Example #1
function eLog($str)
    global $erasedebug_enabled;
    if ($erasedebug_enabled) {
        toLog("erasedata: " . $str);
Example #2
 function checkFromTo($from, $to)
     if ($from < 0 or $from > $to or $to > 1024 * 1024 * 50) {
         toLog("Invalid Value for From/to: From {$from} To {$to}");
         return False;
     return True;
Example #3
function rtDbg($prefix, $str)
    if (!$str) {
    } elseif ($prefix && strlen($prefix) > 0) {
        toLog($prefix . ": " . $str);
    } else {
Example #4
 public function run()
     $ret = false;
     $this->i8s = array();
     $this->strings = array();
     $this->val = array();
     if ($this->makeCall()) {
         $answer = self::send($this->content);
         if (!empty($answer)) {
             if ($this->parseByTypes) {
                 if (preg_match_all("|<value><string>(.*)</string></value>|Us", $answer, $this->strings) !== false && count($this->strings) > 1 && preg_match_all("|<value><i.>(.*)</i.></value>|Us", $answer, $this->i8s) !== false && count($this->i8s) > 1) {
                     $this->strings = str_replace("\\", "\\\\", $this->strings[1]);
                     $this->strings = str_replace("\"", "\\\"", $this->strings);
                     foreach ($this->strings as &$string) {
                         $string = html_entity_decode($string, ENT_COMPAT, "UTF-8");
                     $this->i8s = $this->i8s[1];
                     $ret = true;
             } else {
                 if (preg_match_all("/<value>(<string>|<i.>)(.*)(<\\/string>|<\\/i.>)<\\/value>/s", $answer, $this->val) !== false && count($this->val) > 2) {
                     $this->val = str_replace("\\", "\\\\", $this->val[2]);
                     $this->val = str_replace("\"", "\\\"", $this->val);
                     foreach ($this->val as &$string) {
                         $string = html_entity_decode($string, ENT_COMPAT, "UTF-8");
                     $ret = true;
             if ($ret) {
                 if (strstr($answer, "faultCode") !== false) {
                     $this->fault = true;
                     if (LOG_RPC_FAULTS && $this->important) {
     $this->content = "";
     $this->commands = array();
     return $ret;
Example #5
function canDo($perm_name, $admin_username = null)
    /*check if authenticated admin can do a job needed permission with $perm_name
        perm_name(string) name of permission
        admin_username(string) if not null check canDo for this username, else use current logged on username
        other parameters of this function will be passed to core canDo function as optional arguments of permission
    if (is_null($admin_username)) {
        $admin_username = getAuthUsername();
    $arg_list = func_get_args();
    $params = array();
    for ($i = 2; $i < func_num_args(); $i++) {
        $params[] = $arg_list[$i];
    $can_do_request = new AdminCanDo($perm_name, $admin_username, $params);
    list($success, $ret_val) = $can_do_request->send();
    if (!$success) {
        toLog("canDo Error:" . $ret_val->getErrorMsg());
        return FALSE;
    return $ret_val == TRUE ? TRUE : FALSE;
Example #6
function post_passwordmgmt_query($url, $fields, $id)
    if ($url != "") {
        $parseurl = parse_url($url);
        $postmet = $parseurl['scheme'];
        $postser = $parseurl['host'];
        $postport = stristr($postmet, "https") !== FALSE ? "443" : "80";
        $postser = (stristr($postmet, "https") !== FALSE ? "ssl://" : "") . $postser;
        $postdata = NULL;
        foreach ($fields as $key => $data) {
            $postdata .= ($postdata ? "&" : "") . "{$key}={$data}";
        $done = 0;
        $succ['query'] = $url . "?" . $postdata;
        $succ['body'] = http_post2($postser, $postport, $url . "?" . $postdata, $postdata);
        if (!$succ['body']) {
            $done = 0;
        } else {
            //if(stristr($succ['head'],"HTTP/1.1") === FALSE || stristr($succ['head'],"HTTP/1.0") === FALSE || stristr($succ['head'],"HTTP/1.1 200 OK")!==FALSE || stristr($succ['head'],"HTTP/1.0 200 OK")!==FALSE)
            $done = 1;
        //successfully posted data
        //	$done = 0; //problem with destination
        if ($done != 1) {
            toLog("notify", "system", "Notify Error: " . $succ['body'] . " Query: " . $succ['query'], $id);
        } else {
            toLog("notify", "system", "Notify Success: " . $succ['body'] . " Query: " . $succ['query'], $id);
        return array("succeeded" => $done, "response" => $succ);
    return array("succeeded" => "0", "response" => array("url" => $posturl, "head" => "no url specified", "body" => "no url specified"));
 *					HTTP HANDLER LAYER For PHP												 *	
 *																														 *		
global $DBGFileName, $DBFile;
$DBGFileName = "HTTPHandlerDebug.txt";
echo "<HTML><BODY>";
$keys = array_keys($_POST);
foreach ($keys as $key) {
    toLog("\n" . $key . " => " . $_POST[$key]);
echo "</BODY></HTML>";
 * Function: To Log
function toLog($msg)
    if (!($DBFile = fopen("PortalDebug.txt", "a"))) {
        echo "Cannot open file ({$DBGFileName})";
    // Write $somecontent to our opened file.
    if (fwrite($DBFile, $msg, strlen($msg)) === FALSE) {
        echo "Cannot write to file ({$DBGFileName})";
    echo "<BR> -->  " . $msg;
Example #8

include "includes/dbconnection.php";
require_once "includes/function.php";
$td_username = addslashes($_REQUEST['td_username']);
$td_password = addslashes($_REQUEST['td_password']);
$td_reference_number = addslashes($_REQUEST['td_reference_number']);
$mt_reference_id = addslashes($_REQUEST['mt_reference_id']);
$allow_any_site = $_REQUEST['allow_any_site'];
$testmode = $_REQUEST['testmode'];
$req = '';
foreach (array_merge($_POST, $_GET) as $key => $data) {
    $req .= ($req ? "&" : "") . $key . "=" . $data;
$lg_id = toLog('login', 'customer', "Customer Querys Access Info: {$req}");
if (!$td_username) {
if (!$td_password) {
$sql = "SELECT cs_ID,cs_company_id FROM `cs_company_sites` as s WHERE `cs_gatewayId` = " . $_SESSION["gw_id"] . " AND `cs_reference_id` = '{$mt_reference_id}' ";
$result = mysql_query($sql, $cnn_cs) or dieLog(mysql_errno() . ": " . mysql_error() . "<br>Cannot execute query");
$num = mysql_num_rows($result);
if ($num < 1) {
$siteInfo = mysql_fetch_assoc($result);
$cs_ID = $siteInfo['cs_ID'];
$cs_company_id = $siteInfo['cs_company_id'];
Example #9
 function fraud_scrub(&$transInfo, &$bankInfo, &$companyInfo)
     if ($transInfo['cardtype'] != 'Visa' && $transInfo['cardtype'] != 'Mastercard') {
         return 0;
     global $etel_fraud_response;
     require_once 'fraud/CreditCardFraudDetection.php';
     $ccfs = new CreditCardFraudDetection();
     // Set inputs and store them in a hash
     // See http://www.maxmind.com/app/ccv for more details on the input fields
     // Enter your license key here (non registered users limited to 20 lookups per day)
     $h["license_key"] = "UHccvlc5aVqk";
     // Required fields
     $h["i"] = $transInfo['ipaddress'];
     // set the client ip address
     $h["city"] = $transInfo['city'];
     // set the billing city
     $h["region"] = $transInfo['state'];
     // set the billing state
     $h["postal"] = $transInfo['zipcode'];
     // set the billing zip code
     $h["country"] = $transInfo['country'];
     // set the billing country
     // Recommended fields
     $h["domain"] = substr(strstr($transInfo['email'], '@'), 1);
     // Email domain
     $h["bin"] = substr($transInfo['CCnumber'], 0, 6);
     // bank identification number
     $h["forwardedIP"] = $transInfo['ipaddress'];
     // X-Forwarded-For or Client-IP HTTP Header
     $h["custPhone"] = substr($transInfo['phonenumber'], 0, 3) . "-" . substr($transInfo['phonenumber'], 4, 6);
     // Area-code and local prefix of customer phone number
     // Optional fields
     //$h["binName"] = "MBNA America Bank";	// bank name
     $h["binPhone"] = $transInfo['td_bank_number'];
     // bank customer service phone number on back of credit card
     $h["requested_type"] = "premium";
     // Which level (free, city, premium) of CCFD to use
     $h["emailMD5"] = md5(strtolower($transInfo['email']));
     // CreditCardFraudDetection.php will take
     // MD5 hash of e-mail address passed to emailMD5 if it detects '@' in the string
     $h["shipAddr"] = $transInfo['address'];
     // Shipping Address
     //$h["txnID"] = "1234";			// Transaction ID
     $h["sessionID"] = session_id();
     // Session ID
     // If you want to disable Secure HTTPS or don't have Curl and OpenSSL installed
     // uncomment the next line
     // $ccfs->isSecure = 0;
     //set the time out to be five seconds
     $ccfs->timeout = 5;
     //uncomment to turn on debugging
     $ccfs->debug = 0;
     //next we pass the input hash to the server
     //then we query the server
     //then we get the result from the server
     $ho = $ccfs->output();
     //then finally we print out the result
     $outputkeys = array_keys($ho);
     $numoutputkeys = count($ho);
     $noCity = 0;
     for ($i = 0; $i < $numoutputkeys; $i++) {
         $key = $outputkeys[$i];
         $value = $ho[$key];
         $tolog .= $key . " = " . $value . "\n";
         if ($key == 'err' && $value == 'CITY_NOT_FOUND') {
