffffff\">"; $message .= "<tr><td valign=\"top\">"; list($width, $height, $type, $attr) = @getimagesize($fichier_img); $message .= "<img src=\"{$nuke_url}/{$fichier_img}\" border=\"1\" alt=\"{$row['3']}\" {$attr} /><br />"; $message .= "</td><td valign=\"top\" width=\"200\" height=\"250\">"; $message .= "<br />"; $message .= "<b><font face=\"arial\" color=\"#000000\" size=\"4\">{$card_sujet}</font></b>"; $message .= "<br /><br /><font face=\"arial\" color=\"#000000\" size=\"2\">{$card_msg}</font>"; $message .= "<br /><br /><font face=\"arial\" color=\"#000000\" size=\"2\">{$from_name}</font>"; $message .= "(<a href=\"mailto:{$from_mail}\"><font face=\"arial\" color=\"#000000\" size=\"2\">{$from_mail}</font></a>)"; $message .= "</td></tr></table></td></tr></table>"; $message .= "</body></html>"; $message = preg_replace("/(?<!\r)\n/si", "\r\n", $message); $extra_headers = "Sender: {$sitename} <{$adminmail}>\n" . "From: {$from_name} <{$from_mail}>\n"; $extra_headers .= "Reply-To: {$from_name} <{$from_mail}>\n" . "MIME-Version: 1.0\n"; $extra_headers .= "Content-type: text/html; charset=utf-8\n" . "Content-transfer-encoding: 8bit\n"; $extra_headers .= "Date: " . gmdate('D, d M Y H:i:s', time()) . " UT\n" . "X-Priority: 3 (Normal)\n"; $extra_headers .= "X-MSMail-Priority: Normal\n" . "X-Mailer: TD-Galerie\n" . "Importance: Normal"; if ($mail_fonction == 1 or $mail_fonction == "") { $result = mail($to_mail, $card_sujet, $message, $extra_headers); } else { $pos = strpos($adminmail, "@"); $tomail = substr($adminmail, 0, $pos); $result = email($tomail, $to_mail, $card_sujet, $message, $tomail, $extra_headers); } } echo "<p align=\"center\">"; echo "<table width=\"100%\" cellspacing=\"0\" cellpading=\"2\" border=\"0\"><tr>"; if (!empty($error) || !$result) { echo "<td><span class=\"text-danger\">" . gal_trans("Erreur") . "</span></td>"; } else { echo "<td>" . gal_trans("Résultat") . "</td>"; } echo "</tr><tr>"; if (!empty($error)) { if ($error == "01") { echo "<td align=\"center\">" . gal_trans("Votre adresse mail est incorrecte.") . "</td>"; } if ($error == "02") { echo "<td align=\"center\">" . gal_trans("Le nom du destinataire ne peut être vide.") . "</td>"; } if ($error == "03") { echo "<td align=\"center\">" . gal_trans("L'adresse mail du destinataire est incorrecte.") . "</td>"; } if ($error == "04") { echo "<td align=\"center\">" . gal_trans("Le sujet ne peut être vide.") . "</td>"; } if ($error == "05") { echo "<td align=\"center\">" . gal_trans("Le message ne peut être vide.") . "</td>"; } echo "</tr><tr>"; } if (!$result) { echo "<td align=\"center\">" . gal_trans("Votre E-carte n'a pas été envoyée") . "</td>"; } if ($result) { echo "<td align=\"center\">" . gal_trans("Votre E-Carte a été envoyée") . "</td>"; } echo "</tr></table></p>"; echo "<script type=\"text/javascript\">\n"; echo "//<![CDATA[\n"; echo "function redirect() {"; echo " window.location=\"" . $ThisRedo . "&op=img&galid={$galid}&pos={$pos}\""; echo "}"; echo "setTimeout(\"redirect()\",4000);"; echo "//]]>\n"; echo "</script>"; }