// SET SUBNETS AUDIENCE if (!empty($subnets)) { if (!empty($levels)) { $emailquery .= " OR "; } $emailquery .= "user_subnet_id IN('" . join("', '", $subnets) . "')"; } // GET TOTAL USERS $total_users = $database->database_num_rows($database->database_query($emailquery)); $finish = $start + $emails_at_a_time; $limit = "{$start}, {$emails_at_a_time}"; // ADD LIMITS $emailquery .= " ORDER BY user_id LIMIT {$limit}"; $users = $database->database_query($emailquery); while ($user = $database->database_fetch_assoc($users)) { send_generic($user[user_email], $from, $subject, $message, array(), array()); } // IMPLODE LEVELS AND SUBNETWORKS if (is_array($levels)) { $levels = implode(",", $levels); } if (is_array($subnets)) { $subnets = implode(",", $subnets); } echo "<html><head><meta http-equiv='Content-Type' content='text/html; charset=UTF-8'></head>\r\n <body onload=\"parent.sendEmail('{$start}', '{$total_users}');\">\r\n\t <form action='admin_announcements.php' method='post' name='emailform'>\r\n <input type='text' name='from' maxlength='200' value='{$from}'>\r\n <input type='text' name='subject' maxlength='200' value='{$subject}'>\r\n <textarea name='message' rows='7' cols='80'>{$message}</textarea>\r\n\t <select name='emails_at_a_time'><option value='{$emails_at_a_time}'>{$emails_at_a_time}</option></select>\r\n\t <input type='hidden' name='levels' value='{$levels}'>\r\n <input type='hidden' name='subnets' value='{$subnets}'>\r\n <input type='hidden' name='start' value='" . ($start + $emails_at_a_time) . "'>\r\n <input type='hidden' name='task' value='sendemail'>\r\n </form></body></html>"; exit; } // POST NEWS ITEM } elseif ($task == "postnews") { $date = $_POST['date']; $subject = $_POST['subject'];
<?php /* $Id: admin_lostpass.php 8 2009-01-11 06:02:53Z nico-izo $ */ $page = "admin_lostpass"; include "admin_header.php"; $task = isset($_POST['task']) ? $_POST['task'] : "main"; // SET ERROR VARS $is_error = 0; $submitted = 0; if ($task == "send_email") { $admin_email = $_POST['admin_email']; $admin_query = $database->database_query("SELECT admin_id FROM se_admins WHERE admin_email='{$admin_email}' LIMIT 1"); $submitted = 1; if ($database->database_num_rows($admin_query) != 1) { $is_error = 1; } else { $lostpassword_code = randomcode(15); $lostpassword_time = time(); $admin_lost = $database->database_fetch_assoc($admin_query); $database->database_query("UPDATE se_admins SET admin_lostpassword_code='{$lostpassword_code}', admin_lostpassword_time='{$lostpassword_time}' WHERE admin_id='{$admin_lost['admin_id']}' LIMIT 1"); $prefix = $url->url_base; $link = "<a href=\"{$prefix}" . "admin/admin_lostpass_reset.php?admin_id={$admin_lost['admin_id']}&r={$lostpassword_code}\">{$prefix}" . "admin/admin_lostpass_reset.php?admin_id={$admin_lost['admin_id']}&r={$lostpassword_code}</a>"; SE_Language::_preload_multi(40, 41); SE_Language::load(); send_generic($admin_email, $admin_email, SE_Language::_get(40), SE_Language::_get(41), array("[link]"), array($link)); } } // ASSIGN VARIABLES AND INCLUDE FOOTER $smarty->assign('is_error', $is_error); $smarty->assign('submitted', $submitted); include "admin_footer.php";
if ($contact_secure != $code) { $is_error = 708; } } // SEND MESSAGE TO SUPERADMIN if (!$is_error) { $recepient_info = $database->database_fetch_assoc($database->database_query("SELECT admin_email, admin_name FROM se_admins ORDER BY admin_id LIMIT 1")); // GET SUBJECT AND MESSAGE SE_Language::_preload_multi(1153, 1154); SE_Language::load(); // COMPOSE SUBJECT $subject = vsprintf(SE_Language::_get(1153), array($contact_subject)); // COMPOSE MESSAGE $message = vsprintf(SE_Language::_get(1154), array($recepient_info['admin_name'], $contact_email, $contact_name, $contact_subject, $contact_message)); // SEND MAIL send_generic($recepient_info['admin_email'], $contact_email, $subject, $message, array(), array()); // SET RESULT $result = 1040; $contact_name = ""; $contact_email = $user->user_info['user_email']; $contact_subject = ""; $contact_message = ""; } } // SET GLOBAL PAGE TITLE/DESCRIPTION $global_page_title[0] = 754; $global_page_description[0] = 1035; // ASSIGN SMARTY VARIABLES AND INCLUDE FOOTER $smarty->assign('result', $result); $smarty->assign('is_error', $is_error); $smarty->assign('contact_name', $contact_name);
$comment_body_encoded = $comment_body; if(strlen($comment_body_encoded) > 250) { $comment_body_encoded = substr($comment_body_encoded, 0, 240); $comment_body_encoded .= "..."; } $comment_body_encoded = htmlspecialchars(str_replace("<br>", " ", $comment_body_encoded)); $actions->actions_add($user, "articlecomment", Array($user->user_info[user_username], $user->user_displayname, $article_id, $article->article_info[article_title], $comment_body_encoded), Array(), 0, FALSE, "user", $user->user_info[user_id], $article->article_info[article_privacy]); } else { $commenter = 11151012; } // GET ARTICLE CREATOR INFO AND SEND NOTIFICATION IF COMMENTER IS NOT LEADER $articleowner_info = $database->database_fetch_assoc($database->database_query("SELECT se_users.user_id, se_users.user_username, se_users.user_email, se_usersettings.usersetting_notify_articlecomment FROM se_users LEFT JOIN se_usersettings ON se_users.user_id=se_usersettings.usersetting_user_id WHERE se_users.user_id='".$article->article_info[article_user_id]."'")); if($articleowner_info[usersetting_notify_articlecomment] == 1 & $articleowner_info[user_id] != $user->user_info[user_id]) { send_generic($articleowner_info[user_email], "$setting[setting_email_fromname] <$setting[setting_email_fromemail]>", $setting[setting_email_articlecomment_subject], $setting[setting_email_articlecomment_message], Array('[username]', '[commenter]', '[articlename]', '[link]'), Array($articleowner_info[user_username], $commenter, $article->article_info[article_title], "<a href=\"".$url->url_base."article.php?article_id=".$article->article_info[article_id]."\">".$url->url_base."article.php?article_id=".$article->article_info[article_id]."</a>")); } } echo "<html><head><script type=\"text/javascript\">"; echo "window.parent.addComment('$is_error', '$comment_body', '$comment_date');"; echo "</script></head><body></body></html>"; exit(); } // START COMMENT OBJECT $comment = new se_comment('article', 'article_id', $article->article_info[article_id]); // GET TOTAL COMMENTS