Title: Instinct Ecommerce Help Last modified: August 19, 2016 --- # Instinct Ecommerce Help * [corntortillas](https://wordpress.org/support/users/corntortillas/) * (@corntortillas) * [17 years, 5 months ago](https://wordpress.org/support/topic/instinct-ecommerce-help/) * I’ve done this many times before, and I don’t think I’ve done anything differently, but when I try to activate my ecommerce plugin I get this error: * Plugin could not be activated because it triggered a fatal error. * Warning: session_start() [function.session-start]: open_basedir restriction in effect. File(/var/tmp/) is not within the allowed path(s): (/home/sbspecial/:/ tmp:/usr/local/lib/php/) in /home/sbspecial/domains/shopmetalsandpetals.com/public_html/ wp-content/plugins/wp-shopping-cart/wp-shopping-cart.php on line 148 * Fatal error: session_start() [[function.session-start](https://wordpress.org/support/topic/instinct-ecommerce-help/function.session-start?output_format=md)]: Failed to initialize storage module: files (path: ) in /home/sbspecial/domains/ shopmetalsandpetals.com/public_html/wp-content/plugins/wp-shopping-cart/wp-shopping- cart.php on line 148 * I have no idea how to fix this, but this is the wp-shopping-cart.php code: * =’) ); * // // we need to know where we are, rather than assuming where we are define(‘ WPSC_FILE_PATH’, dirname(__FILE__)); define(‘WPSC_DIR_NAME’, basename(WPSC_FILE_PATH)); * $siteurl = get_option(‘siteurl’); * // thanks to ikool for this fix define(‘WPSC_FOLDER’, dirname(plugin_basename( __FILE__))); define(‘WPSC_URL’, get_option(‘siteurl’).’/wp-content/plugins/’ . WPSC_FOLDER); * //exit(“”); * if(WPSC_DEBUG === true) { function microtime_float() { list($usec, $sec) = explode(”“, microtime()); return ((float)$usec + (float)$sec); } * function wpsc_debug_start_subtimer($name, $action, $loop = false) { global $wpsc_debug_sections,$loop_debug_increment; * if($loop === true) { if ($action == ‘start’) { $loop_debug_increment[$name] ++; $wpsc_debug_sections[$name.$loop_debug_increment[$name]][$action] = microtime_float();} else if($action == ‘stop’) { $wpsc_debug_sections[$name.$loop_debug_increment[ $name]][$action] = microtime_float(); } } else { $wpsc_debug_sections[$name][ $action] = microtime_float(); } } * $wpsc_start_time = microtime_float(); } else { function wpsc_debug_start_subtimer( $name) { return null; } } * if(get_option(‘language_setting’) != ”) { require(WPSC_FILE_PATH.’/languages/’. get_option(‘language_setting’)); } else { require(WPSC_FILE_PATH.’/languages/ EN_en.php’); } require(WPSC_FILE_PATH.’/classes/variations.class.php’); require( WPSC_FILE_PATH.’/classes/extra.class.php’); // require(WPSC_FILE_PATH.’/classes/ http_client.php’); require(WPSC_FILE_PATH.’/classes/mimetype.php’); require(WPSC_FILE_PATH.’/ classes/cart.class.php’); require(WPSC_FILE_PATH.’/classes/xmlparser.php’); if(! IS_WP25) { require(WPSC_FILE_PATH.’/editor.php’); } else { require(WPSC_FILE_PATH.’/ js/tinymce3/tinymce.php’); } * if(IS_WPMU == 1) { $upload_url = get_option(‘siteurl’).’/files’; $upload_path = ABSPATH.get_option(‘upload_path’); } else { if ( !defined(‘WP_CONTENT_URL’)){ define( ‘WP_CONTENT_URL’, get_option(‘siteurl’) . ‘/wp-content’); } if ( !defined(‘ WP_CONTENT_DIR’) ) { define( ‘WP_CONTENT_DIR’, ABSPATH . ‘wp-content’ ); } * $upload_path = WP_CONTENT_DIR.”/uploads”; $upload_url = WP_CONTENT_URL.”/uploads”;} * $wpsc_file_dir = “{$upload_path}/wpsc/downloadables/”; $wpsc_preview_dir = “{ $upload_path}/wpsc/previews/”; $wpsc_image_dir = “{$upload_path}/wpsc/product_images/”; $wpsc_thumbnail_dir = “{$upload_path}/wpsc/product_images/thumbnails/”; $wpsc_category_dir = “{$upload_path}/wpsc/category_images/”; $wpsc_user_uploads_dir = “{$upload_path}/ wpsc/user_uploads/”; * // $wpsc_file_dir = ABSPATH.”