📄 inquire_all.php
字号:
<?
include_once("myconnect.php");
include_once ("logincheck.php");
include_once ("check_msg_function.php");
include_once ("date_time_format.php");
$errcnt=0;
if(count($_POST)<>0) //IF SOME FORM WAS POSTED DO VALIDATION
{
if (!get_magic_quotes_gpc()) {
$message=str_replace('$', '\$',addslashes($_REQUEST["message"]));
$subject=str_replace('$', '\$',addslashes($_REQUEST["subject"]));
}
else
{
$message=str_replace('$', '\$',$_REQUEST["message"]);
$subject=str_replace('$', '\$',$_REQUEST["subject"]);
}
$message=check_msg($message,1);
$subject=check_msg($subject,1);
if ( strlen(trim($message)) == 0 )
{
$errs[$errcnt]="Message must be provided";
$errcnt++;
}
elseif(preg_match ("/[;<>&]/", $_REQUEST["message"]))
{
$errs[$errcnt]="Message can not have any special character (e.g. & ; < >)";
$errcnt++;
}
elseif (strlen($message)>1000 )
{
$errs[$errcnt]="Message must be less than 1000 characters long";
$errcnt++;
}
if($errcnt==0)
{
$cnt=$_SESSION["offer_count"];
for($i=1;$i<=$cnt;$i++)
{
if(isset($_SESSION["buy_offer_".$i]))
{
$offer=mysql_fetch_array(mysql_query("select * from sbbleads_offers_buy
where sb_id=".$_SESSION["buy_offer_".$i]));
$subject="Inquiries regarding your buy offer:".$offer["sb_title"];
unset($_SESSION["buy_offer_".$i]);
}
elseif(isset($_SESSION["sell_offer_".$i]))
{
$offer=mysql_fetch_array(mysql_query("select * from sbbleads_offers
where sb_id=".$_SESSION["sell_offer_".$i]));
$subject="Inquiries regarding your sell offer:".$offer["sb_title"];
unset($_SESSION["sell_offer_".$i]);
}
elseif(isset($_SESSION["catalog_offer_".$i]))
{
$offer=mysql_fetch_array(mysql_query("select * from sbbleads_products
where sb_id=".$_SESSION["catalog_offer_".$i]));
$subject="Inquiries regarding your product catalog:".$offer["sb_title"];
unset($_SESSION["catalog_".$i]);
}
else
{
continue;
}
$fid=$_SESSION["sbbleads_userid"];
$tid=$offer["sb_uid"];
$from_mem=mysql_fetch_array(mysql_query("select * from sbbleads_members
where sb_id=$fid"));
$block_country=mysql_fetch_array(mysql_query(" select *
from sbbleads_blocked_countries where sb_uid=$tid and
sb_blocked_id=".$from_mem["sb_country"]));
$rst=mysql_fetch_array(mysql_query(" select * from sbbleads_blocked
where sb_uid=$tid and sb_blocked_id=$fid"));
if(($rst)||($block_country))
{
continue;
}
mysql_query ("Insert into `sbbleads_messages`
(sb_fid,sb_tid,sb_message,sb_subject,sb_msg_read,sb_f_del,sb_t_del,sb_onstamp)
VALUES ($fid,$tid,'$message','$subject','No','No','No','".date("YmdHis",time())."')");
mysql_query("update sbbleads_stats set sb_msg_cnt=sb_msg_cnt+1 ");
////======================================mail to reciever========================
if(mysql_affected_rows()>0)
{
$sbrow_con=mysql_fetch_array(mysql_query("select * from sbbleads_config"));
$sb_null_char=$sbrow_con["sb_null_char"];
$sb_site_root=$sbrow_con["sb_site_root"];
//Gets member info
$sql = "SELECT max(sb_id) FROM sbbleads_messages" ;
$rs_query=mysql_query($sql);
$rs=mysql_fetch_array($rs_query);
$id=$rs[0];
$rs0=mysql_fetch_array(mysql_query("select *,UNIX_TIMESTAMP(sb_onstamp) as ondate
from sbbleads_messages where sb_id=" .$id));
$rs1=mysql_fetch_array(mysql_query("select * from sbbleads_members
where sb_id=" .$rs0["sb_tid"]));
$rs2=mysql_fetch_array(mysql_query("select * from sbbleads_members
where sb_id=" .$rs0["sb_fid"]));
$ondate=sb_date($rs0["ondate"]);
//Reads email to be sent
$sql = "SELECT * FROM sbbleads_mails where sb_mailid=23" ;
$rs_query=mysql_query($sql);
if ( $rs=mysql_fetch_array($rs_query) )
{
if($rs["sb_status"]=="yes")
{
$from =$rs["sb_fromid"];
$to = $rs1["sb_email"];
$subject =$rs["sb_subject"];
$body=str_replace("%email%", $sb_null_char,
