do { // already have the first record $sku = $pre8->f("sku"); $csku = $pre8->f("compsku"); $qty = $pre8->f("qty"); $invover = (int) $pre8->f("invover"); $olzone = (int) $pre8->f("olzone"); $ollang = (int) $pre8->f("ollang"); // get the short product description $pre10->query("select prodname from prodlang " . "where prodlzid={$olzone} and prodlid={$ollang} and prodlsku='{$sku}'"); if (!$pre10->next_record()) { $pre11->query("delete from oline where orderid='{$cartid}'"); continue; } $sdescr = stripslashes(ereg_replace("<[^>]+>", " ", $pre10->f("prodname"))); $pre10->free_result(); $pre10->query("select prodprice,prodsetup,prodweight,prodflag1 from prod " . "where prodzid={$olzone} and prodsku='{$sku}'"); if (!$pre10->next_record()) { $pre11->query("delete from oline where orderid='{$cartid}'"); continue; } $prodprice = (double) $pre10->f("prodprice"); $prodsetup = (double) $pre10->f("prodsetup"); $prodweight = (double) $pre10->f("prodweight"); $flag1 = (int) $pre10->f("prodflag1"); $pre10->free_result(); ?> <tr><td class="previewcell" colspan="2" align="left" valign="top" bgcolor="#FFFFFF"> <font face="Arial,Helvetica" size="1"> <?php
$cybercash->ccstate = "{$billing_state}"; $cybercash->cczip = "{$billing_zip}"; $cybercash->cccountry = "USA"; // submit the charge to CyberCash and parse out the return data if (!$cybercash->send()) { $cybercash->errorHandler("Error: no data received back from CyberCash"); } $POP = $cybercash->POP; parse_str(ereg_replace("pop.", "", $POP)); if ($status != 'success') { // get the Web table $fcw = new FC_SQL(); $fcw->query("select webback,webtext,weblink,webvlink,webalink,webbg,webfree,websort " . "from fishcart where webzid={$zid} and weblid={$lid}"); $fcw->next_record(); $srt = $fcw->f("websort"); $fcw->free_result(); // END OF ESSENTIAL CART DISPLAY CODE FROM LINE 1 TO HERE ?> <html> <head> <link rel="stylesheet" ID href="style.css" type="text/css" /> <title> </title> </head> <body<?php if ($fcw->f("webback")) { ?> background="<?php echo $fcw->f("webback");
function show_countries($zid, $lid, $matchiso, $lang_iso) { $ret = NULL; $fct = new FC_SQL(); $fct->query("select ctrylangciso,ctrylangname from country,countrylang " . "where ctryzid={$zid} and ctrylid={$lid} and ctryactive=1 and " . "ctryiso=ctrylangciso and ctrylangliso='{$lang_iso}' order by ctryseq,ctrylangname"); while ($fct->next_record()) { $iso = $fct->f('ctrylangciso'); $name = $fct->f('ctrylangname'); if ($matchiso == $iso) { $chk = ' selected'; } else { $chk = ''; } $ret .= "<option value=\"{$iso}\"{$chk}>{$name}</option>\n"; } $fct->free_result(); return $ret; }
?> "> <input type=hidden name=oldsku value=""> Default Zone:<br> </td> </tr> <tr><td valign=top align=center bgcolor=#ffffff> <?php $currz = $fcm->f("zoneid"); $fcz->query("select count(*) as cnt from zone"); $fcz->next_record(); $zt = (int) $fcz->f('cnt'); $fcz->free_result(); $fcz->query("select zoneid,zonedescr from zone order by zoneid"); ?> <select name=zoneid size="<?php echo $zt + 1; ?> " onFocus="currfield='zoneid';"> <option value="">[select a zone] <?php while ($fcz->next_record()) { $zid = $fcz->f("zoneid"); if ($currz == $zid) { echo "<option value=\"{$zid}\" selected>"; $oldzid = $zid; } else { echo "<option value=\"{$zid}\">";
$sdate = mktime(0, 0, 0, $nsm, $nsd, $nsy); $ndate = mktime(0, 0, 0, $nem, $ned, $ney); } else { $sdate = 0; $ndate = 0; } } $fco = new FC_SQL(); $fcu = new FC_SQL(); if ($act == "insert") { $fcu->query("select count(*) as cnt from oprod where oprodsku='{$sku}'"); $fcu->next_record(); if ($fcu->f('cnt') == 0) { $fco->query("insert into oprod (oprodsku,ostart,oend,ozid) " . "values ('{$sku}',{$sdate},{$ndate},{$zoneid})"); } $fcu->free_result(); } elseif ($act == "update") { $fco->query("update oprod " . "set oprodsku='{$sku}',ostart={$sdate},oend={$ndate} where oprodsku='{$sku}'"); } elseif ($act == "delete") { $fco->query("delete from oprod where oprodsku='{$sku}'"); } $fco->commit(); ?> <p> The <?php echo $act; ?> action is complete.