{$upload_path}/files/”; // $wpsc_preview_dir = ABSPATH.”{$upload_path}/preview_clips/”; // $wpsc_image_dir = ABSPATH.”{$upload_path}/ product_images/”; // $wpsc_thumbnail_dir = ABSPATH.”{$upload_path}/product_images/ thumbnails/”; // $wpsc_category_dir = ABSPATH.”{$upload_path}/category_images/”; * define(‘WPSC_FILE_DIR’, $wpsc_file_dir); define(‘WPSC_PREVIEW_DIR’, $wpsc_preview_dir); define(‘WPSC_IMAGE_DIR’, $wpsc_image_dir); define(‘WPSC_THUMBNAIL_DIR’, $wpsc_thumbnail_dir); define(‘WPSC_CATEGORY_DIR’, $wpsc_category_dir); define(‘WPSC_USER_UPLOADS_DIR’, $wpsc_user_uploads_dir); * /** * files that are uploaded as part of digital products are not directly downloaded, therefore there is no need for a URL constant for them */ * $wpsc_preview_url = “{$upload_url}/wpsc/previews/”; $wpsc_image_url = “{$upload_url}/ wpsc/product_images/”; $wpsc_thumbnail_url = “{$upload_url}/wpsc/product_images/ thumbnails/”; $wpsc_category_url = “{$upload_url}/wpsc/category_images/”; $wpsc_user_uploads_url = “{$upload_url}/wpsc/user_uploads/”; * // $wpsc_preview_url = “{$siteurl}/{$upload_path}/preview_clips/”; // $wpsc_image_url = “{$siteurl}/{$upload_path}/product_images/”; // $wpsc_thumbnail_url = “{$siteurl}/{ $upload_path}/product_images/thumbnails/”; // $wpsc_category_url = “{$siteurl}/{ $upload_path}/category_images/”; * define(‘WPSC_PREVIEW_URL’, $wpsc_preview_url); define(‘WPSC_IMAGE_URL’, $wpsc_image_url); define(‘WPSC_THUMBNAIL_URL’, $wpsc_thumbnail_url); define(‘WPSC_CATEGORY_URL’, $wpsc_category_url); define(‘WPSC_USER_UPLOADS_URL’, $wpsc_user_uploads_url); * /* * {Notes} Session will sometimes always exist dependent on server * {Notes} Controls user Session */ if((!is_array($_SESSION)) xor (!isset($_SESSION[‘nzshpcrt_cart’])) xor (!$_SESSION)) { session_start(); } * if(isset($_SESSION[‘nzshpcrt_cart’])) { foreach((array)$_SESSION[‘nzshpcrt_cart’] as $key => $item) { if(get_class($item) == “__PHP_Incomplete_Class”) { $_SESSION[‘ nzshpcrt_cart’] = unserialize($_SESSION[‘nzshpcrt_serialized_cart’]); } } } else{ if(isset($_SESSION[‘nzshpcrt_cart’])) { $_SESSION[‘nzshpcrt_cart’] = unserialize( $_SESSION[‘nzshpcrt_serialized_cart’]); } } * if(is_numeric($_GET[‘sessionid’])) { $sessionid = $_GET[‘sessionid’]; $cart_log_id = $wpdb->get_var(“SELECT `id` FROM `".$wpdb->prefix."purchase_logs` WHERE `sessionid` = “.$sessionid.” LIMIT 1″); if(is_numeric($cart_log_id)) { $_SESSION[‘nzshpcrt_cart’] = null; $_SESSION[‘nzshpcrt_serialized_cart’] = null; } } * $GLOBALS[‘nzshpcrt_imagesize_info’] = TXT_WPSC_IMAGESIZEINFO; $nzshpcrt_log_states[ 0][‘name’] = TXT_WPSC_RECEIVED; $nzshpcrt_log_states[1][‘name’] = TXT_WPSC_PROCESSING; $nzshpcrt_log_states[2][‘name’] = TXT_WPSC_PROCESSED; * class wp_shopping_cart { function wp_shopping_cart() { return; } function displaypages(){/** Fairly standard wordpress plugin API stuff for adding the admin pages, rearrange the order to rearrange the pages * The bits to display the options page first on first use may be buggy, but tend not to stick around long enough to be identified and fixed * if you find bugs, feel free to fix them. * * If the permissions are changed here, they will likewise need to be changed for the other secions of the admin that either use ajax * or bypass the normal download system. * its in an object because nobody has moved it out of the object yet. */ if(function_exists(‘ add_options_page’)) { // if(get_option(‘nzshpcrt_first_load’) == 0) { // $base_page = WPSC_DIR_NAME.’