plugin.php | searchcode

/wp-content/plugins/newsletter/plugin.php

https://gitlab.com/endomorphosis/reservationtelco
PHP | 1257 lines | 823 code | 253 blank | 181 comment | 219 complexity | 1213523b3e9078495f40ac5739b7dd9c MD5 | raw file

<?php

/*

Plugin Name: Newsletter

Plugin URI: http://www.satollo.net/plugins/newsletter

Description: Newsletter is a cool plugin to create your own subscriber list, to send newsletters, to build your business. <strong>Before update give a look to <a href="http://www.satollo.net/plugins/newsletter#update">this page</a> to know what's changed.</strong>

Version: 1.5.9

Author: Satollo

Author URI: http://www.satollo.net

Disclaimer: Use at your own risk. No warranty expressed or implied is provided.

*/



/*	Copyright 2008  Satollo  (email: info@satollo.net)



    This program is free software; you can redistribute it and/or modify

    it under the terms of the GNU General Public License as published by

    the Free Software Foundation; either version 2 of the License, or

    (at your option) any later version.



    This program is distributed in the hope that it will be useful,

    but WITHOUT ANY WARRANTY; without even the implied warranty of

    MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE.  See the

    GNU General Public License for more details.



    You should have received a copy of the GNU General Public License

    along with this program; if not, write to the Free Software

    Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA  02111-1307  USA

*/



define('NEWSLETTER', '1.5.9');



$newsletter_options_main = get_option('newsletter_main', array());



// Labels loading, after that $newsletter_labels is filled

$newsletter_labels = null;

@include_once(dirname(__FILE__) . '/languages/en_US.php');

if (WPLANG != '') @include_once(dirname(__FILE__) . '/languages/' . WPLANG . '.php');

@include_once(ABSPATH . 'wp-content/plugins/newsletter-custom/languages/en_US.php');

if (WPLANG != '') @include_once(ABSPATH . 'wp-content/plugins/newsletter-custom/languages/' . WPLANG . '.php');



// Don't try to hack that, Newsletter will badly fail

@include(ABSPATH . 'wp-content/plugins/newsletter-extras/newsletter-extras.php');



require_once(dirname(__FILE__) . '/widget.php');



$newsletter_step = 'subscription';

$newsletter_subscriber;



function newsletter_init_labels() {

}



function newsletter_label($name, $default='') {

    global $newsletter_labels;



    if (isset($newsletter_labels[$name])) return $newsletter_labels[$name];

    return $default;

}



function newsletter_echo($name, $default) {

    echo newsletter_label($name, $default);

}



function newsletter_request($name, $default=null ) {

    if (!isset($_REQUEST[$name])) return $default;

    return stripslashes_deep($_REQUEST[$name]);

}



function newsletter_subscribers_count() {

    global $wpdb;



    return $wpdb->get_var("select count(*) from " . $wpdb->prefix . "newsletter where status='C'");

}



function newsletter_embed_form($form=0) {

    $options = get_option('newsletter');

    if (newsletter_has_extras('1.0.2') && $form>0) {

        echo str_replace('{newsletter_url}', $options['url'], newsletter_extras_get_form($form));

    }

    else {

        echo '<div class="newsletter-embed-form">';

        if (isset($options['noname'])) {

            echo str_replace('{newsletter_url}', $options['url'], newsletter_label('embedded_form_noname'));

        }

        else {

            echo str_replace('{newsletter_url}', $options['url'], newsletter_label('embedded_form'));

        }

        echo '</div>';

    }

}



if (!is_admin()) {

    add_shortcode('newsletter', 'newsletter_call');

    add_shortcode('newsletter_form', 'newsletter_form_call');

}



function newsletter_form_call($attrs, $content=null) {

    $options = get_option('newsletter');

    if (newsletter_has_extras('1.0.2') && isset($attrs['form'])) {

        $buffer = str_replace('{newsletter_url}', $options['url'], newsletter_extras_get_form($attrs['form']));

    }

    else {

        $buffer = '<div class="newsletter-embed-form">';

        if (!isset($options['noname'])) {

            $buffer .= str_replace('{newsletter_url}', $options['url'], newsletter_label('embedded_form'));

        }

        else {

            $buffer .= str_replace('{newsletter_url}', $options['url'], newsletter_label('embedded_form_noname'));

        }



        $buffer .= '</div>';

    }

    return $buffer;

}



function newsletter_call($attrs, $content=null) {

    global $newsletter_step, $newsletter_subscriber;



    $options = get_option('newsletter');



    $buffer = '';



    // When a user is starting the subscription process

    if ($newsletter_step == 'subscription') {

        $buffer .= $options['subscription_text'];



        if (newsletter_has_extras('1.0.2') && isset($attrs['form'])) {

            $buffer .= str_replace('{newsletter_url}', $options['url'], newsletter_extras_get_form($attrs['form']));

        }

        else {

            if (isset($options['noname'])) {

                $buffer .= newsletter_label('subscription_form_noname');

            }

            else {

                $buffer .= newsletter_label('subscription_form');

            }

            //if (!defined('NEWSLETTER_EXTRAS'))

            //    $buffer .=  '<div style="text-align:right;padding:0 10px;margin:0;"><a style="font-size:9px;color:#bbb;text-decoration:none" href="http://www.satollo.net">by satollo.net</a></div>';

        }



    }



    // When a user asked to subscribe and the connfirmation request has been sent

    if ($newsletter_step == 'subscribed') {

        $text = newsletter_replace($options['subscribed_text'], $newsletter_subscriber);

        $buffer .= $text;

    }



    if ($newsletter_step == 'confirmed') {

        $text = newsletter_replace($options['confirmed_text'], $newsletter_subscriber);

