[ PHPXref.com ] [ Generated: Sun Jul 20 19:04:52 2008 ] [ OneCMS 2.3 ]
[ Index ]     [ Variables ]     [ Functions ]     [ Classes ]     [ Constants ]     [ Statistics ]

title

Body

[close]

/ -> a_pr.php (source)

[Summary view] [Print] [Text view] 

   1  <?php
   2  include  ("config.php");
   3  
   4  if ($ipbancheck3 == "0") {if ($numv == "0"){
   5      if ($warn == $naum) {
   6      echo "You are banned from the Admin CP...now go away!";
   7  } else {
   8  
   9  if(!isset($_GET['page'])){
  10      $page = 1;
  11  } else {
  12      $page = $_GET['page'];
  13  }
  14  
  15  $from = (($page * $max_results) - $max_results);echo '<SCRIPT LANGUAGE="JavaScript">var checkflag = "false";function check(field) {if (checkflag == "false") {for (i = 0; i < field.length; i++) {field[i].checked = true;}checkflag = "true";return "Uncheck All"; }else {for (i = 0; i < field.length; i++) {field[i].checked = false; }checkflag = "false";return "Check All"; }}</script>';
  16  
  17  if ((($userlevel == "3") or ($userlevel == "4") or ($userlevel == "5"))) {
  18      echo "Sorry $username, but you do not have permission to the PR Manager. You are only a $level.";
  19  } else {
  20  
  21      echo "<center><a href=\"a_pr.php?view=quickadd\"><b>Quick Add</b></a> | <a href=\"a_pr.php?view=add\">Add Company</a> | <a href=\"a_pr.php\">Manage Companies</a> | <a href=\"a_pr.php?view=email&step=1\">E-mail Company</a></center><br><br>";
  22  
  23  if ($_GET['view'] == "search") {
  24  
  25      echo "<title>OneCMS - www.insanevisions.com/onecms > PR Manager > Search</title>";
  26  
  27      echo "<form action='a_pr.php?view=search'  method='post'><table cellspacing=\"0\" cellpadding=\"3\" border=\"0\" align=\"center\"><tr><td>Search for company</td><td><input type='text' name='search'></td><td><input type='submit' name='Submit' value='Search'></td></tr></table></form>";
  28  
  29      echo "<form action='a_pr.php?view=manage' name='form1' method='post'><table cellspacing=\"0\" cellpadding=\"3\" border=\"0\" align=\"center\"><tr><td><b>Company Name</b></td><td><b>Type</b></td><td><b><b>Edit</b></td><td><b>Delete</b></td></tr><center><div align=\"center\">";
  30  
  31      $query="SELECT * FROM onecms_pr WHERE name LIKE '%" . $_POST['search'] . "%' ORDER BY `id` DESC LIMIT $from, $max_results";
  32      $result=mysql_query($query);
  33      while($row = mysql_fetch_array($result)) {
  34          $id = "$row[id]";
  35          $name2 = "$row[name]";
  36          $name = stripslashes($name2);
  37          echo "<tr><td><a href='".$ppart1."".$row[id]."".$ppart2."' target='popup'>$name</a></td><td>$row[type]</td><td><input type=\"checkbox\" name=\"id[]\" value=\"$id\"></td><td><input type=\"checkbox\" name=\"delete[]\" value=\"$id\"></td></tr>";
  38      }
  39  
  40  echo "<tr><td><div align='right'><input type='submit' name='submit' value='Submit'></td><td><input type=button value='Check All' onClick='this.value=check(this.form)'></td><td><a href=\"a_pr.php?view=add\">Add Company</a></td></tr></form></table><br><br>";
  41  $total_results = mysql_result(mysql_query("SELECT COUNT(*) as Num FROM onecms_pr WHERE name LIKE '%" . $_POST['search'] . "%'"),0);
  42  
  43  $total_pages = ceil($total_results / $max_results);
  44  
  45  echo "<center>Select a Page<br>";
  46  
  47  // Build Previous Link

  48  if($page > 1){
  49      $prev = ($page - 1);
  50      echo "<a href=\"a_pr.php?page=$prev\"><<Previous</a>&nbsp;";
  51  }
  52  
  53  for($i = 1; $i <= $total_pages; $i++){
  54      if(($page) == $i){
  55          echo "$i&nbsp;";
  56          } else {
  57              echo "<a href=\"a_pr.php?page=$i\">$i</a>&nbsp;";if (($i/25) == (int)($i/25)) {echo "<br>";}
  58      }
  59  }
  60  
  61  // Build Next Link

