IsSMTP(); // send via SMTP // XXX use constants from config file $mail->Host = "molly.kyberia.cz"; // SMTP servers $mail->From = "root@kyberia.cz"; $mail->FromName = "kyberia.cz admin"; $mail->WordWrap = 50; // set word wrap $mail->Subject = "kyberia.cz uspesna registracia"; if (!$permissions['w']) { $error="you don't have permissions for performing this event"; return false; } foreach ($_POST['waiting'] as $user =>$value) { //XXX SQLi $set=$db->query("select email,login,node_creator from users". "left join nodes on nodes.node_id=users.user_id". "where user_id='$user'"); $set->next(); $email=$set->getString('email'); $login=$set->getString('login'); $application_id=$set->getString('node_creator'); $params['node_creator']=$user_id; $params['node_parent']=$application_id; $params['node_name']="$login registered"; $params['node_content']="user $login successfully registered by $user_name"; nodes::addNode($params); $db->query("update nodes set node_creator=node_id where node_id='$user'"); $db->query("insert into mail set mail_user='$user',mail_to='$user',mail_from='$user_id',mail_text='$hello'"); $db->query("insert into mail set mail_user='$user_id',mail_to='$user',mail_from='$user_id',mail_text='$hello'"); $db->query("update users set user_mail='1',user_mail_name='$user_name' where user_id='$user'"); $mail->ClearAddresses(); $mail->AddAddress($email); // optional name $mail->AltBody = "bol si uspesne zaregistrovany do komunity " .SYSTEM_URL." s loginom $login . njoy"; if(!$mail->Send()){ $error="could not sent mail"; return false; } } return true; } ?>