        $buffer .= $text;



        if (isset($options['confirmed_tracking'])) {

            ob_start();

            eval('?>' . $options['confirmed_tracking']);

            $buffer .= ob_get_clean();

        }

    }



    // Here we are when an unsubscription is requested. There are two kind of unsubscription: the

    // ones with email and token, so the user has only to confire and the ones without

    // data, so the user is requested to insert his email. In the latter case an email

    // will be sent to the user with alink to confirm the email removal.

    if ($newsletter_step == 'unsubscription' || $newsletter_step == 'unsubscription_error') {

        $newsletter_subscriber = newsletter_get_subscriber($_REQUEST['ni']);

        $buffer = newsletter_replace($options['unsubscription_text'], $newsletter_subscriber);

        $url = newsletter_add_qs($options['url'], 'na=uc&amp;ni=' . $newsletter_subscriber->id .

            '&amp;nt=' . $_REQUEST['nt']);

        $buffer = newsletter_replace_url($buffer, 'UNSUBSCRIPTION_CONFIRM_URL', $url);

    }



    // Last message shown to user to say good bye

    if ($newsletter_step == 'unsubscribed') {

        $text = $options['unsubscribed_text'];

        $text = newsletter_replace($text, $newsletter_subscriber);

        $buffer .= $text;

    }



    return '<div class="newsletter">' . $buffer . '</div>';

}



function newsletter_phpmailer_init($phpmailer) {

    $options_email = get_option('newsletter_email');

    $phpmailer->Sender = $options_email['return_path'];

}



/**

 * Sends out newsletters.

 *

 * I recipients is an array of subscribers, other parameters are ignored and a test

 * batch is started. This parameter has priority over all.

 *

 * If continue is true, the system try to continue a previous batch keeping its

 * configuration (eg. if it was a simulation or not).

 *

 * If continue is false, simulate indicates if the batch is a simulation and forces

 * the subscriber's email to a test one, as specified in the configuration.

 *

 * Return true if the batch is completed.

 */

function newsletter_send_batch() {

    global $wpdb;



    newsletter_info(__FUNCTION__, 'Start');



    $options = get_option('newsletter');

    $options_email = get_option('newsletter_email');

    $batch = get_option('newsletter_batch');



    if ($batch == null || !is_array($batch)) {

        newsletter_error(__FUNCTION__, 'No batch found');

        return;

    }



    newsletter_debug(__FUNCTION__, "Batch:\n" . print_r($last, true));



    // Batch have to contain 'id' which is the starting id, 'simulate' boolean

    // to indicate if is a simulation or not, 'scheduled' if it's a scheduled

    // sending process. 'list' is the list number, required.

    // If 'id' = 0 it's a new seding process.



    if (!isset($batch['id'])) {

        newsletter_error(__FUNCTION__, 'Batch "id" parameter not present');

        return false;

    }



    if (!isset($batch['list'])) {

        newsletter_error(__FUNCTION__, 'Batch "list" parameter not present');

        return false;

    }



    if (!isset($batch['simulate'])) {

        newsletter_error(__FUNCTION__, 'Batch "simulate" parameter not present');

        return false;

    }



    if (!isset($batch['scheduled'])) {

        newsletter_error(__FUNCTION__, 'Batch "scheduled" parameter not present');

        return false;

    }



    $id = (int)$batch['id'];

    $list = (int)$batch['list'];

    $simulate = (bool)$batch['simulate'];

    $scheduled = (bool)$batch['scheduled']; // Used to avoid echo



    if ($scheduled) {

        $max = $options_email['scheduler_max'];

        if (!is_numeric($max)) $max = 10;

    }

    else {

        $max = $options_email['max'];

        if (!is_numeric($max)) $max = 0;

    }



    $query = "select * from " . $wpdb->prefix . "newsletter where status='C' and list=" . $list .

        " and id>" . $id . " order by id";

    if ($max > 0) {

        $query .= " limit " . $max;

    }



    $recipients = $wpdb->get_results($query);



    // For a new batch save some info

    if ($id == 0) {

        newsletter_delete_batch_file();

        wp_clear_scheduled_hook('newsletter_cron_hook');

        $batch['total'] = $wpdb->get_var("select count(*) from " . $wpdb->prefix . "newsletter where status='C' and list=" . $list);

        $batch['sent'] = 0;

        $batch['completed'] = false;

        $batch['message'] = '';

    }



    // Not all hosting provider allow this...

    @set_time_limit(100000);



    $start_time = time();

    $max_time = (int)(ini_get('max_execution_time') * 0.8);

    $db_time = time();







    if (!$scheduled) {

        echo 'Sending to: <br />';

    }





    if (isset($options_email['novisual'])) {

        $message = $options_email['message'];

    }

    else {

        $message = '<html><head><style type="text/css">' . newsletter_get_theme_css($options_email['theme']) .

