public function register($user) { //验证输入数据合法性 $error = array(); preg_match('/^([\\.a-zA-z0-9_-])+@([a-zA-z0-9_-])+((\\.[a-zA-z0-9_-]{2,3}){1,2})$/', $user['email']) || ($error[] = '邮箱格式错误!'); mysql_num_rows(base::query("SELECT uid FROM 'members' WHERE 'email' = '{$user['email']}'")) == 0 || ($error[] = '该eamil地址已经存在'); }
function to_local_time_zone($timest, $gmt = null) { $first_arr = explode(" ", $timest); $second_arr = explode("-", $first_arr[0]); $third_arr = explode(":", $first_arr[1]); $year = $second_arr[0]; $month = $second_arr[1]; $day = $second_arr[2]; $hour = $third_arr[0]; $minute = $third_arr[1]; $second = $third_arr[2]; $param_arr = array($_SESSION['user_id']); if ($gmt == null) { $sel = base::query('SELECT gmt FROM users WHERE id = \'::0::\'', 'assoc_array', $param_arr); if (!empty($sel)) { $gmt = $sel[0]['gmt']; } else { $gmt = '+0'; } } if ($_SESSION['user_id'] == 1) { if (!empty($_COOKIE['gmt'])) { $gmt = $_COOKIE['gmt']; } } $timest = date("Y-m-d H:i:s", mktime($hour, $minute, $second, $month, $day, $year) + $gmt * 3600); return $timest; }
$address = $_POST['address']; $notes = $_POST['notes']; $url = $_POST['url']; $fax = $_POST['fax']; $category_id = (int) $_POST['category_id']; $new_category = $_POST['new_category']; $public = (int) $_POST['public']; if (!$category_id) { $error .= '<li> Category cannot be left blank'; } if (!$firstname && !$lastname && !$company) { $error .= '<li> First name / Last name / Company cannot be left blank'; } if (!$error) { if ($new_category) { $base_instance->query('INSERT INTO ' . $base_instance->entity['CONTACT']['CATEGORY'] . ' (title,user) VALUES ("' . sql_safe($new_category) . '",' . $userid . ')'); $category_id = mysqli_insert_id($base_instance->db_link); } $firstname = str_replace('"', '"', $firstname); $lastname = str_replace('"', '"', $lastname); $address = str_replace('"', '"', $address); $company = str_replace('"', '"', $company); $base_instance->query('UPDATE ' . $base_instance->entity['CONTACT']['MAIN'] . ' SET firstname="' . sql_safe($firstname) . '",lastname="' . sql_safe($lastname) . '",email="' . sql_safe($email) . '",telephone="' . sql_safe($telephone) . '",fax="' . sql_safe($fax) . '",mobile="' . sql_safe($mobile) . '",address="' . sql_safe($address) . '",notes="' . sql_safe($notes) . '",company="' . sql_safe($company) . '",url="' . sql_safe($url) . '",category=' . $category_id . ',public=' . $public . ' WHERE user='******' AND ID=' . $contact_id); $data = $base_instance->get_data("SELECT title FROM {$base_instance->entity['CONTACT']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'"); $cat_title = $data[1]->title; $base_instance->show_message('Contact updated', '<script language="JavaScript" type="text/javascript">function createRequestObject(){try{var requester=new XMLHttpRequest();}catch(error){try{var requester=new ActiveXObject("Microsoft.XMLHTTP");}catch(error){return false;}} return requester;}var http=createRequestObject();function DelContact(item){if(confirm("Delete Contact?")){http.open(\'get\',\'delete-contact.php?item=\'+item); http.send(null);}}</script> <a href="add-contact.php?category_id=' . $category_id . '">[Add more]</a> <a href="edit-contact.php?contact_id=' . $contact_id . '">[Edit]</a> <a href="javascript:DelContact(\'' . $contact_id . '\')">[Delete]</a> <a href="send-content.php?contact_id=' . $contact_id . '">[Send]</a><p><a href="show-contact-categories.php">[Show all Categories]</a> <a href="show-contact.php">[Show all Contacts]</a><p><b>Internal Link:</b> [c' . $contact_id . '] <b>Category:</b> ' . $cat_title . ' <a href="show-contact.php?category_id=' . $category_id . '">[Show]</a>'); } else { $html_instance->error_message = $error; $company = stripslashes($company);
<?php require 'class.base.php'; require 'class.html.php'; $base_instance = new base(); $html_instance = new html(); $userid = $base_instance->get_userid(); $category_id = isset($_REQUEST['category_id']) ? (int) $_REQUEST['category_id'] : exit; if (isset($_POST['delete_it'])) { $base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'"); $base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['MAIN']} WHERE user='******' AND category_id='{$category_id}'"); # delete checkbox records $base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['CHECKBOX_VALUES']} WHERE user='******' AND category_id='{$category_id}'"); $data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['DATABASE']['CHECKBOX_FIELDS']} WHERE user='******' AND category_id='{$category_id}'"); for ($index = 1; $index <= sizeof($data); $index++) { $checkbox_field_id = $data[$index]->ID; $base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['CHECKBOX_ITEMS']} WHERE user='******' AND checkbox_field_id='{$checkbox_field_id}'"); } $base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['CHECKBOX_FIELDS']} WHERE user='******' AND category_id='{$category_id}'"); # delete select records $base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['SELECT_VALUES']} WHERE user='******' AND category_id='{$category_id}'"); $data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['DATABASE']['SELECT_FIELDS']} WHERE user='******' AND category_id='{$category_id}'"); for ($index = 1; $index <= sizeof($data); $index++) { $select_field_id = $data[$index]->ID; $base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['SELECT_ITEMS']} WHERE user='******' AND select_field_id='{$select_field_id}'"); } $base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['SELECT_FIELDS']} WHERE user='******' AND category_id='{$category_id}'"); # delete number records $base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['NUMBER_FIELDS']} WHERE user='******' AND category_id='{$category_id}'"); $base_instance->query("DELETE FROM {$base_instance->entity['DATABASE']['NUMBER_VALUES']} WHERE user='******' AND category_id='{$category_id}'"); header('Location: close-me.php');