<?php exit; } $fcl = new FC_SQL(); $fcm = new FC_SQL(); $fct = new FC_SQL(); $fcta = new FC_SQL(); $fctb = new FC_SQL(); $fctc = new FC_SQL(); if ($act == "update") { //get the old langfppromo $fcta->query("select langfppromo from lang where langid={$lngid} and " . "langzid={$zoneid}"); if ($fcta->next_record()) { $oldfppromo = (int) $fcta->f('langfppromo'); } $fcta->free_result(); // oracle clob if ($databaseeng == "oracle") { $res = $fcl->query("update lang set " . "langzid={$langzid}, langdescr='{$langdescr}',langtmpl='{$langtmpl}', " . "langtdsp='{$langtdsp}', langterr='{$langterr}', langshow='{$langshow}', " . "langgeo='{$langgeo}', langordr='{$langordr}', langfinl='{$langfinl}', " . "langproc='{$langproc}', langstmpl='{$langstmpl}',langiso ='{$langiso}', " . "langwelcome='{$langwelcome}',langcopy='{$langcopy}',langterms=empty_clob()," . "langfppromo={$langfppromo} " . "where langid={$lngid}", langterms, $langterms); } else { $res = $fcl->query("update lang set " . "langzid={$langzid}, langdescr='{$langdescr}',langtmpl='{$langtmpl}', " . "langtdsp='{$langtdsp}', langterr='{$langterr}', langshow='{$langshow}', " . "langgeo='{$langgeo}', langordr='{$langordr}', langfinl='{$langfinl}', " . "langproc='{$langproc}', langstmpl='{$langstmpl}',langiso ='{$langiso}', " . "langwelcome='{$langwelcome}',langcopy='{$langcopy}',langterms='{$langterms}'," . "langfppromo={$langfppromo} " . "where langid={$lngid}"); } } elseif ($act == "new") { $fcm->query('select numlang from master'); $fcm->next_record(); $numl = (int) $fcm->f('numlang'); $fcm->free_result(); $numl += 1; $fcm->query("update master set numlang={$numl}"); // oracle clob if ($databaseeng == "oracle") {
$fcl = new FC_SQL(); $fcp = new FC_SQL(); if (!$zoneid || !$langid) { echo 'Please click Back and select a zone and/or language. Thank you.'; exit; } ?> <h2 align="center">Related Product Maintenance</h2> <hr /> <?php $fcp->query("select count(*) as cnt from prodrel where relzone={$zoneid}"); $fcp->next_record(); $pt = $fcp->f('cnt'); $fcp->free_result(); ?> <center> <table border="0" cellpadding="4" cellspacing="1" bgcolor="#666666" width="650" class="text"> <tr><td colspan="2" align="center" valign="middle" bgcolor="#ffffff"> <a href="index.php?zoneid=<?php echo $zoneid; ?> &langid=<?php echo $langid; ?> " onclick="closehelp()"> Return To Central Maintenance Page</a><br />
$get_subz = new FC_SQL(); $get_subz->query("select subzsid,subzdescr from subzone " . "where subzid={$zoneid} order by subzdescr"); while ($get_subz->next_record()) { $pszid = (int) $get_subz->f('subzsid'); if ($pszid == $currsubzparent) { $chk = ' selected'; } else { $chk = ''; } if ($pszid != $subzsid) { // don't show our own to prevent self-reference $pszidd = $get_subz->f('subzdescr'); print "<option value=\"{$pszid}\"{$chk}>{$pszidd}</option>\n"; } } $get_subz->free_result(); ?> </select><br /> </td></tr> <tr><td valign="top" align="center" bgcolor="#FFFFFF" width="50%"> SubZone Vendor ID:<br /> <select name="subzvendid" size="1"> <?php $fcz->query("select vendname from vend where vendid={$subzvendid}"); $fcz->next_record(); echo '<option value="' . $subzvendid . '" selected="selected">' . $fcz->f('vendname') . '</option>'; $fcv->query("select vendid,vendname from vend where vendzid={$zoneid} and vendid!={$subzvendid}"); while ($fcv->next_record()) { ?>
if ($showall) { if ($databaseeng == 'odbc' && $dialect == 'solid') { $fccc->query("select count(*) as cnt from _ccnum"); } else { $fccc->query("select count(*) as cnt from {$instid}_ccnums"); } } else { if ($databaseeng == 'odbc' && $dialect == 'solid') { $fccc->query("select count(*) as cnt from _ccnum where fetched='0'"); } else { $fccc->query("select count(*) as cnt from {$instid}_ccnums " . "where fetched='0'"); } } $fccc->next_record(); $cnt = $fccc->f("cnt"); $fccc->free_result(); if ($databaseeng == 'odbc' && $dialect == 'solid') { $fccc->query("select count(*) as cnt from _ccnum"); } else { $fccc->query("select count(*) as cnt from {$instid}_ccnums"); } $fccc->next_record(); $tot = $fccc->f("cnt"); $fccc->free_result(); ?> <?php if ($cnt) { ?> <tr><td align=center colspan=4 bgcolor=#ffffff> <?php