            '</style></head><body>' . $options_email['message'] . '</body></html>';

    }



    $idx = 0;



    add_action('phpmailer_init','newsletter_phpmailer_init');

    if (newsletter_has_extras('1.0.4')) newsletter_init_mail();

    foreach ($recipients as $r) {



        $url = newsletter_add_qs($options['url'],

            'na=u&amp;ni=' . $r->id . '&amp;nt=' . $r->token);



        $m = newsletter_replace_url($message, 'UNSUBSCRIPTION_URL', $url);

        $m = newsletter_replace($m, $r);



        if (defined('NEWSLETTER_EXTRAS') && isset($options_email['track']))

            $m = newsletter_relink($m, $r->id, $options_email['name']);



        $s = $options_email['subject'];

        $s = newsletter_replace($s, $r);



        if ($simulate) {

            $x = newsletter_mail($options_email['simulate_email'], $s, $m, true);

        }

        else {

            $x = newsletter_mail($r->email, $s, $m, true);

        }



        if (!$scheduled) {

            echo htmlspecialchars($r->name) . ' (' . $r->email . ') ';



            if ($x) {

                echo '[OK] - ';

                newsletter_debug(__FUNCTION__, 'Sent to ' . $r->id . ' success');

            } else {

                echo '[KO] - ';

                newsletter_debug(__FUNCTION__, 'Sent to ' . $r->id . ' failed');

            }

            flush();

        }



        $idx++;



        $batch['sent']++;

        $batch['id'] = $r->id;



        // Try to avoid database timeout

        if (time()-$db_time > 15) {

            newsletter_debug(__FUNCTION__, 'Batch saving to avoid database timeout');

            $db_time = time();

            $batch['message'] = 'Temporary saved batch to avoid database timeout';

            if (!update_option('newsletter_batch', $batch)) {

                newsletter_error(__FUNCTION__, 'Unable to save to database, saving on file system');

                newsletter_error(__FUNCTION__, "Batch:\n" . print_r($batch, true));



                newsletter_save_batch_file($batch);

                remove_action('phpmailer_init','newsletter_phpmailer_init');

                if (newsletter_has_extras('1.0.4')) newsletter_close_mail();

                return false;

            }

        }



        // Check for the max emails per batch

        if ($max != 0 && $idx >= $max) {

            newsletter_info(__FUNCTION__, 'Batch saving due to max emails limit reached');

            $batch['message'] = 'Batch max emails limit reached (it is ok)';

            if (!update_option('newsletter_batch', $batch)) {

                newsletter_error(__FUNCTION__, 'Unable to save to database, saving on file system');

                newsletter_error(__FUNCTION__, "Batch:\n" . print_r($batch, true));



                newsletter_save_batch_file($batch);

                remove_action('phpmailer_init','newsletter_phpmailer_init');

                if (newsletter_has_extras('1.0.4')) newsletter_close_mail();



                return false;

            }



            remove_action('phpmailer_init','newsletter_phpmailer_init');

            if (newsletter_has_extras('1.0.4')) newsletter_close_mail();



            return true;

        }



        // Timeout check, max time is zero if set_time_limit works

        if (($max_time != 0 && (time()-$start_time) > $max_time)) {

            newsletter_info(__FUNCTION__, 'Batch saving due to max time limit reached');

            $batch['message'] = 'Batch max time limit reached (it is ok)';

            if (!update_option('newsletter_batch', $batch)) {

                newsletter_error(__FUNCTION__, 'Unable to save to database, saving on file system');

                newsletter_error(__FUNCTION__, "Batch:\n" . print_r($last, true));



                newsletter_save_batch_file($batch);

                remove_action('phpmailer_init','newsletter_phpmailer_init');

                if (newsletter_has_extras('1.0.4')) newsletter_close_mail();



                return false;

            }



            remove_action('phpmailer_init','newsletter_phpmailer_init');

            if (newsletter_has_extras('1.0.4')) newsletter_close_mail();

            return true;

        }

    }



    // All right (incredible!)

    newsletter_info(__FUNCTION__, 'Sending completed!');

    $batch['completed'] = true;

    $batch['message'] = '';

    if (!update_option('newsletter_batch', $batch)) {

        newsletter_error(__FUNCTION__, 'Unable to save to database, saving on file system');

        newsletter_error(__FUNCTION__, "Batch:\n" . print_r($last, true));



        newsletter_save_batch_file($batch);

        remove_action('phpmailer_init','newsletter_phpmailer_init');

        if (newsletter_has_extras('1.0.4')) newsletter_close_mail();



        return false;

    }



    remove_action('phpmailer_init','newsletter_phpmailer_init');

    if (newsletter_has_extras('1.0.4')) newsletter_close_mail();

    return true;

}



/**

 * Send a set of test emails to a list of recipents. The recipients are created

 * in the composer page using the test addresses.

 */

function newsletter_send_test($recipients) {

    global $wpdb;



    newsletter_info(__FUNCTION__, 'Start');



    $options = get_option('newsletter');

    $options_email = get_option('newsletter_email');



    @set_time_limit(100000);



    echo 'Sending to: <br />';



    if (isset($options_email['novisual'])) {

        $message = $options_email['message'];

    }

    else {

        $message = '<html><head><style type="text/css">' . newsletter_get_theme_css($options_email['theme']) .

            '</style></head><body>' . $options_email['message'] . '</body></html>';

    }



    if (newsletter_has_extras('1.0.4')) newsletter_init_mail();

    foreach ($recipients as $r) {



        $url = newsletter_add_qs($options['url'],

            'na=u&amp;ni=' . $r->id . '&amp;nt=' . $r->token);



        $m = newsletter_replace_url($message, 'UNSUBSCRIPTION_URL', $url);

        $m = newsletter_replace($m, $r);



        if (defined('NEWSLETTER_EXTRAS') && isset($options_email['track']))

            $m = newsletter_relink($m, $r->id, $options_email['name']);



        $s = $options_email['subject'];

        $s = newsletter_replace($s, $r);



        $x = newsletter_mail($r->email, $s, $m, true);



        echo htmlspecialchars($r->name) . ' (' . $r->email . ') ';

        flush();



        if ($x) {

            echo '[OK] -- ';

            newsletter_debug(__FUNCTION__, 'Sent to ' . $r->id . ' success');

        } else {

            echo '[KO] -- ';

            newsletter_debug(__FUNCTION__, 'Sent to ' . $r->id . ' failed');

        }

    }

    if (newsletter_has_extras('1.0.4')) newsletter_close_mail();



}







function newsletter_add_qs($url, $qs, $amp=true) {

    if (strpos($url, '?') !== false) {

        if ($amp) return $url . '&amp;' . $qs;

        else return $url . '&' . $qs;

    }

    else return $url . '?' . $qs;

}



/**

 * Add a request of newsletter subscription into the database with status "S" (waiting

 * confirmation) and sends out the confirmation request email to the subscriber.

