@ -49,8 +49,8 @@
while($row = mysql_fetch_assoc($res))
{ ?>
< tr >
< td class = "DataTD" >< a href = "account.php?id=43&userid= <? = $row [ 'id' ] ?> " > <? = intval ( $row [ 'id' ]) ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=43&userid= <? = $row [ 'id' ] ?> " > <? = sanitizeHTML ( $row [ 'email' ]) ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=43&userid= <? = intval ( $row [ 'id' ] ) ?> " > <? = intval ( $row [ 'id' ]) ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=43&userid= <? = intval ( $row [ 'id' ] ) ?> " > <? = sanitizeHTML ( $row [ 'email' ]) ?> </ a ></ td >
< / tr >
<? } if ( mysql_num_rows ( $res ) >= 100 ) { ?>
< tr >
@ -80,14 +80,14 @@
echo _("I'm sorry, the user you were looking for seems to have disappeared! Bad things are a foot!");
} else {
$row = mysql_fetch_assoc($res);
$query = "select sum(`points`) as `points` from `notary` where `to`='".$row['id']."'";
$query = "select sum(`points`) as `points` from `notary` where `to`='".intval( $row['id']) ."'";
$dres = mysql_query($query);
$drow = mysql_fetch_assoc($dres);
$alerts = mysql_fetch_assoc(mysql_query("select * from `alerts` where `memid`='".$row['id']."'"));
$alerts = mysql_fetch_assoc(mysql_query("select * from `alerts` where `memid`='".intval( $row['id']) ."'"));
?>
< table align = "center" valign = "middle" border = "0" cellspacing = "0" cellpadding = "0" class = "wrapper" >
< tr >
< td colspan = "5" class = "title" > <? printf ( _ ( "%s's Account Details" ), $row [ 'email' ] ); ?> </ td >
< td colspan = "5" class = "title" > <? printf ( _ ( "%s's Account Details" ), sanitizeHTML ( $row [ 'email' ] ) ); ?> </ td >
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Email" ) ?> :</ td >
@ -97,22 +97,22 @@
< td class = "DataTD" > <? = _ ( "First Name" ) ?> :</ td >
< td class = "DataTD" > < form method = "post" action = "account.php" onSubmit = "if(!confirm('Are you sure you want to modify this DOB and/or last name?')) return false;" >
< input type = "hidden" name = "csrf" value = " <? = make_csrf ( 'admchangepers' ) ?> " />
< input type = "text" name = "fname" value = " <? = $row [ 'fname' ] ?> " ></ td >
< input type = "text" name = "fname" value = " <? = sanitizeHTML ( $row [ 'fname' ] ) ?> " ></ td >
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Middle Name" ) ?> :</ td >
< td class = "DataTD" >< input type = "text" name = "mname" value = " <? = $row [ 'mname' ] ?> " ></ td >
< td class = "DataTD" >< input type = "text" name = "mname" value = " <? = sanitizeHTML ( $row [ 'mname' ] ) ?> " ></ td >
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Last Name" ) ?> :</ td >
< td class = "DataTD" > < input type = "hidden" name = "oldid" value = "43" >
< input type = "hidden" name = "action" value = "updatedob" >
< input type = "hidden" name = "userid" value = " <? = $id ?> " >
< input type = "text" name = "lname" value = " <? = $row [ 'lname' ] ?> " ></ td >
< input type = "hidden" name = "userid" value = " <? = intval ( $id ) ?> " >
< input type = "text" name = "lname" value = " <? = sanitizeHTML ( $row [ 'lname' ] ) ?> " ></ td >
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Suffix" ) ?> :</ td >
< td class = "DataTD" >< input type = "text" name = "suffix" value = " <? = $row [ 'suffix' ] ?> " ></ td >
< td class = "DataTD" >< input type = "text" name = "suffix" value = " <? = sanitizeHTML ( $row [ 'suffix' ] ) ?> " ></ td >
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Date of Birth" ) ?> :</ td >
@ -152,7 +152,7 @@
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Is Assurer" ) ?> :</ td >
< td class = "DataTD" >< a href = "account.php?id=43&assurer= <? = intval ( $row [ 'id' ]) ?> &c odesign=<? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admsetassuret' ) ?> " > <? = $row [ 'assurer' ] ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=43&assurer= <? = intval ( $row [ 'id' ]) ?> &c srf=<? = make_csrf ( 'admsetassuret' ) ?> " > <? = $row [ 'assurer' ] ?> </ a ></ td >
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Blocked Assurer" ) ?> :</ td >
@ -164,15 +164,15 @@
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Code Signing" ) ?> :</ td >
