what's new and current bugfixes. Author: Oliver Seidel Version: 14.0 Author URI: http://www.deliciousdays.com */ global $localversion; $localversion = '14.0'; ### debug messages $cfdebug = false; $cfdebugmsg = ''; ### db settings global $wpdb, $wp_db_version, $cformsSettings; $cformsSettings = get_option('cforms_settings'); $wpdb->cformssubmissions = $wpdb->prefix . 'cformssubmissions'; $wpdb->cformsdata = $wpdb->prefix . 'cformsdata'; ### admin functions require_once(dirname(__FILE__) . '/lib_functions.php'); ### update 9x notice? $dummy = __('Please go to the cforms admin page and run the update process.', 'cforms'); add_action('admin_notices', create_function('', 'global $plugindir, $cformsSettings; if (is_array($cformsSettings) && $cformsSettings[\'global\'][\'update\']) echo \'

\' . sprintf( __(\'Please go to the cforms admin page and run the update process.\', \'cforms\') ,\'admin.php?page=\'.$plugindir.\'/cforms-global-settings.php\') . \'

\';') ); ### activate cforms function cforms_activate() { global $localversion; cforms_init(); require_once(dirname(__FILE__) . '/lib_activate.php'); } add_action('activate_' . plugin_basename(__FILE__), 'cforms_activate' ); ### settings corrputed? if ( !is_array($cformsSettings) ){ add_action('admin_menu', 'settings_corrupted'); return; } function settings_corrupted() { $tmp = basename(dirname(__FILE__)); if (function_exists('add_menu_page')){ add_menu_page(__('cformsII', 'cforms'), __('cformsII', 'cforms'), 'manage_cforms', $tmp.'/cforms-corrupted.php', '', get_cf_plugindir().'/images/cformsicon.png' ); add_submenu_page($tmp.'/cforms-corrupted.php', __('Corrupted Settings', 'cforms'), __('Corrupted Settings', 'cforms'), 'manage_cforms', $tmp.'/cforms-corrupted.php' ); } elseif (function_exists('add_management_page')) add_management_page(__('cformsII', 'cforms'), __('cformsII', 'cforms'), 'manage_cforms', $tmp.'/cforms-corrupted.php'); add_action('wp_print_scripts', 'cforms_scripts_corrupted' ); } function cforms_scripts_corrupted(){ echo '' . "\n"; } ### load add'l files if (version_compare(PHP_VERSION, '5.0.0', '>')) require_once(dirname(__FILE__) . '/lib_email.php'); else require_once(dirname(__FILE__) . '/lib_email_php4.php'); require_once (dirname(__FILE__) . '/lib_aux.php'); require_once (dirname(__FILE__) . '/lib_editor.php'); ### http://trac.wordpress.org/ticket/3002 $plugindir = $cformsSettings['global']['plugindir']; $cforms_root = $cformsSettings['global']['cforms_root']; ### session control for multi-page form add_action('template_redirect', 'start_cforms_session'); /* function start_cforms_session() { @session_cache_limiter('private, must-revalidate'); @session_cache_expire(0); @session_start(); } */ function start_cforms_session() { @session_cache_limiter('private, must-revalidate'); @session_cache_expire(0); if ( !session_id() ){ @session_start(); ### debug db( "After session (".session_id().")start: ".print_r($_SESSION,1) ); } } ### ### main function ### function cforms($args = '',$no = '') { global $smtpsettings, $subID, $cforms_root, $wpdb, $track, $wp_db_version, $cformsSettings; ### parse_str($args, $r); ### Oliver 6.8.2011 $oldno = ($no=='1')?'':$no; ### remeber old val, to reset session when in new MP form ##debug db("Original form on page #$oldno"); ### multi page form: overwrite $no $isWPcommentForm = (substr($cformsSettings['form'.$oldno]['cforms'.$oldno.'_tellafriend'],0,1)=='2'); $isMPform = $cformsSettings['form'.$oldno]['cforms'.$oldno.'_mp']['mp_form']; $isTAF = substr($cformsSettings['form'.$oldno]['cforms'.$oldno.'_tellafriend'],0,1); ##debug db("Comment form = $isWPcommentForm"); db("Multi-page form = $isMPform"); db("PHP Session = ".