 * The email will contain an URL (or link) the user has to follow to complete the

 * subscription (double opt-in).

 */

function newsletter_subscribe($email, $name='', $profile=null) {

    global $wpdb, $newsletter_subscriber;



    $options = get_option('newsletter');



    $email = newsletter_normalize_email($email);



    $name = newsletter_normalize_name($name);



    $list = 0;



    if ($profile == null) $profile = array();



    // Check if this email is already in our database: if so, just resend the

    // confirmation email.

    $newsletter_subscriber = newsletter_get_subscriber_by_email($email, $list);

    if (!$newsletter_subscriber) {

        $token = md5(rand());



        if (isset($options['noconfirmation'])) {

            $status = 'C';

        }

        else {

            $status = 'S';

        }

        @$wpdb->insert($wpdb->prefix . 'newsletter', array(

            'email'=>$email,

            'name'=>$name,

            'token'=>$token,

            'list'=>$list,

            'status'=>$status

            //'profile'=>serialize($profile)

        ));

        $id = $wpdb->insert_id;

        $newsletter_subscriber = newsletter_get_subscriber($id);



        // Profile saving

        foreach ($profile as $key=>$value) {

            @$wpdb->insert($wpdb->prefix . 'newsletter_profiles', array(

                'newsletter_id'=>$id,

                'name'=>$key,

                'value'=>$value));

        }



    }



    if (isset($options['noconfirmation'])) {

        newsletter_send_welcome($newsletter_subscriber);

    }

    else {

        newsletter_send_confirmation($newsletter_subscriber);

    }



    $message = 'There is a new subscriber to ' . get_option('blogname') . ' newsletter:' . "\n\n" .

        $name . ' <' . $email . '>' . "\n\n" .

        'Have a nice day,' . "\n" . 'your Newsletter plugin.';



    $subject = '[' . get_option('blogname') . '] New subscription';

    newsletter_notify_admin($subject, $message);

}





function newsletter_save($subscriber) {

    global $wpdb;



    $email = newsletter_normalize_email($email);

    $name = newsletter_normalize_name($name);

    $wpdb->query($wpdb->prepare("update " . $wpdb->prefix . "newsletter set email=%s, name=%s where id=%d",

        $subscriber['email'], $subscriber['name'], $subscriber['id']));

}





/**

 * Resends the confirmation message when asked by user manager panel.

 */

function newsletter_send_confirmation($subscriber) {

    $options = get_option('newsletter');



    newsletter_debug(__FUNCTION__, "Confirmation request to:\n" . print_r($subscriber, true));



    $message = $options['confirmation_message'];

    $html = newsletter_get_theme_html($options['theme']);

    if ($html == null) $html = '{message}';



    $message = str_replace('{message}', $message, $html);



    // The full URL to the confirmation page

    $url = newsletter_add_qs($options['url'], 'na=c&amp;ni=' . $subscriber->id .

        '&amp;nt=' . $subscriber->token);

    $message = newsletter_replace_url($message, 'SUBSCRIPTION_CONFIRM_URL', $url);



    // URL to the unsubscription page (for test purpose)

    $url = newsletter_add_qs($options['url'], 'na=u&amp;ni=' . $subscriber->id .

        '&amp;nt=' . $subscriber->token);

    $message = newsletter_replace_url($message, 'UNSUBSCRIPTION_URL', $url);



    $message = newsletter_replace($message, $subscriber);



    $subject = newsletter_replace($options['confirmation_subject'], $subscriber);



    if (newsletter_has_extras('1.0.4')) newsletter_init_mail();

    newsletter_mail($subscriber->email, $subject, $message);

    if (newsletter_has_extras('1.0.4')) newsletter_close_mail();



}



/**

 * Return a subscriber by his email. The email will be sanitized and normalized

 * before issuing the query to the database.

 */

function newsletter_get_subscriber($id) {

    global $wpdb;



    $recipients = $wpdb->get_results($wpdb->prepare("select * from " . $wpdb->prefix .

        "newsletter where id=%d", $id));

    if (!$recipients) return null;

    return $recipients[0];

}



function newsletter_get_subscriber_by_email($email, $list=0) {

    global $wpdb;



    $recipients = $wpdb->get_results($wpdb->prepare("select * from " . $wpdb->prefix .

        "newsletter where email=%s and list=%d", $email, $list));

    if (!$recipients) return null;

    return $recipients[0];

}



function newsletter_get_all() {

    global $wpdb;



    $recipients = $wpdb->get_results("select * from " . $wpdb->prefix . "newsletter order by email");

    return $recipients;

}



function newsletter_search($text, $status=null, $order='email') {

    global $wpdb;



    if ($order == 'id') $order = 'id desc';



    $query = "select * from " . $wpdb->prefix . "newsletter where 1=1";

    if ($status != null) {

        $query .= " and status='" . $wpdb->escape($status) . "'";

    }



    if ($text == '') {

        $recipients = $wpdb->get_results($query . " order by " . $order . ' limit 100');

    }

    else {

        $recipients = $wpdb->get_results($query . " and email like '%" .

