public function register($user)
{
//验证输入数据合法性
$error = array();
preg_match('/^([\\.a-zA-z0-9_-])+@([a-zA-z0-9_-])+((\\.[a-zA-z0-9_-]{2,3}){1,2})$/', $user['email']) || ($error[] = '邮箱格式错误!');
mysql_num_rows(base::query("SELECT uid FROM 'members' WHERE 'email' = '{$user['email']}'")) == 0 || ($error[] = '该eamil地址已经存在');
}
function to_local_time_zone($timest, $gmt = null)
{
$first_arr = explode(" ", $timest);
$second_arr = explode("-", $first_arr[0]);
$third_arr = explode(":", $first_arr[1]);
$year = $second_arr[0];
$month = $second_arr[1];
$day = $second_arr[2];
$hour = $third_arr[0];
$minute = $third_arr[1];
$second = $third_arr[2];
$param_arr = array($_SESSION['user_id']);
if ($gmt == null) {
$sel = base::query('SELECT gmt FROM users WHERE id = \'::0::\'', 'assoc_array', $param_arr);
if (!empty($sel)) {
$gmt = $sel[0]['gmt'];
} else {
$gmt = '+0';
}
}
if ($_SESSION['user_id'] == 1) {
if (!empty($_COOKIE['gmt'])) {
$gmt = $_COOKIE['gmt'];
}
}
$timest = date("Y-m-d H:i:s", mktime($hour, $minute, $second, $month, $day, $year) + $gmt * 3600);
return $timest;
}
$address = $_POST['address'];
$notes = $_POST['notes'];
$url = $_POST['url'];
$fax = $_POST['fax'];
$category_id = (int) $_POST['category_id'];
$new_category = $_POST['new_category'];
$public = (int) $_POST['public'];
if (!$category_id) {
$error .= '<li> Category cannot be left blank';
}
if (!$firstname && !$lastname && !$company) {
$error .= '<li> First name / Last name / Company cannot be left blank';
}
if (!$error) {
if ($new_category) {
$base_instance->query('INSERT INTO ' . $base_instance->entity['CONTACT']['CATEGORY'] . ' (title,user) VALUES ("' . sql_safe($new_category) . '",' . $userid . ')');
$category_id = mysqli_insert_id($base_instance->db_link);
}
$firstname = str_replace('"', '"', $firstname);
$lastname = str_replace('"', '"', $lastname);
$address = str_replace('"', '"', $address);
$company = str_replace('"', '"', $company);
$base_instance->query('UPDATE ' . $base_instance->entity['CONTACT']['MAIN'] . ' SET firstname="' . sql_safe($firstname) . '",lastname="' . sql_safe($lastname) . '",email="' . sql_safe($email) . '",telephone="' . sql_safe($telephone) . '",fax="' . sql_safe($fax) . '",mobile="' . sql_safe($mobile) . '",address="' . sql_safe($address) . '",notes="' . sql_safe($notes) . '",company="' . sql_safe($company) . '",url="' . sql_safe($url) . '",category=' . $category_id . ',public=' . $public . ' WHERE user='******' AND ID=' . $contact_id);
$data = $base_instance->get_data("SELECT title FROM {$base_instance->entity['CONTACT']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'");
$cat_title = $data[1]->title;
$base_instance->show_message('Contact updated', '<script language="JavaScript" type="text/javascript">function createRequestObject(){try{var requester=new XMLHttpRequest();}catch(error){try{var requester=new ActiveXObject("Microsoft.XMLHTTP");}catch(error){return false;}} return requester;}var http=createRequestObject();function DelContact(item){if(confirm("Delete Contact?")){http.open(\'get\',\'delete-contact.php?item=\'+item); http.send(null);}}</script>
<a href="add-contact.php?category_id=' . $category_id . '">[Add more]</a> <a href="edit-contact.php?contact_id=' . $contact_id . '">[Edit]</a> <a href="javascript:DelContact(\'' . $contact_id . '\')">[Delete]</a> <a href="send-content.php?contact_id=' . $contact_id . '">[Send]</a><p><a href="show-contact-categories.php">[Show all Categories]</a> <a href="show-contact.php">[Show all Contacts]</a><p><b>Internal Link:</b> [c' . $contact_id . '] <b>Category:</b> ' . $cat_title . ' <a href="show-contact.php?category_id=' . $category_id . '">[Show]</a>');
} else {
$html_instance->error_message = $error;
$company = stripslashes($company);
<?php
require 'class.base.php';
require 'class.html.php';
$base_instance = new base();
$html_instance = new html();
$userid = $base_instance->get_userid();
$category_id = isset($_REQUEST['category_id']) ? (int) $_REQUEST['category_id'] : exit;
if (isset($_POST['delete_it'])) {
$base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'");
$base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['MAIN']} WHERE user='******' AND category_id='{$category_id}'");
# delete checkbox records
$base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['CHECKBOX_VALUES']} WHERE user='******' AND category_id='{$category_id}'");
$data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['DATABASE']['CHECKBOX_FIELDS']} WHERE user='******' AND category_id='{$category_id}'");
for ($index = 1; $index <= sizeof($data); $index++) {
$checkbox_field_id = $data[$index]->ID;
$base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['CHECKBOX_ITEMS']} WHERE user='******' AND checkbox_field_id='{$checkbox_field_id}'");
}
$base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['CHECKBOX_FIELDS']} WHERE user='******' AND category_id='{$category_id}'");
# delete select records
$base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['SELECT_VALUES']} WHERE user='******' AND category_id='{$category_id}'");
$data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['DATABASE']['SELECT_FIELDS']} WHERE user='******' AND category_id='{$category_id}'");
for ($index = 1; $index <= sizeof($data); $index++) {
$select_field_id = $data[$index]->ID;
$base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['SELECT_ITEMS']} WHERE user='******' AND select_field_id='{$select_field_id}'");
}
$base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['SELECT_FIELDS']} WHERE user='******' AND category_id='{$category_id}'");