(isset($_SESSION)?"yes":"no").$_SESSION['cforms']['current'] ); if( $isMPform && is_array($_SESSION['cforms']) && $_SESSION['cforms']['current']>0 && !$isWPcommentForm ){ db("form no. rewrite from #{$no} to #").$_SESSION['cforms']['current']; $no = $_SESSION['cforms']['current']; } ### Safety, in case someone uses '1' for the default form $no = ($no=='1')?'':$no; ##debug db("Switch to form #$no"); $moveBack=false; ### multi page form: reset button if( isset($_REQUEST['resetbutton'.$no]) && is_array($_SESSION['cforms']) ){ $no = $oldno; unset($_SESSION['cforms']); $_SESSION['cforms']['current']=0; $_SESSION['cforms']['first']=$oldno; $_SESSION['cforms']['pos']=1; ##debug db("Reset-Button pressed"); } else ### multi page form: back button if( isset($_REQUEST['backbutton'.$no]) && isset($_SESSION['cforms']) && ($_SESSION['cforms']['pos']-1)>=0){ $no = $_SESSION['cforms']['list'][($_SESSION['cforms']['pos']--)-1]; $_SESSION['cforms']['current']=$no; $moveBack=true; ##debug db("Back-Button pressed"); } else ### mp init: must be mp, first & not submitted! if( $isMPform && !is_array($_SESSION['cforms']) && $cformsSettings['form'.$oldno]['cforms'.$oldno.'_mp']['mp_first'] ){ //if( $isMPform && $cformsSettings['form'.$oldno]['cforms'.$oldno.'_mp']['mp_first'] && !isset($_REQUEST['sendbutton'.$no]) ){ ##debug db("Current form is *first* MP-form"); db("Session found, you're on the first form and session is reset!"); $no = ($oldno=='1')?'':$oldno; ### restore old val unset($_SESSION['cforms']); $_SESSION['cforms']['current']=0; $_SESSION['cforms']['first']=$no; $_SESSION['cforms']['pos']=1; } ##debug db( print_r($_SESSION,1) ); ### custom fields support if ( !(strpos($no,'+') === false) ) { $no = substr($no,0,-1); $customfields = build_fstat($args); $field_count = count($customfields); $custom=true; } else { $custom=false; $field_count = $cformsSettings['form'.$no]['cforms'.$no.'_count_fields']; } $content = ''; $err=0; $filefield=0; $validations = array(); $all_valid = 1; $off=0; $fieldsetnr=1; $c_errflag=false; $custom_error=''; $usermessage_class=''; ### get user credentials if ( function_exists('wp_get_current_user') ) $user = wp_get_current_user(); ### non Ajax method if( isset($_REQUEST['sendbutton'.$no]) ) { require_once (dirname(__FILE__) . '/lib_nonajax.php'); $usermessage_class = $all_valid?' success':' failure'; } ### called from lib_WPcomments ? if ( $isWPcommentForm && $send2author ) return $all_valid; ### ### ### paint form ### ### $success=false; ### fix for WP Comment (loading after redirect) if ( isset($_GET['cfemail']) && $isWPcommentForm ){ $usermessage_class = ' success'; $success=true; if ( $_GET['cfemail']=='sent' ){ $usermessage_text = preg_replace ( '|\r\n|', '
', stripslashes($cformsSettings['form'.$no]['cforms'.$no.'_success']) ); } elseif ( $_GET['cfemail']=='posted' ){ $usermessage_text = preg_replace ( '|\r\n|', '
', stripslashes($cformsSettings['global']['cforms_commentsuccess']) ); } else { $usermessage_class = ' failure'; $success=false; } } $break='
'; $nl="\n"; $tab="\t"; $tt="\t\t"; $ntt="\n\t\t"; $nttt="\n\t\t\t"; ### either show info message above or below $usermessage_text = check_default_vars($usermessage_text,$no); $usermessage_text = check_cust_vars($usermessage_text,$track,$no); ### logic: possibly change usermessage if ( function_exists('my_cforms_logic') ) $usermessage_text = my_cforms_logic($trackf, $usermessage_text,'successMessage'); $umc = ($usermessage_class<>''&&$no>1)?' '.$usermessage_class.$no:''; ##debug db("User info for form #$no"); ### where to show message if( substr($cformsSettings['form'.$no]['cforms'.$no.'_showpos'],0,1)=='y' ) { $content .= $ntt . '

' . $usermessage_text . '