} else { echo 'error'; exit; } } } } } } } } } } } } $base_instance->query("UPDATE {$base_instance->entity['KNOWLEDGE']['FLASHCARDS']} SET value={$new_value},shown=shown+1,last_shown={$now},word_loop=0 WHERE word_id='{$knowledge_id}' AND user='******' AND category_id=0"); $base_instance->query("UPDATE {$base_instance->entity['KNOWLEDGE']['FLASHCARDS']} SET word_loop=1 WHERE word_loop=0 AND user={$userid} AND category_id=0 AND value > -1 AND value < {$now} ORDER BY value LIMIT 1"); # find a new word from active words that is due and add to loop $aff_rows = mysqli_affected_rows($base_instance->db_link); if ($aff_rows == 0) { increase_loop_words(1); } # if nothing found add a new word to active words and add to loop echo '<head>', _CSS_NAV, '<meta http-equiv="refresh" content="10;url=status.php"></head><font size="2">Removed from Loop</font>'; } # function increase_loop_words($how_many) { global $base_instance, $html_instance; $how_many--; $userid = $base_instance->user;
<?php require 'class.base.php'; require 'class.html.php'; require 'class.home.php'; $base_instance = new base(); $html_instance = new html(); $home_instance = new home(); $userid = $base_instance->get_userid(); $home_id = isset($_REQUEST['home_id']) ? (int) $_REQUEST['home_id'] : ''; $base_instance->query("SET sql_mode = 'NO_UNSIGNED_SUBTRACTION'"); // necessary for the overflow problem, see http://dev.mysql.com/doc/refman/5.6/en/out-of-range-and-overflow.html $all_text = '<div align="center">'; if ($userid == _GUEST_USERID) { $all_text .= '<h3>Demo Login, do not save any relevant data.</h3>Please read the <a href="help-intro.php"><u>help section</u></a> to get started with the Organizer'; } else { $all_text .= '<br>'; } # if (empty($home_id)) { $data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['HOME']['MAIN']} WHERE user='******' ORDER BY ID LIMIT 1"); } else { $data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['HOME']['MAIN']} WHERE ID='{$home_id}' AND user='******'"); } if (isset($data)) { $title = $data[1]->title; $element1 = $data[1]->element1; $element2 = $data[1]->element2; $element3 = $data[1]->element3; $element4 = $data[1]->element4; $element5 = $data[1]->element5;
} $new_category = str_replace('"', '"', $new_category); if (strlen($new_category) > 50) { $error .= '<li> Category title is too long (Max. 50 Characters)'; } } if ($title) { $title = trim($title); $title = str_replace('"', '"', $title); if (strlen($title) > 100) { $error .= '<li> Title too long (Max. 100 Characters)'; } } if (!$error) { if ($new_category) { $base_instance->query('INSERT INTO ' . $base_instance->entity['FILE']['CATEGORY'] . ' (title,user) VALUES ("' . sql_safe($new_category) . '",' . $userid . ')'); $category_id = mysqli_insert_id($base_instance->db_link); $new_category = ''; } $res = is_dir('./upload/' . $userid . '/'); if (!$res) { system('mkdir ./upload/' . $userid . '/'); } $uploadpath = './upload/' . $userid . '/'; if ($source) { $imagesize = @getimagesize($source); switch ($imagesize[2]) { case 0: $error .= '<li> Not an image file (only gif, jpg or png allowed)'; break; case 1:
$category_id = isset($_REQUEST['category_id']) ? (int) $_REQUEST['category_id'] : exit; if (isset($_POST['add_fields'])) { $number_of_fields = (int) $_POST['number_of_fields']; $number_of_fields += 3; for ($index = 1; $index <= $number_of_fields; $index++) { if (isset($_POST['name_select_field_item_' . $index])) { $item_value[$index] = sql_safe($_POST['name_select_field_item_' . $index]); } else { $item_value[$index] = ''; } } } else { if (isset($_POST['save_it'])) { $title_select_field = sql_safe($_POST['title_select_field']); $number_of_fields = (int) $_POST['number_of_fields']; $base_instance->query("INSERT INTO {$base_instance->entity['DATABASE']['SELECT_FIELDS']} (user,title,category_id) VALUES ({$userid},'{$title_select_field}',{$category_id})"); $select_field_id = mysqli_insert_id($base_instance->db_link); for ($index = 1; $index <= $number_of_fields; $index++) { $name_item = sql_safe($_POST['name_select_field_item_' . $index]); if ($name_item) { $base_instance->query("INSERT INTO {$base_instance->entity['DATABASE']['SELECT_ITEMS']} (title,user,select_field_id) VALUES ('{$name_item}',{$userid},{$select_field_id})"); } } $base_instance->show_message('Field saved', '<a href="add-database-number-field.php?category_id=' . $category_id . '">[Add Number Field]</a> <a href="add-database-text-field.php?category_id=' . $category_id . '">[Add Text Field]</a><p> <a href="add-database-select-field.php?category_id=' . $category_id . '">[Add Select Field]</a> <a href="add-database-checkbox-field.php?category_id=' . $category_id . '">[Add Checkbox Field]</a><p><a href="add-database-data.php?category_id=' . $category_id . '">[Add Data]</a> <a href="edit-database-select-field.php?select_field_id=' . $select_field_id . '">[Edit Field]</a> <a href="show-database-data.php?category_id=' . $category_id . '">[Show all Data]</a>'); } } if (empty($number_of_fields)) { $number_of_fields = 5; } if (isset($_POST['title_select_field'])) {