# delete number records
$base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['NUMBER_FIELDS']} WHERE user='******' AND category_id='{$category_id}'");
$base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['NUMBER_VALUES']} WHERE user='******' AND category_id='{$category_id}'");
header('Location: close-me.php');
} else {
echo 'error';
exit;
}
}
}
}
}
}
}
}
}
}
}
}
$base_instance->query("UPDATE {$base_instance->entity['KNOWLEDGE']['FLASHCARDS']} SET value={$new_value},shown=shown+1,last_shown={$now},word_loop=0 WHERE word_id='{$knowledge_id}' AND user='******' AND category_id=0");
$base_instance->query("UPDATE {$base_instance->entity['KNOWLEDGE']['FLASHCARDS']} SET word_loop=1 WHERE word_loop=0 AND user={$userid} AND category_id=0 AND value > -1 AND value < {$now} ORDER BY value LIMIT 1");
# find a new word from active words that is due and add to loop
$aff_rows = mysqli_affected_rows($base_instance->db_link);
if ($aff_rows == 0) {
increase_loop_words(1);
}
# if nothing found add a new word to active words and add to loop
echo '<head>', _CSS_NAV, '<meta http-equiv="refresh" content="10;url=status.php"></head><font size="2">Removed from Loop</font>';
}
#
function increase_loop_words($how_many)
{
global $base_instance, $html_instance;
$how_many--;
$userid = $base_instance->user;
<?php
require 'class.base.php';
require 'class.html.php';
require 'class.home.php';
$base_instance = new base();
$html_instance = new html();
$home_instance = new home();
$userid = $base_instance->get_userid();
$home_id = isset($_REQUEST['home_id']) ? (int) $_REQUEST['home_id'] : '';
$base_instance->query("SET sql_mode = 'NO_UNSIGNED_SUBTRACTION'");
// necessary for the overflow problem, see http://dev.mysql.com/doc/refman/5.6/en/out-of-range-and-overflow.html
$all_text = '<div align="center">';
if ($userid == _GUEST_USERID) {
$all_text .= '<h3>Demo Login, do not save any relevant data.</h3>Please read the <a href="help-intro.php"><u>help section</u></a> to get started with the Organizer';
} else {
$all_text .= '<br>';
}
#
if (empty($home_id)) {
$data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['HOME']['MAIN']} WHERE user='******' ORDER BY ID LIMIT 1");
} else {
$data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['HOME']['MAIN']} WHERE ID='{$home_id}' AND user='******'");
}
if (isset($data)) {
$title = $data[1]->title;
$element1 = $data[1]->element1;
$element2 = $data[1]->element2;
$element3 = $data[1]->element3;
$element4 = $data[1]->element4;
$element5 = $data[1]->element5;
}
$new_category = str_replace('"', '"', $new_category);
if (strlen($new_category) > 50) {
$error .= '<li> Category title is too long (Max. 50 Characters)';
}
}
if ($title) {
$title = trim($title);
$title = str_replace('"', '"', $title);
if (strlen($title) > 100) {
$error .= '<li> Title too long (Max. 100 Characters)';
}
}
if (!$error) {
if ($new_category) {
$base_instance->query('INSERT INTO ' . $base_instance->entity['FILE']['CATEGORY'] . ' (title,user) VALUES ("' . sql_safe($new_category) . '",' . $userid . ')');
$category_id = mysqli_insert_id($base_instance->db_link);
$new_category = '';
}
$res = is_dir('./upload/' . $userid . '/');
if (!$res) {
system('mkdir ./upload/' . $userid . '/');
}
$uploadpath = './upload/' . $userid . '/';
if ($source) {
$imagesize = @getimagesize($source);
switch ($imagesize[2]) {
case 0:
$error .= '<li> Not an image file (only gif, jpg or png allowed)';
break;
case 1:
$category_id = isset($_REQUEST['category_id']) ? (int) $_REQUEST['category_id'] : exit;
if (isset($_POST['add_fields'])) {
$number_of_fields = (int) $_POST['number_of_fields'];
$number_of_fields += 3;
for ($index = 1; $index <= $number_of_fields; $index++) {
if (isset($_POST['name_select_field_item_' . $index])) {
$item_value[$index] = sql_safe($_POST['name_select_field_item_' . $index]);
} else {
$item_value[$index] = '';
}
}
} else {
if (isset($_POST['save_it'])) {
$title_select_field = sql_safe($_POST['title_select_field']);
$number_of_fields = (int) $_POST['number_of_fields'];
$base_instance->query("INSERT INTO {$base_instance->entity['DATABASE']['SELECT_FIELDS']} (user,title,category_id) VALUES ({$userid},'{$title_select_field}',{$category_id})");
$select_field_id = mysqli_insert_id($base_instance->db_link);
for ($index = 1; $index <= $number_of_fields; $index++) {
$name_item = sql_safe($_POST['name_select_field_item_' . $index]);
if ($name_item) {
$base_instance->query("INSERT INTO {$base_instance->entity['DATABASE']['SELECT_ITEMS']} (title,user,select_field_id) VALUES ('{$name_item}',{$userid},{$select_field_id})");
}
}
$base_instance->show_message('Field saved', '<a href="add-database-number-field.php?category_id=' . $category_id . '">[Add Number Field]</a> <a href="add-database-text-field.php?category_id=' . $category_id . '">[Add Text Field]</a><p>
<a href="add-database-select-field.php?category_id=' . $category_id . '">[Add Select Field]</a> <a href="add-database-checkbox-field.php?category_id=' . $category_id . '">[Add Checkbox Field]</a><p><a href="add-database-data.php?category_id=' . $category_id . '">[Add Data]</a> <a href="edit-database-select-field.php?select_field_id=' . $select_field_id . '">[Edit Field]</a> <a href="show-database-data.php?category_id=' . $category_id . '">[Show all Data]</a>');
}
}
if (empty($number_of_fields)) {
$number_of_fields = 5;
}
if (isset($_POST['title_select_field'])) {
<?php
require 'class.base.php';
require 'class.html.php';
$base_instance = new base();
