$db->query($query); while ($db->next_record()) { $output .= " <tr>\n"; $output .= " <td width=\"5%\" class=\"ItechClsDataTD\">" . $db->f("name") . "</td>\n"; $output .= " <td width=\"15%\" class=\"ItechClsDataTD\">{dd_name_" . $db->f("id") . "}</td>\n"; $output .= " <td width=\"15%\" class=\"ItechClsDataTD\">{dd_description_" . $db->f("id") . "}</td>\n"; $output .= " <td width=\"65%\" class=\"ItechClsDataTD\">" . htmlspecialchars("<select class=\"select\" name=\"{dd_var_" . $db->f("id") . "}\">") . "<br> {dropdown_Options_" . $db->f("id") . "}<br>" . htmlspecialchars("</select>") . "</td>\n"; $output .= " </tr>\n"; } $output .= "</table></td></tr>\n"; } if ($_POST["save"]) { $save_temp = new clsDBNetConnect(); if ($temp->next_record()) { $query = "update {$table} set template='" . mysql_escape_string(stripslashes($_POST["page_temp"])) . "', active='" . $_POST["active"] . "', admin_override='" . $_POST["ao"] . "' where cat_id=" . $cat . " and id=" . $temp->f("id"); $temp->seek(); } else { $query = "insert into {$table} (cat_id, template, active, admin_override) values ('" . $cat . "','" . mysql_escape_string(stripslashes($_POST["page_temp"])) . "', '" . $_POST["active"] . "', '" . $_POST["ao"] . "')"; $save_temp->query("select * from category_details where cat_id = '" . $cat . "'"); if ($save_temp->next_record()) { $save_temp->query("update category_details set {$field} = '1' where cat_id = '" . $cat . "'"); } else { $save_temp->query("insert into category_details (cat_id, {$field}) values ('" . $cat . "', '1')"); } } $save_temp->query($query); header("Location:CatDetails.php?cat=" . $cat); } if ($_POST["delete"]) { $del_temp = new clsDBNetConnect(); if ($temp->next_record()) {
$txtvar = ""; $txtdesc = ""; $txtname = ""; $custtxtvalues = ""; $custtxt = ""; $fieldvalues = ""; $optionlist = ""; $checked = ""; $selected = ""; $Tpl->SetBlockVar("Custom_DropDown_As_Checkbox", ""); $custtxt = new clsDBNetConnect(); $custoptions = new clsDBNetConnect(); $query = "select * from custom_dropdown where {$cats} and `searchable` = '1' and `style` = '2'"; $custtxt->query($query); if ($custtxt->next_record()) { $custtxt->seek(); $queryfields = "("; $count = 0; while ($custtxt->next_record()) { if ($count > 0) { $queryfields .= " or "; } $query = "select * from custom_dropdown_options where field_id = '" . $custtxt->f("id") . "'"; $custoptions->query($query); while ($custoptions->next_record()) { $checked = ""; if ($custoptions->f("id") == $selected[$custtxt->f("id")]) { $checked = " checked "; } else { $checked = ""; }
function Page_BeforeShow() { //Page_BeforeShow @1-66DC429C //Custom Code @32-2A29BDB7 global $Tpl; $finalcat = CCGetFromGet("finalcat", ""); $ItemNum = CCGetFromGet("Item_Number", ""); if (CCGetSession("RecentPreviewItem")) { $ItemNum = CCGetSession("RecentPreviewItem"); } $cats = "("; $db = new clsDBNetConnect(); $query = "select * from categories where cat_id='" . $finalcat . "'"; $db->query($query); $db->next_record(); $Tpl->SetVar("category", $finalcat); $Tpl->SetVar("cat_name", $db->f("name")); $cats .= "cat_id=" . $db->f("cat_id"); if ($db->f("sub_cat_id") > 0) { $cats .= " or "; $sub = $db->f("sub_cat_id"); $query = "select * from categories where cat_id={$sub}"; $db->query($query); $db->next_record(); $cats .= "cat_id=" . $db->f("cat_id"); if ($db->f("sub_cat_id") > 0) { $cats .= " or "; $sub = $db->f("sub_cat_id"); $query = "select * from categories where cat_id={$sub}"; $db->query($query); $db->next_record(); $cats .