<?php require 'class.base.php'; require 'class.html.php'; $base_instance = new base(); $html_instance = new html(); $userid = $base_instance->get_userid(); $id = isset($_GET['id']) ? (int) $_GET['id'] : exit; $del_message = isset($_GET['del_message']) ? (int) $_GET['del_message'] : ''; if ($userid == _ADMIN_USERID && $del_message) { $base_instance->query("DELETE FROM {$base_instance->entity['FORUM']['MAIN']} WHERE ID={$del_message}"); } $html_instance->add_parameter(array('ACTION' => 'show_content', 'ENTITY' => 'FORUM', 'WHERE' => "WHERE ID={$id} OR followup={$id}", 'ORDER_COL' => 'followup,datetime', 'ORDER_TYPE' => 'DESC', 'MAXHITS' => 40, 'TEXT_CENTER' => '<center><a href="javascript:history.go(-1)">[Go Back]</a></center>', 'INNER_TABLE_WIDTH' => '90%', 'HEADER' => 'Thread', 'URL_PARAMETER' => "id={$id}")); $data = $html_instance->get_items(); $all_text = ''; for ($index = 1; $index <= sizeof($data); $index++) { $ID = $data[$index]->ID; $text = $data[$index]->text; $title = $data[$index]->title; $text = convert_square_bracket($text); $title = convert_square_bracket($title); if ($title) { $html_instance->para['HEADER'] = $title; } $userid_message = $data[$index]->user; $followup = $data[$index]->followup; $datetime = $data[$index]->datetime; $datetime_converted = $base_instance->convert_date($datetime); if ($followup == 0) { $color = '#dedfdf'; } else {
$title = str_replace('"', '"', $title); } if (!$diary_text) { $error .= '<li> Text cannot be left blank'; } else { $diary_text = trim($diary_text); if (strlen($diary_text) > 65535) { $error .= '<li> Text is too long (Max. 65535 Characters)'; } } if (!$error) { $date = $year . '-' . $month . '-' . $day; $data = $base_instance->get_data("SELECT ID FROM {$base_instance->entity['DIARY']['MAIN']} WHERE date='{$date}' AND user='******'"); if (isset($data)) { $diary_id = $data[1]->ID; $base_instance->query('UPDATE ' . $base_instance->entity['DIARY']['MAIN'] . ' SET text="' . sql_safe($diary_text) . '",title="' . sql_safe($title) . '" WHERE user='******' AND ID=' . $diary_id); } else { $today = date('Y-m-d'); $base_instance->query('INSERT INTO ' . $base_instance->entity['DIARY']['MAIN'] . ' (date,text,title,user,last_shown) VALUES ("' . sql_safe($date) . '","' . sql_safe($diary_text) . '","' . sql_safe($title) . '",' . $userid . ',"' . $today . '")'); $diary_id = mysqli_insert_id($base_instance->db_link); } $base_instance->show_message('Diary saved', '<script language="JavaScript" type="text/javascript">function createRequestObject(){try{var requester=new XMLHttpRequest();}catch(error){try{var requester=new ActiveXObject("Microsoft.XMLHTTP");}catch(error){return false;}} return requester;}var http=createRequestObject();function DelDiary(item){if(confirm("Delete Diary?")){http.open(\'get\',\'delete-diary.php?item=\'+item); http.send(null);}}</script> <a href="add-diary.php?day=' . $day . '&month=' . $month . '&year=' . $year . '">[Edit]</a> <a href="javascript:DelDiary(\'' . $diary_id . '\')">[Delete]</a> <a href="send-content.php?diary_id=' . $diary_id . '">[Send]</a> <a href="show-diary.php">[Show all]</a><p>'); } else { $all_text = '<blockquote><font color="#ff0000"><ul>' . $error . '</ul></font></blockquote>'; $diary_text = stripslashes($diary_text); $title = stripslashes($title); } } elseif (isset($diary_id)) { $data = $base_instance->get_data("SELECT ID,date,text,title FROM {$base_instance->entity['DIARY']['MAIN']} WHERE ID='{$diary_id}' AND user='******'");
You haven\'t logged in for almost a year. Your account might be deleted if you fail to do so. Please login as soon as possible. Your login details are: Login: '******' Password: '******' Login at '._HOMEPAGE.'/ '._SEPARATOR."\n\n"; }*/ $msg .= $newsletter_text; if ($all != 1) { $msg .= "\n\n" . _SEPARATOR . ' You receive this email because you signed up for our newsletter. The URL of the website is ' . _HOMEPAGE . '/ To unsubscribe from this newsletter please go to "Misc > Settings > Newsletter".'; } $msg .= "\n\n"; $msg .= _SEPARATOR . "\n"; $msg .= _EMAIL_ADVERT_TEXT . "\n"; $msg .= _SEPARATOR . "\n"; $msg .= _SLOGAN . "\n"; $msg .= _HOMEPAGE . "\n"; $msg .= 'Email: ' . _ADMIN_EMAIL . "\n"; mail($email, $mailsubject, $msg, $mailheaders); $base_instance->query("UPDATE {$base_instance->entity['USER']['MAIN']} SET newsletter={$newsletter_id} WHERE ID={$ID}"); }
<?php require 'class.base.php'; require 'class.html.php'; require 'class.user.php'; $base_instance = new base(); $html_instance = new html(); $user_instance = new user(); $user_instance->check_for_admin(); $news_id = isset($_REQUEST['news_id']) ? (int) $_REQUEST['news_id'] : exit; if (isset($_POST['save'])) { $base_instance->query("DELETE FROM {$base_instance->entity['NEWS']['MAIN']} WHERE ID='{$news_id}'"); header('Location: close-me.php'); exit; } $data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['NEWS']['MAIN']} WHERE ID='{$news_id}'"); if (!$data) { $base_instance->show_message('News not found'); exit; } $datetime = $data[1]->datetime; $text = $data[1]->text; $title = $data[1]->title; $text2 = substr($text, 0, 50); $datetime_converted = $base_instance->convert_date($datetime . ' 00:00:00'); $html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => '<font color="#ff0000">Delete this News?</font>', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BUTTON_TEXT' => 'Delete News')); $html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'news_id', 'VALUE' => "{$news_id}")); if ($title) { $text2 = "<b>{$title}</b>: {$text2}"; } $html_instance->add_form_field(array('TYPE' => 'label', 'TEXT' => "<strong>Added:</strong> {$datetime_converted}<p>{$text2}"));