$html_instance = new html();
$userid = $base_instance->get_userid();
$id = isset($_GET['id']) ? (int) $_GET['id'] : exit;
$del_message = isset($_GET['del_message']) ? (int) $_GET['del_message'] : '';
if ($userid == _ADMIN_USERID && $del_message) {
$base_instance->query("DELETE FROM {$base_instance->entity['FORUM']['MAIN']} WHERE ID={$del_message}");
}
$html_instance->add_parameter(array('ACTION' => 'show_content', 'ENTITY' => 'FORUM', 'WHERE' => "WHERE ID={$id} OR followup={$id}", 'ORDER_COL' => 'followup,datetime', 'ORDER_TYPE' => 'DESC', 'MAXHITS' => 40, 'TEXT_CENTER' => '<center><a href="javascript:history.go(-1)">[Go Back]</a></center>', 'INNER_TABLE_WIDTH' => '90%', 'HEADER' => 'Thread', 'URL_PARAMETER' => "id={$id}"));
$data = $html_instance->get_items();
$all_text = '';
for ($index = 1; $index <= sizeof($data); $index++) {
$ID = $data[$index]->ID;
$text = $data[$index]->text;
$title = $data[$index]->title;
$text = convert_square_bracket($text);
$title = convert_square_bracket($title);
if ($title) {
$html_instance->para['HEADER'] = $title;
}
$userid_message = $data[$index]->user;
$followup = $data[$index]->followup;
$datetime = $data[$index]->datetime;
$datetime_converted = $base_instance->convert_date($datetime);
if ($followup == 0) {
$color = '#dedfdf';
} else {
$title = str_replace('"', '"', $title);
}
if (!$diary_text) {
$error .= '<li> Text cannot be left blank';
} else {
$diary_text = trim($diary_text);
if (strlen($diary_text) > 65535) {
$error .= '<li> Text is too long (Max. 65535 Characters)';
}
}
if (!$error) {
$date = $year . '-' . $month . '-' . $day;
$data = $base_instance->get_data("SELECT ID FROM {$base_instance->entity['DIARY']['MAIN']} WHERE date='{$date}' AND user='******'");
if (isset($data)) {
$diary_id = $data[1]->ID;
$base_instance->query('UPDATE ' . $base_instance->entity['DIARY']['MAIN'] . ' SET text="' . sql_safe($diary_text) . '",title="' . sql_safe($title) . '" WHERE user='******' AND ID=' . $diary_id);
} else {
$today = date('Y-m-d');
$base_instance->query('INSERT INTO ' . $base_instance->entity['DIARY']['MAIN'] . ' (date,text,title,user,last_shown) VALUES ("' . sql_safe($date) . '","' . sql_safe($diary_text) . '","' . sql_safe($title) . '",' . $userid . ',"' . $today . '")');
$diary_id = mysqli_insert_id($base_instance->db_link);
}
$base_instance->show_message('Diary saved', '<script language="JavaScript" type="text/javascript">function createRequestObject(){try{var requester=new XMLHttpRequest();}catch(error){try{var requester=new ActiveXObject("Microsoft.XMLHTTP");}catch(error){return false;}} return requester;}var http=createRequestObject();function DelDiary(item){if(confirm("Delete Diary?")){http.open(\'get\',\'delete-diary.php?item=\'+item); http.send(null);}}</script>
<a href="add-diary.php?day=' . $day . '&month=' . $month . '&year=' . $year . '">[Edit]</a> <a href="javascript:DelDiary(\'' . $diary_id . '\')">[Delete]</a> <a href="send-content.php?diary_id=' . $diary_id . '">[Send]</a> <a href="show-diary.php">[Show all]</a><p>');
} else {
$all_text = '<blockquote><font color="#ff0000"><ul>' . $error . '</ul></font></blockquote>';
$diary_text = stripslashes($diary_text);
$title = stripslashes($title);
}
} elseif (isset($diary_id)) {
$data = $base_instance->get_data("SELECT ID,date,text,title FROM {$base_instance->entity['DIARY']['MAIN']} WHERE ID='{$diary_id}' AND user='******'");
You haven\'t logged in for almost a year. Your account
might be deleted if you fail to do so. Please login
as soon as possible. Your login details are:
Login: '******'
Password: '******'
Login at '._HOMEPAGE.'/
'._SEPARATOR."\n\n"; }*/
$msg .= $newsletter_text;
if ($all != 1) {
$msg .= "\n\n" . _SEPARATOR . '
You receive this email because you signed up for our newsletter.
The URL of the website is ' . _HOMEPAGE . '/
To unsubscribe from this newsletter please go to
"Misc > Settings > Newsletter".';
}
$msg .= "\n\n";
$msg .= _SEPARATOR . "\n";
$msg .= _EMAIL_ADVERT_TEXT . "\n";
$msg .= _SEPARATOR . "\n";
$msg .= _SLOGAN . "\n";
$msg .= _HOMEPAGE . "\n";
$msg .= 'Email: ' . _ADMIN_EMAIL . "\n";
mail($email, $mailsubject, $msg, $mailheaders);
$base_instance->query("UPDATE {$base_instance->entity['USER']['MAIN']} SET newsletter={$newsletter_id} WHERE ID={$ID}");
}
<?php
require 'class.base.php';
require 'class.html.php';
require 'class.user.php';
$base_instance = new base();
$html_instance = new html();
$user_instance = new user();
$user_instance->check_for_admin();
$news_id = isset($_REQUEST['news_id']) ? (int) $_REQUEST['news_id'] : exit;
if (isset($_POST['save'])) {
$base_instance->query("DELETE FROM {$base_instance->entity['NEWS']['MAIN']} WHERE ID='{$news_id}'");
header('Location: close-me.php');
exit;
}
$data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['NEWS']['MAIN']} WHERE ID='{$news_id}'");
if (!$data) {
$base_instance->show_message('News not found');
exit;
}
$datetime = $data[1]->datetime;
$text = $data[1]->text;
$title = $data[1]->title;
$text2 = substr($text, 0, 50);
$datetime_converted = $base_instance->convert_date($datetime . ' 00:00:00');
$html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => '<font color="#ff0000">Delete this News?</font>', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BUTTON_TEXT' => 'Delete News'));
$html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'news_id', 'VALUE' => "{$news_id}"));
if ($title) {
$text2 = "<b>{$title}</b>: {$text2}";
}
$html_instance->add_form_field(array('TYPE' => 'label', 'TEXT' => "<strong>Added:</strong> {$datetime_converted}<p>{$text2}"));