= "cat_id=" . $db->f("cat_id"); if ($db->f("sub_cat_id") > 0) { $cats .= " or "; $sub = $db->f("sub_cat_id"); $query = "select * from categories where cat_id={$sub}"; $db->query($query); $db->next_record(); $cats .= "cat_id=" . $db->f("cat_id"); if ($db->f("sub_cat_id") > 0) { $cats .= " or "; $sub = $db->f("sub_cat_id"); $query = "select * from categories where cat_id={$sub}"; $db->query($query); $db->next_record(); $cats .= "cat_id=" . $db->f("cat_id"); if ($db->f("sub_cat_id") > 0) { $cats .= " or "; $sub = $db->f("sub_cat_id"); $query = "select * from categories where cat_id={$sub}"; $db->query($query); $db->next_record(); $cats .= "cat_id=" . $db->f("cat_id"); if ($db->f("sub_cat_id") > 0) { $cats .= " or "; $sub = $db->f("sub_cat_id"); $query = "select * from categories where cat_id={$sub}"; $db->query($query); $db->next_record(); $cats .= "cat_id=" . $db->f("cat_id"); } else { $cats .= ")"; } } else { $cats .= ")"; } } else { $cats .= ")"; } } else { $cats .= ")"; } } else { $cats .= ")"; } } else { $cats .= ")"; } $Tpl->SetBlockVar("Custom_TextArea", ""); $custtxt = new clsDBNetConnect(); $query = "select * from custom_textarea where {$cats}"; $custtxt->query($query); if ($custtxt->next_record()) { $custtxt->seek(); $queryfields = "("; $count = 0; while ($custtxt->next_record()) { if ($count > 0) { $queryfields .= " or "; } $queryfields .= "field_id='" . $custtxt->f("id") . "'"; $textvar[$custtxt->f("id")] = $custtxt->f("template_var"); $textdesc[$custtxt->f("id")] = $custtxt->f("description"); $textname[$custtxt->f("id")] = $custtxt->f("name"); $count++; } $custtxt->seek(); $queryfields .= ") and"; if (!$_POST["closes"] && $_GET["Item_Number"]) { $custtxtvalues = new clsDBNetConnect(); $query = "select * from custom_textarea_values where {$queryfields} ItemNum=" . $ItemNum; $custtxtvalues->query($query); while ($custtxtvalues->next_record()) { $fieldvalues[$custtxtvalues->f("field_id")] = $custtxtvalues->f("value"); } } if ($_POST && !$_GET["Item_Number"]) { $custtxt->seek(); while ($custtxt->next_record()) { $fieldvalues[$custtxt->f("id")] = $_POST["custtxt_area::" . $textvar[$custtxt->f("id")] . "::" . $custtxt->f("id")]; } } $custtxt->seek(); while ($custtxt->next_record()) { $Tpl->SetVar("ta_name", multiline($textname[$custtxt->f("id")])); $Tpl->SetVar("ta_description", multiline($textdesc[$custtxt->f("id")])); $Tpl->SetVar("ta_var", "custtxt_area::" . $textvar[$custtxt->f("id")] . "::" . $custtxt->f("id")); $Tpl->SetVar("ta_value", stripslashes($fieldvalues[$custtxt->f("id")])); $Tpl->SetVar("ta_name_" . $custtxt->f("id"), multiline($textname[$custtxt->f("id")])); $Tpl->SetVar("ta_description_" . $custtxt->f("id"), multiline($textdesc[$custtxt->f("id")])); $Tpl->SetVar("ta_var_" . $custtxt->f("id"), "custtxt_area::" . $textvar[$custtxt->f("id")] . "::" . $custtxt->f("id")); $Tpl->SetVar("ta_value_" . $custtxt->f("id"), stripslashes($fieldvalues[$custtxt->f("id")])); $Tpl->Parse("Row", True); } $Tpl->Parse("Custom_TextArea", True); } ////////////////////////////// //Custom TextBox ////////////////////////////// $txtvar = ""; $txtdesc = ""; $txtname = ""; $custtxtvalues = ""; $custtxt = ""; $fieldvalues = ""; $Tpl->SetBlockVar("Custom_TextBox", ""); $custtxt = new clsDBNetConnect(); $query = "select * from custom_textbox where {$cats}"; $custtxt->query($query); if ($custtxt->next_record()) { $custtxt->seek(); $queryfields = "("; $count = 0; while ($custtxt->next_record()) { if ($count > 0) { $queryfields .