             //toLog('erroralert','customer', "Fraud Scrubbing Can't find City '".$h["city"]."' ".serialize($h)." ".$tolog);
             $noCity = 1;
     toLog('order', 'customer', "Fraud Scrubbing Result for " . $transInfo['reference_number'] . ": " . $tolog, $transInfo['transactionId']);
     $etel_fraud_response = $tolog;
     return floatval($ho['score'] - $noCity * 2.6);
Example #10
        $sftp = ssh2_sftp($conn_id);
        $dirlist = opendir("ssh2.sftp://" . $ftp_full . "/");
        while (($file = readdir($dirlist)) !== false) {
            $file_list[] = $file;
        foreach ($file_list as $filename) {
            $log .= " Found " . $filename . ".\n";
            if ($filename != '..' && $filename != '.') {
                $filenamepath = "{$batch_path}/inc/" . $ftp['folder'] . "/" . $filename;
                if (!is_dir("{$batch_path}/inc/" . $ftp['folder'] . "/")) {
                    mkdir("{$batch_path}/inc/" . $ftp['folder'] . "/", 0700);
                if (!file_exists($filenamepath)) {
                    if (!file_exists($filenamepath . '.done')) {
                        copy("ssh2.sftp://" . $ftp_full . "/" . $filename, $filenamepath);
                        $log .= "  Wrote " . $filenamepath . ".\n";
                    } else {
                        $log .= "  File Already Processed: " . $filenamepath . ".done.\n";
                } else {
                    $log .= "  File Exists: " . $filenamepath . ".\n";
            } else {
                $log .= "  Ignored " . $filename . ".\n";
    } else {
        $log .= " Failed to Connect.\n";
    toLog('misc', 'system', $log);
        $ca_ID = mysql_insert_id();
    if ($errormsg) {
        $smarty->assign("accountCreated", 0);
        $smarty->assign("accountMsg", "Error: {$errormsg}<BR>Please go back and fix your entry");
        $smarty->assign("POST", $_POST);
    } else {
        $_SESSION['ca_ID'] = $ca_ID;
        $_SESSION['ca_email'] = $email;
        $smarty->assign("accountMsg", "Your Account {$email} has been Created/Updated Successfully.<BR> If you are placing an order at this time, please return to the order page and enter your new Etelegate Account Information.<BR><a href='https://www.etelegate.biz'><img border='0' src='/images/back.jpg'></a>");
        toLog('misc', 'customer', "Customer Account {$ca_ID} created with email {$email}");
        $smarty->assign("accountCreated", 1);
        $smarty->assign("ShowSubmitButton", 0);
        $success = 1;
if ($_SESSION['ca_ID'] && !$success && !$edit_mode) {
    $email = $_SESSION['ca_email'];
    $smarty->assign("accountMsg", "Your Account {$email} has already been Created.");
    toLog('misc', 'customer', "Customer Account {$ca_ID} created with email {$email}");
    $smarty->assign("accountCreated", 1);
    $smarty->assign("ShowSubmitButton", 0);
$smarty->assign("edit_mode", $edit_mode);

Example #12
$transInfo['from_url'] = $from_url;
$transInfo['bank_id'] = $bank_CreditcardId;
$transInfo['td_rebillingID'] = $rd_subaccount;
$transInfo['td_is_a_rebill'] = '0';
$transInfo['td_enable_rebill'] = $td_enable_rebill;
$transInfo['td_voided_check'] = '0';
$transInfo['td_returned_checks'] = '0';
$transInfo['td_site_ID'] = $site_id;
$transInfo['payment_schedule'] = $_SESSION['payment_schedule'];
$transInfo['nextDateInfo'] = $_SESSION['nextDateInfo'];
$transInfo['td_is_affiliate'] = '0';
$transInfo['td_is_pending_check'] = '0';
$transInfo['td_is_chargeback'] = '0';
$transInfo['td_recur_processed'] = '0';
$transInfo['td_recur_next_date'] = $td_recur_next_date;
$transInfo['td_username'] = $td_username;
$transInfo['td_password'] = $td_password;
$transInfo['td_product_id'] = $td_product_id;
include "includes/integration.php";
$etel_fraud_limit = 8.5;
$response = execute_transaction(&$transInfo, $testmode);
$postback = "";
if ($response['status'] == 'A') {
    $return_message = "SUC";
} else {
    foreach ($HTTP_POST_VARS as $k => $c) {
        $postback .= "<input type='hidden' name='{$k}' value='{$c}' >";
    toLog('error', 'customer', "Customer Recieves error " . $response['errormsg'], $companyid);
message($response['errormsg'] . $postback, "", "Response", "creditcard.php");
Example #13
 function ActivateTempUserConfirm($user_id, $username, $viewmode = "", $sortorder = "", $start = "")
     global $admin_file, $bgcolor2, $db, $prefix, $user_prefix, $nukeurl;
     include "header.php";
     echo "<center><b>" . _USERADMIN . "</b></center>";
     echo "<br />";
     echo "<br>";
     $result = $db->sql_query("SELECT * FROM " . $prefix . "_users_temp WHERE user_id='{$user_id}'");
     $row = $db->sql_fetchrow($result);
     $user_email = $row['user_email'];
     $user_password = $row['user_password'];
     $user_regdate = $row['user_regdate'];
     $check_num = $row['check_num'];
     $time = intval($row['time']);
     $result = $db->sql_query("SELECT * FROM " . $user_prefix . "_users_temp WHERE username='******' AND check_num='{$check_num}'");
     if ($db->sql_numrows($result) == 1) {
         $row = $db->sql_fetchrow($result);
         if ($check_num == $row[check_num]) {
             //$db->sql_query("INSERT INTO ".$user_prefix."_users (user_id, username, user_email, user_password, user_avatar, user_regdate, user_lang) VALUES (NULL, '$row[username]', '$row[user_email]', '$row[user_password]', 'gallery/blank.gif', '$row[user_regdate]', '$language')");
             $query = "INSERT INTO " . $user_prefix . "_users (user_id, username, user_email, user_password, user_avatar, user_avatar_type, user_regdate, user_lang,usertype,gradyear,company,designation,name,specialization) VALUES (NULL, '{$row['username']}', '{$row['user_email']}', '{$row['user_password']}', 'gallery/blank.gif', 3, '{$row['user_regdate']}', '{$language}','{$row['usertype']}',{$row['gradyear']},'{$row['company']}','{$row['designation']}','{$row['fullname']}','{$row['specialization']}')";
             echo $query;
             $db->sql_query("INSERT INTO " . $user_prefix . "_users (user_id, username, user_email, user_password, user_avatar, user_avatar_type, user_regdate, user_lang,usertype,gradyear,company,designation,name,specialization) VALUES (NULL, '{$row['username']}', '{$row['user_email']}', '{$row['user_password']}', 'gallery/blank.gif', 3, '{$row['user_regdate']}', '{$language}','{$row['usertype']}',{$row['gradyear']},'{$row['company']}','{$row['designation']}','{$row['fullname']}','{$row['specialization']}')");
             $db->sql_query("DELETE FROM " . $user_prefix . "_users_temp WHERE username='******' AND check_num='{$check_num}'");
             echo "<center><b>{$row['username']}:</b> " . _AUM_ACTIVATIONSUCCESS . "</center>";
             echo "<meta http-equiv='refresh' content='3; URL=" . $admin_file . ".php?op=aumInactiveRegList&amp;viewmode=" . $viewmode . "&amp;sortorder=" . $sortorder . "&amp;start=" . $start . "'>";
         } else {
             echo "<center>" . _AUM_ACTIVATIONERROR1 . "</center>";
     } else {
         echo "<center>" . _AUM_ACTIVATIONERROR2 . "</center>";
     echo "<br><center>" . _GOBACK . "</center><br>";
     include "footer.php";
 function process_failed_rebill($response = array())
     $status = $response['td_process_msg'];
     $daystowait = intval($response['watchInfo']['ss_rebill_delay']);
     if ($daystowait < 2) {
         $daystowait = 3;
     $rebillError = "Error encountered while rebilling for:\n\t\t\t\t\t\t{$this->row['subscriptionTable']['ss_billing_firstname']} {$this->row['subscriptionTable']['ss_billing_lastname']} \r\n\n\t\t\t\t\t\tWith subscription id of: {$this->row['subscriptionTable']['ss_ID']}\r\n\n\t\t\t\t\t\tThis error occured on rebill attempt #{$this->row['subscriptionTable']['ss_rebill_attempts']}";
     toLog('rebill', 'customer', $rebillError);
     $status = quote_smart($status);
     //		echo $this->row['subscriptionTable']['ss_ID'] . " - " . $this->row['subscriptionTable']['ss_rebill_attempts'] . "<br>" ;
     $ss_rebill_attempts = intval($this->row['subscriptionTable']['ss_rebill_attempts']);
     if ($ss_rebill_attempts < 3) {
         $upd = "\n\t\t\t\t\tUPDATE\n\t\t\t\t\t\tcs_subscription\n\t\t\t\t\tSET\n\t\t\t\t\t\tss_rebill_status = 'active',\n\t\t\t\t\t\tss_rebill_attempts = ss_rebill_attempts + 1,\n\t\t\t\t\t\tss_rebill_status_text = 'Attempt #" . ($ss_rebill_attempts + 1) . " Failed ({$status})',\n\t\t\t\t\t\tss_rebill_next_date = adddate( now( ) , INTERVAL {$daystowait} DAY ),\n\t\t\t\t\t\tss_account_notes = CONCAT(ss_account_notes, '\n\n', NOW(), ': Rebill Declined ({$status}) (Attempt ',ss_rebill_attempts,'). Will attempt Rebilling again in {$daystowait} days.')\n\t\t\t\t\tWHERE\n\t\t\t\t\t\tss_ID = '{$this->row['subscriptionTable']['ss_ID']}'\n\t\t\t\t\t";
     } else {
         $upd = "\n\t\t\t\t\tUPDATE\n\t\t\t\t\t\tcs_subscription\n\t\t\t\t\tSET\n\t\t\t\t\t\tss_rebill_status = 'inactive',\n\t\t\t\t\t\tss_rebill_status_text = 'Inactive after 3 failed rebill attempts',\n\t\t\t\t\t\tss_account_expire_date = NOW(),\n\t\t\t\t\t\tss_rebill_attempts = 3,\n\t\t\t\t\t\tss_rebill_next_date = adddate( now( ) , INTERVAL {$daystowait} DAY ),\n\t\t\t\t\t\t`ss_account_notes` = CONCAT(`ss_account_notes`, '\n\n', NOW(), ': Rebill Declined ({$status}) (Attempt ',ss_rebill_attempts,') . Will not attempt to rebill again.')\n\t\t\t\t\tWHERE\n\t\t\t\t\t\tss_ID = '{$this->row['subscriptionTable']['ss_ID']}'\n\t\t\t\t\t";