$color_navigation = 1;
$background = 14;
$allow_file_upload = 2;
} else {
$font_face_main = $data[1]->font_face_main;
$font_face_navigation = $data[1]->font_face_navigation;
$font_size = $data[1]->font_size;
$color_main = $data[1]->color_main;
$color_navigation = $data[1]->color_navigation;
$background = $data[1]->background;
$allow_file_upload = $data[1]->allow_file_upload;
setcookie('remember_username', $username, time() + 2592000);
}
$datetime = date('Y-m-d H:i:s');
# set new login number and logins
$base_instance->query("UPDATE {$base_instance->entity['USER']['MAIN']} SET logins=logins+1,lastlogin='******' WHERE ID={$userid}");
$sid = mt_rand(1000000, 9999999);
$timestamp = time();
# delete old session id of same user
$base_instance->query("DELETE FROM {$base_instance->entity['SESSION']['MAIN']} WHERE user={$userid}");
# new session id
$base_instance->query("INSERT INTO {$base_instance->entity['SESSION']['MAIN']} (session_id, create_time, last_active, user, lastlogin, background, color_main, color_navigation, font_face_main, font_face_navigation, font_size, timezone, dateformat, online_status, allow_file_upload) VALUES ({$sid}, {$timestamp}, {$timestamp}, {$userid}, '{$lastlogin}', {$background}, {$color_main}, {$color_navigation}, {$font_face_main}, {$font_face_navigation}, {$font_size}, {$timezone}, {$dateformat}, {$online_status}, {$allow_file_upload})");
if (substr($lastlogin, 0, 10) != substr($datetime, 0, 10)) {
# do this just once a day, not for every login
$base_instance->query("UPDATE {$base_instance->entity['LINK']['MAIN']} SET popularity=popularity*0.995 WHERE user='******'");
}
setcookie('sid', $sid);
if (($logins == 10 or $logins == 200 or $logins == 1000 or $logins == 1500 or $logins == 2000) && empty($_GET['guest']) && $userid != _ADMIN_USERID && _ASK_FEEDBACK == 1) {
header('Location: feedback.php');
exit;
} else {
You can directly login with the following URL:
' . $url . '
For the password reminder go here:
' . _HOMEPAGE . '/password-reminder.php';
$msg .= "\n\n";
$msg .= _SEPARATOR . "\n";
$msg .= _EMAIL_ADVERT_TEXT . "\n";
$msg .= _SEPARATOR . "\n";
$msg .= _SLOGAN . "\n";
$msg .= _HOMEPAGE . "\n";
$msg .= 'Email: ' . _ADMIN_EMAIL . "\n";
mail($email, $mailsubject, $msg, $mailheaders);
$base_instance->query("UPDATE {$base_instance->entity['USER']['MAIN']} SET last_reminded='{$today}' WHERE ID={$ID}");
}
if ($sizeof > 0) {
echo '<head><meta http-equiv="refresh" content="10;URL=send-warning.php?months=' . $months . '&save=1"></head><p><strong>Continue to send more reminder emails in a few seconds (' . $fnd_rows . ' left) ..</strong>';
} else {
echo 'finished';
}
exit;
}
$html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'Send Reminder', 'TEXT_CENTER' => 'Send a reminder email to user who have not logged in for a long time.<p>', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BUTTON_TEXT' => 'Send', 'INNER_TABLE_WIDTH' => '220'));
$html_instance->add_form_field(array('TYPE' => 'label', 'TEXT' => '<strong>Send Email to users who have .. </strong>'));
$html_instance->add_form_field(array('TYPE' => 'label', 'TEXT' => '<select name="months">
<option value=3>Not logged in for 3 months
<option selected value=6>Not logged in for 6 months
<option value=12>Not logged in for 1 year
<option value=24>Not logged in for 2 years
} else {
if (!$followup) {
$error .= '<li> Title cannot be left blank';
}
}
if ($text) {
$text = trim($text);
if (strlen($text) > 65535) {
$error .= '<li> Text is too long (Max. 65535 Characters)';
}
} else {
$error .= '<li> Message cannot be left blank';
}
if (!$error) {
$datetime = $_POST['datetime'];
$base_instance->query('INSERT INTO ' . $base_instance->entity['FORUM']['MAIN'] . ' (datetime,updated,text,title,followup,user) VALUES ("' . sql_safe($datetime) . '","' . sql_safe($datetime) . '","' . sql_safe($text) . '","' . sql_safe($title) . '",' . $followup . ',' . $userid . ')');
if (_FORUM_NOTIFY == 1 && $userid != _ADMIN_USERID) {
$msg = "New Forum Message:\n\n" . $title . "\n\n" . $text;
$base_instance->send_email_from_admin('New Forum Message Notification', $msg, _ADMIN_EMAIL);
}
header('Location: show-forum.php');
exit;
} else {
$html_instance->error_message = $error;
$text = stripslashes($text);
$title = stripslashes($title);
}
}
$html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'New Forum Message', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BODY' => 'onLoad="javascript:document.form1.title.focus()"', 'BUTTON_TEXT' => 'Post new Message'));
$html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'followup', 'VALUE' => "{$followup}"));
$html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'title', 'VALUE' => "{$title}", 'SIZE' => 50, 'TEXT' => 'Title'));
<?php
require 'class.base.php';
require 'class.html.php';
$base_instance = new base();
$html_instance = new html();
$userid = $base_instance->get_userid();
$file_id = isset($_GET['file_id']) ? (int) $_GET['file_id'] : exit;
$token = 't' . md5(uniqid(rand(), true));
#
$data = $base_instance->get_data("SELECT filename FROM {$base_instance->entity['FILE']['MAIN']} WHERE ID='{$file_id}'");
$filename = $data[1]->filename;
$path = pathinfo($filename);
if (isset($path['extension'])) {
$ext = strtolower($path['extension']);
} else {
$ext = '';
}
if ($ext == 'gif' or $ext == 'png' or $ext == 'jpg' or $ext == 'jpeg') {
$image_link = '<p><form><strong>Display Image:</strong> <input type="text" name="" size="15" value="[image-' . $file_id . ']" onFocus="this.select()"></form>';
