function icmail($mail, $bet, $txt, $from = '', $html = false) { global $allgAr; include_once 'include/includes/libs/phpmailer/class.phpmailer.php'; $mailer = new PHPMailer(); if (empty($from)) { $mailer->From = $allgAr['adminMail']; $mailer->FromName = $allgAr['allg_default_subject']; } elseif (preg_match('%(.*) <([\\w\\.-]*@[\\w\\.-]*)>%i', $from, $tmp)) { $mailer->From = trim($tmp[2]); $mailer->FromName = trim($tmp[1]); } elseif (preg_match('%([\\w\\.-]*@[\\w\\.-]*)%i', $from, $tmp)) { $mailer->From = trim($tmp[1]); $mailer->FromName = ''; } if ($allgAr['mail_smtp']) { // SMTP Versand $smtpser = @db_result(db_query('SELECT `t1` FROM `prefix_allg` WHERE `k` = "smtpconf"')); if (empty($smtpser)) { echo '<span style="font-size: 2em; color: red;">Mailversand muss konfiguriert werden!</span><br />'; } else { $smtp = unserialize($smtpser); $mailer->IsSMTP(); $mailer->Host = $smtp['smtp_host']; $mailer->SMTPAuth = $smtp['smtp_auth'] == 'no' ? false : true; if ($smtp['smtp_auth'] == 'ssl' or $smtp['smtp_auth'] == 'tls') { $mailer->SMTPSecure = $smtp['smtp_auth']; } if (!empty($smtp['smtp_port'])) { $mailer->Port = $smtp['smtp_port']; } $mailer->AddReplyTo($mailer->From, $mailer->FromName); if ($smtp['smtp_changesubject'] and $mailer->From != $smtp['smtp_email']) { $bet = '(For ' . $mailer->FromName . ' - ' . $mailer->From . ') ' . $bet; $mailer->From = $smtp['smtp_email']; } $mailer->Username = $smtp['smtp_login']; require_once 'include/includes/libs/AzDGCrypt.class.inc.php'; $cr64 = new AzDGCrypt(DBDATE . DBUSER . DBPREF); $mailer->Password = $cr64->decrypt($smtp['smtp_pass']); if ($smtp['smtp_pop3beforesmtp'] == 1) { include_once 'include/includes/libs/phpmailer/class.pop3.php'; $pop = new POP3(); $pop3port = !empty($smpt['smtp_pop3port']) ? $smpt['smtp_pop3port'] : 110; $pop->Authorise($smpt['smtp_pop3host'], $pop3port, 5, $mailer->Username, $mailer->Password, 1); } } // $mailer->SMTPDebug = true; } if (is_array($mail)) { if ($mail[0] == 'bcc') { array_shift($mail); foreach ($mail as $m) { $mailer->AddBCC(escape_for_email($m)); } $mailer->AddAddress($mailer->From); } else { foreach ($mail as $m) { $mailer->AddAddress(escape_for_email($mail)); } } } else { $mailer->AddAddress(escape_for_email($mail)); } $mailer->Subject = escape_for_email($bet, true); $txt = str_replace("\r", "\n", str_replace("\r\n", "\n", $txt)); if ($html) { $mailer->IsHTML(true); $mailer->AltBody = strip_tags($txt); } $mailer->Body = $txt; if ($mailer->Send()) { return true; } else { if (is_coadmin()) { echo "<h2 style=\"color:red;\">Mailer Error: " . $mailer->ErrorInfo . '</h2>'; } return false; } }
include DIR_INCLUDES . 'functions/encryption.php'; @($encrypt_obj = new AzDGCrypt(1074)); if (isset($_POST['forgot_password_x'])) { $user_email = $_POST['email']; $sql_user = "******"; $rs_emailExists = mysql_query($sql_user); $user_email_row = mysql_fetch_array($rs_emailExists); $userExists = mysql_num_rows($rs_emailExists); if ($userExists != '0') { $from = $_CONFIG['site_name'] . "< " . $_CONFIG['email_outgoing'] . " >"; $header = "From: " . $from . "\n"; $header .= "MIME-Verson: 1.1\n"; $header .= "Content-type:text/html; charset=iso-8859-1\n"; $to = $user_email_row['user_email']; $subject = 'Your Caricature Toons Password'; $message = "Hi " . $user_email_row['user_fname'] . ",<br><br>\n\nBelow is your Caricature Toons Password.<br><br>\n\npassword : "******"<br>\nemail id : " . $user_email . "<br><br>\n\nTo login, go to " . $_CONFIG['site_url'] . "alogin.php<br><br>\n\nIf at anytime you have questions or require assistance, please email us at<br>\n" . $_CONFIG['email_contact_us'] . "<br><br>\n\nLife should always be fun!!!<br><br>\n\nThe Captoon,<br>\nwww.caricaturetoons.com"; mail($to, $subject, $message, $header); $msg = "Your Password has been sent to your mail"; } else { $msg_error = "This email is not registered"; } } include DIR_INCLUDES . 'header.php'; ?> <script language="javascript" type="text/javascript"> function validate() { hide();
