www.webdeveloper.com
Results 1 to 2 of 2

Thread: Function passing variables to email & insert, email works, insert only partial works

  1. #1
    Join Date
    Oct 2012
    Posts
    2

    Function passing variables to email & insert, email works, insert only partial works

    Hello,

    I have a script that partially works. The function of the script is to email the user and insert to a table from text input using $POST_ and check boxes of items using array. My problem is, the script will send all of the "check box chosen" array variable values to the email (like I want), yet only the $POST_ variables will insert to the table. I cannot get the "check box chosen" array variable values to INSERT, only the form $POST.

    Since the user may choose many check boxes at a time, it sends 1 email per row, I may ask for help with a "loop" and "delete" function later, but I'll try to figure it out later. I don't want to be a burden.

    Also, I do know this code has inject problems, but I would like to get the insert working (and delete from other table later) first.

    Any help you can give is greatly appreciated. I have beat my head against a wall for over a week now!

    Code:
    function insert_wire() {
    
            $checkbox=$_POST['checkbox'];
    
            for($i=0;$i<count($checkbox);$i++){
            $del_id = $checkbox[$i];
    
            $differencetolocaltime=2; // Local server time offset in hours
            $new_U=date("U")-$differencetolocaltime*1810; // + to add, - to subtract
            $time = date("l F d Y @ g:i a", $new_U); 
    	$job_name = $_POST['job_name'];
    	
    	$job_email = $_POST['job_email'];
    
            $p_o_number = $_POST['p_o_number'];
    
            $size = $row['size'];
    
            $conductor = $row['conductor'];
    
            $insulation = $row['insulation'];
    
            $length = $row['length'];
    
            // Strip \r and \n from the email address
    
            $job_name = stripslashes($job_name);
    
            $job_name = preg_replace("/\r/", "", $job_name);
    
            $job_name = preg_replace("/\n/", "", $job_name);
    
            // Remove injected headers
    
            $find = array("/bcc\:/i","/Content\-Type\:/i","/cc\:/i","/to\:/i");
    
            $job_name = preg_replace($find, "**bogus header removed**", $job_name);
    
            //$location = preg_replace($find, "**bogus header removed**", $location);
    
            $headers .= "From: " . $_POST["job_email"];
            $headers .= "MIME-Version: 1.0\r\n";
            $headers .= "Content-Type: text/html; charset=ISO-8859-1\r\n";
    
    	$ip = $_SERVER["REMOTE_ADDR"];
    
    	$host = gethostbyaddr($ip);
    
    	$subject = $_POST["job_name"] . "\nWire Addition"; // your website or chosen Subject
    
    	$site = "http://www.mysite.com"; // submitted from
            
            // multiple recipients
            $to  = 'me@myemail.com' . ', '; // note the comma
            $to .= $_POST["job_email"];
    	
    	$message = '<html><body>';
    	$message .= '<img src="http://www.mysite.com/logo.jpg" alt="logo" />';
            $message .= '<table rules="all" style="border-color: #000;" border="2" cellpadding="2" width="500">';
            $message .= "<tr><td colspan='2'><strong> Job Name:</strong> </td><td colspan='3'>" . $_POST['job_name'] . "</td></tr>";
            $message .= "<tr><td colspan='2'><strong>Email:</strong> </td><td colspan='3'>" . $_POST['job_email'] . "</td></tr>";
            $message .= "<tr><td colspan='2'><strong>PO#:</strong> </td><td colspan='3'>" . $_POST['p_o_number'] . "</td></tr>";
            $message .= "<tr><td colspan='2'><strong>Time of Order:</strong> </td><td colspan='3'>" . $time . "</td></tr>";
    