} else {
$image_link = '';
}
#
$base_instance->query("UPDATE {$base_instance->entity['FILE']['MAIN']} SET token='{$token}',public=2 WHERE ID='{$file_id}'");
$base_instance->show_message('File is public now', '<b>Download Link:</b><p><form><input type="text" name="" size="80" value="' . _HOMEPAGE . '/file-' . $token . '" onFocus="this.select()"></form>' . $image_link, 1);
$error = '';
$title = $_POST['title'];
$day = (int) $_POST['day'];
$month = (int) $_POST['month'];
$year = (int) $_POST['year'];
if ($title) {
$title = trim($title);
if (strlen($title) > 100) {
$error .= '<li> Title too long (Max. 100 Characters)';
}
$title = str_replace('"', '"', $title);
}
if (!$error) {
$date = "{$year}-{$month}-{$day}";
$time = date('H:i:s');
$base_instance->query('INSERT INTO ' . $base_instance->entity['DATABASE']['MAIN'] . ' (datetime,day,month,year,title,text,user,category_id) VALUES ("' . $date . ' ' . $time . '",' . $day . ',' . $month . ',' . $year . ',"' . sql_safe($title) . '","' . sql_safe($text) . '",' . $userid . ',' . $category_id . ')');
$insert_id = mysqli_insert_id($base_instance->db_link);
# insert checkbox values
$data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['DATABASE']['CHECKBOX_FIELDS']} WHERE user='******' AND category_id='{$category_id}'");
for ($index = 1; $index <= sizeof($data); $index++) {
$ID = $data[$index]->ID;
if (isset($_POST['checkbox' . $ID])) {
$checkbox_array = $_POST['checkbox' . $ID];
for ($hh = 0; $hh < count($checkbox_array); $hh++) {
$value = sql_safe($checkbox_array[$hh]);
if ($value) {
$base_instance->query("INSERT INTO {$base_instance->entity['DATABASE']['CHECKBOX_VALUES']} (date,user,value,data_id,checkbox_field_id,category_id) VALUES ('{$date}',{$userid},{$value},{$insert_id},{$ID},{$category_id})");
}
}
}
}
$html_instance = new html();
$userid = $base_instance->get_userid();
if (isset($_POST['save'])) {
$error = '';
$about_me = $_POST['about_me'];
$firstname = $_POST['firstname'];
$lastname = $_POST['lastname'];
$country = (int) $_POST['country'];
if (!empty($about_me)) {
$about_me = trim($about_me);
if (strlen($about_me) > 65535) {
$error .= '<li> Text is too long (Max. 65535 Characters)';
}
}
if (!$error) {
$base_instance->query('UPDATE ' . $base_instance->entity['USER']['MAIN'] . ' SET about_me="' . sql_safe($about_me) . '",firstname="' . sql_safe($firstname) . '",lastname="' . sql_safe($lastname) . '",country=' . $country . ' WHERE ID=' . $userid);
$base_instance->show_message('About Me page updated', '<a href="show-user.php?userid=' . $userid . '">[View Profile Page]</a>');
} else {
$html_instance->error_message = $error;
}
} else {
$data = $base_instance->get_data("SELECT about_me,firstname,lastname,country FROM {$base_instance->entity['USER']['MAIN']} WHERE ID='{$userid}'");
$about_me = $data[1]->about_me;
$firstname = $data[1]->firstname;
$lastname = $data[1]->lastname;
$country = $data[1]->country;
}
$html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'About Me', 'TEXT_CENTER' => 'The About Me text is a public text which appears in your profile.<br>Firstname and lastname is not public, it will only be used for sending emails within the Organizer.<p>', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BODY' => 'onLoad="javascript:document.form1.about_me.focus()"', 'BUTTON_TEXT' => 'Update'));
$html_instance->add_form_field(array('TYPE' => 'textarea', 'NAME' => 'about_me', 'VALUE' => "{$about_me}", 'TEXT' => 'About me', 'COLS' => 80, 'ROWS' => 4));
$html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'firstname', 'VALUE' => "{$firstname}", 'SIZE' => 35, 'TEXT' => 'Firstname'));
$html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'lastname', 'VALUE' => "{$lastname}", 'SIZE' => 35, 'TEXT' => 'Lastname'));
} else {
if (isset($_POST['save'])) {
$error = '';
$title_field = sql_safe($_POST['title_field']);
$number_of_fields = (int) $_POST['number_of_fields'];
if (!$title_field) {
$error .= '<li> Category cannot be left blank';
} else {
$title_field = trim($title_field);
$title_field = str_replace('"', '"', $title_field);
if (strlen($title_field) > 100) {
$error .= '<li> Title too long';
}
}
if (!$error) {
$base_instance->query('UPDATE ' . $base_instance->entity['DATABASE']['CHECKBOX_FIELDS'] . ' SET title="' . sql_safe($title_field) . '" WHERE user='******' AND ID=' . $checkbox_field_id);
#
for ($index = 1; $index <= $number_of_fields; $index++) {
$title_var = $_POST['name_checkbox_field_item_' . $index];
$id_var = (int) $_POST['id_checkbox_field_item_' . $index];
if ($title_var) {
if ($id_var) {
$base_instance->query('UPDATE ' . $base_instance->entity['DATABASE']['CHECKBOX_ITEMS'] . ' SET title="' . sql_safe($title_var) . '" WHERE user='******' AND ID=' . $id_var);
} else {
$base_instance->query('INSERT INTO ' . $base_instance->entity['DATABASE']['CHECKBOX_ITEMS'] . ' (title,user,checkbox_field_id) VALUES ("' . sql_safe($title_var) . '",' . $userid . ',' . $checkbox_field_id . ')');
}
}
}
$base_instance->show_message('Field upated', '<a href="edit-database-checkbox-field.php?checkbox_field_id=' . $checkbox_field_id . '">[Edit Field]</a> <a href="javascript:void(window.open(\'delete-database-checkbox-field.php?checkbox_field_id=' . $checkbox_field_id . '\',\'\',\'width=450,height=200,top=100,left=100\'))">[Delete Field]</a>');
} else {
$html_instance->error_message = $error;
}
if (!empty($feed) && !$title) {
$error .= '<li> Feed Title ' . $index . ' cannot be left empty';
}