$oh->query("select orderid,tstamp from ohead"); $tprod = 0; while ($oh->next_record()) { $ts = $oh->f("tstamp"); $oi = $oh->f("orderid"); $ds = (int) date("d", $ts); $ol->query("select * from oline where orderid='{$oi}'"); $j = 0; while ($ol->next_record()) { if (!$j) { echo "\ncustid:{$oi} date: {$ds}\n"; $tord++; } $qt = (int) $ol->f("qty"); $sk = $ol->f("sku"); $op->query("select prodprice from prod where prodsku='{$sk}'"); if ($op->next_record()) { $prc = (double) $op->f("prodprice"); } else { $prc = 0; } $op->free_result(); $ltot = $prc * $qt; $tamt += (double) $ltot; echo " sku:{$sk} qty: {$qt} price: {$prc} ltot: {$ltot}\n"; $tprod++; $j++; } $ol->free_result(); } echo "\ntotal orders: {$tord} total products: {$tprod} pending: {$tamt}\n";
<?php exit; } $fcp = new FC_SQL(); $fcg = new FC_SQL(); $fcp->query("select * from prodopt where poptid={$poptid} and " . "poptlid={$langid} and poptzid={$zoneid}"); $fcp->next_record(); // create a javascript array of prodopt group names echo "<script>\nvar jspoptgrp = new Array();\n"; $fcg->query("select pgrpgrp,pgrpname from prodoptgrp " . "where pgrpzid={$zoneid} and pgrplid={$langid} order by pgrpgrp"); while ($fcg->next_record()) { $pgrpgrp = (int) $fcg->f('pgrpgrp'); $pgrpname = $fcg->f('pgrpname'); echo "jspoptgrp[\"{$pgrpgrp}\"] = \"{$pgrpname}\";\n"; } $fcg->free_result(); echo "</script>\n"; ?> <h2 align=center>Modify A Product Option</h2> <hr> <center> <table border="0" cellpadding="3" cellspacing="1" bgcolor="#666666" width="650" class="text"> <tr><td align=center colspan=2 bgcolor="#FFFFFF"> <a href="index.php?zoneid=<?php echo $zoneid; ?> &langid=<?php echo $langid;
<option value="0">[top level category] <?php while ($fct->next_record()) { $catval = (int) $fct->f("catval"); if ($catval == $cat) { continue; // don't show this cat to avoid self reference } if ($catval == $catunder) { echo "<option value=\"{$catval}\" selected>"; } else { echo "<option value=\"{$catval}\">"; } echo stripslashes(substr($fct->f("catdescr"), 0, 30) . "\n"); } $fct->free_result(); ?> </select><br /> Category Description: <i>80 characters max</i><br /> <input name="descr" size="40" maxsize="80" value="<?php echo stripslashes($fcc->f("catdescr")); ?> " onFocus="currfield='catdescr'" /><br /> Category Masthead Text: <i>as long as desired</i><br /> <textarea name="catmast" wrap="virtual" rows="12" cols="60"
} // SQL INJECTION AVOIDENCE $zid = (int) $zid; $lid = (int) $lid; $purchid = (int) $purchid; $orderproc_flag = !empty($orderproc_flag) ? (int) $orderproc_flag : 0; // remove anything but a-z, A-Z, 0-9 and _ $cartid = eregi_replace('[^a-z0-9_]', '', $cartid); //uncomment below if ciso ever used, keep only first three a-z //$ciso=substr(ereg_replace('[^a-z]','',$ciso),0,3); if (empty($zid)) { // get the default zone if not given in cookie $fm->query('select zoneid from master'); $fm->next_record(); $zid = (int) $fm->f('zoneid'); $fm->free_result(); } // make sure a zone exists for the value in the cookie // take the first we get if no such zone $fm->query("select zonedeflid,zflag1 from zone where zoneid={$zid}"); if ($fm->next_record()) { $deflid = (int) $fm->f('zonedeflid'); $zflag1 = (int) $fm->f('zflag1'); $fm->free_result(); } else { $fm->query('select zoneid,zonedeflid,zflag1 from zone'); $fm->next_record(); $zid = (int) $fm->f('zoneid'); $lid = (int) $fm->f('zonedeflid'); $zflag1 = (int) $fm->f('zflag1'); $fm->free_result();
<?php } // order line count > 0 ?> </form> <?php //auxilliary links. jheg echo "<br />"; $fcal = new FC_SQL(); $fcal->query("select count(*) as cnt from auxlinks where loc=2"); $fcal->next_record(); $auxlinkcnt = (int) $fcal->f('cnt'); $fcal->free_result(); $fcal->query("select title, url from auxlinks where loc=2 order by seq"); if ($auxlinkcnt) { ?> <tr><td class="showcartcell" align="center" valign="top" colspan="4" bgcolor="#FFFFFF"> <?php while ($fcal->next_record()) { $url = stripslashes($fcal->f("url")); eval("\$url = \"{$url}\";"); echo '| <a href="' . $url . '"><b>' . stripslashes($fcal->f("title")) . "</b></a> |\n"; } $fcal->free_result(); ?> </td></tr> <?php }
$fcca->query("select * from prodrel where relzone={$zoneid} and relsku='{$relsku}'"); if ($fcca->next_record()) { $prelf = 1; } else { $prelf = 0; } $fcca->free_result(); /*fetch prodflag1 from prod table Any other prodflag1 flag other then prodrel should be added here to keep prodflag1 complete */ $fccb = new FC_SQL(); $fccb->query("select prodflag1 from prod where prodsku='{$relsku}' " . "and prodzid='{$zoneid}'"); $fccb->next_record(); $prodflag1 = (int) $fccb->f("prodflag1"); $fccb->free_result(); $flag1 = 0; if ($prodflag1 & $flag_noship) { $flag1 |= (int) $flag_noship; } if ($prodflag1 & $flag_notax) { $flag1 |= (int) $flag_notax; } if ($prodflag1 & $flag_novat) { $flag1 |= (int) $flag_novat; } if ($prodflag1 & $flag_useesd) { $flag1 |= (int) $flag_useesd; } if ($prodflag1 & $flag_genesd) { $flag1 |= (int) $flag_genesd;
