                <td colspan="2"><table border="0" width="100%" cellspacing="0" cellpadding="2">
            if ($addresses['address_book_id'] == $sendto) {
                echo '                  <tr id="defaultSelected" class="moduleRowSelected" onmouseover="rowOverEffect(this)" onmouseout="rowOutEffect(this)" onclick="selectRowEffect(this, ' . $radio_buttons . ')">' . "\n";
            } else {
                echo '                  <tr class="moduleRow" onmouseover="rowOverEffect(this)" onmouseout="rowOutEffect(this)" onclick="selectRowEffect(this, ' . $radio_buttons . ')">' . "\n";
                    <td width="10"><?php 
            echo smn_draw_separator('pixel_trans.gif', '10', '1');
                    <td class="main" colspan="2"><b><?php 
            echo smn_output_string_protected($addresses['firstname'] . ' ' . $addresses['lastname']);
                    <td class="main" align="right"><?php 
            echo smn_draw_radio_field('address', $addresses['address_book_id'], $addresses['address_book_id'] == $sendto);
                    <td width="10"><?php 
            echo smn_draw_separator('pixel_trans.gif', '10', '1');
                    <td width="10"><?php 
            echo smn_draw_separator('pixel_trans.gif', '10', '1');
    if (!smn_validate_email($from_email_address)) {
        $error = true;
        $messageStack->add('friend', ERROR_FROM_ADDRESS);
    if (empty($to_name)) {
        $error = true;
        $messageStack->add('friend', ERROR_TO_NAME);
    if (!smn_validate_email($to_email_address)) {
        $error = true;
        $messageStack->add('friend', ERROR_TO_ADDRESS);
    if ($error == false) {
        $email_subject = sprintf(TEXT_EMAIL_SUBJECT, $from_name, $store->get_store_name());
        $email_body = sprintf(TEXT_EMAIL_INTRO, $to_name, $from_name, $product_info['products_name'], $store->get_store_name()) . "\n\n";
        if (smn_not_null($message)) {
            $email_body .= $message . "\n\n";
        $email_body .= sprintf(TEXT_EMAIL_LINK, smn_href_link(FILENAME_PRODUCT_INFO, 'ID=' . $product_info['store_id'] . '&products_id=' . $_GET['products_id'])) . "\n\n" . sprintf(TEXT_EMAIL_SIGNATURE, $store->get_store_name() . "\n" . HTTP_SERVER . DIR_WS_CATALOG . "\n");
        smn_mail($to_name, $to_email_address, $email_subject, $email_body, $from_name, $from_email_address);
        $messageStack->add_session('header', sprintf(TEXT_EMAIL_SUCCESSFUL_SENT, $product_info['products_name'], smn_output_string_protected($to_name)), 'success');
        smn_redirect(smn_href_link(FILENAME_PRODUCT_INFO, 'ID=' . $product_info['store_id'] . '&products_id=' . $_GET['products_id']));
} elseif (smn_session_is_registered('customer_id')) {
    $account_query = smn_db_query("select customers_firstname, customers_lastname, customers_email_address from " . TABLE_CUSTOMERS . " where customers_id = '" . (int) $customer_id . "'");
    $account = smn_db_fetch_array($account_query);
    $from_name = $account['customers_firstname'] . ' ' . $account['customers_lastname'];
    $from_email_address = $account['customers_email_address'];
$breadcrumb->add(NAVBAR_TITLE, smn_href_link(FILENAME_TELL_A_FRIEND, 'ID=' . $product_info['store_id'] . '&products_id=' . $_GET['products_id']));
              <td class="main"><?php 
        echo '<b>' . TEXT_ORDER_NUMBER . '</b> ' . $history['orders_id'];
              <td class="main" align="right"><?php 
        echo '<b>' . TEXT_ORDER_STATUS . '</b> ' . $history['orders_status_name'];
          <table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
            <tr class="infoBoxContents">
              <td><table border="0" width="100%" cellspacing="2" cellpadding="4">
                  <td class="main" width="50%" valign="top"><?php 
        echo '<b>' . TEXT_ORDER_DATE . '</b> ' . smn_date_long($history['date_purchased']) . '<br><b>' . $order_type . '</b> ' . smn_output_string_protected($order_name);
