backoffice/html/mailing/ut.php

<?php
ob_start();
$er = error_reporting(0); 
require_once dirname(__FILE__) .'/admin/commonlib/lib/unregister_globals.php';
require_once dirname(__FILE__) .'/admin/commonlib/lib/magic_quotes.php';
require_once dirname(__FILE__).'/admin/init.php';

## none of our parameters can contain html for now
$_GET = removeXss($_GET);
$_POST = removeXss($_POST);
$_REQUEST = removeXss($_REQUEST);

if ($_SERVER["ConfigFile"] && is_file($_SERVER["ConfigFile"])) {
  include $_SERVER["ConfigFile"];
} elseif ($_ENV["CONFIG"] && is_file($_ENV["CONFIG"])) {
  include $_ENV["CONFIG"];
} elseif (is_file("config/config.php")) {
  include "config/config.php";
}
#error_reporting($er);

require_once dirname(__FILE__).'/admin/'.$GLOBALS["database_module"];
require_once dirname(__FILE__)."/texts/english.inc";
include_once dirname(__FILE__)."/texts/".$GLOBALS["language_module"];
require_once dirname(__FILE__)."/admin/defaultconfig.inc";
require_once dirname(__FILE__).'/admin/connect.php';
include_once dirname(__FILE__)."/admin/languages.php";

if ($_GET["u"] && $_GET["m"]) {
  $_GET['u'] = preg_replace('/\W/','',$_GET['u']);
  $userid = Sql_Fetch_Row_Query(sprintf('select id from %s where uniqid = "%s"',
    $GLOBALS["tables"]["user"],$_GET["u"]));
  if ($userid[0]) {
    Sql_Query(sprintf('update %s set viewed = now() where messageid = %d and userid = %d',
      $GLOBALS["tables"]["usermessage"],$_GET["m"],$userid[0]));
    Sql_Query(sprintf('update %s set viewed = viewed + 1 where id = %d',
      $GLOBALS["tables"]["message"],$_GET["m"]));
  }
}

@ob_end_clean();
header("Content-Type: image/png");
print base64_decode('iVBORw0KGgoAAAANSUhEUgAAAAEAAAABAQMAAAAl21bKAAAABGdBTUEAALGPC/xhBQAAAAZQTFRF////AAAAVcLTfgAAAAF0Uk5TAEDm2GYAAAABYktHRACIBR1IAAAACXBIWXMAAAsSAAALEgHS3X78AAAAB3RJTUUH0gQCEx05cqKA8gAAAApJREFUeJxjYAAAAAIAAUivpHEAAAAASUVORK5CYII=');
Intégration des fichiers 2011-06-21 15:28:10 +02:00			`<?php`
			`ob_start();`
			`$er = error_reporting(0);`
			`require_once dirname(__FILE__) .'/admin/commonlib/lib/unregister_globals.php';`
			`require_once dirname(__FILE__) .'/admin/commonlib/lib/magic_quotes.php';`
			`require_once dirname(__FILE__).'/admin/init.php';`

			`## none of our parameters can contain html for now`
			`$_GET = removeXss($_GET);`
			`$_POST = removeXss($_POST);`
			`$_REQUEST = removeXss($_REQUEST);`

			`if ($_SERVER["ConfigFile"] && is_file($_SERVER["ConfigFile"])) {`
			`include $_SERVER["ConfigFile"];`
			`} elseif ($_ENV["CONFIG"] && is_file($_ENV["CONFIG"])) {`
			`include $_ENV["CONFIG"];`
			`} elseif (is_file("config/config.php")) {`
			`include "config/config.php";`
			`}`
			`#error_reporting($er);`

			`require_once dirname(__FILE__).'/admin/'.$GLOBALS["database_module"];`
			`require_once dirname(__FILE__)."/texts/english.inc";`
			`include_once dirname(__FILE__)."/texts/".$GLOBALS["language_module"];`
			`require_once dirname(__FILE__)."/admin/defaultconfig.inc";`
			`require_once dirname(__FILE__).'/admin/connect.php';`
			`include_once dirname(__FILE__)."/admin/languages.php";`

			`if ($_GET["u"] && $_GET["m"]) {`
			`$_GET['u'] = preg_replace('/\W/','',$_GET['u']);`
			`$userid = Sql_Fetch_Row_Query(sprintf('select id from %s where uniqid = "%s"',`
			`$GLOBALS["tables"]["user"],$_GET["u"]));`
			`if ($userid[0]) {`
			`Sql_Query(sprintf('update %s set viewed = now() where messageid = %d and userid = %d',`
			`$GLOBALS["tables"]["usermessage"],$_GET["m"],$userid[0]));`
			`Sql_Query(sprintf('update %s set viewed = viewed + 1 where id = %d',`
			`$GLOBALS["tables"]["message"],$_GET["m"]));`
			`}`
			`}`

			`@ob_end_clean();`
			`header("Content-Type: image/png");`
			`print base64_decode('iVBORw0KGgoAAAANSUhEUgAAAAEAAAABAQMAAAAl21bKAAAABGdBTUEAALGPC/xhBQAAAAZQTFRF////AAAAVcLTfgAAAAF0Uk5TAEDm2GYAAAABYktHRACIBR1IAAAACXBIWXMAAAsSAAALEgHS3X78AAAAB3RJTUUH0gQCEx05cqKA8gAAAApJREFUeJxjYAAAAAIAAUivpHEAAAAASUVORK5CYII=');`