'; $actiontarget = 'a'; } else if ( substr($cformsSettings['form'.$no]['cforms'.$no.'_showpos'],1,1)=='y' ) $actiontarget = 'b'; ### multi page form: overwrite $no, move on to next form if( $all_valid && isset($_REQUEST['sendbutton'.$no]) ){ $isMPformNext=false; ### default $oldcurrent = $no; ##debug db("Form is all valid & sendbutton pressed."); if( $isMPform && isset($_SESSION['cforms']) && $_SESSION['cforms']['current']>0 && $cformsSettings['form'.$no]['cforms'.$no.'_mp']['mp_next']<>-1 ){ $isMPformNext=true; $no = check_form_name( $cformsSettings['form'.$no]['cforms'.$no.'_mp']['mp_next'] ); ##debug db("Session active and now moving on to form #$no"); ### logic: possibly change next form if ( function_exists('my_cforms_logic') ) $no = my_cforms_logic($trackf, $no,"nextForm"); ### use trackf! $oldcurrent = $_SESSION['cforms']['current']; $_SESSION['cforms']['current'] = ($no=='')?1:$no; $field_count = $cformsSettings['form'.$no]['cforms'.$no.'_count_fields']; }elseif( $isMPform && $cformsSettings['form'.$no]['cforms'.$no.'_mp']['mp_next']==-1 ){ ##debug db("Session was active but is being reset now"); $oldcurrent = $no; $no = $_SESSION['cforms']['first']; unset( $_SESSION['cforms'] ); $_SESSION['cforms']['current']=0; $_SESSION['cforms']['first']=$no; $_SESSION['cforms']['pos']=1; $field_count = $cformsSettings['form'.$no]['cforms'.$no.'_count_fields']; } } ##debug db("All good, currently on form #$no, [current]=".$_SESSION['cforms']['current']); ##debug: optional ## db(print_r($_SESSION,1)); ## db(print_r($track,1)); ### redirect == 2 : hide form? || or if max entries reached! w/ SESSION support if#2 if ( $all_valid && ( ( $cformsSettings['form'.$no]['cforms'.$no.'_hide'] && isset($_REQUEST['sendbutton'.$no]) ) || ( $cformsSettings['form'.$oldcurrent]['cforms'.$oldcurrent.'_hide'] && isset($_REQUEST['sendbutton'.$oldcurrent]) ) ) ) return $content; else if ( ($cformsSettings['form'.$no]['cforms'.$no.'_maxentries']<>'' && get_cforms_submission_left($no)<=0) || !cf_check_time($no) ){ if ( $cflimit == "reached" ) return stripslashes($cformsSettings['form'.$no]['cforms'.$no.'_limittxt']); else return $content.stripslashes($cformsSettings['form'.$no]['cforms'.$no.'_limittxt']); } ### alternative form action $alt_action=false; if( $cformsSettings['form'.$no]['cforms'.$no.'_action']=='1' ) { $action = $cformsSettings['form'.$no]['cforms'.$no.'_action_page']; $alt_action=true; } else if( $isWPcommentForm ) $action = $cforms_root . '/lib_WPcomment.php'; ### re-route and use WP comment processing else $action = get_current_page(false) . '#usermessage'. $no . $actiontarget; $enctype = $cformsSettings['form'.$no]['cforms'.$no.'_formaction'] ? 'enctype="application/x-www-form-urlencoded"':'enctype="multipart/form-data"'; ### start with form tag $content .= $ntt . '

' . $nl; ### Session item counter (for default values) $sItem=1; ### start with no fieldset $fieldsetopen = false; $verification = false; $captcha = false; $upload = false; $fscount = 1; $ol = false; $inpFieldArr = array(); // for var[] type input fields for($i = 1; $i <= $field_count; $i++) { if ( !$custom ) $field_stat = explode('$#$', $cformsSettings['form'.$no]['cforms'.$no.'_count_field_' . $i]); else $field_stat = explode('$#$', $customfields[$i-1]); $field_name = $field_stat[0]; $field_type = $field_stat[1]; $field_required = $field_stat[2]; $field_emailcheck = $field_stat[3]; $field_clear = $field_stat[4]; $field_disabled = $field_stat[5]; $field_readonly = $field_stat[6]; ### ommit certain fields if( in_array($field_type,array('cauthor','url','email')) && $user->ID ) continue; ### check for html5 attributes $obj = explode('|html5:', $field_name,2); $html5 = ($obj[1]<>'') ? preg_split('/\x{00A4}/u',$obj[1], -1) : ''; ###debug db("\t\t html5 check, settings = ".print_r($html5,1)); ### check for custom err message and split field_name $obj = explode('|err:', $obj[0],2); $fielderr = $obj[1]; ###debug db("\t adding $field_type field: $field_name"); if ( $fielderr <> '') { switch ( $field_type ) { case 'upload': $custom_error .= 'cf_uploadfile' . $no . '-'. $i . '$#$'.$fielderr.'|'; break; case 'captcha': $custom_error .= 'cforms_captcha' . $no . '$#$'.$fielderr.'|'; break; case 'verification': $custom_error .= 'cforms_q'. $no . '$#$'.$fielderr.'|'; break; case "cauthor": case "url": case "email": case "comment": $custom_error .= $field_type . '$#$'.$fielderr.'|'; break; default: preg_match('/^([^#\|]*).*/',$field_name,$input_name); if ( strpos($input_name[1],'[id:')>0 ) preg_match ('/\[id:(.+)\]/',$input_name[1],$input_name); $custom_error .= ($cformsSettings['form'.$no]['cforms'.$no.'_customnames']=='1')?cf_sanitize_ids($input_name[1]):'cf'.$no.'_field_'.$i; $custom_error .= '$#$'.$fielderr.'|'; break; } } ### check for title attrib $obj = explode('|title:', $obj[0],2); $fieldTitle = ($obj[1]<>'')?' title="'.str_replace('"','"',stripslashes($obj[1])).'"':''; ###debug db("\t\t title check, obj[0] = ".$obj[0]); ### special treatment for selectboxes if ( in_array($field_type,array('multiselectbox','selectbox','radiobuttons','send2author','luv','subscribe','checkbox','checkboxgroup','ccbox','emailtobox')) ){ $chkboxClicked = array(); if ( in_array($field_type,array('luv','subscribe','checkbox','ccbox')) && strpos($obj[0],'|set:')>1 ){ $chkboxClicked = explode('|set:', stripslashes($obj[0]) ); $obj[0] = $chkboxClicked[0]; } ###debug db("\t\t found checkbox:, obj[0] = ".$obj[0]); $options = explode('#', stripslashes($obj[0]) ); if ( in_array($field_type,array('subscribe','checkbox','ccbox')) ) $field_name = ( $options[0]=='' ) ? $options[1]:$options[0]; else $field_name = $options[0]; ###debug db("\t\t left from '#' (=field_name) = ".$options[0].", right from '#': ".$options[1] . " -> field_name= $field_name"); } ### check if fieldset is open if ( !$fieldsetopen && !$ol && $field_type<>'fieldsetstart') { $content .= $tt . '