function fc_display_product($fc_sku = '', $zid = 1, $lid = 1, $cat = 0) { // display one product with options // doesn't return anything global $fc_cartid, $flag_persvc, $flag_webshowqty; global $fc_csym, $fc_webfree, $fc_webflags1; global $flag_poptskusub, $flag_poptskumod, $flag_poptskusuf, $flag_poptskupre; global $flag_poptgrpexc, $flag_poptprcrel, $flag_poptgrpqty, $flag_poptgrpreq; $now = time(); $fco = new FC_SQL(); $fcp = new FC_SQL(); $fcrp = new FC_SQL(); $fcrpl = new FC_SQL(); $fcp->query('select prodsdescr,proddescr,prodaudio,prodvideo,prodsetup,prodprice,' . 'prodsalebeg,prodsaleend,prodpic,prodpicw,prodpich,prodpersvc,prodflag1 ' . 'from prod,prodlang ' . "where prodsku='{$fc_sku}' and prodlsku='{$fc_sku}' and prodsku=prodlsku"); $fcp->next_record(); $flag1 = (int) $fcp->f('prodflag1'); ?> <tr><td align=left valign=top colspan=1> <table width="100%" cellpadding=0 cellspacing=0 border=0> <tr><td align=left valign=top colspan=3> <br> <?php if ($fcp->f("prodpic")) { // show the product picture (if defined) ?> <img src="<?php echo $fcp->f("prodpic"); ?> " width="<?php echo $fcp->f("prodpicw"); ?> " height="<?php echo $fcp->f("prodpich"); ?> " alt="" align=left> <?php } // end of the product picture ?> <b><?php echo stripslashes($fcp->f("prodsdescr")); ?> :</b> <?php echo stripslashes($fcp->f("proddescr")); ?> <br> </td></tr> <tr><td align=left valign=bottom colspan="1"> <?php if ($fcp->f("prodaudio")) { ?> <a href="<?php echo $fcp->f("prodaudio"); ?> "><i><?php echo fc_text("audiosample"); ?> </i></a><br> <?php } ?> </td><td align=center valign=bottom colspan="1"> <?php if ($fcp->f("prodvideo")) { ?> <a href="<?php echo $fcp->f("prodvideo"); ?> "><i><?php echo fc_text("videosample"); ?> </i></a><br> <?php } ?> </td><td colspan=1 align=right valign=middle> </td></tr> <tr><td align=left valign=middle colspan=3> <form method=post action="//fishcart/showcart.php?cartid=<?php echo $fc_cartid; ?> &zid=<?php echo $zid; ?> &lid=<?php echo $lid; ?> &product=<?php echo $fc_sku; ?> &cat=<?php echo $cat; ?> "> <?php // show the product options; see showcart for a detailed description $poptqty = 0; $poptgrp = 0; // nmb $poptflag1 = 0; // nmb $poptogrp = -1; // -1 is initial value $poptgrpcnt = 0; // # of options per group $poptgrplst = ''; // : separated list of all represented groups $fco->query("select poptid,poptname,poptsdescr,poptsetup,poptprice,poptgrp,poptskumod," . "poptflag1 from prodopt where poptsku='{$fc_sku}' order by poptgrp,poptseq"); if ($fco->next_record()) { $i = 0; do { $poptid = (int) $fco->f("poptid"); $poptgrp = (int) $fco->f("poptgrp"); $poptflag1 = (int) $fco->f("poptflag1"); $poptsetup = (double) $fco->f("poptsetup"); $poptprice = (double) $fco->f("poptprice"); $poptname = stripslashes($fco->f("poptname")); $poptsdescr = stripslashes($fco->f("poptsdescr")); if ($poptogrp != -1 && $poptogrp != $poptgrp) { // group rollover check echo "</select>"; if ($poptflag1 & $flag_poptgrpqty) { // qty is required echo ' ' . fc_text("qty") . '<input name="' . $fc_sku . '_' . $poptogrp . '_qty" size=3>' . "\n"; } if ($poptoflg & $flag_poptgrpreq) { // option group is required echo '<input type=hidden name="' . $fc_sku . '_' . $poptogrp . '_req" value=1>' . "\n"; } else { echo '<input type=hidden name="' . $fc_sku . '_' . $poptogrp . '_req" value=0>' . "\n"; } echo "<br>\n<select name=\"{$fc_sku}_{$poptgrp}_popt[]\">\n"; if ($poptogrp >= 0) { $poptgrplst .= "{$poptogrp}:"; } $poptgrpcnt = 0; // zero the counter } elseif (!$i) { // nmb echo "<select name=\"{$fc_sku}_{$poptgrp}_popt[]\">\n"; } if ($poptflag1 & $flag_poptgrpexc) { $popttype = 'radio'; } else { $popttype = 'checkbox'; } // compose composite sku $csku = ''; if ($poptflag1 & $flag_poptskupre) { $csku = $fco->f("poptskumod") . $csku; } elseif ($poptflag1 & $flag_poptskusuf) { $csku = $csku . $fco->f("poptskumod"); } elseif ($poptflag1 & $flag_poptskumod) { $csku = ereg_replace($fco->f("poptskusub"), $fco->f("poptskumod"), $csku); } elseif ($poptflag1 & $flag_poptskusub) { $csku = $fco->f("poptskumod"); } /* nmb echo '<input type='.$popttype.' name="'.$fc_sku.'_'.$poptgrp. '_popt[]" value='.$poptid.'>'. $poptname . $poptsdescr .' '.fc_text('reqflag')."