Changeset 2087 in ExiteCMS


Ignore:
Timestamp:
12/01/08 12:12:32 (3 years ago)
Author:
WanWizard
Message:

fixed bug in registration when using single quotes in the user fullname when registering
fixed several bugs in user activation

Location:
trunk
Files:
9 edited

Legend:

Unmodified
Added
Removed

  • trunk/administration/activation.php

    r2033 r2087  
    5757// delete a user registeration 
    5858if ($step == "delete") { 
    59     $usercode = stripinput($_GET['user_code']); 
    60     $result = dbquery("DELETE FROM ".$db_prefix."new_users WHERE user_code = '$usercode'"); 
     59    if (isset($_GET['user_code'])) { 
     60        $usercode = stripinput($_GET['user_code']); 
     61        $result = dbquery("DELETE FROM ".$db_prefix."new_users WHERE user_code = '$usercode'"); 
     62    } elseif (isset($_GET['user_id'])) { 
     63        $user_id = stripinput($_GET['user_id']); 
     64        if (isNum($user_id)) { 
     65            $result = dbquery("DELETE FROM ".$db_prefix."users WHERE user_status = '2' AND user_id = '$user_id'"); 
     66        } 
     67    } 
    6168} 
    6269 

  • trunk/administration/tools/language_pack_English.php

    r2033 r2087  
    37683768if (!defined('LP_COUNTRIES')) define('LP_COUNTRIES', "us|gb|ca|au|nz|in|za|ir|mt|hk|pr"); 
    37693769if (!defined('LP_VERSION')) define('LP_VERSION', "7.20"); 
    3770 if (!defined('LP_DATE')) define('LP_DATE', "1226762356"); 
     3770if (!defined('LP_DATE')) define('LP_DATE', "1227998521"); 
    37713771$lp_date = LP_DATE; 
    37723772 

  • trunk/administration/tools/language_pack_Nederlands.php

    r2033 r2087  
    28282828        $localestrings['428'] = "Blog aanpassen"; 
    28292829        $localestrings['429'] = "Blog index"; 
    2830         $localestrings['493'] = "Are you sure you want to delete this blog entry?"; 
    2831         $localestrings['494'] = "The blog entry has been succesfully deleted"; 
    2832         $localestrings['495'] = "The blog update has been succesfully saved"; 
    2833         $localestrings['496'] = "The new blog entry has been succesfully saved"; 
    2834         $localestrings['497'] = "The blog entry may not be left empty"; 
    2835         $localestrings['498'] = "Please fill in a subject for this blog entry"; 
    2836         $localestrings['499'] = "There are no blog entries available for display"; 
     2830        $localestrings['493'] = "Weet u zeker dat u dit blog bericht wilt verwijderen?"; 
     2831        $localestrings['494'] = "Het blog bericht is succesvol verwijderd"; 
     2832        $localestrings['495'] = "De aanpassingen aan de blog zijn bewaard"; 
     2833        $localestrings['496'] = "Het nieuwe blog bericht is succesvol opgeslagen"; 
     2834        $localestrings['497'] = "Het bericht mag niet leeg gelaten worden"; 
     2835        $localestrings['498'] = "Geef a.u.b. een onderwerp voor dit blog bericht"; 
     2836        $localestrings['499'] = "Er zijn geen blog berichten gevonden om te tonen"; 
    28372837        load_localestrings($localestrings, LP_LOCALE, "main.blogs", $step); 
    28382838 
     
    37683768if (!defined('LP_COUNTRIES')) define('LP_COUNTRIES', "nl|be|sr|aw|an"); 
    37693769if (!defined('LP_VERSION')) define('LP_VERSION', "7.20"); 
    3770 if (!defined('LP_DATE')) define('LP_DATE', "1226762359"); 
     3770if (!defined('LP_DATE')) define('LP_DATE', "1227998517"); 
    37713771$lp_date = LP_DATE; 
    37723772 

  • trunk/edit_profile.php

    r2081 r2087  
    200200        if ($user_newpassword != "") { $newpass = " user_password=md5(md5('$user_newpassword')), "; } else { $newpass = " "; } 
    201201        $result = dbquery("UPDATE ".$db_prefix."users SET user_name='$username', user_fullname='$user_fullname', ".$newpass."user_email='".$_POST['user_email']."', user_bad_email = '0', user_hide_email='$user_hide_email', user_location='$user_location', user_birthdate='$user_birthdate', user_gender='$user_gender', user_aim='$user_aim', user_icq='$user_icq', user_msn='$user_msn', user_yahoo='$user_yahoo', user_web='$user_web', user_forum_fullscreen='$user_forum_fullscreen', user_posts_unread='$user_posts_unread', user_newsletters='$user_newsletters', user_theme='$user_theme', user_offset='$user_offset', ".$set_avatar."user_sig='$user_sig', user_locale='".$_POST['user_locale']."', user_openid_url='$user_openid_url', user_hoteditor=".$user_hoteditor." WHERE user_id='".$this_userdata['user_id']."'"); 
    202         if ($user_theme != $userdata['user_theme']) { 
    203             if (isset($_SESSION['set_theme'])) unset($_SESSION['set_theme']); 
    204             if ($variables['is_admin']) { 
    205                 redirect(FUSION_SELF."?status=1&user_id=".$this_userdata['user_id']); 
    206             } else { 
    207                 redirect(FUSION_SELF."?status=1"); 
    208             } 
    209         } 
    210202        $result = dbquery("SELECT * FROM ".$db_prefix."users WHERE user_id='".$this_userdata['user_id']."'"); 
    211203        if (dbrows($result) != 0) { 
     