                  <td class="main" width="30%" valign="top"><?php 
        echo '<b>' . TEXT_ORDER_PRODUCTS . '</b> ' . $products['count'] . '<br><b>' . TEXT_ORDER_COST . '</b> ' . strip_tags($history['order_total']);
                  <td class="main" width="20%"><?php 
        //echo '<a href="' . smn_href_link(FILENAME_ACCOUNT_HISTORY_INFO, (isset($_GET['page']) ? 'page=' . $_GET['page'] . '&' : '') . 'order_id=' . $history['orders_id'], 'NONSSL') . '">' . smn_image_button('small_view.gif', SMALL_IMAGE_BUTTON_VIEW) . '</a>';
          <table border="0" width="100%" cellspacing="0" cellpadding="2">
              <tr class="infoBoxContents">
                <td><table border="0" width="100%" cellspacing="0" cellpadding="2">
                    <td width="10"><?php 
        echo smn_draw_separator('pixel_trans.gif', '10', '1');
                    <td width="<?php 
        echo SMALL_IMAGE_WIDTH + 10;
" align="center" valign="top" class="main"><?php 
        echo '<a href="' . smn_href_link(FILENAME_PRODUCT_REVIEWS_INFO, 'products_id=' . $reviews['products_id'] . '&reviews_id=' . $reviews['reviews_id']) . '">' . smn_image(DIR_WS_IMAGES . $reviews['products_image'], $reviews['products_name'], SMALL_IMAGE_WIDTH, SMALL_IMAGE_HEIGHT) . '</a>';
                    <td valign="top" class="main"><?php 
        echo smn_break_string(smn_output_string_protected($reviews['reviews_text']), 60, '-<br>') . (strlen($reviews['reviews_text']) >= 100 ? '..' : '') . '<br><br><i>' . sprintf(TEXT_REVIEW_RATING, smn_image(DIR_WS_IMAGES . 'stars_' . $reviews['reviews_rating'] . '.gif', sprintf(TEXT_OF_5_STARS, $reviews['reviews_rating'])), sprintf(TEXT_OF_5_STARS, $reviews['reviews_rating'])) . '</i>';
                    <td width="10" align="right"><?php 
        echo smn_draw_separator('pixel_trans.gif', '10', '1');
        echo smn_draw_separator('pixel_trans.gif', '100%', '10');
function smn_draw_textarea_field($name, $wrap, $width, $height, $text = '', $parameters = '', $reinsert_value = true)
    $field = '<textarea name="' . smn_output_string($name) . '" wrap="' . smn_output_string($wrap) . '" cols="' . smn_output_string($width) . '" rows="' . smn_output_string($height) . '"';
    if (smn_not_null($parameters)) {
        $field .= ' ' . $parameters;
    $field .= '>';
    if ($reinsert_value == true && (isset($HTTP_GET_VARS[$name]) && is_string($HTTP_GET_VARS[$name]) || isset($HTTP_POST_VARS[$name]) && is_string($HTTP_POST_VARS[$name]))) {
        if (isset($HTTP_GET_VARS[$name]) && is_string($HTTP_GET_VARS[$name])) {
            $field .= smn_output_string_protected(stripslashes($HTTP_GET_VARS[$name]));
        } elseif (isset($HTTP_POST_VARS[$name]) && is_string($HTTP_POST_VARS[$name])) {
            $field .= smn_output_string_protected(stripslashes($HTTP_POST_VARS[$name]));
    } elseif (smn_not_null($text)) {
        $field .= $text;
    $field .= '</textarea>';
    return $field;
        <td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBoxNotice">
          <tr class="infoBoxNoticeContents">
            <td><table border="0" width="100%" cellspacing="0" cellpadding="2">
    echo smn_draw_separator('pixel_trans.gif', '10', '1');
                <td class="main" width="100%" valign="top"><?php 
    echo smn_output_string_protected($error['error']);
    echo smn_draw_separator('pixel_trans.gif', '10', '1');
    echo smn_draw_separator('pixel_trans.gif', '100%', '10');
    echo smn_draw_separator('pixel_trans.gif', '100%', '10');
        <td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
          <tr class="infoBoxContents">
            <td><table border="0" width="100%" cellspacing="0" cellpadding="2">
                <td class="main"><?php 
    echo nl2br(smn_output_string_protected($order->info['comments'])) . smn_draw_hidden_field('comments', $order->info['comments']);