<?php include "includes/configuration.php"; include 'includes/imageResize.php'; include DIR_INCLUDES . 'functions/encryption.php'; @($encrypt_obj = new AzDGCrypt(1074)); $user_id = $encrypt_obj->decrypt($_GET['u_id']); if ($_FILES['Filedata']['name'] != '') { $ext = end(explode(".", $_FILES['Filedata']['name'])); $ext = strtolower($ext); $fileSize = $_FILES['photo_' . $upload_count]['size']; $fileSize = 0; if ($ext == "gif" || $ext == "jpeg" || $ext == "jpg" || $ext == "png") { if ($fileSize < 104857600) { $photoName1 = $_FILES['Filedata']['name']; $photoName = str_replace(" ", "_", $photoName1); $insert_image = mysql_query("INSERT INTO `toon_ezprints_uploads` (`user_id` ,`ez_image_name`) VALUES ('{$user_id}', '{$photoName}')"); $last_id = mysql_insert_id(); $newname = $last_id . '_' . $photoName; move_uploaded_file($_FILES['Filedata']['tmp_name'], DIR_EZUPLOAD_IMAGES . $newname); copy(DIR_EZUPLOAD_IMAGES . $newname, DIR_EZUPLOAD_IMAGES . "/thumb/{$newname}"); copy(DIR_EZUPLOAD_IMAGES . $newname, DIR_EZUPLOAD_IMAGES . "/regular/{$newname}"); new imageProcessing(DIR_EZUPLOAD_IMAGES . "/thumb/{$newname}", 120, 120); new imageProcessing(DIR_EZUPLOAD_IMAGES . "/regular/{$newname}", 600, 600); mysql_query("UPDATE `toon_ezprints_uploads` SET `ez_image_name`='{$newname}' WHERE `ez_image_id`='{$last_id}'"); echo 200; } else { echo 500; //mail ("*****@*****.**", "Photo size is too high", $_FILES['photo_'.$upload_count]['size']); } } else {
function smtpmail($mail_to, $subject, $message, $headers = '') { global $allgAr; $smtp_host = $allgAr['mail_smtp_host']; $smtp_username = $allgAr['mail_smtp_login']; require_once 'include/includes/class/AzDGCrypt.class.inc.php'; $cr64 = new AzDGCrypt(DBDATE . DBUSER . DBPREF); $smtp_password = $cr64->decrypt($allgAr['mail_smtp_password']); $absender = $allgAr['mail_smtp_email']; $message = preg_replace("#(?<!\r)\n#si", "\r\n", $message); if ($headers != '') { if (is_array($headers)) { if (sizeof($headers) > 1) { $headers = join("\n", $headers); } else { $headers = $headers[0]; } } $headers = chop($headers); $headers = preg_replace('#(?<!\\r)\\n#si', "\r\n", $headers); $header_array = explode("\r\n", $headers); @reset($header_array); $headers = ''; while (list(, $header) = each($header_array)) { if (preg_match('#^cc:#si', $header)) { $cc = preg_replace('#^cc:(.*)#si', '\\1', $header); } else { if (preg_match('#^bcc:#si', $header)) { $bcc = preg_replace('#^bcc:(.*)#si', '\\1', $header); $header = ''; } } $headers .= $header != '' ? $header . "\r\n" : ''; } $headers = chop($headers); $cc = explode(', ', $cc); $bcc = explode(', ', $bcc); } if (trim($subject) == '') { echo 'No email Subject specified<br />'; } if (trim($message) == '') { echo 'Email message was blank<br />'; } if (!($socket = @fsockopen($smtp_host, 25, $errno, $errstr, 20))) { echo "Could not connect to smtp host : {$errno} : {$errstr}<br />"; } server_parse($socket, "220", __LINE__); if (!empty($smtp_username) && !empty($smtp_password)) { fputs($socket, "HELO " . $smtp_host . "\r\n"); server_parse($socket, "250", __LINE__); fputs($socket, "AUTH LOGIN\r\n"); server_parse($socket, "334", __LINE__); fputs($socket, base64_encode($smtp_username) . "\r\n"); server_parse($socket, "334", __LINE__); fputs($socket, base64_encode($smtp_password) . "\r\n"); server_parse($socket, "235", __LINE__); } else { fputs($socket, "HELO " . $smtp_host . "\r\n"); server_parse($socket, "250", __LINE__); } fputs($socket, "MAIL FROM: <" . $absender . ">\r\n"); server_parse($socket, "250", __LINE__); $to_header = ''; $mail_to = trim($mail_to) == '' ? 