$data = $base_instance->get_data('SELECT ID FROM ' . $base_instance->entity['RSS']['MAIN'] . ' WHERE feed="' . sql_safe($feed) . '" AND user='******'<li> RSS Feed ' . $index . ' already saved';
}
}
if (!$error) {
for ($index = 1; $index <= $number_of_fields; $index++) {
if (!empty($_POST['title' . $index])) {
$title = $_POST['title' . $index];
$feed = $_POST['feed' . $index];
$max_items = $_POST['max_items' . $index];
$base_instance->query('INSERT INTO ' . $base_instance->entity['RSS']['MAIN'] . ' (user,feed,title,max_items) VALUES (' . $userid . ',"' . sql_safe($feed) . '","' . sql_safe($title) . '","' . sql_safe($max_items) . '")');
}
}
$base_instance->show_message('RSS Feeds saved', '<a href="add-rss-feeds.php">[Add RSS Feeds]</a> <a href="show-rss-feeds.php">[Show RSS Feeds]</a><p><a href="show-home.php">[Edit Homepages]</a>');
} else {
$html_instance->error_message = $error;
}
}
if (isset($_POST['more_fields'])) {
$number_of_fields += 3;
$text = '<table>';
for ($index = 1; $index <= $number_of_fields; $index++) {
if (isset($_POST['title' . $index])) {
$title = stripslashes($_POST['title' . $index]);
} else {
$title = '';
<?php
require 'class.base.php';
require 'class.html.php';
$base_instance = new base();
$html_instance = new html();
$userid = $base_instance->get_userid();
$category_id = isset($_REQUEST['category_id']) ? (int) $_REQUEST['category_id'] : exit;
if (isset($_POST['save'])) {
if (!$category_id) {
exit;
}
$base_instance->query("DELETE FROM {$base_instance->entity['TO_DO']['MAIN']} WHERE user='******' AND category='{$category_id}'");
$base_instance->query("DELETE FROM {$base_instance->entity['TO_DO']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'");
header('Location: close-me.php');
exit;
} else {
$data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['TO_DO']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'");
if (!$data) {
$base_instance->show_message('To-Do Category not found');
exit;
}
$title = $data[1]->title;
}
$html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => '<font color="#ff0000">Delete this category?</font>', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BUTTON_TEXT' => 'Delete'));
$html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'category_id', 'VALUE' => "{$category_id}"));
$html_instance->add_form_field(array('TYPE' => 'label', 'TEXT' => "Are you sure you want to delete the <b>'{$title}'</b> category AND the items of this category?"));
$html_instance->process();
function create_root($login, $password)
{
config::include_database('../');
if (!preg_match('/^([a-zA-Z][a-zA-Z0-9\\_\\-]*){2,}$/', $login)) {
return -1;
}
$password = md5($password);
$param_arr = array($login, $password);
$ret = base::query('INSERT INTO users(gid, nick, password, name, lastname, birthday, gender, email, show_email, im, show_im, country, city, photo, register_date, last_visit, captcha, blocks, additional, raw_additional, news_on_page, comments_on_page, threads_on_page, show_avatars, show_ua, show_resp, theme, gmt, filters, mark, banned, sort_to) VALUES(2, \'::0::\', \'::1::\', \'Администратор сайта\', \'\', \'2000-01-01 00:00:00\', true, \'noemail@rulinux.net\', false, \'nojabber@rulinux.net\', false, \'\', \'\', \'\', \'2000-01-01 00:00:00\', \'2000-01-01 00:00:00\', -1, \'authorization:l:1,links:l:2,gallery:l:3,tracker:l:4,faq:r:1\', \'Администратор сайта добавленный автоматически\', \'Администратор сайта добавленный автоматически\', 10, 50, 30, false, true, false, \'1\', \'+4\', \'\', 1, false, false);', 'assoc_array', $param_arr);
return $ret;
}
<?php
require 'class.base.php';
require 'class.user.php';
$base_instance = new base();
$user_instance = new user();
$user_instance->check_for_admin();
$item = isset($_REQUEST['item']) ? (int) $_REQUEST['item'] : exit;
if ($item) {
$base_instance->query("DELETE FROM organizer_newsletter WHERE ID='{$item}'");
echo 'item', $item, '|';
}
$userid = $base_instance->get_userid();
$category_id = isset($_REQUEST['category_id']) ? (int) $_REQUEST['category_id'] : exit;
if (isset($_POST['save'])) {
$error = '';
$title = $_POST['title'];
if (!$title) {
$error .= '<li> Title cannot be left blank';
} else {
$title = trim($title);
if (strlen($title) > 50) {
$error .= '<li> Title is too long (Max. 50 Characters)';
}
$title = str_replace('"', '"', $title);
}
if (!$error) {
$base_instance->query('UPDATE ' . $base_instance->entity['BLOG']['CATEGORY'] . ' SET title="' . sql_safe($title) . '" WHERE user='******' AND ID=' . $category_id);
$base_instance->show_message('Blog Category updated', '<a href="add-blog.php?category_id=' . $category_id . '">[Add Blog Post]</a> <a href="add-blog-category.php">[Add Category]</a> <a href="edit-blog-category.php?category_id=' . $category_id . '">[Edit]</a> <a href="javascript:void(window.open(\'delete-blog-category.php?category_id=' . $category_id . '\',\'\',\'width=450,height=200,top=100,left=100\'))">[Delete]</a><p><a href="show-blog-categories.php">[Show Blog Categories]</a>');
} else {
$html_instance->error_message = $error;
}
} else {
$data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['BLOG']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'");
if (!$data) {
$base_instance->show_message('Blog Category not found');
exit;
}
$title = $data[1]->title;
}
$html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'Edit Blog Category', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BODY' => 'onLoad="javascript:document.form1.title.focus()"', 'INNER_TABLE_WIDTH' => '400', 'TD_WIDTH' => '20%', 'BUTTON_TEXT' => 'Update Category'));