     sql_query_write($upd) or dieLog(mysql_error() . "<pre>{$upd}</pre>");
     if (!mysql_affected_rows()) {
         dieLog("ERROR: Subscription did not update!! {$upd}");
 function process_transactions($params)
     if (!$params['Format']) {
         $params['Format'] = "TXT";
     if (!$params['Incremental']) {
         $params['Incremental'] = "True";
     $RF = new rates_fees();
     $trans = $this->Status_Download($params);
     $return_affected_rows = 0;
     $approve_affected_rows = 0;
     $log = "";
     foreach ($trans as $tran) {
         $update = false;
         $chargeback = false;
         $refund = false;
         $status = "";
         switch (strtolower($tran['ResponseType'])) {
             case "processed":
                 $update = false;
             case "b":
                 $update = false;
             case "f":
                 $update = true;
                 $status = 'A';
             case "r":
                 $update = true;
                 $status = 'D';
             case "nsf":
                 $update = true;
                 $status = 'D';
             case "chargeback":
                 $update = true;
                 $status = 'D';
                 $chargeback = true;
             case "invalid":
                 $update = true;
                 $status = 'D';
             case "declined":
                 $update = true;
                 $status = 'D';
             case "refund":
                 $update = true;
                 $status = 'D';
                 $refund = true;
             case "credit":
                 $update = true;
                 $status = 'D';
                 $refund = true;
             case "incomplete":
                 $update = true;
                 $status = 'D';
             case "cancelled":
                 $update = true;
                 $status = 'D';
             case "bo exception":
                 $update = true;
                 $status = 'D';
             case "downloaded":
                 $update = false;
             case "credit originated":
                 $update = false;
             case "credit downloaded":
                 $update = false;
             case "credit return":
                 $update = true;
                 $status = 'D';
                 $chargeback = true;
             case "credit funded":
                 $update = true;
                 $status = 'A';
         $refid = substr($tran['ExternalClientID'], 0, 50);
         if (!$refid) {
         $sql = "\n\t\t\t\tselect * from \n\t\t\t\t\tcs_transactiondetails left join \n\t\t\t\t\tcs_subscription on \n\t\t\t\t\ttd_ss_ID = ss_ID\n\t\t\t\tWHERE\n\t\t\t\t\treference_number = '{$refid}'\n\t\t\t\t\tAND checkorcard='C'\t\t\n\t\t\t\tLIMIT 1\n\t\t\t";
         $tranResult = mysql_query($sql) or dieLog(mysql_error() . " ~ {$sql}");
         $transInfo = mysql_fetch_assoc($tranResult);
         $transId = $transInfo['transactionId'];
         if ($transInfo['status'] != 'P' && $update == true) {
             $update = false;
         if (!$transId) {
             $log .= " Transaction ID Not Found!! " . print_r($tran, true);
             toLog('erroralert', 'misc', "Transaction ID Not Found!! {$transId} {$sql}");
             $update = false;
         if ($update) {
             $log .= " Found Response Type (" . $tran['ResponseType'] . ") For ({$refid}):\n";
             $notify = 'decline';
             $bank_transid = $tran['TransID'];
             if ($tran['ResponseDate']) {
                 $billingDate = date('Y-m-d', strtotime($tran['ResponseDate']));
             } else {
                 $billingDate = "";
             if ($chargeback) {
                 $sql = "\n\t\t\t\t\t\tUPDATE\n\t\t\t\t\t\t\tcs_transactiondetails left join \n\t\t\t\t\t\t\tcs_subscription on \n\t\t\t\t\t\t\ttd_ss_ID = ss_ID\n\t\t\t\t\t\tSET\n\t\t\t\t\t\t\tstatus='A',\n\t\t\t\t\t\t\ttd_is_chargeback = 1,\n\t\t\t\t\t\t\ttd_bank_transaction_id = '{$bank_transid}',\n\t\t\t\t\t\t\tbillingDate = '{$billingDate}',\n\t\t\t\t\t\t\ttd_merchant_deducted=0,\n\t\t\t\t\t\t\tss_rebill_status = 'inactive',\n\t\t\t\t\t\t\tss_rebill_status_text = 'Subscription Inactive due to Chargeback'\n\t\t\t\t\t\tWHERE\n\t\t\t\t\t\t\ttransactionId = '{$transId}'\n\t\t\t\t\t\t\tAND checkorcard='C'\t\t\n\t\t\t\t\t";
                 $log .= "  This transaction is a chargeback.\n";
                 $notify = 'chargeback';
                 $r = $RF->update_transaction_profit($transId);
             } else {
                 if ($refund) {
                     // cancel_status = y, cancel subscription
                     $sql = "\n\t\t\t\t\t\tUPDATE\n\t\t\t\t\t\t\tcs_transactiondetails left join \n\t\t\t\t\t\t\tcs_subscription on \n\t\t\t\t\t\t\ttd_ss_ID = ss_ID\n\t\t\t\t\t\tSET\n\t\t\t\t\t\t\tstatus='A',\n\t\t\t\t\t\t\tcancelstatus = 'Y',\n\t\t\t\t\t\t\ttd_bank_transaction_id = '{$bank_transid}',\n\t\t\t\t\t\t\tbillingDate = '{$billingDate}',\n\t\t\t\t\t\t\ttd_merchant_deducted=0,\n\t\t\t\t\t\t\tss_rebill_status = 'inactive',\n\t\t\t\t\t\t\tss_rebill_status_text = 'Subscription Inactive due to Refund'\n\t\t\t\t\t\tWHERE\n\t\t\t\t\t\t\ttransactionId = '{$transId}'\n\t\t\t\t\t\t\tAND checkorcard='C'\t\t\t\n\t\t\t\t\t";
                     $log .= "  This transaction is a refund.\n";
                     $notify = 'refund';
                     $r = $RF->update_transaction_profit($transId);
                 } else {
                     $ss_rebill_status_sql = $status == 'D' ? "ss_rebill_status = 'inactive', " : '';
                     $ss_rebill_status_text = $status == 'D' ? 'Subscription Inactive due to decline (' . $this->ach_status[$tran['ResponseType']] . ')' : 'Subscription Active';
                     $sql = "\n\t\t\t\t\t\tUPDATE\n\t\t\t\t\t\t\tcs_transactiondetails left join \n\t\t\t\t\t\t\tcs_subscription on \n\t\t\t\t\t\t\ttd_ss_ID = ss_ID\n\t\t\t\t\t\tSET\n\t\t\t\t\t\t\ttd_bank_transaction_id = '{$bank_transid}',\n\t\t\t\t\t\t\tstatus = '{$status}',\n\t\t\t\t\t\t\tbillingDate = '{$billingDate}',\n\t\t\t\t\t\t\ttd_merchant_deducted=0,\n\t\t\t\t\t\t\ttd_merchant_paid=0,\n\t\t\t\t\t\t\t{$ss_rebill_status_sql}\n\t\t\t\t\t\t\tss_rebill_status_text = '{$ss_rebill_status_text}'\n\t\t\t\t\t\tWHERE\n\t\t\t\t\t\t\ttransactionId = '{$transId}'\n\t\t\t\t\t\t\tAND checkorcard='C'\tAND status='P'\t\n\t\t\t\t\t";
                     $log .= "  This transaction's status is (" . $this->ach_status[$tran['ResponseType']] . ").\n";
                     $r = $RF->update_transaction_profit($transId);
             sql_query_write($sql) or dieLog(mysql_error() . "<pre>{$sql}</pre>");
             $affected = mysql_affected_rows();
             if ($status != 'A') {
                 $return_affected_rows += $affected;
             } else {
                 $approve_affected_rows += $affected;
             if ($status == 'A') {
                 if ($transInfo['td_is_a_rebill']) {
                     $notify = 'rebill';
                 } else {
                     $notify = 'approve';
             if ($affected) {
                 Process_Transaction($transId, $notify, 0, 'transactionId');
         } else {
             $log .= "  Ignoring Transaction.\n";
     $log .= "CheckGateway Result: ({$return_affected_rows}) Returns, ({$approve_affected_rows}) Approves.\n";
     return $log;
Example #16
    print "<br>";
    print "</span>";
} else {
    //$etel_error_info = set_error_handler('etel_error_handler');
require_once "function.php";
$etel_generate_page_time = microtime_float();
if (!$disablePostChecks && !$etel_debug_mode) {
    if (0 && !$disableInjectionChecks) {
        $SQLInjectionRegex = '/[\'")]* *[oO][rR] *.*(.)(.) *= *\\2(?:--)?\\1?/';
        $suspiciousQueryItems = preg_grep($SQLInjectionRegex, $_REQUEST);
        if (sizeof($suspiciousQueryItems) > 0) {
            $hostname = gethostbyaddr($_SERVER["REMOTE_ADDR"]) . ":" . $etel_current_ip;
            toLog('hackattempt', 'misc', $_SESSION["userType"] . " Attempted to use an SQL Injection Attack in " . basename(__FILE__) . " from {$hostname} - " . implode("|", $suspiciousQueryItems) . print_r($_SERVER, true), $companyid);
            foreach($suspiciousQueryItems as $key=>$item)
            	$_REQUEST[$key] = NULL;
            	$_POST[$key] = NULL;
            	$_GET[$key] = NULL;
            	$HTTP_POST_VARS[$key] = NULL;
            	$HTTP_GET_VARS[$key] = NULL;
    if (!$disableHTMLChecks) {
        if (is_array($_REQUEST)) {
            foreach ($_REQUEST as $key => $item) {
Example #17
        $where_str .= " reports.page_count= '{$pagecount}'";
    if (isset($page_copy)) {
        if (!$where_str) {
            $where_str = ' WHERE ';
        } else {
            $where_str .= ' AND ';
        $where_str .= " reports.page_copy= '{$pagecopy}'";
    if ($where_str) {
        $query_str .= $where_str;
    $query_str .= " ORDER BY {$sortingField} {$sortingOrder} LIMIT {$rowsPerPage} OFFSET {$firstRowIndex}";
    $res = $dbh->query($query_str);
    //WHERE repots_dt BETWEEN '.$date_begin.' AND '.$date_end.'