ID's $liID = ( $cformsSettings['global']['cforms_liID']=='1' || substr($cformsSettings['form'.$no]['cforms'.$no.'_showpos'],2,1)=="y" || substr($cformsSettings['form'.$no]['cforms'.$no.'_showpos'],3,1)=="y" )?' id="li-'.$no.'-'.$i.'"':''; ### input field names & label $isFieldArray = false; if ( $cformsSettings['form'.$no]['cforms'.$no.'_customnames']=='1' ){ if ( strpos($field_name,'[id:')!==false ){ $isFieldArray = strpos($field_name,'[]'); $idPartA = strpos($field_name,'[id:'); $idPartB = strrpos($field_name,']',$idPartA); if( $isFieldArray ){ $input_id = $input_name = cf_sanitize_ids( substr($field_name,$idPartA+4,($idPartB-$idPartA)-4) ); if( !$inpFieldArr[$input_id] || $inpFieldArr[$input_id]=='' ){ $inpFieldArr[$input_id]=1; } $input_id .= $inpFieldArr[$input_id]++; $input_name .= '[]'; } else $input_id = $input_name = cf_sanitize_ids( substr($field_name,$idPartA+4,($idPartB-$idPartA)-4) ); $field_name = substr_replace($field_name,'',$idPartA,($idPartB-$idPartA)+1); ###debug db("\t \t parsing custom ID/NAME...new field_name = $field_name, ID=$input_id"); } else $input_id = $input_name = cf_sanitize_ids(stripslashes($field_name)); } else $input_id = $input_name = 'cf'.$no.'_field_'.$i; $field_class = ''; $field_value = ''; switch ($field_type){ case 'luv': $input_id = $input_name = 'luv'; break; case 'subscribe': $input_id = $input_name = 'subscribe'; break; case 'verification': if( is_user_logged_in() && $cformsSettings['global']['cforms_captcha_def']['foqa']<>'1' ) continue(2); $input_id = $input_name = 'cforms_q'.$no; break; case 'captcha': if( is_user_logged_in() && $cformsSettings['global']['cforms_captcha_def']['fo']<>'1' ) continue(2); $input_id = $input_name = 'cforms_captcha'.$no; break; case 'upload': $input_id = $input_name = 'cf_uploadfile'.$no.'-'.$i; $field_class = 'upload'; break; case "send2author": case "email": case "cauthor": case "url": $input_id = $input_name = $field_type; case "datepicker": case "yourname": case "youremail": case "friendsname": case "friendsemail": case "textfield": case "pwfield": $field_class = 'single'; break; case "hidden": $field_class = 'hidden'; break; case 'comment': $input_id = $input_name = $field_type; $field_class = 'area'; break; case 'textarea': $field_class = 'area'; break; } ### additional field classes if ( $field_disabled ) $field_class .= ' disabled'; if ( $field_readonly ) $field_class .= ' readonly'; if ( $field_emailcheck ) $field_class .= ' fldemail'; if ( $field_required ) $field_class .= ' fldrequired'; ### error ? $liERR = $insertErr = ''; ### only for mp forms if( $moveBack || $isMPform ){ // $isMPformNext $field_value = htmlspecialchars( stripslashes( $_SESSION['cforms']['cf_form'.$no][ $_SESSION['cforms']['cf_form'.$no]['$$$'.($sItem++)] ] ) ); db( 'retrieving session values to pre-fill...'.$field_value); } if( !$all_valid ){ ### errors... if ( $validations[$i]==1 ) $field_class .= ''; else{ $field_class .= ' cf_error'; ### enhanced error display if(substr($cformsSettings['form'.$no]['cforms'.$no.'_showpos'],2,1)=="y") $liERR = 'cf_li_err'; if(substr($cformsSettings['form'.$no]['cforms'.$no.'_showpos'],3,1)=="y") $insertErr = ($fielderr<>'')?'
- '.stripslashes($fielderr).'
':''; } if ( $field_type == 'multiselectbox' || $field_type == 'checkboxgroup' ){ $field_value = $_REQUEST[$input_name]; ### in this case it's an array! will do the stripping later } else $field_value = htmlspecialchars(stripslashes($_REQUEST[$input_name])); } else if( (!isset($_REQUEST['sendbutton'.$no]) && isset($_REQUEST[$input_name])) || $cformsSettings['form'.$no]['cforms'.$no.'_dontclear'] ){ ### only pre-populating fields... if ( $field_type == 'multiselectbox' || $field_type == 'checkboxgroup' ) $field_value = $_REQUEST[$input_name]; ### in this case it's an array! will do the stripping later else{ $field_value = htmlspecialchars(stripslashes($_REQUEST[$input_name])); } } ### print label only for non "textonly" fields! Skip some others too, and handle them below indiv. if( ! in_array($field_type,array('hidden','textonly','fieldsetstart','fieldsetend','ccbox','luv','subscribe','checkbox','checkboxgroup','send2author','radiobuttons')) ) $content .= $nttt . ''.$insertErr.'' . stripslashes(($field_name)) . ''; ### if not reloaded (due to err) then use default values if ( $field_value=='' && $defaultvalue<>'' ) $field_value=$defaultvalue; ### field disabled or readonly, greyed out? $disabled = $field_disabled?' disabled="disabled"':''; $readonly = $field_readonly?' readonly="readonly"':''; ### add input field $dp = ''; $naming = false; $field = ''; $val = ''; $force_checked = false; $cookieset = ''; switch($field_type) { case "upload": $upload=true; ### set upload flag for ajax suppression! $field = ''; break; case "textonly": $field .= $nttt . ''')?' style="'.$reg_exp.'" ':'') . '>' . stripslashes(($field_name)) . '