'Undisclosed-recipients:;' : trim($mail_to); if (preg_match('#[^ ]+\\@[^ ]+#', $mail_to)) { fputs($socket, "RCPT TO: <{$mail_to}>\r\n"); server_parse($socket, "250", __LINE__); } @reset($bcc); if (isset($bcc)) { while (list(, $bcc_address) = each($bcc)) { $bcc_address = trim($bcc_address); if (preg_match('#[^ ]+\\@[^ ]+#', $bcc_address)) { fputs($socket, "RCPT TO: <{$bcc_address}>\r\n"); server_parse($socket, "250", __LINE__); } } } @reset($cc); if (isset($cc)) { while (list(, $cc_address) = each($cc)) { $cc_address = trim($cc_address); if (preg_match('#[^ ]+\\@[^ ]+#', $cc_address)) { fputs($socket, "RCPT TO: <{$cc_address}>\r\n"); server_parse($socket, "250", __LINE__); } } } fputs($socket, "DATA\r\n"); server_parse($socket, "354", __LINE__); fputs($socket, "Subject: {$subject}\r\n"); fputs($socket, "To: {$mail_to}\r\n"); fputs($socket, "{$headers}\r\n\r\n"); fputs($socket, "{$message}\r\n"); fputs($socket, ".\r\n"); server_parse($socket, "250", __LINE__); fputs($socket, "QUIT\r\n"); fclose($socket); return true; }
<?php if (isset($_POST['login_x'])) { @($encrypt_obj = new AzDGCrypt(1074)); $login_email = $_POST['login_email']; $login_password = $_POST['login_password']; $backto = $_REQUEST['back_to']; $login_query = mysql_query("SELECT U.* FROM `toon_users`U,`toon_user_types`UT where U.`user_email`='" . addslashes($login_email) . "' AND U.`user_delete`='0' AND U.`utype_id`=UT.`utype_id` AND (UT.`utype_name`='Customer' OR UT.`utype_name`='Artist') AND (`user_status`='Active' OR (`approval_status`='Approved' ))") or die(mysql_error()); //Removed this code from above sql AND `artist_gallery_status`='Active' which was after `approval_status`='Approved' $row = mysql_fetch_array($login_query); $number = mysql_num_rows($login_query); $password = $row['user_password']; $password = $encrypt_obj->decrypt($password); if ($password != $login_password) { $login_msg = "*Invalid user"; } else { $u_id = $row['user_id']; $_SESSION['sess_tt_uid'] = $u_id; $cookie = $_POST['cookie']; if ($cookie != '') { $expire = time() + 60 * 60 * 24 * 7; setcookie("toons_id", $u_id, $expire); } } } if (isloggedIn()) { if ($backto) { header('Location:' . $backto); exit; } if ($u_id = $row['utype_id'] == 2) {
/** * Decrypt and unpack Cookiedata * * @param mixed Encryptet Cookiedata * @return mixed Decryptet Cookiedata as array * @access private */ function cookiedata_unpack($cookie) { // Crypt only via Config. See Construktor if ($this->cookie_crypt) { $crypt = new AzDGCrypt(md5($this->cookie_crypt_pw)); $cookie = $crypt->decrypt($cookie); } // TODO : Check Vars list($this->cookie_data['userid'], $this->cookie_data['uniqekey'], $this->cookie_data['version'], $this->cookie_data['olduserid'], $this->cookie_data['sb_code']) = explode("|", $cookie); }
<td align="left" ><input type="text" name="user_email" id="user_email" value="<?php echo $row_artist['user_email']; ?> " /></td> </tr> <?php if (!$user_id) { ?> <script>var new_user=1;</script> <?php } ?> <tr> <td align="left" class="table_details">Password :*</td> <td align="left" ><input type="text" name="user_password" id="user_password" value="<?php echo $encrypt_obj->decrypt($row_artist['user_password']); ?> " /></td> </tr> <tr> <td align="left" class="table_details">Description :</td> <td align="left" ><textarea name="user_decription" id="user_decription" ><?php echo $row_artist['user_description']; ?> </textarea></td> </tr> <tr> <td align="left" class="table_details" valign="top">Address1 :</td> <td align="left"><textarea name="user_address1" id="user_address1" ><?php echo $row_artist['user_address1']; ?>