  62  if($page < $total_pages){
  63      $next = ($page + 1);
  64      echo "<a href=\"a_pr.php?page=$next\">Next>></a>";
  65  }
  66  echo "</center>";
  67  }
  68  
  69  if ($_GET['view'] == "") {
  70  
  71      echo "<title>OneCMS - www.insanevisions.com/onecms > PR Manager</title>";
  72  
  73      echo "<form action='a_pr.php?view=search'  method='post'><table cellspacing=\"0\" cellpadding=\"3\" border=\"0\" align=\"center\"><tr><td>Search for company</td><td><input type='text' name='search'></td><td><input type='submit' name='Submit' value='Search'></td></tr></table></form>";
  74  
  75      echo "<form action='a_pr.php?view=manage' name='form1' method='post'><table cellspacing=\"0\" cellpadding=\"3\" border=\"0\" align=\"center\"><tr><td><b>Company Name</b></td><td><b>Type</b></td><td><b><b>Edit</b></td><td><b>Delete</b></td></tr>";
  76  
  77  $query="SELECT * FROM onecms_pr ORDER BY `id` DESC LIMIT $from, $max_results";
  78      $result=mysql_query($query);
  79      while($row = mysql_fetch_array($result)) {
  80          $id = "$row[id]";
  81          $name2 = "$row[name]";
  82          $name = stripslashes($name2);
  83          echo "<tr><td><a href='".$ppart1."".$row[id]."".$ppart2."' target='popup'>$name</a></td><td>$row[type]</td><td><input type=\"checkbox\" name=\"id[]\" value=\"$id\"></td><td><input type=\"checkbox\" name=\"delete[]\" value=\"$id\"></td></tr>";
  84      }
  85  
  86  echo "<tr><td><div align='right'><input type='submit' name='submit' value='Submit'></td><td><input type=button value='Check All' onClick='this.value=check(this.form)'></td><td><a href=\"a_pr.php?view=add\">Add company</a></td></tr></form></table><br><br>";
  87  $total_results = mysql_result(mysql_query("SELECT COUNT(*) as Num FROM onecms_pr"),0);
  88  
  89  $total_pages = ceil($total_results / $max_results);
  90  
  91  echo "<center>Select a Page<br>";
  92  
  93  // Build Previous Link

  94  if($page > 1){
  95      $prev = ($page - 1);
  96      echo "<a href=\"a_pr.php?page=$prev\"><<Previous</a>&nbsp;";
  97  }
  98  
  99  for($i = 1; $i <= $total_pages; $i++){
 100      if(($page) == $i){
 101          echo "$i&nbsp;";
 102          } else {
 103              echo "<a href=\"a_pr.php?page=$i\">$i</a>&nbsp;";if (($i/25) == (int)($i/25)) {echo "<br>";}
 104      }
 105  }
 106  
 107  // Build Next Link