    echo smn_draw_separator('pixel_trans.gif', '100%', '10');
function smn_address_format($address_format_id, $address, $html, $boln, $eoln)
    $address_format_query = smn_db_query("select address_format as format from " . TABLE_ADDRESS_FORMAT . " where address_format_id = '" . (int) $address_format_id . "'");
    $address_format = smn_db_fetch_array($address_format_query);
    $company = smn_output_string_protected($address['company']);
    if (isset($address['firstname']) && smn_not_null($address['firstname'])) {
        $firstname = smn_output_string_protected($address['firstname']);
        $lastname = smn_output_string_protected($address['lastname']);
    } elseif (isset($address['name']) && smn_not_null($address['name'])) {
        $firstname = smn_output_string_protected($address['name']);
        $lastname = '';
    } else {
        $firstname = '';
        $lastname = '';
    $street = smn_output_string_protected($address['street_address']);
    $suburb = smn_output_string_protected($address['suburb']);
    $city = smn_output_string_protected($address['city']);
    $state = smn_output_string_protected($address['state']);
    if (isset($address['country_id']) && smn_not_null($address['country_id'])) {
        $country = smn_get_country_name($address['country_id']);
        if (isset($address['zone_id']) && smn_not_null($address['zone_id'])) {
            $state = smn_get_zone_code($address['country_id'], $address['zone_id'], $state);
    } elseif (isset($address['country']) && smn_not_null($address['country'])) {
        $country = smn_output_string_protected($address['country']);
    } else {
        $country = '';
    $postcode = smn_output_string_protected($address['postcode']);
    $zip = $postcode;
    if ($html) {
        // HTML Mode
        $HR = '<hr>';
        $hr = '<hr>';
        if ($boln == '' && $eoln == "\n") {
            // Values not specified, use rational defaults
            $CR = '<br>';
            $cr = '<br>';
            $eoln = $cr;
        } else {
            // Use values supplied
            $CR = $eoln . $boln;
            $cr = $CR;
    } else {
        // Text Mode
        $CR = $eoln;
        $cr = $CR;
        $HR = '----------------------------------------';
        $hr = '----------------------------------------';
    $statecomma = '';
    $streets = $street;
    if ($suburb != '') {
        $streets = $street . $cr . $suburb;
    if ($country == '') {
        $country = smn_output_string_protected($address['country']);
    if ($state != '') {
        $statecomma = $state . ', ';
    $fmt = $address_format['format'];
    eval("\$address = \"{$fmt}\";");
    if (ACCOUNT_COMPANY == 'true' && smn_not_null($company)) {
        $address = $company . $cr . $address;
    return $address;
function smn_customer_greeting()
    global $customer_id, $customer_first_name;
    if (smn_session_is_registered('customer_first_name') && smn_session_is_registered('customer_id')) {
        $greeting_string = sprintf(TEXT_GREETING_PERSONAL, smn_output_string_protected($customer_first_name), smn_href_link(FILENAME_PRODUCTS_NEW));
    } else {
        $greeting_string = sprintf(TEXT_GREETING_GUEST, smn_href_link(FILENAME_LOGIN, '', 'NONSSL'), smn_href_link(FILENAME_CREATE_ACCOUNT, '', 'NONSSL'));
    return $greeting_string;
    echo smn_draw_separator('pixel_trans.gif', '100%', '10');
        <td><table width="100%" border="0" cellspacing="0" cellpadding="2">
            <td valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="2">
                <td class="main"><?php 
echo '<b>' . SUB_TITLE_FROM . '</b> ' . smn_output_string_protected($customer['customers_firstname'] . ' ' . $customer['customers_lastname']);
                <td class="main"><b><?php 
                <td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
                  <tr class="infoBoxContents">