/options.php’; // add_menu_page(TXT_WPSC_ECOMMERCE, TXT_WPSC_ECOMMERCE, 7, $base_page); // add_submenu_page($base_page,TXT_WPSC_OPTIONS, TXT_WPSC_OPTIONS, 7, WPSC_DIR_NAME.’/options.php’); // } else { $base_page = WPSC_DIR_NAME.’/display- log.php’; add_menu_page(TXT_WPSC_ECOMMERCE, TXT_WPSC_ECOMMERCE, 7, $base_page); add_submenu_page(WPSC_DIR_NAME.’/display-log.php’,TXT_WPSC_PURCHASELOG, TXT_WPSC_PURCHASELOG, 7, WPSC_DIR_NAME.’/display-log.php’); // } //written by allen add_submenu_page(‘ users.php’,TXT_WPSC_ECOMMERCE_SUBSCRIBERS, TXT_WPSC_ECOMMERCE_SUBSCRIBERS, 7, WPSC_DIR_NAME.’/display-ecommerce-subs.php’); //exit(ABSPATH.’wp-admin/users. php’); //end of written by allen * add_submenu_page($base_page,TXT_WPSC_PRODUCTS, TXT_WPSC_PRODUCTS, 7, WPSC_DIR_NAME.’/ display-items.php’); add_submenu_page($base_page,TXT_WPSC_CATEGORISATION, TXT_WPSC_CATEGORISATION, 7, WPSC_DIR_NAME.’/display-category.php’); * add_submenu_page($base_page,TXT_WPSC_VARIATIONS, TXT_WPSC_VARIATIONS, 7, WPSC_DIR_NAME.’/ display_variations.php’); add_submenu_page($base_page,TXT_WPSC_MARKETING, TXT_WPSC_MARKETING, 7, WPSC_DIR_NAME.’/display-coupons.php’); * add_submenu_page($base_page,TXT_WPSC_PAYMENTGATEWAYOPTIONS, TXT_WPSC_PAYMENTGATEWAYOPTIONS, 7, WPSC_DIR_NAME.’/gatewayoptions.php’); add_submenu_page($base_page,TXT_WPSC_FORM_FIELDS, TXT_WPSC_FORM_FIELDS, 7, WPSC_DIR_NAME.’/form_fields.php’); add_submenu_page( $base_page,TXT_WPSC_OPTIONS, TXT_WPSC_OPTIONS, 7, WPSC_DIR_NAME.’/options.php’); if(function_exists(‘gold_shpcrt_options’)) { gold_shpcrt_options($base_page);}// add_submenu_page($base_page,TXT_WPSC_HELPINSTALLATION, TXT_WPSC_HELPINSTALLATION, 7, WPSC_DIR_NAME.’/instructions.php’); } return; } } * function nzshpcrt_style() { ?> /thickbox.css’ rel=”stylesheet” type=”text/css” /> * /themes/default/default.css’ rel=”stylesheet” type=”text/ css” /> /admin.css’ rel=”stylesheet” type=”text/css” /> /wp-admin/css/dashboard.css?ver=2.6′ rel=”stylesheet” type=” text/css” /> query($google_status_sql); $ merchant_id = get_option(‘google_id’); $merchant_key = get_option(‘google_key’); $server_type = get_option(‘google_server_type’); $currency = get_option(‘google_cur’); $Grequest = new GoogleRequest($merchant_id, $merchant_key, $server_type,$currency); $google_order_number=$wpdb->get_var(“SELECT google_order_number FROM `".$wpdb- >prefix."purchase_logs` WHERE `id` = ‘”.$_POST[‘id’].”‘ LIMIT 1″); switch ($newvalue){ case ‘Charge’: $Grequest->SendChargeOrder($google_order_number,$amount); break; * case ‘Ship’: $Grequest->SendDeliverOrder($google_order_number); break; * case ‘Archive’: $Grequest->SendArchiveOrder($google_order_number); break; * case ‘Refund’: $Grequest->SendRefundOrder($google_order_number,$amount,$reason); break; * case ‘Cancel’: $Grequest->SendCancelOrder($google_order_number,$reason,$comment); break; * case ‘Send Message’: $Grequest->SendBuyerMessage($google_order_number,$message); break; } $newvalue++; $update_sql = “UPDATE `".$wpdb->prefix."purchase_logs` SET `processed` = ‘”.$newvalue.”‘ WHERE `id` = ‘”.$_POST[‘id’].”‘ LIMIT 1″; // $wpdb->query($update_sql); * exit(); } * ////changes for usps if ($_POST[‘uspsswitch’]) { foreach ($_SESSION[‘uspsQuote’] as $quotes) { $total=$_POST[‘total’]; if ($quotes[$_POST[‘key’]]!=”) { echo nzshpcrt_currency_display( $total+$quotes[$_POST[‘key’]],1); echo “get_results($sql,ARRAY_A); * $item_quantity = 0; if($_SESSION[‘nzshpcrt_cart’] != null) { foreach($_SESSION[‘ nzshpcrt_cart’] as $cart_key => $cart_item) { if (($memberstatus[0]!