$color_navigation = 1; $background = 14; $allow_file_upload = 2; } else { $font_face_main = $data[1]->font_face_main; $font_face_navigation = $data[1]->font_face_navigation; $font_size = $data[1]->font_size; $color_main = $data[1]->color_main; $color_navigation = $data[1]->color_navigation; $background = $data[1]->background; $allow_file_upload = $data[1]->allow_file_upload; setcookie('remember_username', $username, time() + 2592000); } $datetime = date('Y-m-d H:i:s'); # set new login number and logins $base_instance->query("UPDATE {$base_instance->entity['USER']['MAIN']} SET logins=logins+1,lastlogin='******' WHERE ID={$userid}"); $sid = mt_rand(1000000, 9999999); $timestamp = time(); # delete old session id of same user $base_instance->query("DELETE FROM {$base_instance->entity['SESSION']['MAIN']} WHERE user={$userid}"); # new session id $base_instance->query("INSERT INTO {$base_instance->entity['SESSION']['MAIN']} (session_id, create_time, last_active, user, lastlogin, background, color_main, color_navigation, font_face_main, font_face_navigation, font_size, timezone, dateformat, online_status, allow_file_upload) VALUES ({$sid}, {$timestamp}, {$timestamp}, {$userid}, '{$lastlogin}', {$background}, {$color_main}, {$color_navigation}, {$font_face_main}, {$font_face_navigation}, {$font_size}, {$timezone}, {$dateformat}, {$online_status}, {$allow_file_upload})"); if (substr($lastlogin, 0, 10) != substr($datetime, 0, 10)) { # do this just once a day, not for every login $base_instance->query("UPDATE {$base_instance->entity['LINK']['MAIN']} SET popularity=popularity*0.995 WHERE user='******'"); } setcookie('sid', $sid); if (($logins == 10 or $logins == 200 or $logins == 1000 or $logins == 1500 or $logins == 2000) && empty($_GET['guest']) && $userid != _ADMIN_USERID && _ASK_FEEDBACK == 1) { header('Location: feedback.php'); exit; } else {
You can directly login with the following URL: ' . $url . ' For the password reminder go here: ' . _HOMEPAGE . '/password-reminder.php'; $msg .= "\n\n"; $msg .= _SEPARATOR . "\n"; $msg .= _EMAIL_ADVERT_TEXT . "\n"; $msg .= _SEPARATOR . "\n"; $msg .= _SLOGAN . "\n"; $msg .= _HOMEPAGE . "\n"; $msg .= 'Email: ' . _ADMIN_EMAIL . "\n"; mail($email, $mailsubject, $msg, $mailheaders); $base_instance->query("UPDATE {$base_instance->entity['USER']['MAIN']} SET last_reminded='{$today}' WHERE ID={$ID}"); } if ($sizeof > 0) { echo '<head><meta http-equiv="refresh" content="10;URL=send-warning.php?months=' . $months . '&save=1"></head><p><strong>Continue to send more reminder emails in a few seconds (' . $fnd_rows . ' left) ..</strong>'; } else { echo 'finished'; } exit; } $html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'Send Reminder', 'TEXT_CENTER' => 'Send a reminder email to user who have not logged in for a long time.<p>', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BUTTON_TEXT' => 'Send', 'INNER_TABLE_WIDTH' => '220')); $html_instance->add_form_field(array('TYPE' => 'label', 'TEXT' => '<strong>Send Email to users who have .. </strong>')); $html_instance->add_form_field(array('TYPE' => 'label', 'TEXT' => '<select name="months"> <option value=3>Not logged in for 3 months <option selected value=6>Not logged in for 6 months <option value=12>Not logged in for 1 year <option value=24>Not logged in for 2 years
} else { if (!$followup) { $error .= '<li> Title cannot be left blank'; } } if ($text) { $text = trim($text); if (strlen($text) > 65535) { $error .= '<li> Text is too long (Max. 65535 Characters)'; } } else { $error .= '<li> Message cannot be left blank'; } if (!$error) { $datetime = $_POST['datetime']; $base_instance->query('INSERT INTO ' . $base_instance->entity['FORUM']['MAIN'] . ' (datetime,updated,text,title,followup,user) VALUES ("' . sql_safe($datetime) . '","' . sql_safe($datetime) . '","' . sql_safe($text) . '","' . sql_safe($title) . '",' . $followup . ',' . $userid . ')'); if (_FORUM_NOTIFY == 1 && $userid != _ADMIN_USERID) { $msg = "New Forum Message:\n\n" . $title . "\n\n" . $text; $base_instance->send_email_from_admin('New Forum Message Notification', $msg, _ADMIN_EMAIL); } header('Location: show-forum.php'); exit; } else { $html_instance->error_message = $error; $text = stripslashes($text); $title = stripslashes($title); } } $html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'New Forum Message', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BODY' => 'onLoad="javascript:document.form1.title.focus()"', 'BUTTON_TEXT' => 'Post new Message')); $html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'followup', 'VALUE' => "{$followup}")); $html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'title', 'VALUE' => "{$title}", 'SIZE' => 50, 'TEXT' => 'Title'));
<?php require 'class.base.php'; require 'class.html.php'; $base_instance = new base(); $html_instance = new html(); $userid = $base_instance->get_userid(); $file_id = isset($_GET['file_id']) ? (int) $_GET['file_id'] : exit; $token = 't' . md5(uniqid(rand(), true)); # $data = $base_instance->get_data("SELECT filename FROM {$base_instance->entity['FILE']['MAIN']} WHERE ID='{$file_id}'"); $filename = $data[1]->filename; $path = pathinfo($filename); if (isset($path['extension'])) { $ext = strtolower($path['extension']); } else { $ext = ''; } if ($ext == 'gif' or $ext == 'png' or $ext == 'jpg' or $ext == 'jpeg') { $image_link = '<p><form><strong>Display Image:</strong> <input type="text" name="" size="15" value="[image-' . $file_id . ']" onFocus="this.select()"></form>'; } else { $image_link = ''; } # $base_instance->query("UPDATE {$base_instance->entity['FILE']['MAIN']} SET token='{$token}',public=2 WHERE ID='{$file_id}'"); $base_instance->show_message('File is public now', '<b>Download Link:</b><p><form><input type="text" name="" size="80" value="' . _HOMEPAGE . '/file-' . $token . '" onFocus="this.select()"></form>' . $image_link, 1);