            $wpdb->escape($text) . "%' or name like '%" . $wpdb->escape($text) . "%' order by " . $order . ' limit 100');

    }

    if (!$recipients) return null;

    return $recipients;

}



function newsletter_get_unconfirmed() {

    global $wpdb;



    $recipients = $wpdb->get_results("select * from " . $wpdb->prefix . "newsletter where status='S' order by email");

    return $recipients;

}





/**

 * Normalize an email address,making it lowercase and trimming spaces.

 */

function newsletter_normalize_email($email) {

    return strtolower(trim($email));

}



function newsletter_normalize_name($name) {

    $name = str_replace(';', ' ', $name);

    $name = strip_tags($name);

    return $name;

}



add_action('init', 'newsletter_init');

/**

 * Intercept the request parameters which drive the subscription and unsubscription

 * process.

 */

function newsletter_init() {

    global $newsletter_step, $wpdb, $newsletter_subscriber;

    global $hyper_cache_stop;



    // "na" always is the action to be performed - stands for "newsletter action"

    $action = $_REQUEST['na'];

    if (!$action) return;



    $hyper_cache_stop = true;



    if (defined('NEWSLETTER_EXTRAS')) newsletter_extra_init($action);



    $options = get_option('newsletter');





    // Subscription request from a subscription form (in page or widget), can be

    // a direct subscription with no confirmation

    if ($action == 's') {

        if (!newsletter_is_email($_REQUEST['ne'])) {

            die(newsletter_label('error_email'));

        }

        // If not set, the subscription form is not requesting the name, so we do not

        // raise errors.

        if (isset($_REQUEST['nn'])) {

            if (trim($_REQUEST['nn']) == '') {

                die(newsletter_label('error_name'));

            }

        }

        else {

            $_REQUEST['nn'] = '';

        }



        $profile1 = $_REQUEST['np'];

        if (!isset($profile1) || !is_array($profile1)) $profile1 = array();



        // keys starting with "_" are removed because used internally

        $profile = array();

        foreach ($profile1 as $k=>$v) {

            if ($k[0] == '_') continue;

            $profile[$k] = $v;

        }



        $profile['_ip'] = $_SERVER['REMOTE_ADDR'];

        $profile['_referrer'] = $_SERVER['HTTP_REFERER'];



        // Check if the group is good

        newsletter_subscribe($_REQUEST['ne'], $_REQUEST['nn'], $profile);



        if (isset($options['noconfirmation'])) {

            $newsletter_step = 'confirmed';

        }

        else {

            $newsletter_step = 'subscribed';

        }

        return;

    }



    // A request to confirm a subscription

    if ($action == 'c') {

        $id = $_REQUEST['ni'];

        newsletter_confirm($id, $_REQUEST['nt']);

        header('Location: ' . newsletter_add_qs($options['url'], 'na=cs&ni=' . $id . '&nt=' . $_REQUEST['nt'], false));

        die();

    }



    // Show the confirmed message after a redirection (to avoid mutiple email sending).

    // Redirect is sent by action "c".

    if ($action == 'cs') {

        $newsletter_subscriber = newsletter_get_subscriber($_REQUEST['ni']);

        if ($newsletter_subscriber->token != $_REQUEST['nt']) die('Ivalid token');

        $newsletter_step = 'confirmed';

    }



    // Unsubscription process has 2 options: if email and token are specified the user

    // will only be asked to confirm. If there is no infos of who remove (when

    // mass mail mode is used) the user will be asked to type the emailto be removed.

    if ($action == 'u') {

        $newsletter_step = 'unsubscription';

    }



    // User confirmed he want to unsubscribe clicking the link on unsubscription

    // page

    if ($action == 'uc') {

        newsletter_unsubscribe($_REQUEST['ni'], $_REQUEST['nt']);

        $newsletter_step = 'unsubscribed';

    }

}





/**

 * Deletes a subscription (no way back). Fills the global $newsletter_subscriber

 * with subscriber data to be used to build up messages.

 */

function newsletter_unsubscribe($id, $token) {

    global $newsletter_subscriber, $wpdb;



    // Save the subscriber for good bye page

    $newsletter_subscriber = newsletter_get_subscriber($id);



    $wpdb->query($wpdb->prepare("delete from " . $wpdb->prefix . "newsletter where id=%d" .

        " and token=%s", $id, $token));



    $options = get_option('newsletter');

    

    $html = newsletter_get_theme_html($options['theme']);

    if ($html == null) $html = '{message}';

    $message = str_replace('{message}', $options['unsubscribed_message'], $html);



    $message = newsletter_replace($message, $newsletter_subscriber);



    // URL to the unsubscription page (for test purpose)

    //    $url = newsletter_add_qs($options['url'], 'na=u&amp;ni=' . $newsletter_subscriber->id .

    //        '&amp;nt=' . $newsletter_subscriber->token);

    //    $message = newsletter_replace_url($message, 'UNSUBSCRIPTION_URL', $url);



    $subject = newsletter_replace($options['unsubscribed_subject'], $newsletter_subscriber);



    if (newsletter_has_extras('1.0.4')) newsletter_init_mail();

    newsletter_mail($newsletter_subscriber->email, $subject, $message);

    if (newsletter_has_extras('1.0.4')) newsletter_close_mail();







    // Admin notification

    $message = 'There is an unsubscription to ' . get_option('blogname') . ' newsletter:' . "\n\n" .

        $newsletter_subscriber->name . ' <' . $newsletter_subscriber->email . '>' . "\n\n" .

        'Have a nice day,' . "\n" . 'your Newsletter plugin.';



    $subject = '[' . get_option('blogname') . '] Unsubscription';

    newsletter_notify_admin($subject, $message);

}



/*

 * Deletes a specific subscription. Called only from the admin panel.