                    <td><table border="0" width="100%" cellspacing="2" cellpadding="2">
echo smn_draw_separator('pixel_trans.gif', '100%', '10');
        <td><table border="0" width="100%" cellspacing="1" cellpadding="2" class="infoBox">
          <tr class="infoBoxContents">
            <td valign="top"><table border="0" width="100%" cellspacing="0" cellpadding="2">
$statuses_query = smn_db_query("select os.orders_status_name, osh.date_added, osh.comments from " . TABLE_ORDERS_STATUS . " os, " . TABLE_ORDERS_STATUS_HISTORY . " osh where osh.orders_id = '" . (int) $_GET['order_id'] . "' and osh.orders_status_id = os.orders_status_id and os.language_id = '" . (int) $languages_id . "' and os.public_flag = '1' order by osh.date_added");
while ($statuses = smn_db_fetch_array($statuses_query)) {
    echo '              <tr>' . "\n" . '                <td class="main" valign="top" width="70">' . smn_date_short($statuses['date_added']) . '</td>' . "\n" . '                <td class="main" valign="top" width="70">' . $statuses['orders_status_name'] . '</td>' . "\n" . '                <td class="main" valign="top">' . (empty($statuses['comments']) ? '&nbsp;' : nl2br(smn_output_string_protected($statuses['comments']))) . '</td>' . "\n" . '              </tr>' . "\n";
if (DOWNLOAD_ENABLED == 'true') {
    include DIR_WS_MODULES . 'downloads.php';
echo smn_draw_separator('pixel_trans.gif', '100%', '10');
Exemple #12
                  <tr class="moduleRow" onMouseOver="rowOverEffect(this)" onMouseOut="rowOutEffect(this)" onClick="document.location.href='<?php 
        echo smn_href_link(FILENAME_ACCOUNT_HISTORY_INFO, 'order_id=' . $orders['orders_id'], 'NONSSL');
                    <td class="main" width="80"><?php 
        echo smn_date_short($orders['date_purchased']);
                    <td class="main"><?php 
        echo '#' . $orders['orders_id'];
                    <td class="main"><?php 
        echo smn_output_string_protected($order_name) . ', ' . $order_country;
                    <td class="main"><?php 
        echo $orders['orders_status_name'];
                    <td class="main" align="right"><?php 
        echo $orders['order_total'];
                    <td class="main" align="right"><?php 
        echo '<a href="' . smn_href_link(FILENAME_ACCOUNT_HISTORY_INFO, 'order_id=' . $orders['orders_id'], 'NONSSL') . '">' . smn_image_button('small_view.gif', SMALL_IMAGE_BUTTON_VIEW) . '</a>';
Exemple #13
$boxLink = '<a href="' . smn_href_link(FILENAME_REVIEWS) . '"><img src="images/infobox/arrow_right.gif" border="0" alt="more" title=" more " width="12" height="10"></a>';
$box_base_name = 'reviews';
$box_id = $box_base_name . 'Box';
$random_select = "select r.store_id, r.reviews_id, r.reviews_rating, p.products_id, p.store_id, p.products_image, pd.products_name from " . TABLE_REVIEWS . " r, " . TABLE_REVIEWS_DESCRIPTION . " rd, " . TABLE_PRODUCTS . " p, " . TABLE_PRODUCTS_DESCRIPTION . " pd where p.store_id = '" . $store_id . "' and p.products_status = '1' and p.products_id = r.products_id and r.reviews_id = rd.reviews_id and rd.languages_id = '" . (int) $languages_id . "' and p.products_id = pd.products_id and pd.language_id = '" . (int) $languages_id . "'";
if (isset($_GET['products_id'])) {
    $random_select .= " and p.products_id = '" . (int) $_GET['products_id'] . "'";
$random_select .= " order by r.reviews_id desc limit " . MAX_RANDOM_SELECT_REVIEWS;
$random_product = smn_random_select($random_select);
$store_images = 'images/' . $random_product['store_id'] . '_images/';
if ($random_product) {
    // display random review box
    $review_query = smn_db_query("select substring(reviews_text, 1, 60) as reviews_text from " . TABLE_REVIEWS_DESCRIPTION . " where reviews_id = '" . (int) $random_product['reviews_id'] . "' and languages_id = '" . (int) $languages_id . "'");