$error = ''; $title = $_POST['title']; $day = (int) $_POST['day']; $month = (int) $_POST['month']; $year = (int) $_POST['year']; if ($title) { $title = trim($title); if (strlen($title) > 100) { $error .= '<li> Title too long (Max. 100 Characters)'; } $title = str_replace('"', '"', $title); } if (!$error) { $date = "{$year}-{$month}-{$day}"; $time = date('H:i:s'); $base_instance->query('INSERT INTO ' . $base_instance->entity['DATABASE']['MAIN'] . ' (datetime,day,month,year,title,text,user,category_id) VALUES ("' . $date . ' ' . $time . '",' . $day . ',' . $month . ',' . $year . ',"' . sql_safe($title) . '","' . sql_safe($text) . '",' . $userid . ',' . $category_id . ')'); $insert_id = mysqli_insert_id($base_instance->db_link); # insert checkbox values $data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['DATABASE']['CHECKBOX_FIELDS']} WHERE user='******' AND category_id='{$category_id}'"); for ($index = 1; $index <= sizeof($data); $index++) { $ID = $data[$index]->ID; if (isset($_POST['checkbox' . $ID])) { $checkbox_array = $_POST['checkbox' . $ID]; for ($hh = 0; $hh < count($checkbox_array); $hh++) { $value = sql_safe($checkbox_array[$hh]); if ($value) { $base_instance->query("INSERT INTO {$base_instance->entity['DATABASE']['CHECKBOX_VALUES']} (date,user,value,data_id,checkbox_field_id,category_id) VALUES ('{$date}',{$userid},{$value},{$insert_id},{$ID},{$category_id})"); } } } }
$html_instance = new html(); $userid = $base_instance->get_userid(); if (isset($_POST['save'])) { $error = ''; $about_me = $_POST['about_me']; $firstname = $_POST['firstname']; $lastname = $_POST['lastname']; $country = (int) $_POST['country']; if (!empty($about_me)) { $about_me = trim($about_me); if (strlen($about_me) > 65535) { $error .= '<li> Text is too long (Max. 65535 Characters)'; } } if (!$error) { $base_instance->query('UPDATE ' . $base_instance->entity['USER']['MAIN'] . ' SET about_me="' . sql_safe($about_me) . '",firstname="' . sql_safe($firstname) . '",lastname="' . sql_safe($lastname) . '",country=' . $country . ' WHERE ID=' . $userid); $base_instance->show_message('About Me page updated', '<a href="show-user.php?userid=' . $userid . '">[View Profile Page]</a>'); } else { $html_instance->error_message = $error; } } else { $data = $base_instance->get_data("SELECT about_me,firstname,lastname,country FROM {$base_instance->entity['USER']['MAIN']} WHERE ID='{$userid}'"); $about_me = $data[1]->about_me; $firstname = $data[1]->firstname; $lastname = $data[1]->lastname; $country = $data[1]->country; } $html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'About Me', 'TEXT_CENTER' => 'The About Me text is a public text which appears in your profile.<br>Firstname and lastname is not public, it will only be used for sending emails within the Organizer.<p>', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BODY' => 'onLoad="javascript:document.form1.about_me.focus()"', 'BUTTON_TEXT' => 'Update')); $html_instance->add_form_field(array('TYPE' => 'textarea', 'NAME' => 'about_me', 'VALUE' => "{$about_me}", 'TEXT' => 'About me', 'COLS' => 80, 'ROWS' => 4)); $html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'firstname', 'VALUE' => "{$firstname}", 'SIZE' => 35, 'TEXT' => 'Firstname')); $html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'lastname', 'VALUE' => "{$lastname}", 'SIZE' => 35, 'TEXT' => 'Lastname'));
} else { if (isset($_POST['save'])) { $error = ''; $title_field = sql_safe($_POST['title_field']); $number_of_fields = (int) $_POST['number_of_fields']; if (!$title_field) { $error .= '<li> Category cannot be left blank'; } else { $title_field = trim($title_field); $title_field = str_replace('"', '"', $title_field); if (strlen($title_field) > 100) { $error .= '<li> Title too long'; } } if (!$error) { $base_instance->query('UPDATE ' . $base_instance->entity['DATABASE']['CHECKBOX_FIELDS'] . ' SET title="' . sql_safe($title_field) . '" WHERE user='******' AND ID=' . $checkbox_field_id); # for ($index = 1; $index <= $number_of_fields; $index++) { $title_var = $_POST['name_checkbox_field_item_' . $index]; $id_var = (int) $_POST['id_checkbox_field_item_' . $index]; if ($title_var) { if ($id_var) { $base_instance->query('UPDATE ' . $base_instance->entity['DATABASE']['CHECKBOX_ITEMS'] . ' SET title="' . sql_safe($title_var) . '" WHERE user='******' AND ID=' . $id_var); } else { $base_instance->query('INSERT INTO ' . $base_instance->entity['DATABASE']['CHECKBOX_ITEMS'] . ' (title,user,checkbox_field_id) VALUES ("' . sql_safe($title_var) . '",' . $userid . ',' . $checkbox_field_id . ')'); } } } $base_instance->show_message('Field upated', '<a href="edit-database-checkbox-field.php?checkbox_field_id=' . $checkbox_field_id . '">[Edit Field]</a> <a href="javascript:void(window.open(\'delete-database-checkbox-field.php?checkbox_field_id=' . $checkbox_field_id . '\',\'\',\'width=450,height=200,top=100,left=100\'))">[Delete Field]</a>'); } else { $html_instance->error_message = $error;