            $message .= "<tr>";
            $message .= "<td><strong>ID</strong></td>";
            $message .= "<td><strong>Size</strong></td>";
            $message .= "<td><strong>Conductor</strong></td>";
            $message .= "<td><strong>Insulation</strong></td>";
            $message .= "<td><strong>Length</strong></td>";
            $message .= "</tr>";
            $query="SELECT * FROM unclaimed WHERE id='$del_id'";
            $result=mysql_query($query) or die(mysql_error());
            $sno=1;
            while($row=mysql_fetch_array($result, MYSQL_ASSOC)){
            $message .= "<tr>";
            $message .= "<td>" . $row['id'] . "</td>";
            $message .= "<td>" . $row['size'] . "</td>";
            $message .= "<td>" . $row['conductor'] . "</td>";
            $message .= "<td>" . $row['insulation'] . "</td>";
            $message .= "<td>" . $row['length'] . "</td>";
            $message .= "</tr>";
    
            $sno=$sno+1;
            }
    
            $message .= "</table>";
            $message .= "</body></html>";
    
    	$message2 = "Submitted from: " . $site . "\nHost: " . $host . "\nIP: " . $ip . "\nTime: " . $time . "\n\nJob Name: " . $job_name . "\n\nEmail: " . $job_email . "\n\nPO Number: " . $p_o_number;
    
    
            if ($job_name && $job_email && $p_o_number) {
    
    		if (mail($to, $subject, $message, $headers)) {
    
    	$sql2="select * from unclaimed where id='$del_id'";
    
    	$result2=mysql_query($sql2) or die("select  fails");
    
    	$no=mysql_num_rows($result2);
    	
    
    
            }
    
            }
    
    	if ($no > 0) {
    
    		$sql = "insert INTO claimed (id,size,conductor,insulation,length,time,job_name,job_email,p_o_number) SELECT NULL,'$size','$conductor','$insulation','$length',now(),'$job_name','$job_email','$p_o_number' FROM unclaimed WHERE id='$del_id'";
    
    		$result = mysql_query($sql) or die("insert fails");
    
    		echo "<br /><h1>Wire Added</h1>";
    
    	} else {
    
    		echo "<br /><h1>This wire has already been added.</h1>";
    
    
    
    	}
                 }
    }
    echo mysql_error();
    ?>

  2. #2
    Join Date
    Oct 2012
    Posts
    2
    I'm sorry, I used the wrong tags in my previous post.

    PHP Code:
    function insert_wire() {

            
    $checkbox=$_POST['checkbox'];

            for(
    $i=0;$i<count($checkbox);$i++){
            
    $del_id $checkbox[$i];

            
    $differencetolocaltime=2// Local server time offset in hours
            
    $new_U=date("U")-$differencetolocaltime*1810// + to add, - to subtract
            
    $time date("l F d Y @ g:i a"$new_U); 
        
    $job_name $_POST['job_name'];
        
        
    $job_email $_POST['job_email'];

            
    $p_o_number $_POST['p_o_number'];

            
    $size $row['size'];

            
    $conductor $row['conductor'];

            
    $insulation $row['insulation'];

            
    $length $row['length'];

            
    // Strip \r and \n from the email address

            
    $job_name stripslashes($job_name);

            
    $job_name preg_replace("/\r/"""$job_name);

            
    $job_name preg_replace("/\n/"""$job_name);

            
    // Remove injected headers

            
    $find = array("/bcc\:/i","/Content\-Type\:/i","/cc\:/i","/to\:/i");

            
    $job_name preg_replace($find"**bogus header removed**"$job_name);

            
    //$location = preg_replace($find, "**bogus header removed**", $location);

            
    $headers .= "From: " $_POST["job_email"];
            
    $headers .= "MIME-Version: 1.0\r\n";
            
    $headers .= "Content-Type: text/html; charset=ISO-8859-1\r\n";

        
    $ip $_SERVER["REMOTE_ADDR"];

        
    $host gethostbyaddr($ip);

        
    $subject $_POST["job_name"] . "\nWire Addition"// your website or chosen Subject

        
    $site "http://www.mysite.com"// submitted from
            
            // multiple recipients
            
    $to  'me@myemail.com' ', '// note the comma
            
    $to .= $_POST["job_email"];
        