    $reviews_text = smn_db_fetch_array($review_query);
    $reviews_text = smn_break_string(smn_output_string_protected($reviews_text['reviews_text']), 15, '-<br>');
    $boxContent = '<div align="center"><a href="' . smn_href_link(FILENAME_PRODUCT_REVIEWS_INFO, 'ID=' . $random_product['store_id'] . '&products_id=' . $random_product['products_id'] . '&reviews_id=' . $random_product['reviews_id']) . '">' . smn_image($store_images . $random_product['products_image'], $random_product['products_name'], SMALL_IMAGE_WIDTH, SMALL_IMAGE_HEIGHT) . '</a></div><a href="' . smn_href_link(FILENAME_PRODUCT_REVIEWS_INFO, 'ID=' . $random_product['store_id'] . '&products_id=' . $random_product['products_id'] . '&reviews_id=' . $random_product['reviews_id']) . '">' . $reviews_text . ' ..</a><br><div align="center">' . smn_image(DIR_WS_IMAGES . 'store_images/' . 'stars_' . $random_product['reviews_rating'] . '.gif', sprintf(BOX_REVIEWS_TEXT_OF_5_STARS, $random_product['reviews_rating'])) . '</div>';
} elseif (isset($_GET['products_id'])) {
    // display 'write a review' box
    $boxContent = '<table border="0" cellspacing="0" cellpadding="2"><tr><td class="infoBoxContents"><a href="' . smn_href_link(FILENAME_PRODUCT_REVIEWS_WRITE, 'products_id=' . $_GET['products_id']) . '">' . smn_image(DIR_WS_IMAGES . 'box_write_review.gif', IMAGE_BUTTON_WRITE_REVIEW) . '</a></td><td class="infoBoxContents"><a href="' . smn_href_link(FILENAME_PRODUCT_REVIEWS_WRITE, 'products_id=' . $_GET['products_id']) . '">' . BOX_REVIEWS_WRITE_REVIEW . '</a></td></tr></table>';
} else {
    // display 'no reviews' box
    $boxContent = BOX_REVIEWS_NO_REVIEWS;
if (file_exists(DIR_WS_BOX_TEMPLATES . $box_base_name . '.php')) {
    require DIR_WS_BOX_TEMPLATES . $box_base_name . '.php';
} else {
$boxContent_attributes = '';
$boxLink = '';
Exemple #14
                <td><table border="0" width="100%" cellspacing="0" cellpadding="2">
    $orders_query = smn_db_query("select o.orders_id, o.date_purchased, o.delivery_name, o.delivery_country, o.billing_name, o.billing_country, ot.text as order_total, s.orders_status_name from " . TABLE_ORDERS . " o, " . TABLE_ORDERS_TOTAL . " ot, " . TABLE_ORDERS_STATUS . " s where o.customers_id = '" . (int)$customer_id . "' and o.orders_id = ot.orders_id and ot.class = 'ot_total' and o.orders_status = s.orders_status_id and s.language_id = '" . (int)$languages_id . "' and s.public_flag = '1' order by orders_id desc limit 3");
    while ($orders = smn_db_fetch_array($orders_query)) {
      if (smn_not_null($orders['delivery_name'])) {
        $order_name = $orders['delivery_name'];
        $order_country = $orders['delivery_country'];
      } else {
        $order_name = $orders['billing_name'];
        $order_country = $orders['billing_country'];
                  <tr class="moduleRow" onMouseOver="rowOverEffect(this)" onMouseOut="rowOutEffect(this)" onClick="document.location.href='<?php echo smn_href_link(FILENAME_ACCOUNT_HISTORY_INFO, 'order_id=' . $orders['orders_id'], 'NONSSL'); ?>'">
                    <td class="main" width="80"><?php echo smn_date_short($orders['date_purchased']); ?></td>
                    <td class="main"><?php echo '#' . $orders['orders_id']; ?></td>
                    <td class="main"><?php echo smn_output_string_protected($order_name) . ', ' . $order_country; ?></td>
                    <td class="main"><?php echo $orders['orders_status_name']; ?></td>
                    <td class="main" align="right"><?php echo $orders['order_total']; ?></td>
                    <td class="main" align="right"><?php echo '<a href="' . smn_href_link(FILENAME_ACCOUNT_HISTORY_INFO, 'order_id=' . $orders['orders_id'].'&ID='.$store_id, 'NONSSL') . '">' . smn_image_button('small_view.gif', SMALL_IMAGE_BUTTON_VIEW) . '</a>'; ?></td>
                <td><?php echo smn_draw_separator('pixel_trans.gif', '10', '1'); ?></td>