' . $nl . $tt . '' . $nl; $fieldsetopen = false; $ol = false; } if (!$fieldsetopen) { if ($ol) $field = $ntt . '' . $nl; $field .= $tt .'

' . $nl . $tt . '' . stripslashes($field_name) . '' . $nl . $tt . '

'; $fieldsetopen = true; $ol = true; } break; case "fieldsetend": if ($fieldsetopen) { $field = $ntt . '' . $nl . $tt . '

' . $nl; $fieldsetopen = false; $ol = false; } else $field=''; break; case "verification": $field = ''; $verification=true; break; case "captcha": $field = ''. '

'. '

'; $captcha=true; break; case "cauthor": $cookieset = 'comment_author_'.COOKIEHASH; case "url": $cookieset = ($cookieset=='')?'comment_author_url_'.COOKIEHASH:$cookieset; case "email": $cookieset = ($cookieset=='')?'comment_author_email_'.COOKIEHASH:$cookieset; $field_value = ( $_COOKIE[$cookieset]<>'' ) ? $_COOKIE[$cookieset] : $field_value; case "datepicker": case "yourname": case "youremail": case "friendsname": case "friendsemail": case "textfield": case "pwfield": case "html5color": case "html5date": case "html5datetime": case "html5datetime-local": case "html5email": case "html5month": case "html5number": case "html5range": case "html5search": case "html5tel": case "html5time": case "html5url": case "html5week": $field_value = check_post_vars($field_value); $h5 = ''; if( strpos($field_type,'tml5')!==false ){ $type = substr($field_type,5); if( is_array($html5) ){ $h5_0 = ( $html5[0] == '1' ) ? ' autocomplete="on"' :''; $h5_1 = ( $html5[1] == '1' ) ? ' autofocus ="autofocus"' :''; $h5_2 = ( $html5[2] != '' ) ? ' min="'.$html5[2].'"' :''; $h5_3 = ( $html5[3] != '' ) ? ' max="'.$html5[3].'"' :''; $h5_4 = ( $html5[4] != '' ) ? ' pattern="'.$html5[4].'"' :''; $h5_5 = ( $html5[5] != '' ) ? ' step="'.$html5[5].'"' :''; $h5_6 = ( $html5[6] != '' ) ? ' placeholder="'.$html5[6].'"' :''; $h5 = $h5_0.$h5_1.$h5_2.$h5_3.$h5_4.$h5_5.$h5_6; } $h5_7 = ( $field_required ) ? ' required="required"' : ''; $h5 .= $h5_7 . ' '; ###debug db('......html5 attributes: '.$h5); }else $type = ($field_type=='pwfield')?'password':'text'; $field_class = ($field_type=='datepicker')?$field_class.' cf_date':$field_class; $onfocus = $field_clear?' onfocus="clearField(this)" onblur="setField(this)"' : ''; $field = ''; if ( $reg_exp<>'' ) $field .= ''; $field .= $dp; break; case "hidden": $field_value = check_post_vars($field_value); $field_value = check_default_vars($field_value,$no); if ( preg_match('/^<([a-zA-Z0-9]+)>$/',$field_value,$getkey) ) $field_value = $_GET[$getkey[1]]; $field .= $nttt . '