 */

function newsletter_delete($id) {

    global $wpdb;



    $wpdb->query($wpdb->prepare("delete from " . $wpdb->prefix . "newsletter where id=%d", $id));

}



function newsletter_delete_all($status=null) {

    global $wpdb;



    if ($status == null) {

        $wpdb->query("delete from " . $wpdb->prefix . "newsletter");

    }

    else {

        $wpdb->query("delete from " . $wpdb->prefix . "newsletter where status='" . $wpdb->escape($status) . "'");

    }

}



/**

 * Confirms a subscription identified by id and token, changing it's status on

 * database. Fill the global $newsletter_subscriber with user data.

 * If the subscription id already confirmed, the welcome email is still sent to

 * the subscriber (the welcome email can contains somthing reserved to the user

 * and he may has lost it).

 * If id and token do not match, the function does nothing.

 */

function newsletter_confirm($id, $token) {

    global $wpdb, $newsletter_subscriber;



    $options = get_option('newsletter');



    $newsletter_subscriber = newsletter_get_subscriber($id);



    newsletter_info(__FUNCTION__, "Starting confirmation of subscriber " . $id);



    if ($newsletter_subscriber == null) {

        newsletter_error(__FUNCTION__, "Subscriber not found");

        return;

    }



    if ($newsletter_subscriber->token != $token) {

        newsletter_error(__FUNCTION__, "Token not matching");

        return;

    }



    newsletter_debug(__FUNCTION__, "Confirming subscriber:\n" . print_r($newsletter_subscriber, true));



    $count = $wpdb->query($wpdb->prepare("update " . $wpdb->prefix . "newsletter set status='C' where id=%d", $id));



    newsletter_send_welcome($newsletter_subscriber);

}



function newsletter_send_welcome($subscriber) {

    $options = get_option('newsletter');



    newsletter_debug(__FUNCTION__, "Welcome message to:\n" . print_r($subscriber, true));



    $html = newsletter_get_theme_html($options['theme']);

    if ($html == null) $html = '{message}';

    $message = str_replace('{message}', $options['confirmed_message'], $html);



    $message = newsletter_replace($message, $subscriber);



    // URL to the unsubscription page (for test purpose)

    $url = newsletter_add_qs($options['url'], 'na=u&amp;ni=' . $subscriber->id .

        '&amp;nt=' . $subscriber->token);

    $message = newsletter_replace_url($message, 'UNSUBSCRIPTION_URL', $url);



    $subject = newsletter_replace($options['confirmed_subject'], $subscriber);

    if (newsletter_has_extras('1.0.4')) newsletter_init_mail();

    newsletter_mail($subscriber->email, $subject, $message);

    if (newsletter_has_extras('1.0.4')) newsletter_close_mail();

}



/*

 * Changes the status of a subscription identified by its id.

 */

function newsletter_set_status($id, $status) {

    global $wpdb;



    $wpdb->query($wpdb->prepare("update " . $wpdb->prefix . "newsletter set status=%s where id=%d", $status, $id));

}



/*

 * Sends a notification message to the blog admin.

 */

function newsletter_notify_admin(&$subject, &$message) {

    $to = get_option('admin_email');

    $headers .= "Content-type: text/plain; charset=UTF-8\n";

    wp_mail($to, $subject, $message, $headers);

}



/**

 * Sends out an email (html or text). From email and name is retreived from

 * Newsletter plugin options. Return false on error. If the subject is empty

 * no email is sent out without warning.

 * The function uses wp_mail() to really send the message.

 */

function newsletter_mail($to, &$subject, &$message, $html=true) {

    global $newsletter_mailer, $newsletter_options_main;



    if ($subject == '') {

        newsletter_debug(__FUNCTION__, 'Subject empty, skipped');

        return true;

    }



    if (newsletter_has_extras('1.0.4')) {

        return newsletter_extra_mail($to, &$subject, &$message, $html);

    }



    $options = get_option('newsletter');

    

    $headers  = "MIME-Version: 1.0\n";

    if ($html) $headers .= "Content-type: text/html; charset=UTF-8\n";

    else $headers .= "Content-type: text/plain; charset=UTF-8\n";



    // Special character are manager by wp_mail()

    $headers .= 'From: "' . $options['from_name'] . '" <' . $options['from_email'] . ">\n";



    $r = wp_mail($to, $subject, $message, $headers);

    if (!$r) {

        newsletter_error(__FUNCTION__, "wp_mail() failed");

    }

    return $r;

}





add_action('activate_newsletter/plugin.php', 'newsletter_activate');

function newsletter_activate() {

    global $wpdb, $newsletter_options_main;



    $options = get_option('newsletter', array());



    if (NEWSLETTER >= '1.5.2') {

        if (isset($options['logs'])) $newsletter_options_main['logs'] = $options['logs'];

        if (isset($options['editor'])) $newsletter_options_main['editor'] = $options['editor'];

        if (isset($options['version'])) $newsletter_options_main['version'] = $options['version'];

        if (isset($options['no_translation'])) $newsletter_options_main['no_translation'] = $options['no_translation'];

    }



    // Load the default options

    @include_once(dirname(__FILE__) . '/languages/en_US_options.php');

    if (WPLANG != '') @include_once(dirname(__FILE__) . '/languages/' . WPLANG . '_options.php');

    //@include_once(ABSPATH . 'wp-content/newsletter/languages/custom_options.php');



    $options = array_merge($newsletter_default_options, $options);



    // SQL to create the table

    $sql = 'create table if not exists ' . $wpdb->prefix . 'newsletter (

        `id` int not null auto_increment primary key,

        `name` varchar (100) not null default \'\',

        `email` varchar (100) not null default \'\',

        `token` varchar (50) not null default \'\',

        `status` varchar (1) not null default \'S\',

        `group` int not null default 0,

        `profile` text

        )';