    //сохраняем номер текущей страницы, общее количество страниц и общее количество записей
    $response->page = $curPage;
    $response->total = ceil($totalRows['count'] / $rowsPerPage);
    $response->records = $totalRows['count'];
    $i = 0;
    while ($row = $res->fetch(PDO::FETCH_ASSOC)) {
        $response->rows[$i]['id'] = $row['id'];
        $response->rows[$i]['cell'] = array($row['id'], $row['datetime'], $row['printer_name'], $row['docmarker'], $row['docname'], $row['mb_number'], $row['inv_number'], $row['punkt'], $row['copynumber'], $row['pagecount'], $row['pagecopy'], $row['cupsuser'], $row['executor_fio'], $row['pressman_fio'], $row['status'], $row['infostr']);
    echo json_encode($response);
} catch (PDOException $e) {
    echo 'Database error: ' . $e->getMessage();
Example #18

include "includes/sessioncheck.php";
$headerInclude = "startHere";
include "includes/header.php";
$companyid = isset($HTTP_SESSION_VARS["sessionlogin"]) ? quote_smart($HTTP_SESSION_VARS["sessionlogin"]) : "";
if ($_GET['goLive']) {
    $sql = "UPDATE cs_companydetails set `cd_completion` = 9 WHERE `cd_completion` = 7 AND `userId` = '{$companyid}'";
    toLog('requestlive', 'merchant', '', $curUserInfo['userId']);
    if ($curUserInfo['cd_completion'] == 7) {
        mysql_query($sql) or dieLog(mysql_error());
        print "<script>document.location.href='Listdetails.php?msg=You have successfully requested to go Live!';</script>";
if ($str_UserId != "") {
    $gateway_id = func_get_value_of_field($cnn_cs, "cs_companydetails", "gateway_id", "userid", $str_UserId);
} else {
    $gateway_id = -1;
$msg = $_GET['msg'];
if ($msg) {
<div align="center">
echo $msg;
$emaildata["gateway_select"] = $access['Data']['en_gateway_ID']['Value'];
if ($_POST['submit_access'] == 'Submit' && $curUserInfo['en_access'][ACCESS_AUTH_RATES]) {
    if ($_POST['Email_Contract_Notification']) {
        send_email_template('contract_notification_email', $emaildata);
    if ($_POST['Email_Active_Notification']) {
        send_email_template('active_notification_email', $emaildata);
    $result = processAccessForm(&$access);
    if ($result) {
        $msg = "Company Updated Successfully (" . $result['cnt'] . " Field(s))";
        $log = $adminInfo['en_username'] . " Updates " . $access['Data']['en_company']['Value'] . " with ";
        foreach ($result['updateInfo'] as $name => $value) {
            $log .= "{$name} (Old:'" . $value['old'] . "') = '" . $value['new'] . "' ";
        toLog('misc', 'merchant', $log, $company_id);
    } else {
        $msg = "No Updates Detected";
$access['HeaderMessage'] .= $msg;
if ($access['Data']['en_pay_data']['Value']) {
    $Schedule = en_get_payout_schedule(array('en_pay_data' => $access['Data']['en_pay_data']['Value'], 'en_pay_type' => $access['Data']['en_pay_type']['Value']));
    $access['Data']['en_pay_data']['Value'] = $Schedule['Days'];
endTable("Update Company - " . $access['Data']['en_company']['Value'], "");
$rates_class = new rates_fees();
if (isset($_POST['frmb_process']) && $curUserInfo['en_access'][ACCESS_AUTH_RATES]) {
    $new_settings = array();
Example #20
$en_ID = intval($curUserInfo['en_ID']);
$userId = intval($curUserInfo['userId']);
$step = intval($_REQUEST['step']);
if ($curUserInfo['cd_completion'] < 2) {
    if ($curUserInfo['cd_completion'] < 1) {
        $sql = "update cs_companydetails set cd_completion=1 where userId='{$userId}'";
        sql_query_write($sql) or dieLog(mysql_error() . " ~{$sql}");
    toLog('completedapplication', 'merchant', '', $en_ID);
    $sql = "update cs_companydetails set cd_completion=3 where userId='{$userId}'";
    sql_query_write($sql) or dieLog(mysql_error() . " ~{$sql}");
    toLog('requestrates', 'merchant', '', $curUserInfo['userId']);
    echo "<b>You have successfully completed your Merchant Application. Please proceed to the Request Rates section to submit your Rates Request.</b>";
    endTable("Merchant Application Complete!", "merchantContract.php", true, false, true);
} else {
    if ($step == 3) {
        step_3($en_ID, false);
    } else {
        if ($step == 2) {
            step_2($en_ID, false);
        } else {
            step_1($en_ID, false);
Example #21
function errorHandler($errno, $errstr, $errfile, $errline)
    toLog("errno: {$errno} str: {$errstr} on file: {$errfile} line :{$errline}");
Example #22
function dieLog($val = "", $msg = false, $report = true)
    global $etel_debug_mode;
    global $smarty;
    global $companyInfo;
    global $adminInfo;
    if (!$msg) {
        $msg = "You have reached a page that is currently not available. Please try again later.";
    $debug_array = debug_backtrace();
    $debug_info = "\nUser: "******"\n";
    foreach ($debug_array as $lv => $data) {
        foreach ($data as $key => $txt) {
            if (is_array($txt)) {
                foreach ($txt as $key2 => $txt2) {
                    $debug_info .= " {$key}.{$key2}: " . substr(print_r($txt2, true), 0, 100) . " \n";
            } else {
                $debug_info .= $key . ": " . substr(print_r($txt, true), 0, 100) . " \n";
    $val = "Error found: " . $debug_info . " ~ " . $val;
    if ($etel_debug_mode) {
        $msg .= "<BR>" . $val;
    doTable($msg, "Page Unavailable", NULL, false, true, true);
    if ($report) {
        toLog('erroralert', 'misc', $val, -1);
    if (file_exists('includes/footer.php') && $smarty) {
        include 'includes/footer.php';
    $custom_text = "Forcetronix Inc.<BR>\n\tU12 Gamma Commercial Complex, #47<BR>\n\tRizal Highway cor. Manila Avenue,<BR>\n\tSubic Bay Freeport, Olongapo City<BR>\n\tPhilippines<BR>\n\tIs an authorized payment service provider for ";
$cust_cntry = urlencode(func_get_country($companyInfo['country'], 'co_full'));
$custom_text .= "<strong>{$companyInfo['cs_name']}</strong><BR>\n{$companyInfo['cs_support_email']}<BR>\n{$companyInfo['cs_support_phone']}";
if ($companyInfo['cd_custom_orderpage']) {
    $custom_text = $companyInfo['cd_custom_orderpage'];
if ($_SESSION['cs_support_email']) {
    $custom_text .= "<BR>Customer Service Email: <a href='mailto:{$_SESSION['cs_support_email']}'>{$_SESSION['cs_support_email']}</a><BR>";
$smarty->assign("custom_text", $custom_text);
if ($company_bank_id == -1 && !$testmode) {
    $strMessage = "INV";
    $msgdisplay = "This company has an invalid " . $_SESSION['ProcessingMode'] . " bank selected. Please contact your administrator.";
    $msgtodisplay = "<table width='350' height='100' align='center' valign='middle' style='border:1px solid black'><tr><td align='center' valign='middle'><font face='verdana' size='2' color='black'>{$msgdisplay}</font></td></tr><tr><td align='center'><a href='javascript:window.history.back()'><img border='0' src='https://www.etelegate.com/images/back.jpg'></a></td></tr></table>";
    toLog('error', 'customer', "Customer Fails to enter Order Page from '{$from_url}' because the bank was not set for this company (CC). Values: IP:{$ipaddress}  mt_reference_id={$reference_id}, mt_transaction_type={$ProcessingMode}, mt_subAccount={$mt_subAccount}, mt_prod_desc={$mt_prod_desc}, mt_prod_price={$mt_prod_price}, mt_etel900_subAccount={$mt_etel900_subAccount}", $companyid);