= " or "; } $queryfields .= "field_id='" . $custtxt->f("id") . "'"; $textvar[$custtxt->f("id")] = $custtxt->f("template_var"); $textdesc[$custtxt->f("id")] = $custtxt->f("description"); $textname[$custtxt->f("id")] = $custtxt->f("name"); $count++; } $custtxt->seek(); $queryfields .= ") and"; if ($_GET["Item_Number"] && !$_POST["closes"]) { $custtxtvalues = new clsDBNetConnect(); $query = "select * from custom_textbox_values where {$queryfields} ItemNum=" . $ItemNum; $custtxtvalues->query($query); while ($custtxtvalues->next_record()) { $fieldvalues[$custtxtvalues->f("field_id")] = $custtxtvalues->f("value"); } } if ($_POST && !$_GET["Item_Number"]) { $custtxt->seek(); while ($custtxt->next_record()) { $fieldvalues[$custtxt->f("id")] = $_POST["custtxt_box::" . $textvar[$custtxt->f("id")] . "::" . $custtxt->f("id")]; } } $custtxt->seek(); while ($custtxt->next_record()) { $Tpl->SetVar("tb_name", multiline($textname[$custtxt->f("id")])); $Tpl->SetVar("tb_description", multiline($textdesc[$custtxt->f("id")])); $Tpl->SetVar("tb_value", stripslashes($fieldvalues[$custtxt->f("id")])); $Tpl->SetVar("tb_var", "custtxt_box::" . $textvar[$custtxt->f("id")] . "::" . $custtxt->f("id")); $Tpl->SetVar("tb_name_" . $custtxt->f("id"), multiline($textname[$custtxt->f("id")])); $Tpl->SetVar("tb_description_" . $custtxt->f("id"), multiline($textdesc[$custtxt->f("id")])); $Tpl->SetVar("tb_value_" . $custtxt->f("id"), stripslashes($fieldvalues[$custtxt->f("id")])); $Tpl->SetVar("tb_var_" . $custtxt->f("id"), "custtxt_box::" . $textvar[$custtxt->f("id")] . "::" . $custtxt->f("id")); $Tpl->Parse("tb_Row", True); } $Tpl->Parse("Custom_TextBox", True); } ///////////////////////////////////////////////////////////////// //Custom DropDown Fields ///////////////////////////////////////////////////////////////// $txtvar = ""; $txtdesc = ""; $txtname = ""; $custtxtvalues = ""; $custtxt = ""; $fieldvalues = ""; $optionlist = ""; $checked = ""; $selected = ""; $Tpl->SetBlockVar("Custom_DropDown", ""); $custtxt = new clsDBNetConnect(); $custoptions = new clsDBNetConnect(); $query = "select * from custom_dropdown where {$cats}"; $custtxt->query($query); if ($custtxt->next_record()) { $custtxt->seek(); $queryfields = "("; $count = 0; while ($custtxt->next_record()) { if ($count > 0) { $queryfields .= " or "; } $query = "select * from custom_dropdown_options where field_id = '" . $custtxt->f("id") . "'"; $custoptions->query($query); if ($_GET["Item_Number"] && !$_POST["custddbox::" . $custtxt->f("template_var") . "::" . $custtxt->f("id")]) { $dvalue = new clsDBNetConnect(); $query = "select * from custom_dropdown_values where ItemNum = {$ItemNum} and field_id = " . $custtxt->f("id"); $dvalue->query($query); if ($dvalue->next_record()) { $selected[$custtxt->f("id")] = $dvalue->f("option_id"); } else { $selected[$custtxt->f("id")] = "default"; } } elseif ($_POST["custddbox::" . $custtxt->f("template_var") . "::" . $custtxt->f("id")]) { $selected[$custtxt->f("id")] = $_POST["custddbox::" . $custtxt->f("template_var") . "::" . $custtxt->f("id")]; } while ($custoptions->next_record()) { $checked = ""; if (!$_GET["Item_Number"] && !