<br>\n"; nmb */ // nmb echo "<option value=\"{$poptid}\"> {$poptname}\n"; if ($poptsetup) { echo ' ' . fc_text("setup") . sprintf("%s%.2f\n", $fc_csym, $poptsetup); // nmb sprintf("%s%.2f<br>\n",$fc_csym,$poptsetup); } echo ' ' . fc_text("price"); // nmb added if/else below if ($poptflag1 & $flag_poptprcrel && $poptprice) { $relflg = '+'; } else { $relflg = ''; } if ($poptprice) { // nmb echo sprintf("%s%.2f<br>\n",$fc_csym,$poptprice); echo ' ' . $relflg . sprintf("%s%.2f\n", $fc_csym, $poptprice); } else { // nmb echo fc_text("nocharge")."<br>\n"; echo ' ' . $relflg . fc_text("nocharge") . "\n"; } $poptgrpcnt++; // incr count of options per group $poptogrp = $poptgrp; // keep the current group ID $poptoflg = $poptflag1; // keep the current group flag set $i++; } while ($fco->next_record()); $fco->free_result(); // nmb if ($i) { echo "</select>"; } // always do this stuff for last option group rollover check if ($poptflag1 & $flag_poptgrpqty) { // qty is required echo ' ' . fc_text("qty") . '<input name="' . $fc_sku . $poptgrp . 'qty" size=3><br>' . "\n"; } if ($poptflag1 & $flag_poptgrpreq) { // option group is required echo '<input type=hidden name="' . $fc_sku . '_' . $poptgrp . '_req" value=1>' . "\n"; } else { echo '<input type=hidden name="' . $fc_sku . '_' . $poptgrp . '_req" value=0>' . "\n"; } if ($poptgrp >= 0) { $poptgrplst .= "{$poptgrp}"; } echo '<input type=hidden name="' . $fc_sku . '_grplst" value="' . $poptgrplst . '">' . "\n"; } // if product options ?> </td></tr> <tr><td align=left valign=middle colspan=1> <i><?php echo fc_text("sku"); ?> <?php echo $fc_sku; ?> </i> </td><td align=left valign=middle colspan=1> <?php // show the product price $setup = (double) $fcp->f("prodsetup"); if ($setup) { echo sprintf("%s %s%8.2f ", fc_text("setup"), $fc_csym, $setup); } $prc = ''; if ($fcp->f("prodprice") == 0) { // free, show alternative text if (!empty($cat)) { $prc = $fcs->f("catfree"); } if (empty($prc)) { $prc = $fc_webfree; } } else { // not free, check for sale price if ($fcp->f("prodsalebeg") < $now && $now < $fcp->f("prodsaleend")) { // on sale $prc = sprintf("<b>%s %s%8.2f</b>", fc_text("onsale"), $fc_csym, $fcp->f("prodsaleprice")); } else { $prc = sprintf("%s %s%8.2f", fc_text("price"), $fc_csym, $fcp->f("prodprice")); } } echo $prc; if ($flag1 & $flag_persvc) { //echo ' '.fc_text('periodic'); echo ' ' . $fcp->f('prodpersvc'); } ?> </td><td align=right valign=middle colspan=1> <?php // SHOW THE ADD TO ORDER BUTTON // with product options, it is no longer feasible to show the qty // on order, as we don't know which options have been chosen if ($fc_webflags1 & $flag_webshowqty) { $qty = "1"; } else { $qty = ""; } ?> <input type=text size=3 name=quantity value=<?php echo $qty; ?> ><input type=submit value="<?php echo fc_text('shortadd'); ?> "> </td></tr> </form> <tr><td align=left valign=bottom colspan=3> </td></tr> <?php // show related products $fcrp->query("select relprod from prodrel where relsku='{$fc_sku}' order by relseq"); while ($fcrp->next_record()) { $rsku = $fcrp->f('relprod'); $fcrpl->query("select prodname from prodlang where prodlsku='{$rsku}' " . "and prodlzid={$zid} and prodlid={$lid}"); $fcrpl->next_record(); $pname = strip_tags($fcrpl->f("prodname")); ?> <tr><td align=left valign=top colspan=3> <a href="display.php?cartid=<?php echo $cartid; ?> &zid=<?php echo $zid; ?> &lid=<?php echo $lid; ?> &psku=<?php echo $rsku; ?> "><?php echo $pname; ?> </a><br> </td></tr> <?php } $fcrp->free_result(); ?> </table> </td></tr> <?php }
$get_scats = new FC_SQL(); $get_cats->query("select catval,catpath from cat " . "where catzid={$zoneid} and catlid={$lngid} order by catpath"); while ($get_cats->next_record()) { $patharray = explode(":", $get_cats->f("catpath")); $catlst = $get_cats->f("catval"); $selected = ''; if ($catlst == $fp_cat) { $selected = ' selected'; } print "<option value=\"{$catlst}\"{$selected}>"; while (list($key, $val) = each($patharray)) { if ($val != "") { $get_scats->query("select catdescr from cat " . "where catzid={$zoneid} and catlid={$lngid} and catval={$val}"); if ($get_scats->next_record()) { print '/' . $get_scats->f("catdescr"); $get_scats->free_result(); } } } print "</option>\n"; } $get_cats->free_result(); ?> </select> </p> <p> Welcome text shown on the front page:<br /> <i>full HTML markup required for proper formatting</i><br /> <input type="checkbox" name="fmtwelcome" value="1" checked> Preserve line break formatting?<br> <textarea name="langwelcome" rows=6 cols=60