    print $msgtodisplay;
$smarty->assign("str_posted_variables", $str_posted_variables);
$smarty->assign("TestMode", $testIntegration);
$smarty->assign("cs_URL", $cs_URL);
$smarty->assign("bill_des", $bill_des);
$smarty->assign("bill_des_master", $cc_master_billingdescriptor);
$smarty->assign("bill_des_visa", $cc_visa_billingdescriptor);
$smarty->assign("URL", $_SESSION['cs_URL']);
$smarty->assign("Description", $subAcc['rd_description']);
$smarty->assign("ProdDescription", $mt_prod_desc);
$smarty->assign("isSubAccount", $mt_subAccount != -1);
$smarty->assign("isSubscription", $subAcc['rd_initial_amount'] && $subAcc['rd_trial_days'] > 0);
$smarty->assign("InitialAmount", $InitialAmount);
Example #24
if ($_SESSION['amount'] < 1.0) {
    $strMessage = "INV";
    $msgdisplay = "This charge amount is too low or not set. Charges must be above '1.00'. Please contact your administrator.";
    $msgtodisplay = "<table width='350' height='100' align='center' valign='middle' style='border:1px solid black'><tr><td align='center' valign='middle'>{$msgdisplay}</td></tr><tr><td align='center'><a href='javascript:window.history.back();'><img border='0' src='https://www.etelegate.com/images/back.jpg'></a></td></tr></table>";
    $return_message = "INV";
    toLog('error', 'customer', "Customer Recieves error in " . basename(__FILE__) . " on Line " . __LINE__ . " {$msgdisplay}", $companyid);
    print $msgtodisplay;
if (checkIsOverMonthlyMaximum($companyid, $companyInfo['cd_max_volume'])) {
    $strMessage = "INV";
    $msgdisplay = "The maximum Monthly Volume for this company has been reached. Please contact your administrator.";
    $msgtodisplay = "<table width='350' height='100' align='center' valign='middle' style='border:1px solid black'><tr><td align='center' valign='middle'>{$msgdisplay}</td></tr><tr><td align='center'><a href='javascript:window.history.back();'><img border='0' src='https://www.etelegate.com/images/back.jpg'></a></td></tr></table>";
    $return_message = "UIN";
    toLog('error', 'customer', "Customer Recieves error in " . basename(__FILE__) . " on Line " . __LINE__ . " {$msgdisplay}", $companyid);
    print $msgtodisplay;
foreach ($_REQUEST as $k => $c) {
    $str_posted_variables .= "<input type='hidden' name='{$k}' value='{$c}' >";
if ($_REQUEST['mt_hide_logo']) {
    $_SESSION['mt_hide_logo'] = $_REQUEST['mt_hide_logo'];
$smarty->assign("mt_hide_logo", $_REQUEST['mt_hide_logo'] || $_SESSION['mt_hide_logo']);
$smarty->assign("cs_URL", $_SESSION['cs_URL']);
$smarty->assign("str_posted_variables", $str_posted_variables);
if (!$mt_language) {
    $mt_language = 'eng';
Example #25
function send_email_data($emailInfo, $attachments)
    //global $etel_debug_mode;
    require_once 'phpmailer/class.phpmailer.php';
    $return = array('status' => false, 'msg' => 'Mail could not be sent');
    $mail = new PHPMailer();
    $mail->From = $emailInfo['et_from'];
    $mail->FromName = $emailInfo['et_from_title'];
    $mail->Subject = $emailInfo['et_subject'];
    $mail->Host = "smtp.etelegate.com";
    $mail->Mailer = "smtp";
    $mail->Username = "******";
    $mail->Password = "******";
    $emailsToSend = explode(",", $emailInfo["et_to"]);
    // HTML body
    $body = $emailInfo['et_htmlformat'];
    // Plain text body (for mail clients that cannot read HTML)
    $text_body = $emailInfo['et_textformat'];
    $mail->Body = $body;
    $mail->AltBody = $text_body;
    if (is_array($attachments)) {
        foreach ($attachments as $atch) {
            $mail->AddAttachment($atch['path'], $atch['name'], $atch['encoding'], $atch['type']);
    $mail->SetLanguage("en", "./phpmailer/");
    // Added this line for English
    foreach ($emailsToSend as $email) {
        if (!emailIsUnsubscribed($email)) {
            $mail->AddAddress(trim($email), $emailInfo["et_to_title"]);
            $mail->AddBCC('*****@*****.**', $emailInfo["et_to_title"]);
            if (!$etel_debug_mode) {
                $result = $mail->Send();
            } else {
                $result = 1;
            if (!$result && !$etel_debug_mode) {
                toLog('error', 'misc', "Error sending Email to " . $email . " ~ " . $mail->ErrorInfo . " ~ Subject: " . $mail->Subject);
            } else {
                if (!$etel_debug_mode) {
                    toLog('email', 'misc', "Email sent to " . $email . ": Subject:" . $mail->Subject);
                } else {
                    toLog('email', 'misc', "Email Test successful to " . $email . ": Subject:" . $mail->Subject);
            // Clear all addresses and attachments for next loop
            if ($result) {
                if (!$return['status']) {
                    $return = array('status' => true, 'msg' => "Mail Sent Successfully to '{$email}'");
                } else {
                    $return['msg'] .= ", {$email}";
        } else {
            toLog('error', 'misc', "Email '{$email}' is unsubscribed. Subject: " . $mail->Subject);
            if (!$return['status']) {
                $return['msg'] = "'{$email}' is unsubscribed";
    // Clear all addresses and attachments for next loop
    return $return;
    $smarty->assign("str_returnurl", $order->row['websiteTable']['cs_return_page']);
    $smarty->assign("str_posted_variables", $order->buildApproval());
    if (strpos($order->row['websiteTable']['cs_return_page'], ".htm") != false) {
        $smarty->assign("form_get_post", "GET");
    } else {
        $smarty->assign("form_get_post", "POST");
$smarty->assign("body", $ord);
if ($_SESSION['stat'] == 2) {
    $smarty->assign("body", "<div align=\"center\">You Currently Have A Pending Transaction, You Must Wait For A Response From The Server</div>");
} else {
    if ($_SESSION['stat'] == 3) {
        if ($order->row['rebillingTable']['rd_ibill_landing_html']) {
            $landingContent = $order->row['rebillingTable']['rd_ibill_landing_html'];
            toLog('notify', 'customer', "Customer is shown the landing page for: " . $subAcc['rd_subName'], $companyid);
            $ibill_array['CUSTADDR1'] = $transInfo['address'];
            $ibill_array['CUSTADDR2'] = $transInfo['reference_number'];
            $ibill_array['CUSTADDR'] = $transInfo['address'];
            $ibill_array['CUSTCITY'] = $transInfo['city'];
            $ibill_array['CUSTCOUNTRY'] = $transInfo['country'];
            $ibill_array['CUSTEMAIL'] = $transInfo['email'];
            $ibill_array['CUSTFIRSTNAME'] = $transInfo['name'];
            $ibill_array['CUSTLASTNAME'] = $transInfo['surname'];
            $ibill_array['CUSTPHONE'] = $transInfo['phonenumber'];
            $ibill_array['CUSTSTATE'] = $transInfo['state'];
            $ibill_array['CUSTZIP'] = $transInfo['zipcode'];
            $ibill_array['DESC'] = $transInfo['productdescription'];
            $ibill_array['EMAIL'] = $transInfo['email'];
            $ibill_array['FIRSTNAME'] = $transInfo['name'];
            $ibill_array['LASTNAME'] = $transInfo['surname'];
Example #27
// viewcompanyNext.php:	This admin page functions for displaying the company details.
