<?php require_once "includes/sessioncheck.php"; $headerInclude = "risk_smart"; require_once "includes/header.php"; require_once "../includes/fraud.class.php"; $bl_group = intval($_REQUEST['bl_group'][0]); $fraud = new fraud_class(); if ($_REQUEST['submit'] == 'Add Ban') { $bl_group = 0; } if ($_REQUEST['submit'] == 'Remove Ban') { if (sizeof($_REQUEST['bl_group'])) { foreach ($_REQUEST['bl_group'] as $key => $bl_group_del) { $bl_group_del = intval($bl_group_del); $sql = "Delete from cs_banlist where bl_group = '{$bl_group_del}'"; if ($bl_group_del) { sql_query_write($sql) or dieLog(mysql_error() . " ~ {$sql}"); } } } } if ($_REQUEST['submit'] == 'Update') { foreach ($_REQUEST['bl_type'] as $key => $bl_type) { $bl_type = quote_smart($bl_type); $bl_data = quote_smart($_REQUEST['bl_data'][$key]); if ($fraud->bl_types[$bl_type] && $bl_data) { $data[$bl_type] = $bl_data; } } $data = $fraud->update_banlist($data, $bl_group);
<?php require_once "includes/sessioncheck.php"; $headerInclude = "risk_smart"; require_once "includes/header.php"; require_once "../includes/fraud.class.php"; $wl_ID = intval($_REQUEST['wl_ID']); $daylimit = intval($_REQUEST['daylimit']); $fraud = new fraud_class(); //$transInfo = array('td_process_msg' => 'rooofl','ipaddress'=>'151.27.53.42','surname'=>'asdf','name'=>'ralph','email'=>'*****@*****.**',); //$watchInfo = $fraud->check_watchlist($transInfo); //etelPrint($transInfo); if ($_REQUEST['submit'] == 'Add Watch') { $wl_ID = 0; } if ($_REQUEST['submit'] == 'Remove Watch') { if ($wl_ID) { $sql = "Delete from cs_watchlist where wl_ID = '{$wl_ID}'"; if ($wl_ID) { sql_query_write($sql) or dieLog(mysql_error() . " ~ {$sql}"); } } } if ($_REQUEST['submit'] == 'Update') { $data['wl_ID'] = $wl_ID; $data['wl_data'] = quote_smart($_REQUEST['wl_data']); $data['wl_type'] = quote_smart($_REQUEST['wl_type']); $data['wl_action'] = quote_smart($_REQUEST['wl_action']); if (!in_array($data['wl_data'], array('%', '%%', '%%%'))) { $data = $fraud->update_watchlist($data); }
$status = $trans->process_refund_request(array("actor" => 'Administrator', 'notes' => "{$refund_reason}")); $msg .= $status['status'] . "<BR>"; } } if ($_POST['charged_back']) { $qry_details = "UPDATE cs_transactiondetails SET `td_is_chargeback` = '1',`td_bank_deducted`=0,`td_merchant_deducted`=0,`td_reseller_deducted`=0 WHERE {$field} = '{$ref}'"; $rst_details = sql_query_write($qry_details) or dieLog(mysql_errno() . ": " . mysql_error() . "<BR>Cannot execute query"); $msg .= "{$ref} Set as Charged Back<BR>"; } //$access = getMerchantAccess(); $access = getAccessInfo("\n\n'Customer Info' as access_header,\n\tCONCAT(surname,', ',name) as Full_Name,\n\tcs_transactiondetails.address as Address,\n\tcs_transactiondetails.city,\n\tcs_transactiondetails.state,\n\tcs_transactiondetails.zipcode,\n\tco_full as Country,\n\tipaddress as IP_Address,\n\tcs_transactiondetails.email,\n\tcs_transactiondetails.phonenumber as 'Phone',\n\t\n'Billing Info' as access_header,\n\trd_subName,\n\tamount,\n\tCONCAT(\t\n\t\tif(status!