< td class = "DataTD" >< a href = "account.php?id=43&codesign= <? = $row [ 'id' ] ?> &c odesign=<? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admcodesign' ) ?> " > <? = $row [ 'codesign' ] ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=43&codesign= <? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admcodesign' ) ?> " > <? = $row [ 'codesign' ] ?> </ a ></ td >
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Org Admin" ) ?> :</ td >
< td class = "DataTD" >< a href = "account.php?id=43&orgadmin= <? = $row [ 'id' ] ?> &c odesign=<? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admorgadmin' ) ?> " > <? = $row [ 'orgadmin' ] ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=43&orgadmin= <? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admorgadmin' ) ?> " > <? = $row [ 'orgadmin' ] ?> </ a ></ td >
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "TTP Admin" ) ?> :</ td >
< td class = "DataTD" >< a href = "account.php?id=43&ttpadmin= <? = $row [ 'id' ] ?> &c odesign=<? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admttpadmin' ) ?> " > <? = $row [ 'ttpadmin' ] ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=43&ttpadmin= <? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admttpadmin' ) ?> " > <? = $row [ 'ttpadmin' ] ?> </ a ></ td >
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Location Admin" ) ?> :</ td >
@ -180,7 +180,7 @@
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Admin" ) ?> :</ td >
< td class = "DataTD" >< a href = "account.php?id=43&admin= <? = $row [ 'id' ] ?> &c odesign=<? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admsetadmin' ) ?> " > <? = $row [ 'admin' ] ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=43&admin= <? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admsetadmin' ) ?> " > <? = $row [ 'admin' ] ?> </ a ></ td >
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Ad Admin" ) ?> :</ td >
@ -212,7 +212,7 @@
< / tr >
< tr >
< td class = "DataTD" > <? = _ ( "Delete Account" ) ?> :</ td >
< td class = "DataTD" >< a href = "account.php?id=50&userid= <? = $row [ 'id' ] ?> &c odesign=<? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admdelaccount' ) ?> " > <? = _ ( "Delete Account" ) ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=50&userid= <? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admdelaccount' ) ?> " > <? = _ ( "Delete Account" ) ?> </ a ></ td >
< / tr >
<?
// This is intensionally a $_GET for audit purposes. DO NOT CHANGE!!!
@ -333,7 +333,7 @@
< td class = "DataTD" > <? = intval ( $drow [ 'points' ]) ?> </ td >
< td class = "DataTD" > <? = sanitizeHTML ( $drow [ 'location' ]) ?> </ td >
< td class = "DataTD" > <? = sanitizeHTML ( $drow [ 'method' ]) ?> </ td >
< td class = "DataTD" >< a href = "account.php?id=43&userid= <? = intval ( $drow [ 'to' ]) ?> &assurance= <? = intval ( $drow [ 'id' ]) ?> &c odesign=<? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admdelassurance' ) ?> " onclick = "return confirm(' <? = _ ( "Are you sure you want to revoke this assurance?" ) ?> ');" > <? = _ ( "Revoke" ) ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=43&userid= <? = intval ( $drow [ 'to' ]) ?> &assurance= <? = intval ( $drow [ 'id' ]) ?> &c srf=<? = make_csrf ( 'admdelassurance' ) ?> " onclick = "return confirm(' <? = _ ( "Are you sure you want to revoke this assurance?" ) ?> ');" > <? = _ ( "Revoke" ) ?> </ a ></ td >
< / tr >
<? } ?>
< tr >
@ -370,7 +370,7 @@
< td class = "DataTD" > <? = $drow [ 'points' ] ?> </ td >
< td class = "DataTD" > <? = $drow [ 'location' ] ?> </ td >
< td class = "DataTD" > <? = $drow [ 'method' ] ?> </ td >
< td class = "DataTD" >< a href = "account.php?id=43&userid= <? = $drow [ 'from' ] ?> &assurance= <? = $drow [ 'id' ] ?> &c odesign=<? = $row [ 'id' ] ?> &c srf=<? = make_csrf ( 'admdelassurance' ) ?> " onclick = "return confirm(' <? = _ ( "Are you sure you want to revoke this assurance?" ) ?> ');" > <? = _ ( "Revoke" ) ?> </ a ></ td >
< td class = "DataTD" >< a href = "account.php?id=43&userid= <? = $drow [ 'from' ] ?> &assurance= <? = $drow [ 'id' ] ?> &c srf=<? = make_csrf ( 'admdelassurance' ) ?> " onclick = "return confirm(' <? = _ ( "Are you sure you want to revoke this assurance?" ) ?> ');" > <? = _ ( "Revoke" ) ?> </ a ></ td >
< / tr >
<? } ?>
< tr >