</td></tr> <tr><td align="center" bgcolor="#FFFFFF"> <form name="couponmod" method="post" action="couponmod.php"> To modify an existing coupon profile,<br /> select its name from the list and<br /> click <i>Modify Selected Profile</i>. <br /> <?php $coupon = new FC_SQL(); $coupon->query("select count(*) as cnt from coupon"); $coupon->next_record(); $len = (int) $coupon->f("cnt"); $coupon->free_result(); ?> <select name="cpnid" size="<?php echo $len + 1; ?> " onChange="document.couponmod.action='couponmod.php';submit();"> <option name=cpnid value="" selected>[no change]</option> <?php // query the coupon $coupon->query("select cpnid,cpnredeem from coupon order by cpnid"); while ($coupon->next_record()) { ?> <option value="<?php echo $coupon->f("cpnid");
"> <input type="hidden" name="zoneid" value="<?php echo $zoneid; ?> "> <input type="hidden" name="langid" value="<?php echo $langid; ?> "> <input type="submit" value="Update User"> <input type="reset" value="Previous Values"> </form> <p> <a href="index.php?zoneid=<?php echo $zoneid; ?> &langid=<?php echo $langid; ?> " onClick="closehelp();"> Return to Central Maintenance Page</a><br> <?php $fcpw->free_result(); ?> <?php require './footer.php';
} $max_seq = new FC_SQL(); if ($databaseeng == 'odbc' && $dialect == 'solid') { $max_seq->query("select seq from auxtext where rownum < 2 order by seq desc"); } elseif ($databaseeng == 'postgres') { $max_seq->query("select seq from auxtext order by seq desc limit 1,0"); } elseif ($databaseeng == 'mssql') { $max_seq->query("select top 1 seq from auxtext order by seq desc"); } elseif ($databaseeng == 'oracle') { $max_seq->query("select seq from auxtext where rownum < 2 order by seq desc"); } elseif ($databaseeng == 'mysql') { $max_seq->query("select seq from auxtext order by seq desc limit 0,1"); } $max_seq->next_record(); $seq = $max_seq->f("seq") + 1; $max_seq->free_result(); $res = $fcc->query("insert into auxtext (" . "seq,loc,title,text) values ({$seq},{$loc},'{$title}','{$text}')"); } elseif ($act == "mod") { $res = $fcc->query("update auxtext " . "set loc={$loc},title='{$title}', text='{$text}' where rid='{$rid}'"); } elseif ($act == "del") { $res = $fcc->query("delete from auxtext " . "where rid={$rid}"); } elseif ($act == "seq") { $i = 0; while ($i < $scount) { $seq = (int) getparam('lseq' . $i); $rid = (int) getparam('link' . $i); $res = $fcc->query("update auxtext set seq={$seq} where rid='{$rid}'"); $i++; } } if (!$res) {
<option value="<?php echo $fcmt->f("shipid"); ?> "><?php echo stripslashes($fcmt->f("shipdescr")); ?> </option> <?php } // if shipdef } // while ?> </select><br /> <?php $fcmt->free_result(); } else { ?> <input type="hidden" name="shipid" value="<?php echo $curshipid; ?> "> <?php echo $defshipdesc . "<br />\n"; } } else { ?> <i><?php echo stripslashes($fct->f("shipdescr")); ?> </i><br />
} require './pwesd.php'; $now = time(); // increment the download count $fcesd = new FC_SQL(); $fcesd->query("select esddlcnt,esddlmax,esddlexp,esddlfile from esd " . "where esdid={$esdid} and esdoid='{$pwuid}'"); if (!$fcesd->next_record()) { echo fc_text('esdnodl'); echo fc_text('esdcustsvc'); exit; } $esddlcnt = (int) $fcesd->f('esddlcnt') + 1; $esddlmax = (int) $fcesd->f('esddlmax'); $esddlexp = (int) $fcesd->f('esddlexp'); $esddlfile = $fcesd->f('esddlfile'); $fcesd->free_result(); if ($esddlcnt > $esddlmax || $now > $esddlexp) { echo fc_text('esddlmax'); echo fc_text('esdcustsvc'); exit; } $fcesd->query("update esd set esddlcnt={$esddlcnt} where esdid={$esdid}"); $fcesd->commit(); $file = substr(strrchr($esddlfile, '/'), 1); set_magic_quotes_runtime(0); $fd = fopen($esddlfile, 'rb'); if ($fd) { $size = filesize($esddlfile); header("Content-Disposition: attachment; filename={$file}"); header("Content-Length: {$size}"); header("Content-Type: application/download");
</td></tr> <tr><td align=center bgcolor=#ffffff> <form name=langmod method="post" action="langmod.php"> To modify an existing language profile,<br> select its name from the list and<br> click <i>Modify Selected Profile</i>. <br> <?php $fcl = new FC_SQL(); $fcl->query("select count(*) as cnt from lang " . "where langzid={$zoneid} and langid={$langid}"); $fcl->next_record(); $len = $fcl->f("cnt"); $fcl->free_result(); ?> <select name=lngid size="<?php echo $len + 1; ?> " onChange="document.langmod.action='langmod.php';submit();"> <option value="" selected>[no change] <?php $fcl->query("select * from lang " . "where langzid={$zoneid} and langid={$langid} order by langid"); while ($fcl->next_record()) { ?> <option value="<?php echo $fcl->f("langid");