=’1′)&&($ _SESSION[‘nzshpcrt_cart’]!=NULL)){ if($cart_item->product_id == $_POST[‘prodid’]){ if(($_SESSION[‘nzshpcrt_cart’][$cart_key]->product_variations === $_POST[‘variation’])&&( $_SESSION[‘nzshpcrt_cart’][$cart_key]->extras === $_POST[‘extras’])) { $item_quantity += $_SESSION[‘nzshpcrt_cart’][$cart_key]->quantity; $item_variations = $_SESSION[‘ nzshpcrt_cart’][$cart_key]->product_variations; } } } } } * $item_stock = null; $variation_count = count($_POST[‘variation’]); if(($variation_count >= 1) && ($variation_count <= 2)) { foreach($_POST[‘variation’] as $variation_id){ if(is_numeric($variation_id)) { $variation_ids[] = (int)$variation_id; } } if( count($variation_ids) == 2) { $variation_stock_data = $wpdb->get_row(“SELECT * FROM `".$wpdb->prefix."variation_priceandstock` WHERE `product_id` = ‘”.$_POST[‘ prodid’].”‘ AND (`variation_id_1` = ‘”.$variation_ids[0].”‘ AND `variation_id_2` = ‘”.$variation_ids[1].”‘) OR (`variation_id_1` = ‘”.$variation_ids[1].”‘ AND` variation_id_2` = ‘”.$variation_ids[0].”‘) LIMIT 1″,ARRAY_A); $item_stock = $ variation_stock_data[‘stock’]; } else if(count($variation_ids) == 1) { $variation_stock_data = $wpdb->get_row(“SELECT * FROM `".$wpdb->prefix."variation_priceandstock` WHERE` product_id` = ‘”.$_POST[‘prodid’].”‘ AND (`variation_id_1` = ‘”.$variation_ids[ 0].”‘ AND `variation_id_2` = ‘0’) LIMIT 1″,ARRAY_A); $item_stock = $variation_stock_data[‘ stock’]; } } * if($item_stock === null) { $item_stock = $item_data[0][‘quantity’]; } * if((($item_data[0][‘quantity_limited’] == 1) && ($item_stock > 0) && ($item_stock > $item_quantity)) || ($item_data[0][‘quantity_limited’] == 0)) { $cartcount = count($_SESSION[‘nzshpcrt_cart’]); if(is_array($_POST[‘variation’])) { $variations = $_POST[‘variation’]; } else { $variations = null; } if(is_array($_POST[‘extras’])){ $extras = $_POST[‘extras’]; } else { $extras = null; } $updated_quantity = false; if($_SESSION[‘nzshpcrt_cart’] != null) { foreach($_SESSION[‘nzshpcrt_cart’] as $cart_key => $cart_item) { if ((!($memberstatus[0]==’1′)&&(count($_SESSION[‘nzshpcrt_cart’]) >0))) { if((int)$cart_item->product_id === (int)$_POST[‘prodid’]) { // force both to integer before testing for identicality if(($_SESSION[‘nzshpcrt_cart’][ $cart_key]->extras === $extras)&&($_SESSION[‘nzshpcrt_cart’][$cart_key]->product_variations === $variations) && ((int)$_SESSION[‘nzshpcrt_cart’][$cart_key]->donation_price == (int)$_POST[‘donation_price’])) { if(is_numeric($_POST[‘quantity’])) { $_SESSION[‘ nzshpcrt_cart’][$cart_key]->quantity += (int)$_POST[‘quantity’]; } else { $_SESSION[‘ nzshpcrt_cart’][$cart_key]->quantity++; } $updated_quantity = true; } } } } } if($item_data[0][‘donation’] == 1) { $donation = $_POST[‘donation_price’]; } else { $donation = false; } if(!(($memberstatus[0]==’1′)&&(count($_SESSION[‘nzshpcrt_cart’]) >0))){ $status = get_product_meta($cartt1, ‘is_membership’, true); if ($status[ 0]==’1′){ exit(); } if($updated_quantity === false) { if(is_numeric($_POST[‘quantity’])){ if($_POST[‘quantity’] > 0) { $new_cart_item = new cart_item($_POST[‘prodid’], $variations,$_POST[‘quantity’], $donation,$extras); } } else { //echo “correct”; $new_cart_item = new cart_item($_POST[‘prodid’],$variations, 1, $donation,$extras);} $_SESSION[‘nzshpcrt_cart’][] = $new_cart_item; } } } else { $quantity_limit = true; } * $cart = $_SESSION[‘nzshpcrt_cart’]; * if (($memberstatus[0]==’1′)&&(count($cart)>1)) { } else { $status = get_product_meta( $cartt1, ‘is_membership’, true); if ($status[0]==’1′){ exit(‘st’); } echo “if( document.getElementById(‘shoppingcartcontents’) != null) { document.getElementById(‘ shoppingcartcontents’).innerHTML = \””.str_replace(Array(“\n”,”\r”) , “”,addslashes( nzshpcrt_shopping_basket_internals($cart,$quantity_limit))). “\”; } “; * if(($_POST[‘prodid’] != null) &&(get_option(‘fancy_notifications’) == 1)) { echo “if(document.getElementById(‘fancy_notification_content’) != null) { document. getElementById(‘fancy_notification_content’).innerHTML = \””.str_replace(Array(“\ n”,”\r”) , “”,addslashes(fancy_notification_content($_POST[‘prodid’], $quantity_limit))).