$html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'category_id', 'VALUE' => $category_id));
$html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'title', 'VALUE' => $title, 'SIZE' => 35, 'TEXT' => 'Title'));
require 'class.base.php';
require 'class.html.php';
$base_instance = new base();
$html_instance = new html();
$userid = $base_instance->get_userid();
if (isset($_POST['save'])) {
$error = '';
$title = $_POST['title'];
if (!$title) {
$error .= '<li> Title cannot be left blank';
} else {
$title = trim($title);
if (strlen($title) > 50) {
$error .= '<li> Title is too long (Max. 50 Characters)';
}
$title = str_replace('"', '"', $title);
}
if (!$error) {
$title = sql_safe($title);
$html_instance->check_for_duplicates_by_title('NOTE', 'CATEGORY', $title, $userid);
$base_instance->query('INSERT INTO ' . $base_instance->entity['NOTE']['CATEGORY'] . ' (title,user) VALUES ("' . $title . '",' . $userid . ')');
$cat_id = mysqli_insert_id($base_instance->db_link);
$base_instance->show_message('Notes Category saved', '<a href="add-note.php?category_id=' . $cat_id . '">[Add Note]</a> <a href="add-note-category.php">[Add Category]</a> <a href="edit-note-category.php?category_id=' . $cat_id . '">[Edit]</a> <a href="javascript:void(window.open(\'delete-note-category.php?category_id=' . $cat_id . '\',\'\',\'width=450,height=200,top=100,left=100\'))">[Delete]</a><p><a href="show-note-categories.php">[Show Notes Categories]</a>');
} else {
$html_instance->error_message = $error;
$title = stripslashes($title);
}
}
$html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'Add Notes Category', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BODY' => 'onLoad="javascript:document.form1.title.focus()"', 'INNER_TABLE_WIDTH' => '400', 'TD_WIDTH' => '20%', 'BUTTON_TEXT' => 'Save Category'));
$html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'title', 'VALUE' => '', 'SIZE' => 35, 'TEXT' => 'Title'));
$html_instance->process();
if (strlen($title) > 100) {
$error .= '<li> Title is too long (Max. 100 Characters)';
}
$title = str_replace('"', '"', $title);
}
if (!$text) {
$error .= '<li> Text cannot be left blank';
} else {
$text = trim($text);
if (strlen($text) > 65535) {
$error .= '<li> Text is too long (Max. 65535 Characters)';
}
}
if (!$error) {
if ($new_category) {
$base_instance->query('INSERT INTO ' . $base_instance->entity['KNOWLEDGE']['CATEGORY'] . ' (title,user) VALUES ("' . sql_safe($new_category) . '",' . $userid . ')');
$category_id = mysqli_insert_id($base_instance->db_link);
}
$base_instance->query('UPDATE ' . $base_instance->entity['KNOWLEDGE']['MAIN'] . ' SET text="' . sql_safe($text) . '",title="' . sql_safe($title) . '",category=' . $category_id . ',value=' . $value . ',public=' . $public . ' WHERE user='******' AND ID=' . $knowledge_id);
$data = $base_instance->get_data('SELECT title FROM ' . $base_instance->entity['KNOWLEDGE']['CATEGORY'] . ' WHERE user='******' AND ID=' . $category_id);
$cat_title = $data[1]->title;
$base_instance->show_message('Knowledge updated', '<script language="JavaScript" type="text/javascript">function createRequestObject(){try{var requester=new XMLHttpRequest();}catch(error){try{var requester=new ActiveXObject("Microsoft.XMLHTTP");}catch(error){return false;}} return requester;}var http=createRequestObject();function DelKnow(item){if(confirm("Delete Knowledge?")){http.open(\'get\',\'delete-knowledge.php?item=\'+item); http.send(null);}}</script>
<a href="add-knowledge.php?category_id=' . $category_id . '">[Add more]</a> <a href="edit-knowledge.php?knowledge_id=' . $knowledge_id . '">[Edit]</a> <a href="javascript:DelKnow(\'' . $knowledge_id . '\')">[Delete]</a> <a href="send-content.php?knowledge_id=' . $knowledge_id . '">[Send]</a><p><a href="show-knowledge-categories.php">[Show all Categories]</a> <a href="show-knowledge.php">[Show all Knowledge]</a><p><b>Internal Link:</b> [k' . $knowledge_id . '] <b>Category:</b> ' . $cat_title . ' <a href="show-knowledge.php?category_id=' . $category_id . '">[Show]</a>');
} else {
$html_instance->error_message = $error;
$text = stripslashes($text);
$title = stripslashes($title);
}
} else {
$data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['KNOWLEDGE']['MAIN']} WHERE user='******' AND ID='{$knowledge_id}'");
<?php
require 'class.base.php';
require 'class.html.php';
$base_instance = new base();
$html_instance = new html();
$userid = $base_instance->get_userid();
$category_id = isset($_REQUEST['category_id']) ? (int) $_REQUEST['category_id'] : exit;
if (isset($_POST['save_it'])) {
$title_text_field = sql_safe($_POST['title_text_field']);
$base_instance->query("INSERT INTO {$base_instance->entity['DATABASE']['TEXT_FIELDS']} (user,title,category_id) VALUES ({$userid},'{$title_text_field}',{$category_id})");
$field_id = mysqli_insert_id($base_instance->db_link);
$base_instance->show_message('Field saved', '<a href="add-database-number-field.php?category_id=' . $category_id . '">[Add Number Field]</a> <a href="add-database-text-field.php?category_id=' . $category_id . '">[Add Text Field]</a><p>
<a href="add-database-select-field.php?category_id=' . $category_id . '">[Add Select Field]</a> <a href="add-database-checkbox-field.php?category_id=' . $category_id . '">[Add Checkbox Field]</a><p><a href="add-database-data.php?category_id=' . $category_id . '">[Add Data]</a> <a href="edit-database-text-field.php?text_field_id=' . $field_id . '">[Edit Field]</a> <a href="show-database-data.php?category_id=' . $category_id . '">[Show all Data]</a>');
}
