++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*/ if (!defined('PARENT') || !isset($_GET['disputeUsers']) && !isset($_GET['changeState']) || $SETTINGS->disputes == 'no') { $HEADERS->err403(true); } // Access.. if (!in_array($cmd, $userAccess) && $MSTEAM->id != '1') { $HEADERS->err403(true); } // Enable/disable (Ajax).. if (isset($_GET['changeState'])) { $MSTICKET->enableDisable(); echo $JSON->encode(array('ok')); exit; } // Check digit.. mswCheckDigit($_GET['disputeUsers'], true); // Load ticket data.. $SUPTICK = mswGetTableData('tickets', 'id', $_GET['disputeUsers']); // Checks.. if (!isset($SUPTICK->id)) { $HEADERS->err404(true); exit; } // Load mail params include REL_PATH . 'control/mail-data.php'; // Class.. include_once PATH . 'control/classes/class.accounts.php'; include_once REL_PATH . 'control/classes/class.accounts.php'; $MSACC = new accounts(); $MSPORTAL = new accountSystem(); $MSACC->settings = $SETTINGS;
Programmed & Designed by: David Ian Bennett E-Mail: support@maianscriptworld.co.uk Software Website: http://www.maiansupport.com Script Portal: http://www.maianscriptworld.co.uk ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ This File: ticket-edit-reply.php Description: System File ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*/ if (!defined('PARENT') || (!isset($_GET['id']) || !in_array('add', $userAccess) && $MSTEAM->id != '1')) { $HEADERS->err403(true); } // Check digit.. mswCheckDigit($_GET['id'], true); // Add ticket.. if (isset($_POST['process'])) { $MSTICKET->updateTicketReply($msg_ticket_history['reply-edit']); $OK = true; } // Get reply.. $REPLY = mswGetTableData('replies', 'id', $_GET['id']); // Checks.. if (!isset($REPLY->id)) { $HEADERS->err404(true); } // Get ticket data.. $SUPTICK = mswGetTableData('tickets', 'id', $REPLY->ticketID); // Checks.. if (!isset($SUPTICK->id)) {
E-Mail: support@maianscriptworld.co.uk Software Website: http://www.maiansupport.com Script Portal: http://www.maianscriptworld.co.uk ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++ This File: faq-question.php Description: System File ++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++++*/ // Check var and parent load.. if (!defined('PARENT') || !isset($_GET['a']) || !defined('MS_PERMISSIONS') || $SETTINGS->kbase == 'no') { $HEADERS->err403(); } // Security check.. mswCheckDigit($_GET['a']); $QUE = mswGetTableData('faq', 'id', (int) $_GET['a'], 'AND `enFaq` = \'yes\'', '*'); if (!isset($QUE->question)) { $HEADERS->err404(); } // Variables.. $title = $QUE->question . ' - ' . $msg_adheader17; $subt = $msg_header8; $cky = array(); // Check for category/search params.. if (isset($_GET['c']) && (int) $_GET['c'] > 0) { $CAT = mswGetTableData('categories', 'id', (int) $_GET['c'], 'AND `enCat` = \'yes\'', '`name`,`subcat`'); if (isset($CAT->name)) { if (isset($CAT->subcat) && $CAT->subcat > 0) { define('IS_SUB', $CAT->subcat); }
$HEADERS->err403(); exit; } // For redirection.. if (MS_PERMISSIONS == 'guest' && isset($_GET['t']) && (int) $_GET['t'] > 0) { $_SESSION['ticketAccessID'] = (int) $_GET['t']; } // Load account globals.. include PATH . 'control/system/accounts/account-global.php'; // Check log in.. if (MS_PERMISSIONS == 'guest' || !isset($_GET['t'])) { header("Location:index.php?p=login"); exit; } // Check id.. mswCheckDigit($_GET['t']); // Get ticket information and check permissions.. $T = mswGetTableData('tickets', 'id', $_GET['t'], 'AND `visitorID` = \'' . $LI_ACC->id . '\' AND `spamFlag` = \'no\''); if (!isset($T->id)) { $HEADERS->err403(); } // Re-open.. if ($T->ticketStatus == 'close' && isset($_GET['lk'])) { $rows = $MSTICKET->openclose($T->id); // History if affected rows.. if ($rows > 0) { $MSTICKET->historyLog($T->id, str_replace('{user}', mswSpecialChars($LI_ACC->name), $msg_ticket_history['vis-ticket-open'])); $T = mswGetTableData('tickets', 'id', $T->id); $ticketSystemMsg = $msg_public_ticket14; } }
if (!defined('PARENT') || !defined('MS_PERMISSIONS') || $SETTINGS->disputes == 'no') { $HEADERS->err403(); } // For redirection.. if (MS_PERMISSIONS == 'guest' && isset($_GET['d']) && (int) $_GET['d'] > 0) { $_SESSION['disputeAccessID'] = (int) $_GET['d']; } // Load account globals.. include PATH . 'control/system/accounts/account-global.php'; // Check log in.. if (MS_PERMISSIONS == 'guest' || !isset($_GET['d'])) { header("Location:index.php?p=login"); exit; } // Check id.. mswCheckDigit($_GET['d']); // Get ticket information and check permissions.. $T = mswGetTableData('tickets', 'id', $_GET['d'], 'AND `visitorID` = \'' . $LI_ACC->id . '\' AND `spamFlag` = \'no\''); if (!isset($T->id)) { // Check if this user is in the dispute list... $PRIV = mswGetTableData('disputes', 'visitorID', $LI_ACC->id, 'AND `ticketID` = \'' . $_GET['d'] . '\''); // If privileges allow viewing of dispute, requery without email.. if (isset($PRIV->id)) { $T = mswGetTableData('tickets', 'id', $_GET['d']); // Get person who started ticket.. $ORGL = mswGetTableData('portal', 'id', $T->visitorID); } else { $HEADERS->err403(); } } // Users in dispute..
$D = new msDownload(); $D->faqAttachment((int) $_GET['fattachment'], $SETTINGS); exit; } // Voting system.. if ($SETTINGS->enableVotes == 'yes' && isset($_GET['v']) && isset($_GET['vote'])) { $FAQ->vote($SETTINGS); echo $MSJSON->encode(array('response' => $msg_kbase55)); exit; } // Check var and parent load.. if (!isset($_GET['c']) || !defined('MS_PERMISSIONS')) { $HEADERS->err403(); } // Security check.. mswCheckDigit($_GET['c']); // Load category.. $CAT = mswGetTableData('categories', 'id', (int) $_GET['c'], 'AND `enCat` = \'yes\''); // 404 if not found.. if (!isset($CAT->name)) { $HEADERS->err404(); } // Variables.. $limitvalue = $page * $SETTINGS->quePerPage - $SETTINGS->quePerPage; $pageNumbers = ''; $title = $CAT->name . ' - ' . $msg_adheader17; $dataCount = mswRowCount('faqassign LEFT JOIN `' . DB_PREFIX . 'faq` ON `' . DB_PREFIX . 'faq`.`id` = `' . DB_PREFIX . 'faqassign`.`question` WHERE `itemID` = \'' . (int) $_GET['c'] . '\' AND `desc` = \'category\' AND `' . DB_PREFIX . 'faq`.`enFaq` = \'yes\''); // Check if sub category.. if ($CAT->subcat > 0) { $SUB = mswGetTableData('categories', 'id', $CAT->subcat);