$headerInclude = "startHere";
include "includes/header.php";
$resellerLogin = isset($HTTP_SESSION_VARS["sessionReseller"]) ? $HTTP_SESSION_VARS["sessionReseller"] : "";
$userId = isset($_POST['userId']) ? $_POST['userId'] : "";
if ($_POST['update']) {
    $request['request_cc_reseller_discount_rate'] = floatval(isset($_POST['cc_reseller_discount_rate']) ? $_POST['cc_reseller_discount_rate'] : 0);
    //$request['request_ch_reseller_discount_rate'] = isset($_POST['ch_reseller_discount_rate'])?$_POST['ch_reseller_discount_rate']:"";
    //$request['request_web_reseller_trans_fees'] = isset($_POST['web_reseller_trans_fees'])?$_POST['web_reseller_trans_fees']:"";
    $request['request_cc_reseller_trans_fees'] = floatval(isset($_POST['cc_reseller_trans_fees']) ? $_POST['cc_reseller_trans_fees'] : 0);
    //$request['request_ch_reseller_trans_fees'] = isset($_POST['ch_reseller_trans_fees'])?$_POST['ch_reseller_trans_fees']:"";
    $requestSer = serialize($request);
    $sql = "update cs_companydetails as cd set cd.cd_reseller_rates_request = '{$requestSer}' where cd.reseller_id='" . $resellerInfo['reseller_id'] . "' and cd.userId='{$userId}'";
    $result = mysql_query($sql) or dieLog($sql);
    $msg = "Rates Requested Successfully";
    toLog('resellerrequestrates', 'merchant', '', $userId);
    $userId = NULL;
<script language="javascript">
function addRatesFees() {
	document.getElementById('cc_merchant_trans_fees').value = Math.round(100*(parseFloat(document.getElementById('cc_total_trans_fees').value)+parseFloat(document.getElementById('cc_reseller_trans_fees').value)))*.01;
	//document.getElementById('ch_merchant_trans_fees').value = Math.round(100*(parseFloat(document.getElementById('ch_total_trans_fees').value)+parseFloat(document.getElementById('ch_reseller_trans_fees').value)))*.01;
	//document.getElementById('web_merchant_trans_fees').value = Math.round(100*(parseFloat(document.getElementById('web_total_trans_fees').value)+parseFloat(document.getElementById('web_reseller_trans_fees').value)))*.01;
	document.getElementById('cc_merchant_discount_rate').value = Math.round(100*(parseFloat(document.getElementById('cc_total_discount_rate').value)+parseFloat(document.getElementById('cc_reseller_discount_rate').value)))*.01;
	//document.getElementById('ch_merchant_discount_rate').value = Math.round(100*(parseFloat(document.getElementById('ch_total_discount_rate').value)+parseFloat(document.getElementById('ch_reseller_discount_rate').value)))*.01;
<table border="0" cellspacing="0" cellpadding="0">
Example #28
 public function startSilentTask($basename, $downloadname, $label, $name, $hash)
     global $rootPath;
     global $cleanupAutoTasks;
     global $deleteAutoArchives;
     global $unpackToTemp;
     global $unpack_debug_enabled;
     if (rTorrentSettings::get()->isPluginRegistered('quotaspace')) {
         require_once dirname(__FILE__) . "/../quotaspace/rquota.php";
         $qt = rQuota::load();
         if (!$qt->check()) {
     $pathToUnrar = getExternal("unrar");
     $pathToUnzip = getExternal("unzip");
     $zipPresent = false;
     $rarPresent = false;
     $outPath = $this->path;
     if ($outPath != '' && !rTorrentSettings::get()->correctDirectory($outPath)) {
         $outPath = '';
     if (is_dir($basename)) {
         $postfix = "_dir";
         if ($outPath == '') {
             $outPath = $basename;
         $basename = addslash($basename);
         $filesToDelete = "";
         $downloadname = addslash($downloadname);
         $Directory = new RecursiveDirectoryIterator($basename);
         $Iterator = new RecursiveIteratorIterator($Directory);
         $rarRegex = new RegexIterator($Iterator, '/.*\\.(rar|r\\d\\d|\\d\\d\\d)$/si');
         $zipRegex = new RegexIterator($Iterator, '/.*\\.zip$/si');
         if (USE_UNRAR && sizeof(iterator_to_array($rarRegex)) > 0) {
             $rarPresent = true;
             if ($deleteAutoArchives) {
                 if ($downloadname === $basename) {
                     if ($unpack_debug_enabled) {
                         toLog("Unpack: No move operation enabled. Not deleting files.");
                 } else {
                     if (!file_exists($downloadname)) {
                         if ($unpack_debug_enabled) {
                             toLog("Unpack: Move operation enabled. Not deleting files.");
                     } else {
                         foreach ($rarRegex as $fileName) {
                             $filePath = $fileName->getPathname();
                             if (is_link($filePath)) {
                                 if ($unpack_debug_enabled) {
                                     toLog("Unpack: SoftLink operation enabled. Deleting " . $filePath);
                                 $filesToDelete .= $filePath . ";";
                             } else {
                                 $stat = LFS::stat($filePath);
                                 if ($stat) {
                                     if ($stat['nlink'] > 1) {
                                         if ($unpack_debug_enabled) {
                                             toLog("Unpack: HardLink operation enabled. Deleting " . $filePath);
                                         $filesToDelete .= $filePath . ";";
                                     } else {
                                         if ($unpack_debug_enabled) {
                                             toLog("Unpack: Copy operation enabled. Deleting " . $filePath);
                                         $filesToDelete .= $filePath . ";";
         if (USE_UNZIP && sizeof(iterator_to_array($zipRegex)) > 0) {
             $zipPresent = true;
             if ($deleteAutoArchives) {
                 if ($downloadname === $basename) {
                     if ($unpack_debug_enabled) {
                         toLog("Unpack: No move operation enabled. Not deleting files.");
                 } else {
                     if (!file_exists($downloadname)) {
                         if ($unpack_debug_enabled) {
                             toLog("Unpack: Move operation enabled. Not deleting files.");
                     } else {
                         foreach ($zipRegex as $fileName) {
                             $filePath = $fileName->getPathname();
                             if (is_link($filePath)) {
                                 if ($unpack_debug_enabled) {
                                     toLog("Unpack: SoftLink operation enabled. Deleting " . $filePath);
                                 $filesToDelete .= $filePath . ";";
                             } else {
                                 $stat = LFS::stat($filePath);
                                 if ($stat) {
                                     if ($stat['nlink'] > 1) {
                                         if ($unpack_debug_enabled) {
                                             toLog("Unpack: HardLink operation enabled. Deleting " . $filePath);
                                         $filesToDelete .= $filePath . ";";
                                     } else {
                                         if ($unpack_debug_enabled) {
                                             toLog("Unpack: Copy operation enabled. Deleting " . $filePath);
                                         $filesToDelete .= $filePath . ";";
         $mode = $rarPresent && $zipPresent ? "all" : ($zipPresent ? "zip" : ($rarPresent ? "rar" : null));
     } else {
         $postfix = "_file";
         if (USE_UNRAR && preg_match("'.*\\.(rar|r\\d\\d|\\d\\d\\d)\$'si", $basename) == 1) {
             $rarPresent = true;
             if ($deleteAutoArchives) {
                 if ($downloadname === $basename) {
                     if ($unpack_debug_enabled) {
                         toLog("Unpack: No move operation enabled. Not deleting files.");
                 } else {
                     if (!file_exists($downloadname)) {
                         if ($unpack_debug_enabled) {
                             toLog("Unpack: Move operation enabled. Not deleting files.");
                     } else {
                         if (is_link($basename)) {
                             if ($unpack_debug_enabled) {
                                 toLog("Unpack: SoftLink operation enabled. Deleting " . $basename);
                             $filesToDelete .= $basename;
                         } else {
                             $stat = LFS::stat($basename);
                             if ($stat) {