“\”; jQuery(‘#loading_animation’).css(‘display’, ‘none’); jQuery(‘#fancy_notification_content’). css(‘display’, ‘block’); } “; } * if($_SESSION[‘slider_state’] == 0) { echo ‘jQuery(“#sliding_cart”).css({ display:“ none”});’.”\n\r”; } else { echo ‘jQuery(“#sliding_cart”).css({ display: “block”});’.”\ n\r”; } } } exit(); } else if(($_POST[‘user’] == “true”) && ($_POST[’emptycart’] == “true”)) { //exit(“/* \n\r “.get_option(‘shopping_cart_url’).” \n\r “.print_r( $_POST,true).” \n\r */”); $_SESSION[‘nzshpcrt_cart’] = ”; $_SESSION[‘nzshpcrt_cart’] = Array(); echo “if(document.getElementById(‘shoppingcartcontents’) != null) { document.getElementById(‘shoppingcartcontents’).innerHTML = \””.str_replace(Array(“\ n”,”\r”) , “”, addslashes(nzshpcrt_shopping_basket_internals($cart))). “\”; }\ n\r”; * if($_POST[‘current_page’] == get_option(‘shopping_cart_url’)) { echo “window. location = ‘”.get_option(‘shopping_cart_url’).”‘;\n\r”; // if we are on the checkout page, redirect back to it to clear the non-ajax cart too } exit(); } * if ($_POST[‘store_list’]==”true”) { $map_data[‘address’] = $_POST[‘addr’]; $map_data[‘city’] = $_POST[‘city’]; $map_data[‘country’] = ‘US’; $map_data[‘zipcode’] =”; $map_data[‘radius’] = ‘50000’; $map_data[‘state’] = ”; $map_data[‘submit’] = ‘Find Store’; $stores = getdistance($map_data); $i=0; while($rows = mysql_fetch_array( $stores)) { //echo “ * ``` ".print_r($rows,1)." ``` * “; if ($i==0) { $closest_store = $rows[5]; } $i++; $store_list[$i] = $rows[5];} foreach ($store_list as $store){ $output.=””; } echo $output; exit(); } * if($_POST[‘admin’] == “true”) { * if(is_numeric($_POST[‘prodid’])) { /* fill product form */ echo nzshpcrt_getproductform( $_POST[‘prodid’]); exit(); } else if(is_numeric($_POST[‘catid’])) { /* fill category form */ echo nzshpcrt_getcategoryform($_POST[‘catid’]); exit(); } else if(is_numeric( $_POST[‘brandid’])) { /* fill brand form */ echo nzshpcrt_getbrandsform($_POST[‘ brandid’]); exit(); } else if(is_numeric($_POST[‘variation_id’])) { echo nzshpcrt_getvariationform( $_POST[‘variation_id’]); exit(); } * if($_POST[‘hide_ecom_dashboard’] == ‘true’) { require_once (ABSPATH . WPINC.‘/ rss.php’); $rss = fetch_rss(‘[http://www.instinct.co.nz/feed/’](http://www.instinct.co.nz/feed/’);); $rss->items = array_slice($rss->items, 0, 5); $rss_hash = sha1(serialize($rss- >items)); update_option(‘wpsc_ecom_news_hash’, $rss_hash); exit(1); } * if(($_POST[‘remove_meta’] == ‘true’) && is_numeric($_POST[‘meta_id’])) { $meta_id = (int)$_POST[‘meta_id’]; $selected_meta = $wpdb->get_row(“SELECT * FROM `{$wpdb- >prefix}wpsc_productmeta` WHERE `id` IN(‘{$meta_id}’) “,ARRAY_A); if($selected_meta! = null) { if($wpdb->query(“DELETE FROM `{$wpdb->prefix}wpsc_productmeta` WHERE` id` IN(‘{$meta_id}’) LIMIT 1″)) { echo $meta_id; exit(); } } echo 0; exit(); } exit(); } * if(is_numeric($_POST[‘currencyid’])){ $currency_data = $wpdb->get_results(“ SELECT `symbol`,`symbol_html`,`code` FROM `".$wpdb->prefix."currency_list` WHERE` id`='”.$_POST[‘currencyid’].”