'; break; case "comment": case "textarea": $onfocus = $field_clear?' onfocus="clearField(this)" onblur="setField(this)"' : ''; $field = '' . $field_value . ''; if ( $reg_exp<>'' ) $field .= ''; break; case "subscribe": if ( class_exists('sg_subscribe') && $field_type=='subscribe' ){ global $sg_subscribe; sg_subscribe_start(); if( ($email = $sg_subscribe->current_viewer_subscription_status())=='admin' && current_user_can('manage_options') ){ $field .= ''.str_replace('[manager_link]', $sg_subscribe->manage_link($email, true, false), $sg_subscribe->author_text).''; continue; }else if($email<>''){ $field .= ''.str_replace('[manager_link]', $sg_subscribe->manage_link($email, true, false), $sg_subscribe->subscribed_text).''; continue; } $val = ' value="subscribe"'; } case "luv": if ( function_exists('comment_luv') && $field_type=='luv' ){ get_currentuserinfo() ; global $user_level; if( $user_level==10 ) continue (2); //empty for now $val = ' value="luv"'; } case "ccbox": case "checkbox": if ( !$all_valid || ($all_valid && $cformsSettings['form'.$no]['cforms'.$no.'_dontclear']) || ($isMPform && is_array($_SESSION['cforms']['cf_form'.$no])) ) //exclude MP! if first time on the form = array = null $preChecked = ( $field_value && $field_value<>'' )? ' checked="checked"':''; // for MPs else $preChecked = ( strpos($chkboxClicked[1],'true') !== false ) ? ' checked="checked"':''; // $all_valid = user choice prevails $err=''; if( !$all_valid && $validations[$i]<>1 ) $err = ' cf_errortxt'; $opt = explode('|', $field_name,2); if ( $options[1]<>'' ) { ### $options = explode('#', stripslashes($obj[0]) ) (line 476) $before = ''.$insertErr; $after = '' . $opt[0] . ''; $ba = 'a'; } else { $before = ''.$insertErr.'' . $opt[0] . ''; $after = ''; $ba = 'b'; } ### if | val provided, then use "X" if( $val=='' ) $val = ($opt[1]<>'')?' value="'.$opt[1].'"':''; $field = $nttt . $before . '' . $after; break; case "checkboxgroup": $liID_b = ($liID <>'')?substr($liID,0,-1) . 'items"':''; array_shift($options); $field .= $nttt . '' . (($field_name)) . '' . $nttt . ''; $id=1; $j=0; ### mp session support if ( $moveBack || $isMPform ) $field_value = explode(',',$field_value); foreach( $options as $option ) { ### supporting names & values $boxPreset = explode('|set:', $option ); $opt = explode('|', $boxPreset[0],2); if ( $opt[1]=='' ) $opt[1] = $opt[0]; $checked = ''; if( $moveBack || $isMPform ){ //$isMPformNext if ( in_array($opt[1],array_values($field_value)) ) $checked = 'checked="checked"'; } elseif ( is_array($field_value) ){ if ( $opt[1]==htmlspecialchars( stripslashes(strip_tags($field_value[$j])) ) ) { $checked = 'checked="checked"'; $j++; } }else{ if ( strpos($boxPreset[1],'true')!==false ) $checked = ' checked="checked"'; } $brackets = $isFieldArray ? '' : '[]'; if ( $labelID<>'' ) $labelIDx = substr($labelID,0,-1) . $id . '"'; if ( $opt[0]=='' ) $field .= $nttt . $tab . '
'; else $field .= $nttt . $tab . ''. ''.$opt[0] . ""; } $field .= $nttt . ''; break; case "multiselectbox": ### $field .= $nttt . '