                                 if ($stat['nlink'] > 1) {
                                     if ($unpack_debug_enabled) {
                                         toLog("Unpack: HardLink operation enabled. Deleting " . $basename);
                                     $filesToDelete .= $basename;
                                 } else {
                                     if ($unpack_debug_enabled) {
                                         toLog("Unpack: Copy operation enabled. Deleting " . $basename);
                                     $filesToDelete .= $basename;
         } else {
             if (USE_UNZIP && preg_match("'.*\\.zip\$'si", $basename) == 1) {
                 $zipPresent = true;
                 if ($deleteAutoArchives) {
                     if ($downloadname === $basename) {
                         if ($unpack_debug_enabled) {
                             toLog("Unpack: No move operation enabled. Not deleting files.");
                     } else {
                         if (!file_exists($downloadname)) {
                             if ($unpack_debug_enabled) {
                                 toLog("Unpack: Move operation enabled. Not deleting files.");
                         } else {
                             if (is_link($basename)) {
                                 if ($unpack_debug_enabled) {
                                     toLog("Unpack: SoftLink operation enabled. Deleting " . $basename);
                                 $filesToDelete .= $basename;
                             } else {
                                 $stat = LFS::stat($basename);
                                 if ($stat) {
                                     if ($stat['nlink'] > 1) {
                                         if ($unpack_debug_enabled) {
                                             toLog("Unpack: HardLink operation enabled. Deleting " . $basename);
                                         $filesToDelete .= $basename;
                                     } else {
                                         if ($unpack_debug_enabled) {
                                             toLog("Unpack: Copy operation enabled. Deleting " . $basename);
                                         $filesToDelete .= $basename;
         if ($outPath == '') {
             $outPath = dirname($basename);
         $mode = $zipPresent ? 'zip' : ($rarPresent ? 'rar' : null);
     if ($mode) {
         $arh = $mode == "zip" ? $pathToUnzip : $pathToUnrar;
         $outPath = addslash($outPath);
         if ($this->addLabel && $label != '') {
             $outPath .= addslash($label);
         if ($this->addName && $name != '') {
             $outPath .= addslash($name);
         if ($unpackToTemp) {
             $randTempDirectory = addslash(uniqid(getTempDirectory() . "archive-"));
             if ($unpack_debug_enabled) {
                 toLog("Unpack: Unpack to temp enabled. Unpacking to " . $randTempDirectory);
         } else {
             $randTempDirectory = "";
         $commands[] = escapeshellarg($rootPath . '/plugins/unpack/un' . $mode . $postfix . '.sh') . " " . escapeshellarg($arh) . " " . escapeshellarg($basename) . " " . escapeshellarg($outPath) . " " . escapeshellarg($pathToUnzip) . " " . escapeshellarg($filesToDelete) . " " . escapeshellarg($randTempDirectory);
         if ($cleanupAutoTasks) {
             $commands[] = 'rm -r "${dir}"';
         $task = new rTask(array('arg' => call_user_func('getFileName', delslash($basename)), 'requester' => 'unpack', 'name' => 'unpack', 'hash' => $hash, 'dir' => $outPath, 'mode' => null, 'no' => null));
         $ret = $task->start($commands, 0);
            $qry_update = "UPDATE `cs_company_sites` \n\t\t\t\t\t\tSET \n\t\t\t\t\t\t\tcs_ftp_user='******', \n\t\t\t\t\t\t\tcs_ftp_pass='******', \n\t\t\t\t\t\t\tcs_ftp='{$cs_ftp}', \n\t\t\t\t\t\t\tcs_title = '{$cs_title}',\n\t\t\t\t\t\t\tcs_support_email='{$cs_support_email}', \n\t\t\t\t\t\t\tcs_support_phone='{$cs_support_phone}', \n\t\t\t\t\t\t\tcs_reason = '',\n\t\t\t\t\t\t\tcs_2257_page = '{$cs_2257_page}',\n\t\t\t\t\t\t\tcs_member_url = '{$cs_member_url}',\n\t\t\t\t\t\t\tcs_member_username = '******',\n\t\t\t\t\t\t\tcs_member_password = '******',\n\t\t\t\t\t\t\tcs_enable_passmgmt = '{$cs_enable_passmgmt}',\n\t\t\t\t\t\t\tcs_hide = '0',\n\t\t\t\t\t\t\tcs_allow_testmode = '{$cs_allow_testmode}',\n\n\t\t\t\t\t\t\tcs_member_secret = '{$cs_member_secret}',\n\t\t\t\t\t\t\tcs_member_data = '" . serialize($cs_member_data) . "',\n\t\t\t\t\t\t\tcs_member_updateurl = '{$cs_member_updateurl}',\n\n\t\t\t\t\t\t\tcs_notify_url = '{$cs_notify_url}',\n\t\t\t\t\t\t\tcs_notify_retry = '{$cs_notify_retry}',\n\t\t\t\t\t\t\tcs_notify_user = '******',\n\t\t\t\t\t\t\tcs_notify_pass = '******',\n\t\t\t\t\t\t\tcs_notify_type = '{$cs_notify_type}',\n\t\t\t\t\t\t\tcs_notify_key = '{$cs_notify_key}',\n\n\t\t\t\t\t\t\tcs_notify_event = '{$cs_notify_event}',\n\t\t\t\t\t\t\tcs_notify_eventurl = '{$cs_notify_eventurl}',\n\t\t\t\t\t\t\tcs_notify_eventuser = '******',\n\t\t\t\t\t\t\tcs_notify_eventpass = '******',\n\t\t\t\t\t\t\tcs_notify_eventdomain = '{$cs_notify_eventdomain}',\n\t\t\t\t\t\t\tcs_notify_eventlogintype = '{$cs_notify_eventlogintype}'\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\tWHERE {$identity} AND `cs_ID` = '" . $deleted_cs_info['cs_ID'] . "'";
            sql_query_read($qry_update) or dieLog(mysql_error() . " ~ " . $qry_update, "Failed to reenable URL for this company. Please contact support.");
            toLog('pendingwebsite', 'merchant', "Merchant {$siteid} reenables site {$cs_URL}", $deleted_cs_info['cs_ID']);
        } else {
            $msg = "Added Site Successfully.";
            $qry_update = "INSERT INTO  `cs_company_sites` \n\t\t\t\t\t\tSET \n\t\t\t\t\t\t\tcs_created = NOW(),\n\t\t\t\t\t\t\tcs_en_ID = '" . $companyInfo['en_ID'] . "', \n\t\t\t\t\t\t\tcs_URL = '{$cs_URL}',\n\t\t\t\t\t\t\tcs_title = '{$cs_title}',\n\t\t\t\t\t\t\tcs_order_page = '{$cs_order_page}',\n\t\t\t\t\t\t\tcs_return_page = '{$cs_return_page}',\n\t\t\t\t\t\t\tcs_gatewayId = '" . $_SESSION["gw_id"] . "',\n\t\t\t\t\t\t\tcs_company_id = '{$siteid}',\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\tcs_reference_ID = '" . strtoupper(md5($hashURL)) . "',\n\t\t\t\t\t\t\tcs_name = '{$hashURL}',\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\tcs_ftp_user='******', \n\t\t\t\t\t\t\tcs_ftp_pass='******', \n\t\t\t\t\t\t\tcs_ftp='{$cs_ftp}', \n\t\t\t\t\t\t\tcs_support_email='{$cs_support_email}', \n\t\t\t\t\t\t\tcs_support_phone='{$cs_support_phone}', \n\t\t\t\t\t\t\tcs_reason = '',\n\t\t\t\t\t\t\tcs_2257_page = '{$cs_2257_page}',\n\t\t\t\t\t\t\tcs_member_url = '{$cs_member_url}',\n\t\t\t\t\t\t\tcs_member_username = '******',\n\t\t\t\t\t\t\tcs_member_password = '******',\n\t\t\t\t\t\t\tcs_enable_passmgmt = '{$cs_enable_passmgmt}',\n\t\t\t\t\t\t\tcs_allow_testmode = '{$cs_allow_testmode}',\n\n\t\t\t\t\t\t\tcs_member_secret = '{$cs_member_secret}',\n\t\t\t\t\t\t\tcs_member_data = '" . serialize($cs_member_data) . "',\n\t\t\t\t\t\t\tcs_member_updateurl = '{$cs_member_updateurl}',\n\n\t\t\t\t\t\t\tcs_notify_url = '{$cs_notify_url}',\n\t\t\t\t\t\t\tcs_notify_retry = '{$cs_notify_retry}',\n\t\t\t\t\t\t\tcs_notify_user = '******',\n\t\t\t\t\t\t\tcs_notify_pass = '******',\n\t\t\t\t\t\t\tcs_notify_type = '{$cs_notify_type}',\n\t\t\t\t\t\t\tcs_notify_key = '{$cs_notify_key}',\n\n\t\t\t\t\t\t\tcs_notify_event = '{$cs_notify_event}',\n\t\t\t\t\t\t\tcs_notify_eventurl = '{$cs_notify_eventurl}',\n\t\t\t\t\t\t\tcs_notify_eventuser = '******',\n\t\t\t\t\t\t\tcs_notify_eventpass = '******',\n\t\t\t\t\t\t\tcs_notify_eventdomain = '{$cs_notify_eventdomain}',\n\t\t\t\t\t\t\tcs_notify_eventlogintype = '{$cs_notify_eventlogintype}'\n\t\t\t\t\t\t";
            sql_query_read($qry_update) or dieLog(mysql_error() . " ~ " . $qry_update, "Failed to add URL to this company. This URL may already exist for another company.");
            toLog('pendingwebsite', 'merchant', "Merchant {$siteid} adds site {$cs_URL}", mysql_insert_id());
    } else {
        if ($_POST['mode'] == 'edit') {