‘ LIMIT 1″,ARRAY_A) ; $price_out = null; if($currency_data[ 0][‘symbol’] != ”) { $currency_sign = $currency_data[0][‘symbol_html’]; } else{ $currency_sign = $currency_data[0][‘code’]; } echo $currency_sign; exit(); } // echo “–==->”; if($_POST[‘buynow’] == “true”) { $id = $_REQUEST[‘product_id’]; $price = $_REQUEST[‘price’]; $downloads = get_option(‘max_downloads’); $product_sql = “SELECT * FROM “.$wpdb->prefix.”product_list WHERE id = “.$id.” LIMIT 1″; $ product_info = $wpdb->get_results($product_sql, ARRAY_A); $product_info = $product_info[ 0]; $sessionid = (mt_rand(100,999).time()); $sql = “INSERT INTO `".$wpdb->prefix." purchase_logs` ( `totalprice` , `sessionid` , `date`, `billing_country`, `shipping_country`,` shipping_region`, `user_ID`, `discount_value` ) VALUES ( ‘”.$price.”‘, ‘”.$sessionid.”‘,‘”. time().”‘, ‘BuyNow’, ‘BuyNow’, ‘BuyNow’ , NULL , 0)”; $wpdb->query($sql) ; $log_id = $wpdb->get_var(“SELECT `id` FROM `".$wpdb->prefix."purchase_logs` WHERE `sessionid` IN(‘”.$sessionid.”‘) LIMIT 1″) ; $cartsql = “INSERT INTO `".$wpdb->prefix."cart_contents`(` prodid` , `purchaseid`, `price`, `pnp`, `gst`, `quantity`, `donation`, `no_shipping`) VALUES (‘”.$id.”‘, ‘”.$log_id.”‘,'”.$price.”‘,’0’, ‘0’,’1′, ‘”.$donation.”‘, ‘ 1’)”; $wpdb->query($cartsql); $wpdb->query(“INSERT INTO `".$wpdb->prefix."download_status`(` fileid` , `purchid` , `downloads` , `active` , `datetime` ) VALUES ( ‘”.$product_info[‘ file’].”‘, ‘”.$log_id.”‘, ‘$downloads’, ‘0’, NOW( ));”); exit(); } * if(($_POST[‘changeorder’] == “true”) && is_numeric($_POST[‘category_id’])) { $category_id = (int)$_POST[‘category_id’]; $hash=$_POST[‘sort1’]; $order=1; foreach( $hash as $id) { $wpdb->query(“UPDATE `".$wpdb->prefix."product_order` SET `order` =$order WHERE `product_id`=”.(int)$id.” AND `category_id`=”.(int)$category_id.” LIMIT 1″); $order++; } exit(” “); } * /* rate item */ if(($_POST[‘rate_item’] == “true”) && is_numeric($_POST[‘product_id’])&& is_numeric($_POST[‘rating’])) { $nowtime = time(); $prodid = $_POST[‘product_id’]; $ip_number = $_SERVER[‘REMOTE_ADDR’]; $rating = $_POST[‘rating’]; * $cookie_data = explode(“,”,$_COOKIE[‘voting_cookie’][$prodid]); * if(is_numeric($cookie_data[0]) && ($cookie_data[0] > 0)) { $vote_id = $cookie_data[ 0]; $wpdb->query(“UPDATE `".$wpdb->prefix."product_rating` SET `rated` = ‘”.$ rating.”‘ WHERE `id` ='”.$vote_id.”‘ LIMIT 1 ;”); } else { $insert_sql = “INSERT INTO `".$wpdb->prefix."product_rating` ( `ipnum` , `productid` , `rated`, `time`) VALUES ( ‘”.$ip_number.”‘, ‘”.$prodid.”‘, ‘”.$rating.”‘, ‘”.$nowtime.”‘);”; $ wpdb->query($insert_sql); * $data = $wpdb->get_results(“SELECT `id`,`rated` FROM `".$wpdb->prefix."product_rating` WHERE `ipnum`='”.$ip_number.”‘ AND `productid` = ‘”.$prodid.”‘ AND `rated` = ‘”. $rating.”‘ AND `time` = ‘”.$nowtime.”‘ ORDER BY `id` DESC LIMIT 1″,ARRAY_A) ; * $vote_id = $data[0][‘id’]; setcookie(“voting_cookie[$prodid]”, ($vote_id.”,”. $rating),time()+(60*60*24*360)); } * $output[1]= $prodid; $output[2]= $rating; echo $output[1].”,”.$output[2]; exit();}// written by allen if ($_REQUEST[‘save_tracking_id’] == “true”){ $id = $_POST[‘ id’]; $value = $_POST[‘value’]; $update_sql = “UPDATE “.$wpdb->prefix.”purchase_logs SET track_id = ‘”.$value.”‘ WHERE id=$id”; $wpdb->query($update_sql); exit();} * if(($_POST[‘get_rating_count’] == “true”) && is_numeric($_POST[‘product_id’])) { $prodid = $_POST[‘product_id’]; $data = $wpdb->get_results(“SELECT COUNT(*) AS` count` FROM `".$wpdb->prefix."product_rating` WHERE `productid` = ‘”.$prodid.”‘”, ARRAY_A) ; echo $data[0][‘count’].”,”.