} if (!empty($feed) && !$title) { $error .= '<li> Feed Title ' . $index . ' cannot be left empty'; } $data = $base_instance->get_data('SELECT ID FROM ' . $base_instance->entity['RSS']['MAIN'] . ' WHERE feed="' . sql_safe($feed) . '" AND user='******'<li> RSS Feed ' . $index . ' already saved'; } } if (!$error) { for ($index = 1; $index <= $number_of_fields; $index++) { if (!empty($_POST['title' . $index])) { $title = $_POST['title' . $index]; $feed = $_POST['feed' . $index]; $max_items = $_POST['max_items' . $index]; $base_instance->query('INSERT INTO ' . $base_instance->entity['RSS']['MAIN'] . ' (user,feed,title,max_items) VALUES (' . $userid . ',"' . sql_safe($feed) . '","' . sql_safe($title) . '","' . sql_safe($max_items) . '")'); } } $base_instance->show_message('RSS Feeds saved', '<a href="add-rss-feeds.php">[Add RSS Feeds]</a> <a href="show-rss-feeds.php">[Show RSS Feeds]</a><p><a href="show-home.php">[Edit Homepages]</a>'); } else { $html_instance->error_message = $error; } } if (isset($_POST['more_fields'])) { $number_of_fields += 3; $text = '<table>'; for ($index = 1; $index <= $number_of_fields; $index++) { if (isset($_POST['title' . $index])) { $title = stripslashes($_POST['title' . $index]); } else { $title = '';
<?php require 'class.base.php'; require 'class.html.php'; $base_instance = new base(); $html_instance = new html(); $userid = $base_instance->get_userid(); $category_id = isset($_REQUEST['category_id']) ? (int) $_REQUEST['category_id'] : exit; if (isset($_POST['save'])) { if (!$category_id) { exit; } $base_instance->query("DELETE FROM {$base_instance->entity['TO_DO']['MAIN']} WHERE user='******' AND category='{$category_id}'"); $base_instance->query("DELETE FROM {$base_instance->entity['TO_DO']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'"); header('Location: close-me.php'); exit; } else { $data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['TO_DO']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'"); if (!$data) { $base_instance->show_message('To-Do Category not found'); exit; } $title = $data[1]->title; } $html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => '<font color="#ff0000">Delete this category?</font>', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BUTTON_TEXT' => 'Delete')); $html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'category_id', 'VALUE' => "{$category_id}")); $html_instance->add_form_field(array('TYPE' => 'label', 'TEXT' => "Are you sure you want to delete the <b>'{$title}'</b> category AND the items of this category?")); $html_instance->process();
function create_root($login, $password) { config::include_database('../'); if (!preg_match('/^([a-zA-Z][a-zA-Z0-9\\_\\-]*){2,}$/', $login)) { return -1; } $password = md5($password); $param_arr = array($login, $password); $ret = base::query('INSERT INTO users(gid, nick, password, name, lastname, birthday, gender, email, show_email, im, show_im, country, city, photo, register_date, last_visit, captcha, blocks, additional, raw_additional, news_on_page, comments_on_page, threads_on_page, show_avatars, show_ua, show_resp, theme, gmt, filters, mark, banned, sort_to) VALUES(2, \'::0::\', \'::1::\', \'Администратор сайта\', \'\', \'2000-01-01 00:00:00\', true, \'noemail@rulinux.net\', false, \'nojabber@rulinux.net\', false, \'\', \'\', \'\', \'2000-01-01 00:00:00\', \'2000-01-01 00:00:00\', -1, \'authorization:l:1,links:l:2,gallery:l:3,tracker:l:4,faq:r:1\', \'Администратор сайта добавленный автоматически\', \'Администратор сайта добавленный автоматически\', 10, 50, 30, false, true, false, \'1\', \'+4\', \'\', 1, false, false);', 'assoc_array', $param_arr); return $ret; }
<?php require 'class.base.php'; require 'class.user.php'; $base_instance = new base(); $user_instance = new user(); $user_instance->check_for_admin(); $item = isset($_REQUEST['item']) ? (int) $_REQUEST['item'] : exit; if ($item) { $base_instance->query("DELETE FROM organizer_newsletter WHERE ID='{$item}'"); echo 'item', $item, '|'; }
$userid = $base_instance->get_userid(); $category_id = isset($_REQUEST['category_id']) ? (int) $_REQUEST['category_id'] : exit; if (isset($_POST['save'])) { $error = ''; $title = $_POST['title']; if (!$title) { $error .= '<li> Title cannot be left blank'; } else { $title = trim($title); if (strlen($title) > 50) { $error .= '<li> Title is too long (Max. 50 Characters)'; } $title = str_replace('"', '"', $title); } if (!$error) { $base_instance->query('UPDATE ' . $base_instance->entity['BLOG']['CATEGORY'] . ' SET title="' . sql_safe($title) . '" WHERE user='******' AND ID=' . $category_id); $base_instance->show_message('Blog Category updated', '<a href="add-blog.php?category_id=' . $category_id . '">[Add Blog Post]</a> <a href="add-blog-category.php">[Add Category]</a> <a href="edit-blog-category.php?category_id=' . $category_id . '">[Edit]</a> <a href="javascript:void(window.open(\'delete-blog-category.php?category_id=' . $category_id . '\',\'\',\'width=450,height=200,top=100,left=100\'))">[Delete]</a><p><a href="show-blog-categories.php">[Show Blog Categories]</a>'); } else { $html_instance->error_message = $error; } } else { $data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['BLOG']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'"); if (!$data) { $base_instance->show_message('Blog Category not found'); exit; } $title = $data[1]->title; } $html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'Edit Blog Category', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BODY' => 'onLoad="javascript:document.form1.title.focus()"', 'INNER_TABLE_WIDTH' => '400', 'TD_WIDTH' => '20%', 'BUTTON_TEXT' => 'Update Category')); $html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'category_id', 'VALUE' => $category_id)); $html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'title', 'VALUE' => $title, 'SIZE' => 35, 'TEXT' => 'Title'));