    @$wpdb->query($sql);



    if (!isset($newsletter_options_main['version']) || $newsletter_options_main['version'] < '1.4.0') {



        $sql = "alter table " . $wpdb->prefix . "newsletter drop primary key";

        @$wpdb->query($sql);



        $sql = "alter table " . $wpdb->prefix . "newsletter add column id int not null auto_increment primary key";

        @$wpdb->query($sql);



        $sql = "alter table " . $wpdb->prefix . "newsletter add column list int not null default 0";

        @$wpdb->query($sql);



        $sql = "alter table " . $wpdb->prefix . "newsletter drop key email_token";

        @$wpdb->query($sql);



        $sql = "alter table " . $wpdb->prefix . "newsletter add column profile text";

        @$wpdb->query($sql);



        $sql = "ALTER TABLE " . $wpdb->prefix . "newsletter ADD UNIQUE email_list (email, list)";

        @$wpdb->query($sql);

    }



    if (!isset($newsletter_options_main['version']) || $newsletter_options_main['version'] < '1.4.1') {

        $sql = "alter table " . $wpdb->prefix . "newsletter add column created timestamp not null default current_timestamp";

        @$wpdb->query($sql);

    }



    $sql = 'create table if not exists ' . $wpdb->prefix . 'newsletter_profiles (

        `newsletter_id` int not null,

        `name` varchar (100) not null default \'\',

        `value` text,

        primary key (newsletter_id, name)

        )';



    @$wpdb->query($sql);



    newsletter_info(__FUNCTION__, 'Activated');



    $newsletter_options_main['version'] = NEWSLETTER;

    update_option('newsletter_main', $newsletter_options_main);

    update_option('newsletter', $options);



    if (defined('NEWSLETTER_EXTRAS')) newsletter_extra_activate();

}



if (is_admin()) {

    add_action('admin_menu', 'newsletter_admin_menu');

    function newsletter_admin_menu() {

        global $newsletter_options_main;

        $options = get_option('newsletter');

        $level = ($newsletter_options_main['editor']==1)?7:10;



        if (function_exists('add_menu_page')) {

            add_menu_page('Newsletter', 'Newsletter', $level, 'newsletter/main.php', '', '');

        }



        if (function_exists('add_submenu_page')) {

            add_submenu_page('newsletter/main.php', 'Configuration', 'Configuration', $level, 'newsletter/main.php');

            add_submenu_page('newsletter/main.php', 'Subscription', 'Subscription', $level, 'newsletter/options.php');

            add_submenu_page('newsletter/main.php', 'Composer', 'Composer', $level, 'newsletter/newsletter.php');

            add_submenu_page('newsletter/main.php', 'Statistics', 'Statistics', $level, 'newsletter/statistics.php');

            add_submenu_page('newsletter/main.php', 'Subscribers', 'Subscribers', $level, 'newsletter/manage.php');

            add_submenu_page('newsletter/main.php', 'Import', 'Import', $level, 'newsletter/import.php');

            add_submenu_page('newsletter/main.php', 'Export', 'Export', $level, 'newsletter/export.php');

            add_submenu_page('newsletter/main.php', 'Forms', 'Forms', $level, 'newsletter/forms.php');

            add_submenu_page('newsletter/main.php', 'SMTP', 'SMTP', $level, 'newsletter/smtp.php');

            add_submenu_page('newsletter/main.php', 'Update', 'Update', $level, 'newsletter/convert.php');

        }

    }



    add_action('admin_head', 'newsletter_admin_head');

    function newsletter_admin_head() {

        if (strpos($_GET['page'], 'newsletter/') === 0) {

            echo '<link type="text/css" rel="stylesheet" href="' .

                get_option('siteurl') . '/wp-content/plugins/newsletter/style.css"/>';

        }

    }

}



/**

 * Fills a text with sunscriber data and blog data replacing some place holders.

 */

function newsletter_replace($text, $subscriber) {

    $text = str_replace('{home_url}', get_option('home'), $text);

    $text = str_replace('{blog_title}', get_option('blogname'), $text);

    $text = str_replace('{email}', $subscriber->email, $text);

    $text = str_replace('{id}', $subscriber->id, $text);

    $text = str_replace('{name}', $subscriber->name, $text);

    $text = str_replace('{token}', $subscriber->token, $text);

    $text = str_replace('%7Btoken%7D', $subscriber->token, $text);

    $text = str_replace('%7Bid%7D', $subscriber->id, $text);



    return $text;

}



/**

 * Replaces the URL placeholders. There are two kind of URL placeholders: the ones

 * lowercase and betweeb curly brakets and the ones all uppercase. The tag to be passed

 * is the one all uppercase but the lowercase one will also be replaced.

 */

function newsletter_replace_url($text, $tag, $url) {

    $home = get_option('home') . '/';

    $tag_lower = strtolower($tag);

    $text = str_replace($home . '{' . $tag_lower . '}', $url, $text);

    $text = str_replace($home . '%7B' . $tag_lower . '%7D', $url, $text);

    $text = str_replace('{' . $tag_lower . '}', $url, $text);



    // for compatibility

    $text = str_replace($home . $tag, $url, $text);



    return $text;

}



function newsletter_is_email($email, $empty_ok=false) {

    $email = strtolower(trim($email));

    if ($empty_ok && $email == '') return true;



    if (eregi("^([a-z0-9_\.-])+@(([a-z0-9_-])+\\.)+[a-z]{2,6}$", trim($email))) {

        if (strpos($email, 'mailinator.com') !== false) return false;

        if (strpos($email, 'guerrillamailblock.com') !== false) return false;

        return true;

    }

    else

        return false;

}



function newsletter_delete_batch_file() {

    @unlink(dirname(__FILE__) . '/batch.dat');

}



function newsletter_save_batch_file($batch) {

    $file = @fopen(dirname(__FILE__) . '/batch.dat', 'w');

    if (!$file) return;

    @fwrite($file, serialize($batch));

    @fclose($file);

}



function newsletter_load_batch_file() {

    $content = @file_get_contents(dirname(__FILE__) . '/batch.dat');

    return @unserialize($content);

}



/**

 * Write a line of log in the log file if the logs are enabled or force is

 * set to true.