$html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'Add Text Field', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'INNER_TABLE_WIDTH' => '400', 'TD_WIDTH' => '30%', 'BUTTON_TEXT' => 'Save Field'));
$html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'save_it', 'VALUE' => 1));
$html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'category_id', 'VALUE' => "{$category_id}"));
$html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'title_text_field', 'VALUE' => '', 'SIZE' => 35, 'TEXT' => 'Name of Field'));
$html_instance->process();
<?php
$filename = 'blocks/' . $directory . '/templates/top.tpl.php';
$file = fopen($filename, "r") or die("Can't open gallery block top template");
$boxlet_content = fread($file, filesize($filename));
fclose($file);
$user_filter = $usersC->get_filter($_SESSION['user_id']);
$user_filter_arr = $filtersC->parse_filter_string($user_filter);
$ret = base::query('SELECT t.id, t.cid, c.subject, t.file, t.extension, u.nick, c.timest, c.filters FROM threads t INNER JOIN comments c ON t.cid=c.id INNER JOIN users u ON c.uid=u.id WHERE t.approved=true AND t.section=3 ORDER BY t.id DESC LIMIT 3', 'assoc_array', array());
$item_tpl = 'blocks/' . $directory . '/templates/middle.tpl.php';
$tpl_file = fopen($item_tpl, "r") or die("Can't open gallery block middle template");
$tpl_size = filesize($item_tpl);
foreach ($ret as $item) {
rewind($tpl_file);
$boxlet_content .= fread($tpl_file, $tpl_size);
$boxlet_content = str_replace('[author]', $item['nick'], $boxlet_content);
if ($messagesC->is_filtered($user_filter_arr, $item['filters'])) {
$subject = 'Сообщение отфильтровано в соответствии с вашими настройками фильтрации';
$img_thumb_link = $img_link = 'themes/' . $theme . '/empty.gif';
} else {
$img_thumb_link = 'images/gallery/thumbs/' . $item['file'] . '_small.png';
$img_link = 'images/gallery/' . $item['file'] . '.' . $item['extension'];
$subject = $item['subject'];
}
$boxlet_content = str_replace('[img_thumb_link]', $img_thumb_link, $boxlet_content);
$boxlet_content = str_replace('[img_link]', $img_link, $boxlet_content);
$boxlet_content = str_replace('[subject]', $subject, $boxlet_content);
$boxlet_content = str_replace('[timestamp]', core::to_local_time_zone($item['timest']), $boxlet_content);
$boxlet_content = str_replace('[link]', 'thread_' . $item['id'] . '_page_1', $boxlet_content);
}
fclose($tpl_file);
if (!$category_id && !$new_category) {
$error .= '<li> Category cannot be left blank';
}
if ($new_category) {
$duplicate = $base_instance->get_data('SELECT * FROM ' . $base_instance->entity['CONTACT']['CATEGORY'] . ' WHERE title="' . sql_safe($new_category) . '" AND user='******'<li> Category with this name already exists';
}
$new_category = str_replace('"', '"', $new_category);
if (strlen($new_category) > 50) {
$error .= '<li> Category title is too long (Max. 50 Characters)';
}
}
if (!$error) {
if ($new_category) {
$base_instance->query('INSERT INTO ' . $base_instance->entity['CONTACT']['CATEGORY'] . ' (title,user) VALUES ("' . sql_safe($new_category) . '",' . $userid . ')');
$category_id = mysqli_insert_id($base_instance->db_link);
}
$datetime = $_POST['datetime'];
$html_instance->check_for_duplicates('CONTACT', 'MAIN', $datetime, $userid);
$firstname = str_replace('"', '"', $firstname);
$lastname = str_replace('"', '"', $lastname);
$address = str_replace('"', '"', $address);
$company = str_replace('"', '"', $company);
$base_instance->query('INSERT INTO ' . $base_instance->entity['CONTACT']['MAIN'] . ' (datetime,user,firstname,lastname,email,telephone,fax,mobile,address,notes,company,url,category,public) VALUES ("' . sql_safe($datetime) . '",' . $userid . ',"' . sql_safe($firstname) . '","' . sql_safe($lastname) . '","' . sql_safe($email) . '","' . sql_safe($telephone) . '","' . sql_safe($fax) . '","' . sql_safe($mobile) . '","' . sql_safe($address) . '","' . sql_safe($notes) . '","' . sql_safe($company) . '","' . sql_safe($url) . '",' . $category_id . ',' . $public . ')');
$contact_id = mysqli_insert_id($base_instance->db_link);
$data = $base_instance->get_data("SELECT title FROM {$base_instance->entity['CONTACT']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'");
$cat_title = $data[1]->title;
$base_instance->show_message('Contact saved', '<script language="JavaScript" type="text/javascript">function createRequestObject(){try{var requester=new XMLHttpRequest();}catch(error){try{var requester=new ActiveXObject("Microsoft.XMLHTTP");}catch(error){return false;}} return requester;}var http=createRequestObject();function DelContact(item){if(confirm("Delete Contact?")){http.open(\'get\',\'delete-contact.php?item=\'+item); http.send(null);}}</script>
<a href="add-contact.php?category_id=' . $category_id . '">[Add more]</a> <a href="edit-contact.php?contact_id=' . $contact_id . '">[Edit]</a> <a href="javascript:DelContact(\'' . $contact_id . '\')">[Delete]</a> <a href="send-content.php?contact_id=' . $contact_id . '">[Send]</a><p><a href="show-contact-categories.php">[Show all Categories]</a> <a href="show-contact.php">[Show all Contacts]</a><p><b>Internal Link:</b> [c' . $contact_id . '] <b>Category:</b> ' . $cat_title . ' <a href="show-contact.php?category_id=' . $category_id . '">[Show]</a>');
<?php
require 'class.base.php';
$base_instance = new base();
$userid = $base_instance->get_userid();
$item = isset($_REQUEST['item']) ? (int) $_REQUEST['item'] : exit;
if ($item) {
$base_instance->query("DELETE FROM organizer_reminder_days WHERE ID='{$item}' AND user='******'");
echo 'item', $item, '|Deleted';
}