    218210            } 
    219211            fallback(FUSION_SELF); 
     212        } 
     213        if ($user_theme != $userdata['user_theme']) { 
     214            if (isset($_SESSION['set_theme'])) unset($_SESSION['set_theme']); 
     215            if ($variables['is_admin']) { 
     216                redirect(FUSION_SELF."?status=1&user_id=".$this_userdata['user_id']); 
     217            } else { 
     218                redirect(FUSION_SELF."?status=1"); 
     219            } 
    220220        } 
    221221    } else { 

  • trunk/files/locales/en.main.global.php

    r2033 r2087  
    33// locale       : English 
    44// locale name  : main.global 
    5 // generated on : Sat Nov 15 2008, 16:19:22 CET 
     5// generated on : Sat Nov 29 2008, 23:48:23 CET 
    66// translators  : ExiteCMS team,WanWizard 
    77// ---------------------------------------------------------- 

  • trunk/files/locales/en.main.setup.php

    r2033 r2087  
    33// locale       : English 
    44// locale name  : main.setup 
    5 // generated on : Sat Nov 15 2008, 16:15:47 CET 
     5// generated on : Sat Nov 29 2008, 23:42:01 CET 
    66// translators  : ExiteCMS team,WanWizard 
    77// ---------------------------------------------------------- 

  • trunk/files/locales/nl.main.setup.php

    r2033 r2087  
    33// locale       : English 
    44// locale name  : main.setup 
    5 // generated on : Sat Nov 15 2008, 16:15:50 CET 
     5// generated on : Sat Nov 29 2008, 23:41:57 CET 
    66// translators  : ExiteCMS team,WanWizard 
    77// ---------------------------------------------------------- 

  • trunk/includes/templates/admin.activation.tpl

    r2035 r2087  
    4848            </td> 
    4949            <td class='{cycle values='tbl1,tbl2'}' style='text-align:center;width:1%;white-space:nowrap;'> 
    50                 {if $settings.email_activation == 1} 
    51                     {imagelink link=$smarty.const.FUSION_SELF|cat:$aidlink|cat:"&amp;step=activate&amp;user_xcode="|cat:$newusers[id].user_code image="page_green.gif" alt="$locale.406 title=$locale.406}&nbsp; 
    52                     {imagelink link=$smarty.const.FUSION_SELF|cat:$aidlink|cat:"&amp;step=delete&amp;user_xcode="|cat:$newusers[id].user_code image="page_delete.gif" alt="$locale.407 title=$locale.407} 
     50                {if $settings.email_verification == 1} 
     51                    {imagelink link=$smarty.const.FUSION_SELF|cat:$aidlink|cat:"&amp;step=activate&amp;user_code="|cat:$newusers[id].user_code image="page_green.gif" alt="$locale.406 title=$locale.406}&nbsp; 
     52                    {imagelink link=$smarty.const.FUSION_SELF|cat:$aidlink|cat:"&amp;step=delete&amp;user_code="|cat:$newusers[id].user_code image="page_delete.gif" alt="$locale.407 title=$locale.407} 
    5353                {else} 
    5454                    {imagelink link=$smarty.const.FUSION_SELF|cat:$aidlink|cat:"&amp;step=activate&amp;user_id="|cat:$newusers[id].user_id image="page_green.gif" alt="$locale.406 title=$locale.406}&nbsp; 

  • trunk/register.php

    r2086 r2087  
    2222 
    2323// do we want extensive email checks? 
    24 define('CHECK_EMAIL', true); 
     24define('CHECK_EMAIL', false); 
    2525 
    2626// temp storage for template variables 
     
    191191                        "user_hide_email" => isNum($_POST['user_hide_email']) ? $_POST['user_hide_email'] : "1" 
    192192                    )); 
    193                     $result = dbquery("INSERT INTO ".$db_prefix."new_users (user_code, user_email, user_datestamp, user_info) VALUES('$user_code', '".$email."', '".time()."', '$user_info')"); 
     193                    $result = dbquery("INSERT INTO ".$db_prefix."new_users (user_code, user_email, user_datestamp, user_info) VALUES('$user_code', '".$email."', '".time()."', '".mysql_real_escape_string($user_info)."')"); 
    194194                    $variables['message'] = $locale['454']; 
    195195                    $title = $locale['400']; 
     
    207207                    $variables['message'] = $locale['453']; 
    208208                    // send the webmaster a PM that an account needs to be activated 
    209                     $result = dbquery("INSERT INTO ".$db_prefix."pm (pm_subject, pm_message, pm_recipients, pm_size, pm_datestamp) VALUES ('".$locale['509']."', '".mysql_escape_string(sprintf($locale['510'], $username))."', '1', '100', '".time()."')"); 
     209                    $result = dbquery("INSERT INTO ".$db_prefix."pm (pm_subject, pm_message, pm_recipients, pm_size, pm_datestamp) VALUES ('".$locale['509']."', '".mysql_real_escape_string(sprintf($locale['510'], $username))."', '1', '100', '".time()."')"); 
    210210                    if ($result) { 
    211211                        $pm_id = mysql_insert_id(); 
Note: See TracChangeset for help on using the changeset viewer.