$prodid; exit(); } * /// Pointless AJAX call is pointless // if(isset($_POST[‘changeperpage’])) {// $item_per_page = $_POST[‘changeperpage’]; // echo $item_per_page; // exit(); //} * if(($_POST[‘remove_variation_value’] == “true”) && is_numeric($_POST[‘variation_value_id’])) { $wpdb->query(“DELETE FROM `".$wpdb->prefix."variation_values_associations` WHERE` value_id` = ‘”.$_POST[‘variation_value_id’].”‘”); $wpdb->query(“DELETE FROM `". $wpdb->prefix."variation_values` WHERE `id` = ‘”.$_POST[‘variation_value_id’].”‘ LIMIT 1″); exit(); } * if(($_POST[‘get_updated_price’] == “true”) && is_numeric($_POST[‘product_id’])) { $notax = $wpdb->get_var(“SELECT `notax` FROM `".$wpdb->prefix."product_list` WHERE `id` IN(‘”.$_POST[‘product_id’].”‘) LIMIT 1″); foreach((array)$_POST[‘variation’] as $variation) { if(is_numeric($variation)) { $variations[] = $variation; } } foreach((array)$_POST[‘extra’] as $extra) { if(is_numeric($extra)) { $extras[] = $extra; } } $pm=$_POST[‘pm’]; echo “product_id=”.$_POST[‘product_id’].”;\n”; * echo “price=\””.nzshpcrt_currency_display(calculate_product_price($_POST[‘product_id’], $variations,’stay’,$extras), $notax).”\”;\n”; //exit(print_r($extras,1)); exit();} * if(($_REQUEST[‘log_state’] == “true”) && is_numeric($_POST[‘id’]) && is_numeric( $_POST[‘value’])) { $newvalue = $_POST[‘value’]; if ($_REQUEST[‘suspend’]==’ true’){ if ($_REQUEST[‘value’]==1){ wpsc_member_dedeactivate_subscriptions($_POST[‘ id’]); } else { wpsc_member_deactivate_subscriptions($_POST[‘id’]); } exit();} else { * $log_data = $wpdb->get_row(“SELECT * FROM `".$wpdb->prefix."purchase_logs` WHERE` id` = ‘”.$_POST[‘id’].”‘ LIMIT 1″,ARRAY_A); if (($newvalue==2) && function_exists(‘ wpsc_member_activate_subscriptions’)){ wpsc_member_activate_subscriptions($_POST[‘ id’]); } * $update_sql = “UPDATE `".$wpdb->prefix."purchase_logs` SET `processed` = ‘”. $newvalue.”‘ WHERE `id` = ‘”.$_POST[‘id’].”‘ LIMIT 1″; $wpdb->query($update_sql);// echo(“/*”); if(($newvalue > $log_data[‘processed’]) && ($log_data[‘processed’] < 2)) { transaction_results($log_data[‘sessionid’],false); } //echo(“*/”); $stage_sql = “SELECT * FROM `".$wpdb->prefix."purchase_statuses` WHERE `id`='”.$newvalue.”‘ AND `active`=’1′ LIMIT 1″; $stage_data = $wpdb->get_row($stage_sql,ARRAY_A); * echo “document.getElementById(\”form_group_”.$_POST[‘id’].”_text\”).innerHTML = ‘”.$stage_data[‘name’].”‘;\n”; echo “document.getElementById(\”form_group_”. $_POST[‘id’].”_text\”).style.color = ‘#”.$stage_data[‘colour’].”‘;\n”; * $year = date(“Y”); $month = date(“m”); $start_timestamp = mktime(0, 0, 0, $ month, 1, $year); $end_timestamp = mktime(0, 0, 0, ($month+1), 0, $year); * echo “document.getElementById(\”log_total_month\”).innerHTML = ‘”.addslashes( nzshpcrt_currency_display(admin_display_total_price($start_timestamp, $end_timestamp), 1)).”‘;\n”; echo “document.getElementById(\”log_total_absolute\”).innerHTML = ‘”.addslashes(nzshpcrt_currency_display(admin_display_total_price(),1)).”‘;\ n”; exit(); } } * if(($_POST[‘list_variation_values’] == “true”) && is_numeric($_POST[‘new_variation_id’])){ $variation_processor = new nzshpcrt_variations(); echo “variation_value_id = \””. $_POST[‘new_variation_id’].”\”;\n”; echo “variation_value_html = \””.$variation_processor- >display_variation_values($_POST[‘prefix’],$_POST[‘new_variation_id’]).”\”;\n”; $variations_selected = array_values(array_unique(array_merge((array)$_POST[‘new_variation_id’],( array)$_POST[‘variation_id’]))); echo “variation_subvalue_html = \””.str_replace(“\ n\r”, ‘\n\r’, $variation_processor->variations_add_grid_view((array)$variations_selected)).”\”;\ n”; //echo “/*\n\r”.print_r(array_values(array_unique(array_merge((array)$_POST[‘ new_variation_id’], $_POST[‘variation_id’]))),true).”