Файл: Kagao-v3.0/upload/reg.php
Строк: 142
<?php
session_start();
require('classes/config.php');
include "inc/db.php";
$db = new db();
function check_email($email) {
if(!ereg("^[^@]{1,64}@[^@]{1,255}$", $email)) {
return false;
}
$email_array = explode("@", $email);
$local_array = explode(".", $email_array[0]);
for ($i = 0; $i < sizeof($local_array); $i++) {
if(!ereg("^(([A-Za-z0-9!#$%&'*+/=?^_`{|}~-][A-Za-z0-9!#$%&'*+/=?^_`{|}~.-]{0,63})|("[^(\|")]{0,62}"))$", $local_array[$i])) {
return false;
}
}
if(!ereg("^[?[0-9.]+]?$", $email_array[1])) {
$domain_array = explode(".", $email_array[1]);
if(sizeof($domain_array) < 2) {
return false;
}
for($i = 0; $i < sizeof($domain_array); $i++) {
if(!ereg("^(([A-Za-z0-9][A-Za-z0-9-]{0,61}[A-Za-z0-9])|([A-Za-z0-9]+))$", $domain_array[$i])) {
return false;
}
}
}
return true;
}
$user = $db->real_escape($_POST['user']);
$pass = $db->real_escape($_POST['pass']);
$pass2 = $db->real_escape($_POST['pass2']);
//
$check = $e->query('SELECT id FROM user WHERE email = "'.$user.'"');
$checked = $e->fetch_assoc($check);
$e->free_result($check);
if(empty($user)){
$e->location('meineanzeigen.php?fail=user');
}
elseif(!empty($checked['id'])){
$e->location('meineanzeigen.php?fail=mailext');
}
elseif(empty($pass)){
$e->location('meineanzeigen.php?fail=pass');
}
elseif($pass != $pass2){
$e->location('meineanzeigen.php?fail=pass2');
}
elseif(check_email($user) == false){
$e->location('meineanzeigen.php?fail=nouser');
}
elseif(empty($_POST['terms'])){
$e->location('meineanzeigen.php?fail=terms');
}else{
$db->query('INSERT INTO user SET
email = "'.$user.'",
pass = "'.md5($pass).'",
rank = "'.intval($_POST['rang']).'",
passrec = "'.base64_encode($pass).'",
a_name = "'.htmlspecialchars( $_POST['username'] ).'",
vcode = "'.mt_rand(100,100000).'",
logip = "'.$_SERVER['REMOTE_ADDR'].'"
');
//Email->Senden
$messageText = utf8_decode('
<div style="float:left; clear:both; font-family:arial;">
<div style="float:left; font-size:16px; font-weight:bold; padding:15px 0; border-bottom:3px solid #a3d869; width:530px;">Ihre Registrierung</div>
<div style="float:left; clear:both; padding-bottom:15px; padding-top:15px;">
<div style="float:left;">Lieber Nutzer!</div>
<div style="float:left; clear:both; padding:10px 0; width:530px;">
<div style="float:left; clear:both; padding:10px; background:#f2f2f2; border-top:1px solid #e2e2e2; border-bottom:1px solid #e2e2e2;">
<div style="float:left;">Bitte bestätigen Sie Ihre Registrierung jetzt:</div>
<div style="float:left; clear:both; padding-top:10px;">
<a href="http://'.$config_register_settings['domain'].'/verify/'.mysql_insert_id().'/">
<div style="float:left; padding:5px; background:#fff; border:1px solid #e2e2e2;">Registrierung bestätigen</div>
</a>
</div>
</div>
</div>
<div style="float:left; clear:both; width:530px; padding-top:20px;">
Sollte das Anklicken des Links nicht möglich sein, kopieren Sie bitte diese URL in Ihrem Browser:<br>
http://'.$config_register_settings['domain'].'/verify/'.mysql_insert_id().'/<br>
<br>
Mit Ihrer E-Mail-Adresse und Ihrem Passwort können Sie sich jederzeit bei '.$config_register_settings['von'].' einloggen,<br>
um Ihre Anzeige zu bearbeiten oder zu löschen.<br><br>
Ihr '.$config_register_settings['team'].'<br><br><br>
Beantworten Sei diese E-Mail bitte NICHT per 'Reply' ( Antwort Button in Ihrem E-Mail-Programm )<br><br>
Wenn Sie Fragen haben, kontaktieren Sie uns über unser Support Formular.
</div>
</div>
</div>');
$empfaenger = $user;
$absender = $config_register_settings['noreply'];
$antwortan = $config_register_settings['noreply'];
$betreff = utf8_decode($config_register_settings['betreff']);
$header = "MIME-Version: 1.0rn";
$header .= "Content-type: text/html; charset=iso-8859-1rn";
$header .= "From: ".$config_register_settings['von']." <$absender>rn";
$header .= "Reply-To: $antwortanrn";
$header .= "X-Mailer: PHP ". phpversion();
mail( $empfaenger,
$betreff,
$messageText,
$header);
$e->location('meineanzeigen.php?reg=ok2');
}
?>