        
    $message '<html><body>';
        
    $message .= '<img src="http://www.mysite.com/logo.jpg" alt="logo" />';
            
    $message .= '<table rules="all" style="border-color: #000;" border="2" cellpadding="2" width="500">';
            
    $message .= "<tr><td colspan='2'><strong> Job Name:</strong> </td><td colspan='3'>" $_POST['job_name'] . "</td></tr>";
            
    $message .= "<tr><td colspan='2'><strong>Email:</strong> </td><td colspan='3'>" $_POST['job_email'] . "</td></tr>";
            
    $message .= "<tr><td colspan='2'><strong>PO#:</strong> </td><td colspan='3'>" $_POST['p_o_number'] . "</td></tr>";
            
    $message .= "<tr><td colspan='2'><strong>Time of Order:</strong> </td><td colspan='3'>" $time "</td></tr>";

            
    $message .= "<tr>";
            
    $message .= "<td><strong>ID</strong></td>";
            
    $message .= "<td><strong>Size</strong></td>";
            
    $message .= "<td><strong>Conductor</strong></td>";
            
    $message .= "<td><strong>Insulation</strong></td>";
            
    $message .= "<td><strong>Length</strong></td>";
            
    $message .= "</tr>";
            
    $query="SELECT * FROM unclaimed WHERE id='$del_id'";
            
    $result=mysql_query($query) or die(mysql_error());
            
    $sno=1;
            while(
    $row=mysql_fetch_array($resultMYSQL_ASSOC)){
            
    $message .= "<tr>";
            
    $message .= "<td>" $row['id'] . "</td>";
            
    $message .= "<td>" $row['size'] . "</td>";
            
    $message .= "<td>" $row['conductor'] . "</td>";
            
    $message .= "<td>" $row['insulation'] . "</td>";
            
    $message .= "<td>" $row['length'] . "</td>";
            
    $message .= "</tr>";

            
    $sno=$sno+1;
            }

            
    $message .= "</table>";
            
    $message .= "</body></html>";

        
    $message2 "Submitted from: " $site "\nHost: " $host "\nIP: " $ip "\nTime: " $time "\n\nJob Name: " $job_name "\n\nEmail: " $job_email "\n\nPO Number: " $p_o_number;


            if (
    $job_name && $job_email && $p_o_number) {

            if (
    mail($to$subject$message$headers)) {

        
    $sql2="select * from unclaimed where id='$del_id'";

        
    $result2=mysql_query($sql2) or die("select  fails");

        
    $no=mysql_num_rows($result2);
        


            }

            }

        if (
    $no 0) {

            
    $sql "insert INTO claimed (id,size,conductor,insulation,length,time,job_name,job_email,p_o_number) SELECT NULL,'$size','$conductor','$insulation','$length',now(),'$job_name','$job_email','$p_o_number' FROM unclaimed WHERE id='$del_id'";

            
    $result mysql_query($sql) or die("insert fails");

            echo 
    "<br /><h1>Wire Added</h1>";

        } else {

            echo 
    "<br /><h1>This wire has already been added.</h1>";



        }
                 }
    }
    echo 
    mysql_error();
    ?> 

Thread Information

Users Browsing this Thread

There are currently 1 users browsing this thread. (0 members and 1 guests)

Tags for this Thread

Posting Permissions

  • You may not post new threads
  • You may not post replies
  • You may not post attachments
  • You may not edit your posts
  •  
HTML5 Development Center

"

"