$pr = $fcp->query("update prodopt set poptflag1={$poptflag1},poptflag2={$poptflag2} " . "where poptsku='{$ssku}' and poptgrp={$poptgrp}"); $fcp->commit(); } //set the prodlflag correctly bvo /* First the options after updating all tables are fetched again if there is an option in the current language defined it is inserted into prodlflag1 (bvo) */ $fcco = new FC_SQL(); $fcco->query("select * from prodopt where poptzid={$zoneid} and poptlid={$langid}" . " and poptsku='{$ssku}'"); if ($fcco->next_record()) { $poptf = 1; } $fcco->free_result(); $plflag1 = 0; if ($poptf) { $plflag1 |= (int) $flag_hasoption; } $fccr = new FC_SQL(); $fccr->query("update prodlang set prodlflag1={$plflag1} where prodlsku='{$ssku}'" . " and prodlzid={$zoneid} and prodlid={$langid}"); $fccr->commit(); //set the prodlflag correctly bvo ?> <p> <?php if ($act == 'update' || $act == 'delete') { ?>
require './admin.php'; require './header.php'; $droot = "BITCART_PKG_PATH"; if ($zoneid == 0) { ?> Please click the "Back" button on your browser and select a default zone. Thank you. <?php exit; } $fcm = new FC_SQL(); $fcm->Auto_commit = 0; $fcm->query("select count(*) as cnt from master"); $fcm->next_record(); if ($fcm->f("cnt") > 0) { $fcm->free_result(); $res = $fcm->query("update master set zoneid={$zoneid}"); } else { $res = $fcm->query("insert into master (zoneid) values ({$zoneid})"); } if (!$res) { $fcm->rollback(); echo "<b>Failure updating master: {$res}</b><br>\n"; } else { $fcm->commit(); echo "Work Committed.<br>\n"; } ?> <p>
// show the customer record echo "<tr><td valign=top colspan=2 bgcolor=\"#FFFFFF\"><b>Billing Information</b><p>\n"; echo $fccust->f("custbsal") . ' ' . $fccust->f("custbfname") . ' ' . $fccust->f("custbmname") . ' ' . $fccust->f("custblname") . "<br>\n" . $fccust->f("custbaddr1") . "<br>\n" . $fccust->f("custbaddr2") . "<br>\n" . $fccust->f("custbcity") . ', ' . $fccust->f("custbstate") . ' ' . $fccust->f("custbzip") . '-' . $fccust->f("custbzip4") . ' ' . $fccust->f("custbnatl") . "<br>\n" . $fccust->f("custbacode") . ' ' . $fccust->f("custbphone") . "<br>\n" . $fccust->f("custbemail") . "<br>\n"; echo "</td><td valign=top colspan=2 bgcolor=\"#FFFFFF\"><b>Shipping Information</b><p>\n"; echo $fccust->f("custssal") . ' ' . $fccust->f("custsfname") . ' ' . $fccust->f("custsmname") . ' ' . $fccust->f("custslname") . "<br>\n" . $fccust->f("custsaddr1") . "<br>\n" . $fccust->f("custsaddr2") . "<br>\n" . $fccust->f("custscity") . ', ' . $fccust->f("custsstate") . ' ' . $fccust->f("custszip") . '-' . $fccust->f("custszip4") . ' ' . $fccust->f("custsnatl") . "<br>\n" . $fccust->f("custsacode") . ' ' . $fccust->f("custsphone") . "<br>\n" . $fccust->f("custsemail") . "<br>\n"; echo "<tr><td valign=top colspan=2 bgcolor=\"#FFFFFF\"><b>IP Address:</b>\n"; echo "</td><td valign=top colspan=2 bgcolor=\"#FFFFFF\">" . $fcohead->f('oheadcustip') . "\n"; echo "</td></tr>\n"; echo "</td></tr>\n"; echo "<tr><td valign=top colspan=4 align=center bgcolor=\"#FFFFFF\"><b>Credit Information</b></td></tr>\n"; echo "<tr><td valign=top colspan=2 bgcolor=\"#FFFFFF\">\n"; echo '<b>CC Name</b><br>' . '<b>CC Number</b><br>' . '<b>CC Type</b><br>' . '<b>CC Expiration</b><br>'; echo "</td><td valign=top colspan=2 bgcolor=\"#FFFFFF\">\n"; echo $fccust->f("custccname") . "<br>\n" . $fccust->f("custccnumber") . "<br>\n" . $fccust->f("custcctype") . "<br>\n" . $fccust->f("custccexpmo") . '/' . $fccust->f("custccexpyr") . "<br>\n"; echo "</td></tr>\n"; $fccust->free_result(); } $fcoline->query("select * from oline where orderid='{$orderid}'"); if (!$fcoline->next_record()) { echo '<tr><td align=center valign=middle colspan=4 bgcolor="#FFFFFF">' . 'No order detail records found.<p>' . "</td></tr>\n"; } else { // show the order detail items echo "<tr><td bgcolor=\"#FFFFFF\"><b>SKU</b>" . "</td><td bgcolor=\"#FFFFFF\"><b>Composite SKU</b>" . "</td><td bgcolor=\"#FFFFFF\"><b>Quantity</b>" . "</td><td bgcolor=\"#FFFFFF\"><b>Price</b>" . "</td></tr>\n"; do { echo "<tr><td bgcolor=\"#FFFFFF\">" . $fcoline->f("sku") . "</td><td bgcolor=\"#FFFFFF\">" . $fcoline->f("compsku") . "</td><td align=right bgcolor=\"#FFFFFF\">" . $fcoline->f("qty") . "</td><td align=right bgcolor=\"#FFFFFF\">" . sprintf("%.2f", $fcoline->f("olprice")) . "</td></tr>\n"; } while ($fcoline->next_record()); $fcoline->free_result(); } echo "<tr><td valign=top bgcolor=\"#FFFFFF\">" . '<b>Product Subtotal</b><br></td>' . '<td valign=top