' . stripslashes(($field_name)) . ''; $field .= ''; array_shift($options); $j=0; ### mp session support if ( $moveBack || $isMPform ) //$isMPformNext $field_value = explode(',',$field_value); foreach( $options as $option ) { ### supporting names & values $optPreset = explode('|set:', $option ); $opt = explode('|', $optPreset[0],2); if ( $opt[1]=='' ) $opt[1] = $opt[0]; $checked = ''; if( $moveBack || $isMPform ){ if ( in_array($opt[1],array_values($field_value)) ) $checked = 'selected="selected"'; } elseif ( is_array($field_value) ){ if ( $opt[1]==stripslashes(htmlspecialchars(strip_tags($field_value[$j]))) ) { $checked = ' selected="selected"'; $j++; } }else{ if ( strpos($optPreset[1],'true')!==false ) $checked = ' selected="selected"'; } $field.= $nttt . $tab . ''; } $field.= $nttt . ''; break; case "emailtobox": case "selectbox": $field = ''; array_shift($options); $jj=$j=0; foreach( $options as $option ) { ### supporting names & values $optPreset = explode('|set:', $option ); $opt = explode('|', $optPreset[0],2); if ( $opt[1]=='' ) $opt[1] = $opt[0]; ### email-to-box valid entry? if ( $field_type == 'emailtobox' && $opt[1]<>'-' ) $jj = $j; else $jj = '-'; $j++; $checked = ''; if( $field_value == '' || $field_value == '-') { if ( strpos($optPreset[1],'true')!==false ) $checked = ' selected="selected"'; } else if ( $opt[1]==$field_value || $jj==$field_value ) $checked = ' selected="selected"'; $field.= $nttt . $tab . ''; } $field.= $nttt . ''; break; case "send2author": $force_checked = ( strpos($field_stat[0],'|set:')===false )? true:false; case "radiobuttons": $liID_b = ($liID <>'')?substr($liID,0,-1) . 'items"':''; ### only if label ID's active array_shift($options); $field .= $nttt . ''. $insertErr . (($field_name)) . '

' . $nttt . ''; $id=1; foreach( $options as $option ) { $checked = ''; ### supporting names & values $radioPreset = explode('|set:', $option ); $opt = explode('|', $radioPreset[0],2); if ( $opt[1]=='' ) $opt[1] = $opt[0]; if( $field_value == '' ) { if ( strpos($radioPreset[1],'true')!==false || ($force_checked && $id==1)) $checked = ' checked="checked"'; } else if ( $opt[1]==$field_value ) $checked = ' checked="checked"'; if ( $labelID<>'' ) $labelIDx = substr($labelID,0,-1) . $id . '"'; if ( $opt[0]=='' ) $field .= $nttt . $tab . '
'; else $field .= $nttt . $tab . ''. ''.$opt[0] . ""; } $field .= $nttt . ''; break; } ### debug db("Form setup: $field_type, val=$field_value, default=$defaultvalue"); ### add new field $content .= $field; ### adding "required" text if needed if($field_emailcheck == 1) $content .= ''.stripslashes($cformsSettings['form'.$no]['cforms'.$no.'_emailrequired']).''; else if($field_required == 1 && !in_array($field_type,array('ccbox','luv','subscribe','checkbox','radiobuttons')) ) $content .= ''.stripslashes($cformsSettings['form'.$no]['cforms'.$no.'_required']).''; ### close out li item if ( ! in_array($field_type,array('hidden','fieldsetstart','fieldsetend','radiobuttons','luv','subscribe','checkbox','checkboxgroup','ccbox','textonly','send2author')) ) $content .= ''; } ### all fields ### close any open tags if ( $ol ) $content .= $ntt . ''; if ( $fieldsetopen ) $content .= $ntt . ''; ### rest of the form if ( $cformsSettings['form'.$no]['cforms'.$no.'_ajax']=='1' && !$upload && !$custom && !$alt_action ) $ajaxenabled = ' onclick="return cforms_validate(\''.$no.'\', false)"'; else if ( ($upload || $custom || $alt_action) && $cformsSettings['form'.$no]['cforms'.$no.'_ajax']=='1' ) $ajaxenabled = ' onclick="return cforms_validate(\''.$no.'\', true)"'; else $ajaxenabled = ''; ### just to appease html "strict" $content .= $ntt . '

