Файл: whmcs/feeds/productsinfo.php
Строк: 79
<?php
require("../init.php");
/*
*** USAGE SAMPLES ***
<script language="javascript" src="feeds/productsinfo.php?pid=1&get=name"></script>
<script language="javascript" src="feeds/productsinfo.php?pid=1&get=description"></script>
<script language="javascript" src="feeds/productsinfo.php?pid=1&get=price&billingcycle=monthly¤cy=1"></script>
<script language="javascript" src="feeds/productsinfo.php?pid=1&get=orderurl&carttpl=web20cart"></script>
*/
$whmcs = WHMCS_Application::getInstance();
$pid = $whmcs->get_req_var('pid');
$currencyid = $whmcs->get_req_var('currency');
$get = $whmcs->get_req_var('get');
$billingcycle = $whmcs->get_req_var('billingcycle');
$configoptionnum = $whmcs->get_req_var('configoptionnum');
// Verify user input for pid exists, is numeric, and as is a valid id
if (is_numeric($pid)) {
$result = select_query("tblproducts", "", array("id" => $pid));
$data = mysql_fetch_array($result);
$pid = $data['id'];
$name = $data['name'];
$description = $data['description'];
} else {
$pid = '';
}
if (!$pid) {
widgetoutput('Product ID Not Found');
}
if ($get=="name") widgetoutput($name);
if ($get=="description") {
$description = str_replace(array("r","n","rn"),"",nl2br($description));
widgetoutput($description);
}
if ($get=="configoption") widgetoutput($data['configoption']. (int) $configoptionnum);
if ($get=="orderurl") {
$systemurl = ($CONFIG['SystemSSLURL']) ? $CONFIG['SystemSSLURL'].'/' : $CONFIG['SystemURL'].'/';
if ($carttpl=="ajax") {
widgetoutput($systemurl."order/?pid=$pid");
} else {
widgetoutput($systemurl."cart.php?a=add&pid=$pid&$carttpl=cart");
}
}
if ($get=="price") {
// Verify user input for currency exists, is numeric, and as is a valid id
if (!is_numeric($currencyid)) {
$currency = array();
} else {
$currency = getCurrency('', $currencyid);
}
if (!$currency || !is_array($currency) || !isset($currency['id'])) {
$currency = getCurrency();
}
$currencyid = $currency['id'];
$result = select_query("tblpricing","",array("type" => "product", "currency" => $currencyid, "relid" => $pid));
$data = mysql_fetch_array($result);
$price = $data[$billingcycle];
$price = formatCurrency($price);
widgetoutput($price);
}
function widgetoutput($value) {
echo "document.write('".addslashes($value)."');";
exit;
}
?>