 */

function newsletter_log($text) {

    $file = @fopen(dirname(__FILE__) . '/newsletter.log', 'a');

    if (!$file) return;

    @fwrite($file, date('Y-m-d h:i') . ' ' . $text . "\n");

    @fclose($file);

}



function newsletter_debug($fn, $text) {

    global $newsletter_options_main;

    if ($newsletter_options_main['logs'] < 2) return;

    newsletter_log('- DEBUG - ' . $fn . ' - ' . $text);

}



function newsletter_info($fn, $text) {

    if ($newsletter_options_main['logs'] < 1) return;

    newsletter_log('- INFO  - ' . $fn . ' - ' . $text);

}



function newsletter_error($fn, $text) {

    if ($newsletter_options_main['logs'] < 1) return;

    newsletter_log('- ERROR - ' . $fn . ' - ' . $text);

}



/**

 * Retrieves a list of custom themes located under wp-plugins/newsletter-custom/themes.

 * Return a list of theme names (which are folder names where the theme files are stored.

 */

function newsletter_get_themes() {

    $handle = @opendir(ABSPATH . 'wp-content/plugins/newsletter-custom/themes');

    $list = array();

    if (!$handle) return $list;

    while ($file = readdir($handle)) {

        if ($file == '.' || $file == '..') continue;

        if (!is_dir(ABSPATH . 'wp-content/plugins/newsletter-custom/themes/' . $file)) continue;

        if (!is_file(ABSPATH . 'wp-content/plugins/newsletter-custom/themes/' . $file . '/theme.php')) continue;

        $list[] = $file;

    }

    closedir($handle);

    return $list;

}



function newsletter_get_extras_themes() {

    $handle = @opendir(ABSPATH . 'wp-content/plugins/newsletter-extras/themes');

    $list = array();

    if (!$handle) return $list;

    while ($file = readdir($handle)) {

        if ($file == '.' || $file == '..') continue;

        if (!is_dir(ABSPATH . 'wp-content/plugins/newsletter-extras/themes/' . $file)) continue;

        if (!is_file(ABSPATH . 'wp-content/plugins/newsletter-extras/themes/' . $file . '/theme.php')) continue;

        $list[] = $file;

    }

    closedir($handle);

    return $list;

}



/**

 * Resets the batch status.

 */

function newsletter_reset_batch() {



}



function newsletter_has_extras($version=null) {

    if (!defined('NEWSLETTER_EXTRAS')) return false;

    if ($version == null) return true;

    if ($version <= NEWSLETTER_EXTRAS) return true;

    return false;

}



/** 

 * Find an image for a post checking the media uploaded for the post and

 * choosing the first image found.

 */

function nt_post_image($post_id, $size='thumbnail', $alternative=null) {



    $attachments = get_children(array('post_parent'=>$post_id, 'post_status'=>'inherit', 'post_type'=>'attachment', 'post_mime_type'=>'image', 'order'=>'ASC', 'orderby'=>'menu_order ID' ) );



    if (empty($attachments)) {

        return $alternative;

    }



    foreach ($attachments as $id=>$attachment) {

        $image = wp_get_attachment_image_src($id, $size);

        return $image[0];

    }

    return null;

}



function nt_option($name, $def = null) {

//    if ($newsletter_is_feed && $name == 'posts') {

//        $options = get_option('newsletter_feed');

//        return $options['posts'];

//    }

    $options = get_option('newsletter_email');

    $option = $options['theme_' . $name];

    if (!isset($option)) return $def;

    else return $option;

}



/**

 * Retrieves the theme dir path.

 */

function newsletter_get_theme_dir($theme) {

    if ($theme[0] == '*') {

        return ABSPATH . '/wp-content/plugins/newsletter-custom/themes/' . substr($theme, 1);

    }

    elseif ($theme[0] == '$') {

        return ABSPATH . '/wp-content/plugins/newsletter-extras/themes/' . substr($theme, 1);

    }

    else {

        return dirname(__FILE__) . '/themes/' . $theme;

    }

}



/**

 * Retrieves the theme URL (pointing to theme dir).

 */

function newsletter_get_theme_url($theme) {

    if ($theme[0] == '*') {

        return get_option('siteurl') . '/wp-content/plugins/newsletter-custom/themes/' . substr($theme, 1);

    }

    elseif ($theme[0] == '$') {

        return get_option('siteurl') . '/wp-content/plugins/newsletter-extras/themes/' . substr($theme, 1);

    }

    else {

        return get_option('siteurl') . '/wp-content/plugins/newsletter/themes/' . $theme;

    }

}



/**

 * Loads the theme css content to be embedded in emails body.

 */

function newsletter_get_theme_css($theme) {

    if ($theme == 'blank') return '';

    return @file_get_contents(newsletter_get_theme_dir($theme) . '/style.css');

}



function newsletter_get_theme_html($theme) {

    if ($theme == 'blank') return '';

    $file = newsletter_get_theme_dir($theme) . '/theme.php';



    // Execute the theme file and get the content generated

    ob_start();

    @include($file);

    $html = ob_get_contents();

    ob_end_clean();

    return $html;

}



?>