X vBulletin 4.2.2 Debug Information

  • Page Generation 0.18491 seconds
  • Memory Usage 2,946KB
  • Queries Executed 15 (?)
More Information
Template Usage (34):
  • (1)SHOWTHREAD
  • (1)ad_footer_end
  • (1)ad_footer_start
  • (1)ad_global_above_footer
  • (1)ad_global_below_navbar
  • (1)ad_global_header1
  • (1)ad_global_header2
  • (1)ad_navbar_below
  • (1)ad_showthread_firstpost_sig
  • (1)ad_showthread_firstpost_start
  • (1)ad_thread_first_post_content
  • (1)ad_thread_last_post_content
  • (1)bbcode_code
  • (1)bbcode_php
  • (1)footer
  • (1)forumjump
  • (1)forumrules
  • (1)gobutton
  • (1)header
  • (1)headinclude
  • (1)headinclude_bottom
  • (2)memberaction_dropdown
  • (1)navbar
  • (4)navbar_link
  • (1)navbar_moderation
  • (1)navbar_noticebit
  • (1)navbar_tabs
  • (2)option
  • (2)postbit
  • (2)postbit_onlinestatus
  • (2)postbit_wrapper
  • (1)spacer_close
  • (1)spacer_open
  • (1)tagbit_wrapper 

Phrase Groups Available (6):
  • global
  • inlinemod
  • postbit
  • posting
  • reputationlevel
  • showthread
Included Files (26):
  • ./showthread.php
  • ./global.php
  • ./includes/class_bootstrap.php
  • ./includes/init.php
  • ./includes/class_core.php
  • ./includes/config.php
  • ./includes/functions.php
  • ./includes/functions_navigation.php
  • ./includes/class_friendly_url.php
  • ./includes/class_hook.php
  • ./includes/class_bootstrap_framework.php
  • ./vb/vb.php
  • ./vb/phrase.php
  • ./includes/functions_facebook.php
  • ./includes/functions_calendar.php
  • ./includes/functions_bigthree.php
  • ./includes/class_postbit.php
  • ./includes/class_bbcode.php
  • ./includes/functions_reputation.php
  • ./includes/functions_notice.php
  • ./packages/vbattach/attach.php
  • ./vb/types.php
  • ./vb/cache.php
  • ./vb/cache/db.php
  • ./vb/cache/observer/db.php
  • ./vb/cache/observer.php 

Hooks Called (71):
  • init_startup
  • friendlyurl_resolve_class
  • init_startup_session_setup_start
  • database_pre_fetch_array
  • database_post_fetch_array
  • init_startup_session_setup_complete
  • global_bootstrap_init_start
  • global_bootstrap_init_complete
  • cache_permissions
  • fetch_threadinfo_query
  • fetch_threadinfo
  • fetch_foruminfo
  • load_show_variables
  • load_forum_show_variables
  • global_state_check
  • global_bootstrap_complete
  • global_start
  • style_fetch
  • global_setup_complete
  • showthread_start
  • showthread_getinfo
  • strip_bbcode
  • friendlyurl_clean_fragment
  • friendlyurl_geturl
  • forumjump
  • cache_templates
  • cache_templates_process
  • template_register_var
  • template_render_output
  • fetch_template_start
  • fetch_template_complete
  • parse_templates
  • fetch_musername
  • notices_check_start
  • notices_noticebit
  • process_templates_complete
  • friendlyurl_redirect_canonical
  • showthread_post_start
  • showthread_query_postids
  • showthread_query
  • bbcode_fetch_tags
  • bbcode_create
  • showthread_postbit_create
  • postbit_factory
  • postbit_display_start
  • postbit_imicons
  • bbcode_parse_start
  • bbcode_parse_complete_precache
  • bbcode_parse_complete
  • postbit_display_complete
  • memberaction_dropdown
  • tag_fetchbit
  • tag_fetchbit_complete
  • forumrules
  • navbits
  • navbits_complete
  • build_navigation_data
  • build_navigation_array
  • check_navigation_permission
  • process_navigation_links_start
  • process_navigation_links_complete
  • set_navigation_menu_element
  • build_navigation_menudata
  • build_navigation_listdata
  • build_navigation_list
  • set_navigation_tab_main
  • set_navigation_tab_fallback
  • navigation_tab_complete
  • fb_like_button
  • showthread_complete
  • page_templates