} } if (isset($_SESSION["sess_userid"]) && $_SESSION["sess_userid"] != "") { $userid = $_SESSION["sess_userid"]; } else { //$userid = 0; //header("Location:login.php?action=sendmessagetoseller&artistid=$artistid&productid=$productid"); //exit(); } if (isset($_POST['btnSendMessage']) && $_POST["btnSendMessage"] == "SendMessage") { $txtMessage = add_slash($_POST["txtMessage"]); $subject = add_slash($_POST["subject"]); $artistid = add_slash($_POST["artistid"]); $productid = add_slash($_POST["productid"]); $contact_name = add_slash($_POST["contact_name"]); $email_address = add_slash($_POST["email_address"]); if (!isNotNull($contact_name)) { $message .= "* Contact name cannot be empty! <br>"; } /* $email_pattern = "^[_a-z0-9-]+(\.[_a-z0-9-]+)*@[a-z0-9-]+(\.[a-z0-9-]+)*(\.[a-z]{2,3})$"; if (!isNotNull($email_address)) { $message .= "* Email address cannot be empty! <br>"; } elseif (!eregi($email_pattern, $email_address)) { $message .= "* Email address cannot be invalid! <br>"; } */ if (!isNotNull($email_address)) { $message .= "* Email address cannot be empty! <br>"; } elseif (!preg_match("/^([a-zA-Z0-9])+([a-zA-Z0-9\\._-])*@([a-zA-Z0-9_-])+([a-zA-Z0-9\\._-]+)+\$/", $email_address)) {
function sync_add($mysql_tables) { $insert_array = array(); // add actors, genres, countries $panels = array('actor', 'genre', 'country', 'studio', 'director', 'stream'); foreach ($panels as $panel) { if (isset($_POST[$panel])) { $values = array(); foreach ($_POST[$panel] as $key => $val) { // add stream if ($panel == 'stream') { $cols = array_keys($mysql_tables['movies_stream']); $str = explode(';', $val); foreach ($str as $k => $s) { if (substr($mysql_tables['movies_stream'][$cols[$k + 1]], 0, 3) == 'int') { $str[$k] = $s == '' ? 'NULL' : $s; } else { $str[$k] = '"' . $s . '"'; } } $values[] = '("' . $_POST['id'] . '", ' . implode(', ', $str) . ')'; } else { // check if panel exist $sql_id = 'SELECT `id` FROM `' . $panel . '` WHERE `' . $panel . '` = "' . add_slash($val) . '"'; $res_id = mysql_q($sql_id); if (!mysql_num_rows($res_id)) { $sql_ins = 'INSERT INTO `' . $panel . '` (`' . $panel . '`) VALUES ("' . add_slash($val) . '")'; mysql_q($sql_ins); $id = mysql_insert_id(); } else { $row = mysql_fetch_assoc($res_id); $id = $row['id']; } // add panels info if ($panel == 'actor') { $cols = array('id', $panel . 'id', 'order'); $values[] = '("' . $_POST['id'] . '", "' . $id . '", "' . $key . '")'; } else { $cols = array('id', $panel . 'id'); $values[] = '("' . $_POST['id'] . '", "' . $id . '")'; } } } $insert_sql = 'INSERT INTO `' . $_POST['table'] . '_' . $panel . '` (`' . implode('`, `', $cols) . '`) VALUES ' . implode(', ', $values); $result = mysql_q($insert_sql); unset($_POST[$panel]); } } # insert values foreach ($mysql_tables[$_POST['table']] as $key => $val) { if (isset($_POST[$key]) && strlen($_POST[$key]) > 0) { if (substr($val, 0, 3) == 'int' or substr($val, 0, 5) == 'float') { $insert_array['`' . $key . '`'] = add_slash($_POST[$key]); } else { $insert_array['`' . $key . '`'] = '"' . add_slash($_POST[$key]) . '"'; } } } $insert_sql = 'INSERT INTO `' . $_POST['table'] . '` (' . implode(', ', array_keys($insert_array)) . ') VALUES (' . implode(', ', $insert_array) . ')'; $insert = mysql_q($insert_sql); }
$value['length'] = 100; } $item_type .= "`" . $key . "` Char(" . $value['length'] . ")"; break; case "file": $item_type .= "`" . $key . "` Char(255)"; break; case "radio": case "select": add_slash($value['value']['cn']); $value['value']['cn'] = str_replace(",", ",", $value['value']['cn']); $list = "'" . implode("', '", $value['value']['cn']) . "'"; $item_type .= "`" . $key . "` Enum(" . $list . ")"; break; case "checkbox": add_slash($value['value']['cn']); $value['value']['cn'] = str_replace(",", ",", $value['value']['cn']); $list = "'" . implode("', '", $value['value']['cn']) . "'"; $item_type .= "`" . $key . "` Set(" . $list . ")"; break; case "textarea": $item_type .= "`" . $key . "` text"; break; default: break; } if (strlen($value['default']) > 0) { $str_sql .= " default '" . $value['default'] . "'"; } switch ($value['op']) { case "op_add":