\n\r*/”; exit(); } * if(($_POST[‘redisplay_variation_values’] == “true”)) { $variation_processor = new nzshpcrt_variations(); $variations_selected = array_values(array_unique( array_merge((array)$_POST[‘new_variation_id’], (array)$_POST[‘variation_id’]))); foreach($variations_selected as $variation_id) { // cast everything to integer to make sure nothing nasty gets in. $variation_list[] = (int)$variation_id; } echo $variation_processor->variations_add_grid_view((array)$variation_list); // echo “/*\n\r”.print_r(array_values(array_unique($_POST[‘variation_id’])),true).”\ n\r*/”; exit(); } * if(($_POST[‘edit_variation_value_list’] == ‘true’) && is_numeric($_POST[‘variation_id’])&& is_numeric($_POST[‘product_id’])) { $variation_id = (int)$_POST[‘variation_id’]; $product_id = (int)$_POST[‘product_id’]; $variations_processor = new nzshpcrt_variations(); $variation_values = $variations_processor->falsepost_variation_values($variation_id); if(is_array($variation_values)) { //echo(print_r($variation_values,true)); $check_variation_added = $wpdb->get_var(“SELECT `id` FROM `".$wpdb->prefix."variation_associations` WHERE `type` IN (‘product’) AND `associated_id` IN (‘{$product_id}’) AND `variation_id` IN (‘{$variation_id}’) LIMIT 1″); if($check_variation_added == null) { $variations_processor- >add_to_existing_product($product_id,$variation_values); } echo $variations_processor- >display_attached_variations($product_id); echo $variations_processor->variations_grid_view( $product_id); } else { echo “false”; } exit(); } * if(($_POST[‘remove_form_field’] == “true”) && is_numeric($_POST[‘form_id’])){ // exit(print_r($user,true)); if(current_user_can(‘level_7’)) { $wpdb->query(“UPDATE`". $wpdb->prefix."collect_data_forms` SET `active` = ‘0’ WHERE `id` ='”.$_POST[‘ form_id’].”‘ LIMIT 1 ;”); exit(‘ ‘); } } * /* * function for handling the checkout billing address */ if(preg_match(“/[ a-zA-Z]{2,4}/”, $_POST[‘billing_country’])) { if($_SESSION[‘selected_country’] == $_POST[‘billing_country’]) { $do_not_refresh_regions = true; } else { $do_not_refresh_regions = false; $_SESSION[‘selected_country’] = $_POST[‘billing_country’]; } * if(is_numeric($_POST[‘form_id’])) { $form_id = $_POST[‘form_id’]; $html_form_id = “region_country_form_$form_id”; } else { $html_form_id = ‘region_country_form’;} * if(is_numeric($_POST[‘billing_region’])) { $_SESSION[‘selected_region’] = $ _POST[‘billing_region’]; } $cart =& $_SESSION[‘nzshpcrt_cart’]; if (($memberstatus[ 0]==’1′)&&(count($cart)>0)){ echo “ “; }else{ if ($status[0]==’1′){ exit(); } echo “if(document.getElementById(‘shoppingcartcontents’) != null) { document. getElementById(‘shoppingcartcontents’).innerHTML = \””.str_replace(Array(“\n”,”\ r”) , “”,addslashes(nzshpcrt_shopping_basket_internals($cart,$quantity_limit))).“\”;}“; * if($do_not_refresh_regions == false) { $region_list = $wpdb->get_results(“SELECT`". $wpdb->prefix."region_tax`.* FROM `".$wpdb->prefix."region_tax`, `".$wpdb->prefix." currency_list` WHERE `".$wpdb->prefix."currency_list`.`isocode` IN(‘”.$_POST[‘ billing_country’].”‘) AND `".$wpdb->prefix."currency_list`.`id` = `".$wpdb->prefix." region_tax`.`country_id`“,ARRAY_A) ; if($region_list != null) { $output .= “< select name=’collected_data[“.$form_id.”][1]’ class=’current_region’ onchange =’set_billing_country(\\\”$html_form_id\\\”, \\\”$form_id\\\”);’>”; //$output. = “”; foreach($region_list as $region) { if($_SESSION[‘ selected_region’] == $region[‘id’]) { $selected = “selected=’true'”; } else { $selected = “”; } $output .= “