 108  if($page < $total_pages){
 109      $next = ($page + 1);
 110      echo "<a href=\"a_pr.php?page=$next\">Next>></a>";
 111  }
 112  echo "</center>";
 113  }
 114  
 115  if ($_GET['view'] == "quickadd") {
 116  echo "<form action=\"a_pr.php?view=quickadd\" method='post'><table cellspacing=\"0\" cellpadding=\"3\" border=\"0\" align=\"center\"><tr><td>How many companies to quick add?</td><td><input type='text' name='search'></td><td><input type='submit' name='addd' value='Submit'></td></tr></table></form><form action='a_pr.php?view=add2' name='form1' method='post'><table cellspacing=\"0\" cellpadding=\"3\" border=\"0\" align=\"left\">";
 117  
 118  if ($_POST['search']) {
 119  
 120  echo "<input type=\"hidden\" name=\"s\" value='".$_POST['search']."'>";
 121  
 122      for($i = 0; $i < $_POST['search']; $i = $i+1) {
 123      echo "<tr><td><b><center>Company #".$i."</b></center></td></tr><tr><td>Name</td><td><input type=\"text\" name='name_".$i."'></td></tr><tr><td>Type</td><td><select name='type_".$i."' multiple><option value='publisher'>Publisher</option><option value='developer'>Developer</option></select></td></tr>";
 124  }
 125  echo "<tr><td><input type=\"submit\" name=\"Add\" value=\"Add\"></td></tr>";
 126  }
 127  echo "</form></table>";
 128  }
 129  
 130  if (($_GET['view'] == "add") && ($_GET['add'] == "")) {
 131  echo "<form action=\"a_pr.php?view=add\" method='post'><table cellspacing=\"0\" cellpadding=\"3\" border=\"0\" align=\"center\"><tr><td>How many companies to add?</td><td><input type='text' name='search'></td><td><input type='submit' name='addd' value='Submit'></td></tr></table></form><form action='a_pr.php?view=add2' name='form1' method='post'><table cellspacing=\"0\" cellpadding=\"3\" border=\"0\" align=\"left\">";
 132  
 133  if ($_POST['search']) {
 134  
 135  echo "<input type=\"hidden\" name=\"s\" value='".$_POST['search']."'>";
 136  
 137      for($i = 0; $i < $_POST['search']; $i = $i+1) {
 138      echo "<tr><td><b><center>Company #".$i."</b></center></td></tr><tr><td>Name</td><td><input type=\"text\" name='name_".$i."'></td></tr><tr><td>E-mail</td><td><input type=\"text\" name='email_".$i."'></td></tr><tr><td>First Name</td><td><input type=\"text\" name='fname_".$i."'></td></tr><tr><td>Last Name</td><td><input type=\"text\" name='lname_".$i."'></td></tr><tr><td>Type</td><td><select name='type_".$i."[]' multiple><option value='publisher'>Publisher</option><option value='developer'>Developer</option></select></td></tr><tr><td>Site URL</td><td><input type='text' name='site_".$i."'></td></tr><tr><td>Description</td><td><textarea name='des_".$i."' cols='36' rows='12'></textarea></td></tr>";
 139  }
 140  echo "<tr><td><input type=\"submit\" name=\"Add\" value=\"Add\"></td></tr>";
 141  }
 142  echo "</form></table>";
 143  }
 144  
 145     if (($_GET['view'] == "add2") && ($_GET['add'] == "")) {
 146     for($i = 0; $i < $_POST['s']; $i = $i+1) {
 147     while (list(, $val) = each ($_POST["type_$i"])) {
 148     $r = mysql_query("INSERT INTO onecms_pr VALUES ('null', '".$_POST["name_$i"]."', '".$val."', '".$_POST["fname_$i"]."', '".$_POST["lname_$i"]."', '".$_POST["email_$i"]."', '".$_POST["site_$i"]."', '".addslashes($_POST["des_$i"])."')") or die("<font color='red'><b>A fatal MySQL error occured</b></font>.<br><br><b>Query:</b> ".$r."<br><b>Error:</b> (".mysql_errno().")".mysql_error());
 149     }
 150     }
 151  if ($r == TRUE) {
 152  echo re_direct("1500", "a_pr.php");
 153  echo "The company(s) have been entered. <a href=\"a_pr.php\">Return to PR Manager Home</a>";
 154  }
 155  }
 156  
 157      if ((($_GET['view'] == "manage") && ($_POST['delete'] == "") && ($_GET['edit'] == ""))) {
 158  
 159      echo "<form action='a_pr.php?view=manage&edit=2' name='form1' method='post'><table cellspacing=\"0\" cellpadding=\"3\" border=\"0\" align=\"left\">";
 160  
 161      while (list(, $i) = each ($_POST['id'])) {
 162      $query="SELECT * FROM onecms_pr WHERE id = '$i'";
 163      $result=mysql_query($query);
 164      while($row2 = mysql_fetch_array($result)) {
 165                   
 166      echo "<input type='hidden' name='id[]' value='".$i."'><input type='hidden' name='name2_".$i."' value='".$row2['name']."'><tr><td><b><center>Company #".$i."</b></center></td></tr><tr><td>Name</td><td><input type=\"text\" name='name_".$i."' value='".$row2['name']."'></td></tr><tr><td>E-mail</td><td><input type=\"text\" name='email_".$i."' value='".$row2['email']."'></td></tr><tr><td>First Name</td><td><input type=\"text\" name='fname_".$i."' value='".$row2['fname']."'></td></tr><tr><td>Last Name</td><td><input type=\"text\" name='lname_".$i."' value='".$row2['lname']."'></td></tr><tr><td>Type</td><td><select name='type_".$i."' multiple><option value='".$row2['type']."' selected>-- ".$row2['type']."</option><option value='publisher'>Publisher</option><option value='developer'>Developer</option></select></td></tr><tr><td>Site URL</td><td><input type='text' name='site_".$i."' value='".$row2[site]."'></td></tr><tr><td>Description</td><td><textarea name='des_".$i."' cols='36' rows='12'>".stripslashes($row2[des])."</textarea></td></tr>";
