$result = mysql_query($sql); while ($row = mysql_fetch_assoc($result)) { $retArray[] = $row; $output = $retArray; } $DB->close(); } if ($id == "getCommissionTemplates") { $DB = new conn(); $DB->connect(); if (isset($_REQUEST["price"])) { $price = $DB->sanitize($_REQUEST["price"]); } else { $price = 0; } $templates = $DB->getCommissionTemplates($price); $output = $templates; } if ($id == "getTaxRate") { $DB = new conn(); $DB->connect(); $state = $DB->sanitize($_REQUEST["state"]); $county = $DB->sanitize($_REQUEST["county"]); $sql = "select rate from TaxRates where state = '" . $state . "' AND county = '" . $county . "'"; $result = $DB->query_scalar($sql); $output = $result; $DB->close(); } if ($id == "getTemplates") { if (!UserMay("Admin_ViewComm")) { AccessDenied();