require 'class.base.php'; require 'class.html.php'; $base_instance = new base(); $html_instance = new html(); $userid = $base_instance->get_userid(); if (isset($_POST['save'])) { $error = ''; $title = $_POST['title']; if (!$title) { $error .= '<li> Title cannot be left blank'; } else { $title = trim($title); if (strlen($title) > 50) { $error .= '<li> Title is too long (Max. 50 Characters)'; } $title = str_replace('"', '"', $title); } if (!$error) { $title = sql_safe($title); $html_instance->check_for_duplicates_by_title('NOTE', 'CATEGORY', $title, $userid); $base_instance->query('INSERT INTO ' . $base_instance->entity['NOTE']['CATEGORY'] . ' (title,user) VALUES ("' . $title . '",' . $userid . ')'); $cat_id = mysqli_insert_id($base_instance->db_link); $base_instance->show_message('Notes Category saved', '<a href="add-note.php?category_id=' . $cat_id . '">[Add Note]</a> <a href="add-note-category.php">[Add Category]</a> <a href="edit-note-category.php?category_id=' . $cat_id . '">[Edit]</a> <a href="javascript:void(window.open(\'delete-note-category.php?category_id=' . $cat_id . '\',\'\',\'width=450,height=200,top=100,left=100\'))">[Delete]</a><p><a href="show-note-categories.php">[Show Notes Categories]</a>'); } else { $html_instance->error_message = $error; $title = stripslashes($title); } } $html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'Add Notes Category', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'BODY' => 'onLoad="javascript:document.form1.title.focus()"', 'INNER_TABLE_WIDTH' => '400', 'TD_WIDTH' => '20%', 'BUTTON_TEXT' => 'Save Category')); $html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'title', 'VALUE' => '', 'SIZE' => 35, 'TEXT' => 'Title')); $html_instance->process();
if (strlen($title) > 100) { $error .= '<li> Title is too long (Max. 100 Characters)'; } $title = str_replace('"', '"', $title); } if (!$text) { $error .= '<li> Text cannot be left blank'; } else { $text = trim($text); if (strlen($text) > 65535) { $error .= '<li> Text is too long (Max. 65535 Characters)'; } } if (!$error) { if ($new_category) { $base_instance->query('INSERT INTO ' . $base_instance->entity['KNOWLEDGE']['CATEGORY'] . ' (title,user) VALUES ("' . sql_safe($new_category) . '",' . $userid . ')'); $category_id = mysqli_insert_id($base_instance->db_link); } $base_instance->query('UPDATE ' . $base_instance->entity['KNOWLEDGE']['MAIN'] . ' SET text="' . sql_safe($text) . '",title="' . sql_safe($title) . '",category=' . $category_id . ',value=' . $value . ',public=' . $public . ' WHERE user='******' AND ID=' . $knowledge_id); $data = $base_instance->get_data('SELECT title FROM ' . $base_instance->entity['KNOWLEDGE']['CATEGORY'] . ' WHERE user='******' AND ID=' . $category_id); $cat_title = $data[1]->title; $base_instance->show_message('Knowledge updated', '<script language="JavaScript" type="text/javascript">function createRequestObject(){try{var requester=new XMLHttpRequest();}catch(error){try{var requester=new ActiveXObject("Microsoft.XMLHTTP");}catch(error){return false;}} return requester;}var http=createRequestObject();function DelKnow(item){if(confirm("Delete Knowledge?")){http.open(\'get\',\'delete-knowledge.php?item=\'+item); http.send(null);}}</script> <a href="add-knowledge.php?category_id=' . $category_id . '">[Add more]</a> <a href="edit-knowledge.php?knowledge_id=' . $knowledge_id . '">[Edit]</a> <a href="javascript:DelKnow(\'' . $knowledge_id . '\')">[Delete]</a> <a href="send-content.php?knowledge_id=' . $knowledge_id . '">[Send]</a><p><a href="show-knowledge-categories.php">[Show all Categories]</a> <a href="show-knowledge.php">[Show all Knowledge]</a><p><b>Internal Link:</b> [k' . $knowledge_id . '] <b>Category:</b> ' . $cat_title . ' <a href="show-knowledge.php?category_id=' . $category_id . '">[Show]</a>'); } else { $html_instance->error_message = $error; $text = stripslashes($text); $title = stripslashes($title); } } else { $data = $base_instance->get_data("SELECT * FROM {$base_instance->entity['KNOWLEDGE']['MAIN']} WHERE user='******' AND ID='{$knowledge_id}'");
<?php require 'class.base.php'; require 'class.html.php'; $base_instance = new base(); $html_instance = new html(); $userid = $base_instance->get_userid(); $category_id = isset($_REQUEST['category_id']) ? (int) $_REQUEST['category_id'] : exit; if (isset($_POST['save_it'])) { $title_text_field = sql_safe($_POST['title_text_field']); $base_instance->query("INSERT INTO {$base_instance->entity['DATABASE']['TEXT_FIELDS']} (user,title,category_id) VALUES ({$userid},'{$title_text_field}',{$category_id})"); $field_id = mysqli_insert_id($base_instance->db_link); $base_instance->show_message('Field saved', '<a href="add-database-number-field.php?category_id=' . $category_id . '">[Add Number Field]</a> <a href="add-database-text-field.php?category_id=' . $category_id . '">[Add Text Field]</a><p> <a href="add-database-select-field.php?category_id=' . $category_id . '">[Add Select Field]</a> <a href="add-database-checkbox-field.php?category_id=' . $category_id . '">[Add Checkbox Field]</a><p><a href="add-database-data.php?category_id=' . $category_id . '">[Add Data]</a> <a href="edit-database-text-field.php?text_field_id=' . $field_id . '">[Edit Field]</a> <a href="show-database-data.php?category_id=' . $category_id . '">[Show all Data]</a>'); } $html_instance->add_parameter(array('ACTION' => 'show_form', 'HEADER' => 'Add Text Field', 'FORM_ACTION' => $_SERVER['PHP_SELF'], 'INNER_TABLE_WIDTH' => '400', 'TD_WIDTH' => '30%', 'BUTTON_TEXT' => 'Save Field')); $html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'save_it', 'VALUE' => 1)); $html_instance->add_form_field(array('TYPE' => 'hidden', 'NAME' => 'category_id', 'VALUE' => "{$category_id}")); $html_instance->add_form_field(array('TYPE' => 'text', 'NAME' => 'title_text_field', 'VALUE' => '', 'SIZE' => 35, 'TEXT' => 'Name of Field')); $html_instance->process();