align=right bgcolor="#FFFFFF">' . sprintf("%.2f", (double) $fcohead->f("pstotal")) . '<br></td>' . '<td valign=top bgcolor="#FFFFFF"><b>Shipping</b><br></td>' . '<td valign=top align=right bgcolor="#FFFFFF">' . sprintf("%.2f", (double) $fcohead->f("shamt")) . '<br>' . "</td></tr>\n"; echo "<tr><td valign=top bgcolor=\"#FFFFFF\">" . '<b>Donation</b><br></td>' . '<td valign=top align=right bgcolor="#FFFFFF">' . sprintf("%.2f", (double) $fcohead->f("contrib")) . '<br></td>' . '<td valign=top bgcolor="#FFFFFF"><b>Total</b><br></td>' . '<td valign=top align=right bgcolor="#FFFFFF">' . sprintf("%.2f", (double) $fcohead->f("ototal")) . '<br>' . "</td></tr>\n"; $fcohead->free_result();
$subdescr = stripslashes($subcats->f("catmast")); print "<tr><td><a href=\"display.php?cat={$catvl}&zid={$zid}&lid={$lid}&cartid={$cartid}\">"; if ($catlogo != '') { print "<img src=\"{$catlogo}\" alt=\"{$subdescr}\" border=\"1\">"; } print "<br>{$subdescr}</a><br /><br /></td></tr>\n"; // new line if across page has been reached if ($across == $cats_across) { // print "</tr>\n<tr>"; // reset across page counter; $across = 0; } } //close table print '</table><table width="500" border="0">'; $subcats->free_result(); } // end are there any subcats to display? IF not, don't do anything more // end get subcat level under $cat and spit them out in a table ?> <?php // main product display table; only show if there are products if ($count) { ?> <table cellpadding="0" width="500" border="0"> <?php // show the clickable search results bar if (empty($dn)) { $dn = 5;
echo "sorry, we don't know the address entered"; exit; } if ($wwkwijt->f("pwactive") == "0") { //login is not active so we're supposed to build an errormessage here //let's keep it simple for now //this will be fixed in the next release echo 'account is currently not active'; exit; } $login = $wwkwijt->f("pwuid"); $ww = $wwkwijt->f("pwpw"); //record found now sending email $subject .= "Information you requested from "; $messages .= "Your catalog password:\n"; $messages .= "username : {$login}\n"; $messages .= "password : {$ww}\n"; $headers .= "From: " . $gBitSystem->getSenderEmail() . "\n"; $headers .= "Return-Path: <" . $gBitSystem->getSenderEmail() . ">\n"; mail($wwkwijt->f("pwemail"), $subject, $messages, $headers); $wwkwijt->free_result(); ?> <HTML> <HEAD> <TITLE></TITLE> </HEAD> <BODY> <a href="index.php">login with password</a> </BODY> </HTML>
<a href="index.php?zoneid=<?php echo $zoneid; ?> &langid=<?php echo $langid; ?> " onClick="closehelp()">Return To Central Maintenance Page</a><br> </td></tr> <?php $fckey = new FC_SQL(); $fckey->query("select count(*) as cnt from keyword"); $fckey->next_record(); $ktotal = $fckey->f("cnt"); $fckey->free_result(); ?> <tr><td align=left valign=top colspan=1 bgcolor=#ffffff> <i>Total keywords logged: <?php echo $ktotal; ?> </i> <p> Number of Keywords to View:<br> <i>0 for all keywords</i><br> <form method=post action="keyqueryrslt.php"> <input name=numkeys size=4> <input type=hidden name=zoneid value=<?php echo $zoneid;
// Causes preview.php to not be shown $nukepreview = 1; // get the language information $fcl = new FC_SQL(); $fcl->query("select langtdsp,langshow,langterr,langcopy,langterms from lang " . "where langid={$lid}"); $fcl->next_record('langterms'); $show = $fcl->f("langshow"); $copy = $fcl->f("langcopy"); $lterms = $fcl->f("langterms"); $fcl->free_result(); $fcsz = new FC_SQL(); $fcsz->query("select count(*) as cnt from subzone " . "where subzid={$zid} and subzparent={$subzparent}"); $fcsz->next_record(); $zt = $fcsz->f("cnt"); if ($zt == 1 && !($zflag1 & $flag_zonezipshowgeo)) { $fcsz->free_result(); // if only one shipping zone, default it. $fcsz->query("select subzid,subzsid,subzdescr from subzone " . "where subzid={$zid} and subzparent={$subzparent}"); $fcsz->next_record(); $cat = (string) $cat; $szid = (int) $fcsz->f("subzsid"); $fcsz->free_result(); $fcsz->query("update ohead set subz={$szid},shipid=0 where orderid='{$cartid}'"); $fcsz->commit(); header("Location: {$nsecurl}{$cartdir}/{$show}?cartid={$cartid}&zid={$zid}" . "&lid={$lid}&olimit={$olimit}&nlst={$nlst}&olst={$olst}&key1={$key1}" . "&cat={$cat}&szid={$szid}&oszid={$szid}&option_violation={$option_violation}&" . "return_product={$return_product}"); exit; } if ($zflag1 & $flag_zonezipshowgeo) { $fcsz->query("select scity,sstate,szip,scountry from ohead where\n\torderid='{$cartid}'"); if ($fcsz->next_record()) { $city = stripslashes($fcsz->f("scity"));