'.$nttt.' '; ### if visitor verification turned on: if ( $verification ) $content .= $nttt .''; ### custom error $custom_error=substr($cformsSettings['form'.$no]['cforms'.$no.'_showpos'],2,1).substr($cformsSettings['form'.$no]['cforms'.$no.'_showpos'],3,1).substr($cformsSettings['form'.$no]['cforms'.$no.'_showpos'],4,1).$custom_error; ### TAF or WP comment or Extra Fields if ( (int)$isTAF > 0 ){ $nono = $isWPcommentForm?'':$no; if ( $isWPcommentForm ) $content .= $nttt . ''; $content .= $nttt . '' . $nttt . ''; } $content .= $nttt . ''. $nttt . ''. $nttt . ''. $nttt . ''. $nttt . ''; $content .= $ntt . '

'; ### multi page form: reset $reset=''; if( $cformsSettings['form'.$no]['cforms'.$no.'_mp']['mp_form'] && $cformsSettings['form'.$no]['cforms'.$no.'_mp']['mp_reset'] ) $reset = ''; ### multi page form: back $back=''; if( $cformsSettings['form'.$no]['cforms'.$no.'_mp']['mp_form'] && $cformsSettings['form'.$no]['cforms'.$no.'_mp']['mp_back'] && !$cformsSettings['form'.$oldno]['cforms'.$no.'_mp']['mp_first'] ) $back = ''; $content .= $ntt . '

'.$reset.$back.'

cforms contact form by delicious:days

'; ### either show message above or below $usermessage_text = check_default_vars($usermessage_text,$no); $usermessage_text = check_cust_vars($usermessage_text,$track,$no); if( substr($cformsSettings['form'.$no]['cforms'.$no.'_showpos'],1,1)=='y' && !($success&&$cformsSettings['form'.$no]['cforms'.$no.'_hide'])) $content .= $tt . '

' . $usermessage_text . '

' . $nl; ### debug db( "(cforms) Last stop...".print_r($_SESSION,1) ); ### flush debug messages dbflush(); return $content; } ### some css for positioning the form elements function cforms_style() { global $wp_query, $cforms_root, $localversion, $cformsSettings; ### add content actions and filters $page_obj = $wp_query->get_queried_object(); $exclude = ($cformsSettings['global']['cforms_inexclude']['ex']=='1'); $onPages = str_replace(' ','',stripslashes(htmlspecialchars( $cformsSettings['global']['cforms_inexclude']['ids'] ))); $onPagesA = explode(',', $onPages); if( $onPages=='' || (in_array($page_obj->ID,$onPagesA) && !$exclude) || (!in_array($page_obj->ID,$onPagesA) && $exclude)){ echo "\n\n"; if( $cformsSettings['global']['cforms_no_css']<>'1' ) echo ''."\n"; echo ''."\n"; if( $cformsSettings['global']['cforms_datepicker']=='1' ){ $nav = $cformsSettings['global']['cforms_dp_nav']; $dformat = str_replace(array('M','EE','E'),array('m','dddd','ddd'),stripslashes($cformsSettings['global']['cforms_dp_date'])); //echo ''."\n"; ### add jQuery script & calendar wp_register_style('calendar-style', $cforms_root . '/styling/calendar.css' ); wp_enqueue_style('calendar-style'); wp_enqueue_script('jquery'); wp_enqueue_script('jquery-ui-core'); echo ''."\n"; } echo ''."\n\n"; } } ### custom routine to find last item function findlast( $haystack,$needle,$offset=NULL ){ if( ($pos = strpos( strrev($haystack) , strrev($needle) , $offset)) === false ) return false; return strlen($haystack) - $pos - strlen($needle); } ### replace placeholder by generated code function cforms_insert( $content ) { global $post, $cformsSettings; $newcontent=''; $last=0; if ( ($a=strpos($content,'',$a); $Fid = substr($content,$a+10,($b-$a-10)); $Fname = ''; if ( ($fQ=strpos($Fid,'"'))!==false ) $Fname = sanitize_title_with_dashes(substr( $Fid, $fQ+1, strpos($Fid,'"',$fQ+1)-$fQ-1 )); $newcontent .= substr($content,$last,$p_offset-$last); if( $Fname !== '' ){ if ( check_for_taf( $fns[$Fname],cfget_pid() ) ) $newcontent .= cforms('',$fns[$Fname]); }else{ if ( check_for_taf( $Fid,cfget_pid() ) ) $newcontent .= cforms('',$Fid); } $p_open_after = strpos($content,'

',$b); $p_close_after = strpos($content,'

',$b); ### wrapped in

? $b = ($p_close_after < $p_open_after || ($p_close_after!==false && $p_open_after===false)) ? $p_close_after+1 : $b; //add'l +3 covered by $last = $b+3; !! :-) $a = strpos($content,'