$_POST["custddbox::" . $custtxt->f("template_var") . "::" . $custtxt->f("id")] && $custoptions->f("default") == 1 || $custoptions->f("default") == 1 && $selected[$custtxt->f("id")] == "default") { $checked = " selected "; } elseif ($custoptions->f("id") == $selected[$custtxt->f("id")]) { $checked = " selected "; } else { $checked = ""; } $optionlist[$custtxt->f("id")][] = "<option value=\"" . $custoptions->f("id") . "\"{$checked}>" . $custoptions->f("option") . "</option>\n"; } $queryfields .= "field_id='" . $custtxt->f("id") . "'"; $textvar[$custtxt->f("id")] = $custtxt->f("template_var"); $textdesc[$custtxt->f("id")] = $custtxt->f("description"); $textname[$custtxt->f("id")] = $custtxt->f("name"); $count++; } $custtxt->seek(); $count = 0; while ($custtxt->next_record()) { $i = 0; $builtoptions = ""; while ($optionlist[$custtxt->f("id")][$i]) { $builtoptions .= $optionlist[$custtxt->f("id")][$i]; $i++; } $Tpl->SetVar("dd_name", multiline($textname[$custtxt->f("id")])); $Tpl->SetVar("dd_description", multiline($textdesc[$custtxt->f("id")])); $Tpl->SetVar("dd_var", "custddbox::" . $textvar[$custtxt->f("id")] . "::" . $custtxt->f("id")); $Tpl->SetVar("dropdown_Options", $builtoptions); $Tpl->SetVar("dd_name_" . $custtxt->f("id"), multiline($textname[$custtxt->f("id")])); $Tpl->SetVar("dd_description_" . $custtxt->f("id"), multiline($textdesc[$custtxt->f("id")])); $Tpl->SetVar("dd_var_" . $custtxt->f("id"), "custddbox::" . $textvar[$custtxt->f("id")] . "::" . $custtxt->f("id")); $Tpl->SetVar("dropdown_Options_" . $custtxt->f("id"), $builtoptions); $Tpl->Parse("dd_Row", True); } $Tpl->Parse("Custom_DropDown", True); } ////////////////////////////////// //End Custom Vars///////////////// ////////////////////////////////// global $regcharges; $sql = "SELECT * FROM categories WHERE sub_cat_id > '0' ORDER BY weight, name"; $db = new clsDBNetConnect(); $db->connect(); $db->query($sql); while ($db->next_record()) { $catid = $db->f(0); $subid = $db->f(1); $name = $db->f(2); if ($subid == 1) { $inis .= "<OPTION value=\"" . $catid . "\">" . $name . "</OPTION>"; } $dsper .= "catlist[" . $catid . "] = new Array(" . $subid . " , \"" . $name . "\");\r\n"; } $closestCat = getparents($_GET["finalcat"]); if (!$closestCat) { $closestCat = 1; } $db2 = new clsDBNetConnect(); $db2->connect(); $db2->query("SELECT * FROM lookup_listing_dates WHERE charge_for='1' and cat_id={$closestCat}"); $dayfees = ""; while ($db2->next_record()) { $dayfees = $dayfees . $db2->f("days") . " Days - <font color='red'>" . $regcharges["currency"] . $db2->f("fee") . "</font><br>"; } $Tpl->SetVar("cats", $dsper); $Tpl->SetVar("catbuild", $inis); $Tpl->SetVar("dayfees", $dayfees); unset($db); //End Custom Code }
if ($_GET["action"] == "title") { if ($_GET["subcats"] != "Any" && $_GET["subcats"]){ $cats = "(`category` = '" . str_replace(";", "' or `category` = '", $_GET["subcats"]) . "')"; $query = "select `title`, `ItemNum` from `items` where `title` LIKE '%" . mysql_escape_string($_GET["title"]) . "%' and $cats and `status` = '1' order by `hits` desc LIMIT 10"; } else { $query = "select `title`, `ItemNum` from `items` where `title` LIKE '%" . mysql_escape_string($_GET["title"]) . "%' and `status` = '1' order by `hits` desc LIMIT 10"; } $db->query($query); echo '<?xml version="1.0" encoding="UTF-8" standalone="yes"?>'; ?> <response> <? if ($db->next_record()){ $db->seek(); while ($db->next_record()){ ?><result><?php //echo "1"; echo htmlspecialchars($db->f("title")); ?></result><? } } else { echo "<result>0</result>"; } ?> </response> <? } elseif ($_GET["action"] == "ItemNum") {