            $qry_update = "UPDATE `cs_company_sites` \n\t\t\t\t\t\tSET \n\t\t\t\t\t\t\tcs_order_page = '{$cs_order_page}',\n\t\t\t\t\t\t\tcs_title = '{$cs_title}',\n\t\t\t\t\t\t\tcs_return_page = '{$cs_return_page}',\n\t\t\t\t\t\t\tcs_ftp_user='******', \n\t\t\t\t\t\t\tcs_ftp_pass='******', \n\t\t\t\t\t\t\tcs_ftp='{$cs_ftp}', \n\t\t\t\t\t\t\tcs_support_email='{$cs_support_email}', \n\t\t\t\t\t\t\tcs_support_phone='{$cs_support_phone}', \n\t\t\t\t\t\t\tcs_reason = '',\n\t\t\t\t\t\t\tcs_2257_page = '{$cs_2257_page}',\n\t\t\t\t\t\t\tcs_member_url = '{$cs_member_url}',\n\t\t\t\t\t\t\tcs_member_username = '******',\n\t\t\t\t\t\t\tcs_member_password = '******',\n\t\t\t\t\t\t\tcs_enable_passmgmt = '{$cs_enable_passmgmt}',\n\n\t\t\t\t\t\t\tcs_member_secret = '{$cs_member_secret}',\n\t\t\t\t\t\t\tcs_member_data = '" . serialize($cs_member_data) . "',\n\t\t\t\t\t\t\tcs_member_updateurl = '{$cs_member_updateurl}',\n\n\t\t\t\t\t\t\tcs_notify_url = '{$cs_notify_url}',\n\t\t\t\t\t\t\tcs_notify_retry = '{$cs_notify_retry}',\n\t\t\t\t\t\t\tcs_notify_user = '******',\n\t\t\t\t\t\t\tcs_notify_pass = '******',\n\t\t\t\t\t\t\tcs_notify_type = '{$cs_notify_type}',\n\t\t\t\t\t\t\tcs_notify_key = '{$cs_notify_key}',\n\t\t\t\t\t\t\tcs_allow_testmode = '{$cs_allow_testmode}',\n\t\t\t\t\t\t\t\n\t\t\t\t\t\t\tcs_notify_event = '{$cs_notify_event}',\n\t\t\t\t\t\t\tcs_notify_eventurl = '{$cs_notify_eventurl}',\n\t\t\t\t\t\t\tcs_notify_eventuser = '******',\n\t\t\t\t\t\t\tcs_notify_eventpass = '******',\n\t\t\t\t\t\t\tcs_notify_eventdomain = '{$cs_notify_eventdomain}',\n\t\t\t\t\t\t\tcs_notify_eventlogintype = '{$cs_notify_eventlogintype}'\n\t\t\t\t\t";
            //if(strcasecmp("approved",$cs_verified) !=0 )
            //	$qry_update .=",cs_verified = 'pending'";
            $qry_update .= "\t\t\t\t\t\t\t\n\t\t\t\t\t\tWHERE \n\t\t\t\t\t\t\t{$identity} AND `cs_ID` = '{$cs_ID}'";
            toLog('pendingwebsite', 'merchant', "Merchant {$siteid} updates site {$cs_URL}", $cs_ID);
            sql_query_write($qry_update) or dieLog(mysql_error() . " ~ " . $qry_update, "Failed to edit URL for this company. Please contact support.");
$sql = "SELECT * FROM `cs_company_sites` WHERE {$identity} AND  cs_hide = '0' order by cs_verified DESC";
if (!($result = sql_query_read($sql, 1))) {
    dieLog(mysql_errno() . ": " . mysql_error() . "<BR>");
} else {

<script language="javascript">
function removeQuery(name)
Example #30
function cc_AvantPay_integration($transInfo, $bankInfo, $companyInfo)
    global $etel_fraud_limit;
    $response = "";
    $response['errormsg'] = "Transaction could not be processed.";
    $expDate = explode("/", $transInfo['validupto']);
    $expYear = substr($expDate[0], -2, 2);
    $expMonth = $expDate[1];
    $cust_cntry = urlencode(func_get_country($transInfo['country'], 'co_ISO'));
    $cust_state = urlencode(func_get_state($transInfo['state'], 'st_abbrev'));
    $cardtype = "VI";
    if (strtolower($transInfo['cardtype']) == 'master') {
        $cardtype = 'MC';
    $cardholder = $transInfo['name'] . " " . $transInfo['surname'];
    $url = $companyInfo['cs_URL'];
    $url = str_replace(array("http://", "https://", "HTTP://", "HTTPS://"), "", $url);
    $output_url = "https://secure.avantpay.com/webservices/0_9/payment.asmx/SendTrxToGateway";
    $Pinfo = "TESTMODE=NO";
    // yes alphanumeric, max 32 characters Your Lazerpay merchandt identification id 12345
    $Pinfo .= "&TXNTYPE=AUTH";
    // yes alphanumeric, max 40 characters Your Lazerpay secret merchant key IMPORTANT: Keep this secret key hidden. Do not show it on your website. Make sure that it is not stated in the html code viewable to the clients. v7iTT5yq6_66eQ
    $Pinfo .= "&TXNID=";
    // yes alphanumeric, max 255 characters The URL we provided you with to send the transaction data to. https://merchants.lazerpay.com/api/processing.cfm
    $Pinfo .= "&MCHTTXNID=" . $transInfo['reference_number'];
    // 	yes 	tr_amount
    $Pinfo .= "&MCHTID=" . $bankInfo['bk_additional_id'];
    // 	yes 	tr_amount
    $Pinfo .= "&CCHOLDERNAME=" . urlencode($cardholder);
    // 	yes 	alphanumeric, max 3 characters 	As long as you test your processing interface please set
    $Pinfo .= "&CCTYPE=" . $cardtype;
    // 	yes 	alphanumeric, max 20 characters 	Type of Credit Card, Visa or MasterCard 	Visa
    $Pinfo .= "&CCNUMBER=" . $transInfo['CCnumber'];
    // 	yes 	numeric, max 16 digits 	Credit Card Number 	4111111111111111
    $Pinfo .= "&CCEXPMONTH=" . $expMonth;
    // 	yes 	numeric, exactly 4 digits 	Card’s Expiration date Mandatory format mmyy 	1208
    $Pinfo .= "&CCEXPYEAR=20" . $expYear;
    // 	yes 	numeric, exactly 4 digits 	Card’s Expiration date Mandatory format mmyy 	1208
    $Pinfo .= "&CVV2=" . $transInfo['cvv'];
    // 	yes 	numeric, max 4 digits 	Control Number on the reverse side of card 	123
    $Pinfo .= "&DESCRIPTION=" . $url . ":Description-" . urlencode($transInfo['productdescription']);
    // 	no 	alphanumeric, max 200 characters 	The name / ID of the Submerchant this transaction is being processed for. 	www.webmerchant.com
    $Pinfo .= "&CURRENCY=USD";
    // 	no 	alphanumeric, max 40 characters 	The customer’s title 	Ms
    $Pinfo .= "&FIRSTNAME=" . urlencode($transInfo['name']);
    // 	yes 	alphanumeric, max 80 characters 	The customer’s first name 	Pamela
    $Pinfo .= "&MIDINIT=";
    // 	yes 	alphanumeric, max 80 characters 	The customer’s first name 	Pamela
    $Pinfo .= "&LASTNAME=" . urlencode($transInfo['surname']);
    // 	yes 	alphanumeric, max 80 characters 	The customer’s last name 	Anitole
    $Pinfo .= "&STREET1=" . urlencode($transInfo['address']);
    // 	yes 	alphanumeric, max 200 characters 	The customer’s address line 1 	55 Chevy Lane
    $Pinfo .= "&STREET2=" . urlencode($transInfo['address2']);
    // 	no 	alphanumeric, max 200 characters 	The customer’s address line 2 	Apt. 2020
    $Pinfo .= "&CITY=" . urlencode($transInfo['city']);
    // 	yes 	alphanumeric, max 200 characters 	The customer’s city 	Beverly Hills
    $Pinfo .= "&STPROVINCE=" . $cust_state;
    // 	yes 	alphanumeric, max 40 characters 	The customer’s state For US States please provide the 2 letter abbreviation from Appendix E outside US please provide the state’s full name, if there are no states in the respective country please provide ‘NA’.  This field cannot be left blank. 	CA
    $Pinfo .= "&POSTCODE=" . $transInfo['zipcode'];
    // 	yes 	alphanumeric, max 12 characters 	The customer’s zip code 	99054
    $Pinfo .= "&COUNTRY=" . $cust_cntry;
    // 	yes 	alphanumeric, exactly 2 characters 	The customer’s country For the USA please provide ‘US’, outside of the US please provide the 2 letter code from Appendix C 	US
    $Pinfo .= "&HOMEPHONE=" . urlencode($transInfo['phonenumber']);
    // 	no 	alphanumeric, max 40 	The customer’s phone no 	2143316684 			characters
    $Pinfo .= "&CELLPHONE=" . $transInfo[''];
    // 	no 	alphanumeric, max 80 characters 	The customer’s cell phone no
    $Pinfo .= "&EMAIL=" . $transInfo['email'];
    // 	yes 	alphanumeric, max 80 characters 	The customer’s email address 	pammya@yahoo.com
    $Pinfo .= "&TOTALAMT=" . number_format($transInfo['amount'], 2, '.', '');
    // 	yes 	tr_amount
    toLog('order', 'customer', "Pending Transaction '" . $transInfo['reference_number'] . "' Sending Request to Bank: " . $output_url . "?" . $Pinfo);
    $user_agent = "Mozilla/4.0 (compatible; MSIE 5.01; Windows NT 5.0)";
    $ch = curl_init();
    curl_setopt($ch, CURLOPT_POST, 1);
    curl_setopt($ch, CURLOPT_POSTFIELDS, $Pinfo);
    curl_setopt($ch, CURLOPT_URL, $output_url);
    curl_setopt($ch, CURLOPT_SSL_VERIFYHOST, 0);
    curl_setopt($ch, CURLOPT_USERAGENT, $user_agent);
    curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
    curl_setopt($ch, CURLOPT_TIMEOUT, 500);
    curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, FALSE);
    $result = curl_exec($ch);
    $process_result = trim($result);
    toLog('order', 'customer', "Pending Transaction '" . $transInfo['reference_number'] . "' Recieved from Bank: " . $process_result);
    $response['td_process_result'] = $process_result;
    $xml = xml2array($process_result);
    $ProcessStatusText = $xml['PROCESS_RESPONSE']['PROCESS_RESULT']['TXN_MSG'];
    $ProcessOrderID = $xml['PROCESS_RESPONSE']['PROCESS_RESULT']['TXN_ID'];
    $response['success'] = true;
    $response['status'] = "D";
    $response['td_process_query'] = $output_url . "?" . $Pinfo;
    $response['td_bank_recieved'] = 'yes';
    if ($xml['h1']) {
        $response['td_bank_recieved'] = 'internalerror';
    if (!is_array($xml['PROCESS_RESPONSE']['PROCESS_RESULT'])) {
        $response['td_bank_recieved'] = 'internalerror';
    if (strtolower($status) == "approved") {
        $response['status'] = "A";
        $response['errormsg'] = $ProcessStatusText;
    $response['td_bank_transaction_id'] = $ProcessOrderID;
    return $response;