='D',\n\t\t\tif(status='P','Pending', 'Approved'),\n\t\t\t'Declined'\n\t\t)\t\t\n\t) as status,\n\ttd_process_msg as 'Processor_Response',\n\t0 as 'Ban_Info',\n\tif(td_is_a_rebill=1,' Rebilled Transaction',' New Order') as Type_Of_Purchase,\n\tcardtype,\n\tCCnumber,\n\tbankaccountnumber,\n\tbankroutingcode,\n\ttd_bank_transaction_id as 'Bank_Trans_ID',\n\tif(cancelstatus='Y',CONCAT('Refunded - ',cancel_refer_num),'') as Refunded,\n\tcustomer_notes as Refund_Requested,\n\tif(td_is_chargeback='1','Charged Back','') as Chargeback,\n\t\n'Purchase Info' as access_header,\n\tcd.userId as userId,\n\tcompanyname,\n\ttransactionId,\n\treference_number as Reference_ID,\n\tDate_Format(transactionDate,'%W %b %D %Y %H:%i:%s') as Transaction_Date,\n\tCONCAT(td_product_id,': ',productdescription) as Product_Description,\n\tcs.cs_name as Website,\n\tfrom_url as WebsiteURL,\n\t\n'Subscription Info' as access_header,\n\tss_subscription_ID as Subscription_ID,\n\tDate_Format(ss_account_start_date,'%W %b %D %Y %H:%i:%s') as Account_Started,\n\tDate_Format(ss_account_expire_date,'%W %b %D %Y %H:%i:%s') as Account_Expiration,\n\tss_cancel_id,\n\tss_cust_username,\n\tss_cust_password,\n\tss_account_status,\n\tCONCAT(ss_rebill_status_text,' (',ss_rebill_status,')') as Rebill_Status,\n\tDate_Format(ss_last_rebill,'%W %b %D %Y %H:%i:%s') as Last_Rebill_Date,\n\t\n'Tracking Info' as access_header,\n\tcd_enable_tracking,\n\ttd_enable_tracking,\n\ttd_tracking_id,\n\ttd_tracking_link,\n\ttd_tracking_order_id,\n\ttd_tracking_company,\n\ttd_tracking_ship_date,\n\ttd_tracking_ship_est,\n\ttd_tracking_info,\n\t\n'Profit Info' as access_header_spanned,\n\t'' as Breakdown,\n\t\n'Misc Info' as access_header_spanned,\n\ttd_non_unique,\n\ttd_merchant_fields as Merchant_Data,\n\ttd_process_query as Debug_Query,\n\ttd_process_result as Debug_Result,\n\ttd_process_duration as Query_Time\n\t\n\t\n", "cs_transactiondetails\nleft join cs_subscription on td_ss_ID = ss_ID\nleft join cs_rebillingdetails as rd on rd_subaccount = td_rebillingID\nleft join cs_company_sites as cs on cs_ID = td_site_ID\nleft join cs_companydetails as cd on cd.userId = cs_transactiondetails.userId\nleft join cs_country as co on cs_transactiondetails.country = co_ISO\nleft join cs_callnotes as co on transaction_id = transactionId and cn_type='refundrequest'\n\nleft join cs_profit_action on pa_trans_id = transactionId \n", "{$field} = '{$id}'", array('disable' => true)); if ($access == -1) { dieLog("Invalid Transaction", "Invalid Transaction"); } $transactionId = $access['Data']['transactionId']['Value']; $fraud = new fraud_class(); $transaction = new transaction_class(false); $transaction->pull_transaction($transactionId); unset($access['Data']['transactionId']); $access['EnablePlusMinus'] = true; $access['Data']['Misc Info']['PlusMinus'] = 'Closed'; $access['Data']['Profit Info']['PlusMinus'] = 'Closed'; $banInfo = $fraud->check_banlist($transaction->row['transactionTable'], true); if (!$banInfo['bansfound']) { unset($access['Data']['Ban_Info']); } else { $access['Data']['Ban_Info']['Value'] = nl2br($banInfo['banText']); } $access['Data']['companyname']['DisplayName'] = 'Company'; if (!$nolink) { $access['Data']['companyname']['Value'] = "<a href='editCompanyProfileAccess.php?company_id=" . $access['Data']['userId']['Value'] . "'>" . $access['Data']['companyname']['Value'] . "</a>";