<?php $filename = 'blocks/' . $directory . '/templates/top.tpl.php'; $file = fopen($filename, "r") or die("Can't open gallery block top template"); $boxlet_content = fread($file, filesize($filename)); fclose($file); $user_filter = $usersC->get_filter($_SESSION['user_id']); $user_filter_arr = $filtersC->parse_filter_string($user_filter); $ret = base::query('SELECT t.id, t.cid, c.subject, t.file, t.extension, u.nick, c.timest, c.filters FROM threads t INNER JOIN comments c ON t.cid=c.id INNER JOIN users u ON c.uid=u.id WHERE t.approved=true AND t.section=3 ORDER BY t.id DESC LIMIT 3', 'assoc_array', array()); $item_tpl = 'blocks/' . $directory . '/templates/middle.tpl.php'; $tpl_file = fopen($item_tpl, "r") or die("Can't open gallery block middle template"); $tpl_size = filesize($item_tpl); foreach ($ret as $item) { rewind($tpl_file); $boxlet_content .= fread($tpl_file, $tpl_size); $boxlet_content = str_replace('[author]', $item['nick'], $boxlet_content); if ($messagesC->is_filtered($user_filter_arr, $item['filters'])) { $subject = 'Сообщение отфильтровано в соответствии с вашими настройками фильтрации'; $img_thumb_link = $img_link = 'themes/' . $theme . '/empty.gif'; } else { $img_thumb_link = 'images/gallery/thumbs/' . $item['file'] . '_small.png'; $img_link = 'images/gallery/' . $item['file'] . '.' . $item['extension']; $subject = $item['subject']; } $boxlet_content = str_replace('[img_thumb_link]', $img_thumb_link, $boxlet_content); $boxlet_content = str_replace('[img_link]', $img_link, $boxlet_content); $boxlet_content = str_replace('[subject]', $subject, $boxlet_content); $boxlet_content = str_replace('[timestamp]', core::to_local_time_zone($item['timest']), $boxlet_content); $boxlet_content = str_replace('[link]', 'thread_' . $item['id'] . '_page_1', $boxlet_content); } fclose($tpl_file);
if (!$category_id && !$new_category) { $error .= '<li> Category cannot be left blank'; } if ($new_category) { $duplicate = $base_instance->get_data('SELECT * FROM ' . $base_instance->entity['CONTACT']['CATEGORY'] . ' WHERE title="' . sql_safe($new_category) . '" AND user='******'<li> Category with this name already exists'; } $new_category = str_replace('"', '"', $new_category); if (strlen($new_category) > 50) { $error .= '<li> Category title is too long (Max. 50 Characters)'; } } if (!$error) { if ($new_category) { $base_instance->query('INSERT INTO ' . $base_instance->entity['CONTACT']['CATEGORY'] . ' (title,user) VALUES ("' . sql_safe($new_category) . '",' . $userid . ')'); $category_id = mysqli_insert_id($base_instance->db_link); } $datetime = $_POST['datetime']; $html_instance->check_for_duplicates('CONTACT', 'MAIN', $datetime, $userid); $firstname = str_replace('"', '"', $firstname); $lastname = str_replace('"', '"', $lastname); $address = str_replace('"', '"', $address); $company = str_replace('"', '"', $company); $base_instance->query('INSERT INTO ' . $base_instance->entity['CONTACT']['MAIN'] . ' (datetime,user,firstname,lastname,email,telephone,fax,mobile,address,notes,company,url,category,public) VALUES ("' . sql_safe($datetime) . '",' . $userid . ',"' . sql_safe($firstname) . '","' . sql_safe($lastname) . '","' . sql_safe($email) . '","' . sql_safe($telephone) . '","' . sql_safe($fax) . '","' . sql_safe($mobile) . '","' . sql_safe($address) . '","' . sql_safe($notes) . '","' . sql_safe($company) . '","' . sql_safe($url) . '",' . $category_id . ',' . $public . ')'); $contact_id = mysqli_insert_id($base_instance->db_link); $data = $base_instance->get_data("SELECT title FROM {$base_instance->entity['CONTACT']['CATEGORY']} WHERE user='******' AND ID='{$category_id}'"); $cat_title = $data[1]->title; $base_instance->show_message('Contact saved', '<script language="JavaScript" type="text/javascript">function createRequestObject(){try{var requester=new XMLHttpRequest();}catch(error){try{var requester=new ActiveXObject("Microsoft.XMLHTTP");}catch(error){return false;}} return requester;}var http=createRequestObject();function DelContact(item){if(confirm("Delete Contact?")){http.open(\'get\',\'delete-contact.php?item=\'+item); http.send(null);}}</script> <a href="add-contact.php?category_id=' . $category_id . '">[Add more]</a> <a href="edit-contact.php?contact_id=' . $contact_id . '">[Edit]</a> <a href="javascript:DelContact(\'' . $contact_id . '\')">[Delete]</a> <a href="send-content.php?contact_id=' . $contact_id . '">[Send]</a><p><a href="show-contact-categories.php">[Show all Categories]</a> <a href="show-contact.php">[Show all Contacts]</a><p><b>Internal Link:</b> [c' . $contact_id . '] <b>Category:</b> ' . $cat_title . ' <a href="show-contact.php?category_id=' . $category_id . '">[Show]</a>');
<?php require 'class.base.php'; $base_instance = new base(); $userid = $base_instance->get_userid(); $item = isset($_REQUEST['item']) ? (int) $_REQUEST['item'] : exit; if ($item) { $base_instance->query("DELETE FROM organizer_reminder_days WHERE ID='{$item}' AND user='******'"); echo 'item', $item, '|Deleted'; }