 167  }
 168  }
 169  echo "<tr><td><input type=\"submit\" name=\"Modify\" value=\"Modify\"></td></tr></form></table>";
 170  }
 171  
 172    if (($_GET['view'] == "manage") && ($_GET['edit'] == "2")) {
 173  
 174     while (list(, $i) = each ($_POST['id'])) {
 175     if ($_POST["type_$i"]) {
 176     $count = mysql_num_rows(mysql_query("SELECT * FROM onecms_pr WHERE name = '".$_POST["name_$i"]."'"));
 177     if ($count > "1") {
 178     $r = mysql_query("UPDATE onecms_pr SET name = '".$_POST["name_$i"]."', type = '".$_POST["type_$i"]."', fname = '".$_POST["fname_$i"]."', lname = '".$_POST["lname_$i"]."', email = '".$_POST["email_$i"]."', des = '".addslashes($_POST["des_$i"])."', site = '".$_POST["site_$i"]."' WHERE name = '".$_POST["name_$i"]."'") or die(mysql_error());
 179     } else {
 180     $r = mysql_query("UPDATE onecms_pr SET name = '".$_POST["name_$i"]."', type = '".$_POST["type_$i"]."', fname = '".$_POST["fname_$i"]."', lname = '".$_POST["lname_$i"]."', email = '".$_POST["email_$i"]."', des = '".addslashes($_POST["des_$i"])."', site = '".$_POST["site_$i"]."' WHERE id = '".$i."'") or die(mysql_error());
 181     }
 182     }
 183  
 184  if ($_POST["type_$i"] == "publisher") {
 185  $r = mysql_query("UPDATE onecms_games SET name = '".$_POST["name_$i"]."' WHERE publisher = '".$_POST["name2_$i"]."'") or die("<font color='red'><b>A fatal MySQL error occured</b></font>.<br><br><b>Query:</b> ".$r."<br><b>Error:</b> (".mysql_errno().")".mysql_error());
 186  } else {
 187  $r = mysql_query("UPDATE onecms_games SET name = '".$_POST["name_$i"]."' WHERE developer = '".$_POST["name2_$i"]."'") or die("<font color='red'><b>A fatal MySQL error occured</b></font>.<br><br><b>Query:</b> ".$r."<br><b>Error:</b> (".mysql_errno().")".mysql_error());
 188  }
 189  
 190  }
 191  if ($r == TRUE) {
 192  echo re_direct("1500", "a_pr.php");
 193  echo "The company(s) have been updated. <a href=\"a_pr.php\">Return to PR Manager Home</a>";
 194  }
 195  }
 196  if (($_GET['view'] == "manage") && ($_POST['id'] == "")) {
 197  echo '<SCRIPT LANGUAGE="JavaScript">
 198  var agree=confirm("Confirm Deletion?");
 199  if (agree)
 200  document.write("");
 201  else
 202  history.go(-1);
 203  </SCRIPT>';
 204  
 205  while (list(, $val) = each ($_POST['delete'])) {
 206      $delete = mysql_query("DELETE FROM onecms_pr WHERE id = '$val'") or die("<font color='red'><b>A fatal MySQL error occured</b></font>.<br><br><b>Query:</b> ".$delete."<br><b>Error:</b> (".mysql_errno().")".mysql_error());
 207  }
 208  if ($delete == TRUE) {
 209  echo re_direct("1500", "a_pr.php");
 210  echo "The company(s) have been deleted. <a href=\"a_pr.php\">Return to PR Manager Home</a>";
 211  }
 212  }
 213  if (($_GET['view'] == "email") && ($_GET['step'] == "1")) {
 214      echo "<form action='a_pr.php?view=email&step=2' name='form1' method='post'><table cellspacing=\"0\" cellpadding=\"3\" border=\"0\" align=\"left\">";
 215  
 216          echo "<tr><td><b>Subject:</b></td><td><input type='text' name='sub'></td></tr><tr><td><b>To:</b></td><td><select name='to'>";
 217  
 218      $query="SELECT * FROM onecms_pr";
 219      $result=mysql_query($query);
 220      while($row = mysql_fetch_array($result)) {
 221          echo "<option value=\"$row[email]\">$row[name]</option>";
 222      }
 223      echo "</select></td></tr><tr><td><b>Message:</b></td><td><textarea name='msg' cols='30' rows='12'></textarea></td></tr>";
 224      echo "<tr><td><input type=\"submit\" name=\"Send\" value=\"Send\"></td></tr></form></table>";
 225  }
 226  if (($_GET['view'] == "email") && ($_GET['step'] == "2")) {
 227      $sub = stripslashes($_POST['sub']);
 228      $msg = stripslashes($_POST['msg']);
 229      $headers .= "From: $name <$email>\r\n";
 230      $headers .= "Cc: $email\r\n";
 231      $headers .= "Bcc: $email\r\n";
 232      $email = mail("".$_POST['to']."", "$sub", "$msg", "$headers");
 233      if ($email == TRUE) {
 234      echo re_direct("1500", "a_pr.php");
 235      echo "The email has been sent to <b>".$_POST['to'].". <a href='a_pr.php'>PR Manager Home</a>";
 236      }
 237  }
 238  }
 239  }
 240  }
 241  }include  ("a_footer.inc");
 242  ?>

Body

Body

Body

Body


[ Powered by PHPXref - Served by Debian GNU/Linux ]