The text you entered didn't match the image, please try again.
"; include('footer.php'); exit; } if (isset($_SESSION['key']) && isset($_COOKIE[session_name()])) { setcookie(session_name(), '', time()-36000, '/'); $_SESSION = array(); session_destroy(); } } else { echo "The text you entered didn't match the image, please try again.
"; include('footer.php'); exit; } } include_once('header.php'); if (!isset($_POST['submit']) || $_SERVER['REQUEST_METHOD'] != "POST") { echo "Accessing this page directly is not allowed.
\n\n"; include('footer.php'); exit; } if (isBot() !== false) $error_msg .= "No bots please! UA reported as: ".$_SERVER['HTTP_USER_AGENT'] . "\r\n"; if (substr_count($_POST['comments'], 'http://') > 1) $error_msg .= "Too many URLs; we've assumed you're spam and 'lost' your application. Please try again without any extra URLs if you're a geniune person :)\r\n"; $exploits = "/(content-type|bcc:|cc:|document.cookie|onclick|onload|javascript|alert)/i"; if (filesize(SPAMWDS) > 0) $spamlist = file(SPAMWDS); foreach ($_POST as $key => $val) { if (isset($spamlist)) { foreach ($spamlist as $spamword) { if (preg_match("/(".trim($spamword).")/i", $val)) { $error_msg .= "Your updated info contains words in the spam list, please go back and remove references to obvious 'spam' material.\r\n"; } } } if (preg_match($exploits, $val)) $error_msg .= "No meta injection, please.\r\n"; if (preg_match("/(<.*>)/i", $val)) $error_msg .= "No HTML, please.\r\n"; $clean[$key] = cleanUp($val); } if ((filesize(MEMBERS) > 0 && checkTXTfile(MEMBERS, breakEmail(strtolower($clean['email'])), "email") === true) || (filesize(NEWBIES) > 0 && checkTXTfile(NEWBIES, breakEmail(strtolower($clean['email'])), "email") === true)) { // set default values for empty/unset fields if (empty($clean['dispemail'])) $clean['dispemail'] = "no"; if (!isset($favefield) || $favefield == "no" || !isset($clean['fave'])) $clean['fave'] = NULL; // let's do some security and spam checks if (empty($clean['name']) || empty($clean['email']) || empty($clean['country'])) $error_msg .= "Name, e-mail and country are required fields. \r\n"; if (!preg_match("/^[a-zA-Z-'\s]*$/", $clean['name'])) $error_msg .= "That name is not valid. Your name must contain letters only, and must be less than 15 characters. \r\n"; if ($clean['dispemail'] != "yes" && $clean['dispemail'] != "no") $error_msg .= "You didn't choose whether or not you'd like to show your e-mail address on the member list. \r\n"; if ($clean['fave'] != "" && (!preg_match("/^[a-zA-Z0-9-'\s]*$/", $clean['fave']) || strlen($clean['fave']) > 20)) $error_msg .= "Your chosen \"favourite\" is not valid. It must contain letters and numbers only, and must be less than 20 characters. \r\n"; if (!preg_match('/^([a-z0-9])(([-a-z0-9._])*([a-z0-9]))*\@([a-z0-9])(([a-z0-9-])*([a-z0-9]))+' . '(\.([a-z0-9])([-a-z0-9_-])?([a-z0-9])+)+$/i', strtolower($clean['email']))) $error_msg .= "The email address you have used is not valid. \r\n"; if (!empty($clean['newemail']) && !preg_match('/^([a-z0-9])(([-a-z0-9._])*([a-z0-9]))*\@([a-z0-9])(([a-z0-9-])*([a-z0-9]))+' . '(\.([a-z0-9])([-a-z0-9_-])?([a-z0-9])+)+$/i', strtolower($clean['newemail']))) $error_msg .= "The new email address you have used is not valid. \r\n"; if (!empty($clean['url']) && !preg_match('/^(http|https):\/\/(([A-Z0-9][A-Z0-9_-]*)(\.[A-Z0-9][A-Z0-9_-]*)+)(:(\d+))?\/?/i', $clean['url'])) $error_msg .= "The website url you provided is not valid. Please remove and try again or fix the URL.\r\n"; if ($clean['country'] == "null" || (filesize(COUNTRIES) > 0 && checkTXTfile(COUNTRIES, $clean['country'], "country") === false)) $error_msg .= "Please select a valid country. \r\n"; if ($error_msg == NULL) { $show_form = false; $mail = new \PHPMailer\PHPMailer\PHPMailer(true); // Server settings $mail->setLanguage(CONTACTFORM_LANGUAGE); $mail->SMTPDebug = CONTACTFORM_PHPMAILER_DEBUG_LEVEL; $mail->isSMTP(); $mail->Host = CONTACTFORM_SMTP_HOSTNAME; $mail->SMTPAuth = true; $mail->Username = CONTACTFORM_SMTP_USERNAME; $mail->Password = CONTACTFORM_SMTP_PASSWORD; $mail->SMTPSecure = CONTACTFORM_SMTP_ENCRYPTION; $mail->Port = CONTACTFORM_SMTP_PORT; $mail->CharSet = CONTACTFORM_MAIL_CHARSET; $mail->Encoding = CONTACTFORM_MAIL_ENCODING; // Recipients $mail->setFrom($admin_email, $title); $mail->addAddress($admin_email, $admin_name); $mail->Subject = "Update member at $title"; $mail->Body = "A member at your $FLsubject fanlisting wants updating with following details: \n\n"; $mail->Body .= "Name: {$clean['name']} \n"; $mail->Body .= "Email: ".strtolower($clean['email'])." \n"; $mail->Body .= "New Email: {$clean['newemail']} \n"; $mail->Body .= "New URL: {$clean['newurl']} \n"; $mail->Body .= "Country: {$clean['country']} \n"; $mail->Body .= "Comments: {$clean['comments']} \n"; $mail->Body .= "IP: {$_SERVER['REMOTE_ADDR']} \n\n"; $mail->Body .= "Manage members: {$FLurl}/admin.php"; if ($mail->send()) { echo "Your updated information has been sent to the fanlisting owner.
"; } else { echo "Your updated information could not be sent this time, please contact the fanlisting owner.
"; } } } else { echo "You're not a member! Only current members can update their information.
\n"; include('footer.php'); exit; } } if (!isset($_POST['submit']) || $show_form == true) { require_once('prefs.php'); include_once('header.php'); ?>To update your details, fill in your information below. Please do not use this form to join; use the join form instead.
(Name, Old E-mail and Country are required fields.)
ERROR: