lkddi/nexusphp
1
0
Fork 0
mirror of https://github.com/lkddi/nexusphp.git synced 2026-04-24 12:07:23 +08:00
Code Issues Packages Projects Releases Wiki Activity

fix takesignup.php

Browse Source
This commit is contained in:
xiaomlove
2021-02-28 02:57:50 +08:00
parent 3bf4b83826
commit ffa120a831
2 changed files with 8 additions and 6 deletions
Download Patch File Download Diff File Expand all files Collapse all files
public/takeinvite.php
+1 -1
View File
@@ -49,7 +49,7 @@ $title = $SITENAME.$lang_takeinvite['mail_tilte'];
sql_query("INSERT INTO invites (inviter, invitee, hash, time_invited) VALUES ('".mysql_real_escape_string($id)."', '".mysql_real_escape_string($email)."', '".mysql_real_escape_string($hash)."', " . sqlesc(date("Y-m-d H:i:s")) . ")"); sql_query("INSERT INTO invites (inviter, invitee, hash, time_invited) VALUES ('".mysql_real_escape_string($id)."', '".mysql_real_escape_string($email)."', '".mysql_real_escape_string($hash)."', " . sqlesc(date("Y-m-d H:i:s")) . ")");
sql_query("UPDATE users SET invites = invites - 1 WHERE id = ".mysql_real_escape_string($id)) or sqlerr(__FILE__, __LINE__); sql_query("UPDATE users SET invites = invites - 1 WHERE id = ".mysql_real_escape_string($id)) or sqlerr(__FILE__, __LINE__);
$signupUrl = getBaseUrl() . "/signup.php?type=invite&invitenumber=$hash"; $signupUrl = getSchemeAndHttpHost() . "/signup.php?type=invite&invitenumber=$hash";
$message = <<<EOD $message = <<<EOD
{$lang_takeinvite['mail_one']}{$arr['username']}{$lang_takeinvite['mail_two']} {$lang_takeinvite['mail_one']}{$arr['username']}{$lang_takeinvite['mail_two']}
<b><a href="javascript:void(null)" onclick="window.open($signupUrl)">{$lang_takeinvite['mail_here']}</a></b><br /> <b><a href="javascript:void(null)" onclick="window.open($signupUrl)">{$lang_takeinvite['mail_here']}</a></b><br />
public/takesignup.php
+7 -5
View File
@@ -64,7 +64,7 @@ $ip = getip();
$res = sql_query("SELECT username FROM users WHERE id = $inviter") or sqlerr(__FILE__, __LINE__); $res = sql_query("SELECT username FROM users WHERE id = $inviter") or sqlerr(__FILE__, __LINE__);
$arr = mysql_fetch_assoc($res); $arr = mysql_fetch_assoc($res);
$invusername = $arr[username]; $invusername = $arr['username'];
} }
if (!mkglobal("wantusername:wantpassword:passagain:email")) if (!mkglobal("wantusername:wantpassword:passagain:email"))
@@ -171,14 +171,16 @@ $psecret = md5($row['secret']);
$ip = getip(); $ip = getip();
$usern = htmlspecialchars($wantusername); $usern = htmlspecialchars($wantusername);
$title = $SITENAME.$lang_takesignup['mail_title']; $title = $SITENAME.$lang_takesignup['mail_title'];
$confirmUrl = getSchemeAndHttpHost() . "/confirm.php?id=$id&secret=$psecret";
$confirmResendUrl = getSchemeAndHttpHost() . "/confirm_resend.php";
$body = <<<EOD $body = <<<EOD
{$lang_takesignup['mail_one']}$usern{$lang_takesignup['mail_two']}($email){$lang_takesignup['mail_three']}$ip{$lang_takesignup['mail_four']} {$lang_takesignup['mail_one']}$usern{$lang_takesignup['mail_two']}($email){$lang_takesignup['mail_three']}$ip{$lang_takesignup['mail_four']}
<b><a href="javascript:void(null)" onclick="window.open('http://$BASEURL/confirm.php?id=$id&secret=$psecret')"> <b><a href="javascript:void(null)" onclick="window.open($confirmUrl)">
{$lang_takesignup['mail_this_link']} </a></b><br /> {$lang_takesignup['mail_this_link']} </a></b><br />
http://$BASEURL/confirm.php?id=$id&secret=$psecret $confirmUrl
{$lang_takesignup['mail_four_1']} {$lang_takesignup['mail_four_1']}
<b><a href="javascript:void(null)" onclick="window.open('http://$BASEURL/confirm_resend.php')">{$lang_takesignup['mail_here']}</a></b><br /> <b><a href="javascript:void(null)" onclick="window.open($confirmResendUrl)">{$lang_takesignup['mail_here']}</a></b><br />
http://$BASEURL/confirm_resend.php $confirmResendUrl
<br /> <br />
{$lang_takesignup['mail_five']} {$lang_takesignup['mail_five']}
EOD; EOD;