str_replace("%password%",$sb_null_char,
str_replace("%lname%", $rs1["sb_lastname"],
str_replace("%fname%", $rs1["sb_firstname"],
str_replace("%username%",$rs1["sb_username"], $rs["sb_mail"]) ))));
$body=str_replace("%signup_url%",$sb_null_char,
str_replace("%login_url%",$sb_null_char,$body));
$body=str_replace("%message_text%",$rs0["sb_message"],
str_replace("%message_title%",$rs0["sb_subject"],
str_replace("%sender_username%",$rs2["sb_username"],
str_replace("%message_date%",$ondate,$body))));
$header="From:" . $from . "\r\n" ."Reply-To:". $from ;
if(isset($rs["sb_html_format"])&&($rs["sb_html_format"]=="yes"))
{
$header .= "\r\nMIME-Version: 1.0";
$header .= "\r\nContent-type: text/html; charset=iso-8859-1\r\n";
// $body=str_replace("\n","<br>",$body);
}
// echo "--from:-$from----to:-$to---sub:-$subject----head:-$header----";
//echo "<pre>$body</pre>";
//die();
mail($to,$subject,$body,$header);
}// end if status is on
}// end if mail is present
}// end if myssql_affected rows>0
//===================================================================================
}//end for
unset($_SESSION["offer_count"]);
header("Location:"."gen_confirm.php?errmsg=".urlencode('Your inquiries have been posted'));
die();
}//end if no errors
}// end if posted
function main()
{
global $errs, $errcnt;
$subject="";
$message="";
//$tid=$_REQUEST["id"];
if ( count($_POST)<>0 )
{
$subject=$_REQUEST["subject"];
$message=$_REQUEST["message"];
}
if($errcnt<>0)
{
?><table width="90%" border="0" align="center" cellpadding="2" cellspacing="0" class="errorstyle">
<tr>
<td colspan="2"><strong> Your request cannot be processed due to following
reasons</strong></td>
</tr>
<tr height="10">
<td colspan="2"></td>
</tr>
<?
for ($i=0;$i<$errcnt;$i++)
{
?>
<tr valign="top">
<td width="6%"> <?php echo $i+1;?></td>
<td width="94%"><?php echo $errs[$i]; ?></td>
</tr>
<?
}
?>
</table>
<?
}
?>
<form name="form1" method="post" action="inquire_all.php">
<table width="90%" border="0" align="center" cellpadding="0" cellspacing="0" class="onepxtable">
<tr>
<td height="25" class="titlestyle"> <strong>Inquire
All</strong></td>
</tr>
<tr>
<td><table width="100%" border="0" align="center" cellpadding="2" cellspacing="5">
<tr>
<td width="40%" height="25" valign="top" class="innertablestyle">
<div align="right"><font size="2"><strong><font class='normal'>Subject</font></strong></font></div></td>
<td width="6" height="25" valign="top"><font size="2"><strong><font class='normal'><font class='red'>*</font>
</font></strong></font></td>
<td width="60%" height="25" valign="top">
<input name="subject" type="text" value="Inquiries Regarding Catalogs/Sell/Buy Offers" size="50" readonly>
</td>
</tr>
<tr>
<td width="40%" height="25" valign="top" class="innertablestyle">
<div align="right"><font size="2"><strong><font class='normal'>Your
Message</font> </strong></font></div></td>
<td width="6" height="25" valign="top"><font size="2"><strong><font class='normal'><font class='red'>*</font>
</font></strong></font></td>
<td width="60%" height="25" valign="top"> <div align="left"><font class='normal'>
</font>
<textarea name="message" cols="50" rows="10"></textarea>
<br>
<font size="2" face="Arial, Helvetica, sans-serif">Maximum 1000
characters</font> </div></td>
</tr>
<tr>
<td width="40%" height="25" valign="top" class="innertablestyle"> </td>
<td width="6" height="25" valign="top"> </td>
<td width="60%" height="25" valign="top"> <input type="submit" name="Submit2" value="Post Message"></td>
</tr>
</table></td>
</tr>
</table>
</form>
<?
}// end main
include_once("template.php");
?> ⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -