Settings | Donate Version: 3.1.5.4 Author: Mike Challis Author URI: http://www.642weather.com/weather/scripts.php */ $ctf_version = '3.1.5.4'; /* Copyright (C) 2008-2012 Mike Challis (http://www.fastsecurecontactform.com/contact) This program is free software; you can redistribute it and/or modify it under the terms of the GNU General Public License as published by the Free Software Foundation; either version 2 of the License, or (at your option) any later version. This program is distributed in the hope that it will be useful, but WITHOUT ANY WARRANTY; without even the implied warranty of MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the GNU General Public License for more details. You should have received a copy of the GNU General Public License along with this program; if not, write to the Free Software Foundation, Inc., 59 Temple Place, Suite 330, Boston, MA 02111-1307 USA */ // settings get deleted when plugin is deleted from admin plugins page // this must be outside the class or it does not work function si_contact_unset_options() { delete_option('si_contact_form'); delete_option('si_contact_form_gb'); // multi-forms (a unique configuration for each contact form) for ($i = 2; $i <= 100; $i++) { delete_option("si_contact_form$i"); } } // end function si_contact_unset_options if (!class_exists('siContactForm')) { class siContactForm { var $si_contact_error; var $uploaded_files; var $ctf_notes_style; var $ctf_version; var $ctf_add_script; var $vcita_add_script; function si_contact_add_tabs() { add_submenu_page('plugins.php', __('FS Contact Form Options', 'si-contact-form'), __('FS Contact Form Options', 'si-contact-form'), 'manage_options', __FILE__,array(&$this,'si_contact_options_page')); } function si_contact_update_lang() { global $si_contact_opt, $si_contact_option_defaults; // a few language options need to be re-translated now. // had to do this becuse the options were actually needed to be set before the language translator was initialized // update translation for these options (for when switched from English to another lang) if ($si_contact_opt['welcome'] == '

Comments or questions are welcome.

' ) { $si_contact_opt['welcome'] = __('

Comments or questions are welcome.

', 'si-contact-form'); $si_contact_option_defaults['welcome'] = $si_contact_opt['welcome']; } if ($si_contact_opt['email_to'] == 'Webmaster,'.get_option('admin_email')) { $si_contact_opt['email_to'] = __('Webmaster', 'si-contact-form').','.get_option('admin_email'); $si_contact_option_defaults['email_to'] = $si_contact_opt['email_to']; } if ($si_contact_opt['email_subject'] == get_option('blogname') . ' ' .'Contact:') { $si_contact_opt['email_subject'] = get_option('blogname') . ' ' .__('Contact:', 'si-contact-form'); $si_contact_option_defaults['email_subject'] = $si_contact_opt['email_subject']; } } // end function si_contact_update_lang function si_contact_options_page() { global $captcha_url_cf, $si_contact_opt, $si_contact_gb, $si_contact_gb_defaults, $si_contact_option_defaults, $ctf_version; require_once(WP_PLUGIN_DIR . '/si-contact-form/admin/si-contact-form-admin.php'); } // end function si_contact_options_page /* --- vCita Admin Functions - Start --- */ /** * Add the vcita Javascript to the admin section */ function vcita_add_admin_js() { if(isset($_GET['page']) && is_string($_GET['page']) && preg_match('/si-contact-form.php$/',$_GET['page']) ) { wp_enqueue_script('jquery'); wp_register_script('vcita_fscf', plugins_url('vcita/vcita_fscf.js', __FILE__), array('jquery'), '1.1', true); wp_register_script('vcita_fscf_admin', plugins_url('vcita/vcita_fscf_admin.js', __FILE__), array('jquery'), '1.1', true); wp_print_scripts('vcita_fscf'); wp_print_scripts('vcita_fscf_admin'); } } /** * Validate the user is initialized currenctly be performing the following. * 1. Migration from old versions. * 2. New User - enable vCita if the auto install flag is set to true * 3. Upgrade - enable vCita if wasn't previously disabled - Currently nothing is done */ function vcita_validate_initialized_user($form_num, $form_params, $general_params, $previous_version) { $auto_install = $general_params['vcita_auto_install']; $curr_version = $general_params['ctf_version']; $vcita_dismiss = $general_params['vcita_dismiss']; // Check if a initializtion is required if (!isset($form_params['vcita_initialized']) || $form_params['vcita_initialized'] == 'false') { // New Install - Only enable vCita // This will cause the notification about misconfigured installation be shown. if ($auto_install == 'true' && $vcita_dismiss == "false") { $form_params['vcita_enabled'] = 'true'; } // Currently nothing during upgrade. $form_params['vcita_initialized'] = 'true'; // Mark as initialized update_option("si_contact_form$form_num", $form_params); } $confirm_token = ''; if (isset($form_params['vcita_confirm_token'])) $confirm_token = $form_params['vcita_confirm_token']; // Migrate token to the new field if (!empty($confirm_token) && !empty($form_params['vcita_uid'])) { $form_params['vcita_confirm_tokens'] = ''; $form_params = $this->vcita_set_confirmation_token($form_params, $confirm_token); $form_params['vcita_confirm_token'] = null; update_option("si_contact_form$form_num", $form_params); } // check if the approved flag should be turned on, happens when: // When user available, enabled and approve is false (this can only happen if form is an old version) if (isset($form_params['vcita_enabled']) && $form_params['vcita_enabled'] == 'true' && isset($form_params['vcita_uid']) && !empty($form_params['vcita_uid']) && (!isset($form_params['vcita_approved']) || $form_params['vcita_approved'] == 'false')) { $form_params['vcita_approved'] = 'true'; update_option("si_contact_form$form_num", $form_params); } return $form_params; } /** * Use the vCita API to get a user, either create a new one or get the id of an available user * In case the "default" email is used, no action takes place. * * @return array of the user name, id and if he finished the registration or not */ function vcita_generate_or_validate_user($params) { $used_email = $params['vcita_email']; // Don't create / validate if this isn't the expert if (empty($_SESSION) || empty($_SESSION["vcita_expert"]) || !$_SESSION["vcita_expert"]) { return $params; } // Only generate a user if the mail isn't the default one. if ($used_email == 'mail@example.com') { $params['vcita_uid'] = ''; return $params; } extract($this->vcita_post_contents("http://www.vcita.com/api/experts?id=".$params['vcita_uid']. "&email=".urlencode($used_email). "&first_name=".urlencode($params['vcita_first_name'])."&last_name=". urlencode($params['vcita_last_name'])."&ref=wp-fscf&o=int.1")); return $this->vcita_parse_user_info($params, $success, $raw_data); } /* * Parse the result from the vCita API. * Update all the parameters with the given values / error. */ function vcita_parse_user_info($params, $success, $raw_data) { $previous_id = isset($params['vcita_uid']) ? $params['vcita_uid'] : ''; $params['vcita_initialized'] = 'false'; $params['vcita_uid'] = ''; if (!$success) { $params['vcita_last_error'] = "Temporary problem, please try again later"; } else { $data = json_decode($raw_data); if ($data->{'success'} == 1) { $params['vcita_confirmed'] = $data->{'confirmed'}; $params['vcita_last_error'] = ""; $params['vcita_uid'] = $data->{'id'}; $params['vcita_initialized'] = 'true'; $params['vcita_first_name'] = $data->{'first_name'}; $params['vcita_last_name'] = $data->{'last_name'}; if ($previous_id != $data->{'id'}) { $params = $this->vcita_set_confirmation_token($params, $data->{'confirmation_token'}); } if (isset($data->{'email'}) && !empty($data->{'email'})) { $params['vcita_email'] = $data->{'email'}; } } else { $params['vcita_last_error'] = $data-> {'error'}; } } return $params; } /** * Disconnect the user from vCita by removing his details. */ function vcita_disconnect_form($form_params) { global $si_contact_option_defaults; $form_params['vcita_approved'] = $si_contact_option_defaults['vcita_approved']; $form_params['vcita_uid'] = $si_contact_option_defaults['vcita_uid']; $form_params['vcita_email'] = $si_contact_option_defaults['vcita_email']; $form_params['vcita_first_name'] = $si_contact_option_defaults['vcita_first_name']; $form_params['vcita_last_name'] = $si_contact_option_defaults['vcita_last_name']; $form_params['vcita_initialized'] = 'true'; // Don't re-enable next time // On Purpose keeping the confirmation_tokens return $form_params; } /** * Perform an HTTP POST Call to retrieve the data for the required content. * * @param $url * @return array - raw_data and a success flag */ function vcita_post_contents($url) { $response = wp_remote_post($url, array('header' => array('Accept' => 'application/json; charset=utf-8'), 'timeout' => 10)); return $this->vcita_parse_response($response); } /** * Perform an HTTP GET Call to retrieve the data for the required content. * * @param $url * @return array - raw_data and a success flag */ function vcita_get_contents($url) { $response = wp_remote_get($url, array('header' => array('Accept' => 'application/json; charset=utf-8'), 'timeout' => 10)); return $this->vcita_parse_response($response); } /** * Parse the HTTP response and return the data and if was successful or not. */ function vcita_parse_response($response) { $success = false; $raw_data = "Unknown error"; if (is_wp_error($response)) { $raw_data = $response->get_error_message(); } elseif (!empty($response['response'])) { if ($response['response']['code'] != 200) { $raw_data = $response['response']['message']; } else { $success = true; $raw_data = $response['body']; } } return compact('raw_data', 'success'); } /** * Add the dynamic notification area based on the current user status * * This notification is for the Meeting scheduler section (Not for page header notifications) */ function vcita_add_notification($params) { $confirmation_token = $this->vcita_get_confirmation_token($params); if ($params['vcita_enabled'] == 'false') { $message = 'Meeting Scheduler is disabled, please check the box below to allow users to request meetings via your contact form'; $message_type = "fsc-notice"; } elseif (!empty($params['vcita_last_error'])) { $message = $params['vcita_last_error']; $message_type = "fsc-error"; } elseif (!empty($params['vcita_uid'])) { $message_type = "fsc-notice"; $message = "vCita Meeting Scheduler is active
"; if (!$params['vcita_confirmed'] && !empty($confirmation_token)) { $message .= "
Click below to set your meeting options and availability". "
"; $message_type = "fsc-error"; } elseif (!empty($params['vcita_last_name'])) { $message .= "Active account: ".$params['vcita_first_name']." ".$params['vcita_last_name']; } } elseif ($this->vcita_get_email($params) == 'mail@example.com') { $message = "You are currently using the default mail: mail@example.com, To activate - please enter you email below."; $message_type = "fsc-notice"; } elseif ($params['vcita_enabled'] == 'true') { $message = "Please configure your vCita Meeting Scheduler below."; $message_type = "fsc-notice"; } echo "
".$message."
"; echo "
"; } /** * Location for the vcita banner */ function vcita_banner_location() { return plugins_url( 'vcita/vcita_banner.jpg' , __FILE__ ); } /** * Add the vCita advanced configuraion links to user admin. * Show the settings only if the user is available */ function vcita_add_config($params) { // Only show the Edit link in case the user is available if (!empty($params["vcita_uid"]) && $params['vcita_enabled'] == 'true') { $confirmation_token = $this->vcita_get_confirmation_token($params); $vcita_curr_notifcation = "
"; if ($params['vcita_confirmed']) { $vcita_curr_notifcation .= "
Edit Profile
Edit Meeting Preferences
Change Account
"; } elseif (empty($confirmation_token)) { $vcita_curr_notifcation .= "
Configure your account
Change Account
"; } else { $vcita_curr_notifcation .= "
Change Account
"; } $vcita_curr_notifcation .= "
"; echo $vcita_curr_notifcation; } } /** * Print the notification for the admin page for the main plugins page or the fast secure page * */ function vcita_print_admin_page_notification($si_contact_global_tmp = null, $form_params = null, $form_num = "", $internal_page = false) { $form_used = isset($form_params["vcita_enabled"]) && $form_params["vcita_enabled"] == "true"; // Don't do anything if dismissed if (isset($si_contact_global_tmp["vcita_dismiss"]) && $si_contact_global_tmp["vcita_dismiss"] == "true" && !$form_used) { return false; } $notification_created = false; $prefix = ($internal_page) ? "" : "

Fast Secure Contact Form - "; $suffix = ($internal_page) ? "" : "

"; $class = ($internal_page) ? "fsc-error" : "error"; $origin = ($internal_page) ? "&o=int.3" : "&o=int.5"; $notification_created = true; $vcita_section_url = admin_url( "plugins.php?ctf_form_num=$form_num&page=si-contact-form/si-contact-form.php#vCitaSettings"); $vcita_dismiss_url = admin_url( "plugins.php?vcita_dismiss=true&ctf_form_num=$form_num&page=si-contact-form/si-contact-form.php"); // Show if empty, missing details, or internal page, vcita not used and upgrade if (empty($form_params) || $this->vcita_should_notify_missing_details($form_params) || ($internal_page && !$this->vcita_is_being_used() && $this->vcita_should_show_when_not_used($si_contact_global_tmp))) { echo "
".$prefix."You still haven't completed your Meeting Scheduler settings. Click here to learn more, or Dismiss.".$suffix."
"; } elseif ($internal_page && $this->vcita_should_complete_registration($form_params)) { $vcita_complete_url = "http://www.vcita.com/users/confirmation?force=true&non_avail=continue&confirmation_token=".$this->vcita_get_confirmation_token($form_params).$origin."' target='_blank"; if (!$internal_page) { // direct outside pages to vCita section (This currently won't happen but keeping for future use.) $vcita_complete_url = $vcita_section_url; } echo "
".$prefix."Your Meeting Scheduler is active but some settings are still missing. Click here to configure, or here to disable".$suffix."
"; } elseif (!empty($params["vcita_last_error"])) { echo "
".$prefix.""._e('Meeting Scheduler - '.$si_contact_opt["vcita_last_error"], 'si-contact-form')."".$suffix."
"; } else { $notification_created = false; } return $notification_created; } /** * Check if registration for the given form wasn't completed yet. */ function vcita_should_complete_registration($form_params) { $vcita_confirmation_token = $this->vcita_get_confirmation_token($form_params); return isset($form_params['vcita_uid']) && !empty($form_params['vcita_uid']) && $form_params['vcita_enabled'] == 'true' && !$form_params['vcita_confirmed'] && !empty($vcita_confirmation_token); } /** * Check if a notification for the current form should be displayed to the user */ function vcita_should_notify_missing_details($form_params) { return isset($form_params['vcita_uid']) && empty($form_params['vcita_uid']) && $form_params['vcita_enabled'] == 'true'; } /** * Check if should display a warning in the admin section * Warning will be shown in all admin pages (as being done by many other plugins) * Won't shown for the actual fast contact page - it is being called directly from the page */ function si_contact_vcita_admin_warning() { if (!isset($_GET['page']) || !preg_match('/si-contact-form.php$/',$_GET['page'])) { $si_contact_global_tmp = get_option("si_contact_form_gb"); if (class_exists("siContactForm") && !isset($si_contact_form) ) { $si_contact_form = new siContactForm(); if (empty($si_contact_global_tmp)) { $this->vcita_print_admin_page_notification(); } else { $vcita_never_used = true; for ($i = 1; $i <= $si_contact_global_tmp['max_forms']; $i++) { $form_num = ($i == 1) ? "" : $i; $si_form_params = get_option("si_contact_form$form_num"); if ($this->vcita_print_admin_page_notification($si_contact_global_tmp, $si_form_params, $form_num)) { $vcita_never_used = false; return; } else if ($this->vcita_is_form_used($si_form_params)) { $vcita_never_used = false; } } if ($vcita_never_used && $this->vcita_should_show_when_not_used($si_contact_global_tmp)) { $this->vcita_print_admin_page_notification($si_contact_global_tmp, null); // Put the general } } } } } /** * Get the email which should be used for vcita meeting scheduling */ function vcita_get_email($params) { if (!empty($params["vcita_email"])) { return $params["vcita_email"]; } else { return $this->si_contact_extract_email($params["email_to"]); } } /* * Check if the user is already available in vCita */ function vcita_check_user($params) { extract($this->vcita_get_contents("http://www.vcita.com/api/experts/".$params['vcita_uid'])); return $this->vcita_parse_user_info($params, $success, $raw_data); } /** * Get the confirmation token matches the current user */ function vcita_get_confirmation_token($params) { $token = ""; if (!empty($params["vcita_confirm_tokens"])) { $token = ""; $tokens = explode("|", $params["vcita_confirm_tokens"]); if (count($tokens) > 0) { foreach ($tokens as $raw_token) { $token_values = explode("-", $raw_token); if (!empty($raw_token) && $token_values[0] == $params["vcita_uid"]) { $token = $token_values[1]; if (!empty($_SESSION) && $_SESSION['vcita_expert']) { $_SESSION['vcita_owner-of-'.$params['vcita_uid']] = true; } break; } } } } return $token; } /** * Set the confirmation for the current user */ function vcita_set_confirmation_token($params, $confirmation_token) { if (!empty($confirmation_token)) { $tokens = explode("|", $params["vcita_confirm_tokens"]); array_push($tokens, $params["vcita_uid"]."-".$confirmation_token); $params["vcita_confirm_tokens"] = implode("|", $tokens); } return $params; } /** * Check if the vcita confirmation token should be saved. * Currently this means it will be also saved in the client side in a dedicated cookie. */ function vcita_should_store_expert_confirmation_token($params) { $confirmation_token = $this->vcita_get_confirmation_token($params); if (!empty($confirmation_token) && !empty($_SESSION) && $_SESSION['vcita_owner-of-'.$params['vcita_uid']]) { return $confirmation_token; } else { return ""; } } /** * Flip the dismiss flag to true and make all the neccessary adjustments. */ function vcita_dismiss_pending_notification($global_params, $current_form_num) { global $si_contact_opt; // Go over all the forms and disable the pending ones for ($i = 1; $i <= $global_params['max_forms']; $i++) { $form_num = ($i == 1) ? "" : $i; if ($current_form_num == $form_num) { $si_form_params = $si_contact_opt; } else { $si_form_params = get_option("si_contact_form$form_num"); } if ($this->vcita_should_complete_registration($si_form_params) || $this->vcita_should_notify_missing_details($si_form_params)) { $si_form_params['vcita_enabled'] = 'false'; $si_form_params['vcita_last_error'] = ''; $si_form_params['vcita_uid'] = ''; $si_form_params['vcita_first_name'] = ''; $si_form_params['vcita_last_name'] = ''; $si_form_params['vcita_email'] = ''; update_option("si_contact_form$form_num", $si_form_params); // Also update the global variable if ($current_form_num == $form_num) { $si_contact_opt = $si_form_params; } } } // Put the dismiss flag $global_params["vcita_dismiss"] = "true"; update_option("si_contact_form_gb", $global_params); return $global_params; } /** * True / False if notification should be displayed if user didn't use vCita * * True only if upgrade user (never had auto install vCita) */ function vcita_should_show_when_not_used($global_params) { return isset($global_params['vcita_auto_install']) && $global_params['vcita_auto_install'] == "false"; } /** * vCita form is used if one of the following: * * - form enabled * - has a vcita_uid * - has a confirmation_token -> in the past had a user */ function vcita_is_form_used($form_param) { return ((isset($form_param["vcita_enabled"]) && $form_param["vcita_enabled"] == "true") || (isset($form_param["vcita_uid"]) && !empty($form_param["vcita_uid"])) || (isset($form_param["vcita_confirm_tokens"]) && !empty($form_param["vcita_confirm_tokens"]))); } /** * Check if vcita is used in any form */ function vcita_is_being_used() { $si_contact_global_tmp = get_option("si_contact_form_gb"); for ($i = 1; $i <= $si_contact_global_tmp['max_forms']; $i++) { $form_num = ($i == 1) ? "" : $i; $si_form_params = get_option("si_contact_form$form_num"); if ($this->vcita_is_form_used($si_form_params)) { return true; } } return false; } /* --- vCita Admin Functions - End --- */ /* --- vCita Contact Functions - Start --- */ /** * Add the vcita script to the pages of the fast secure */ function vcita_si_contact_add_script(){ global $si_contact_opt, $vcita_add_script; if (!$vcita_add_script) return; wp_enqueue_script('jquery'); wp_register_script('vcita_fscf', plugins_url('vcita/vcita_fscf.js', __FILE__), array('jquery'), '1.1', true); wp_print_scripts('vcita_fscf'); ?> \n"; $this->si_contact_from_name = $from_name; $this->si_contact_from_email = $from_email; $this->si_contact_mail_sender = $from_email; $header .= "Reply-To: $reply_to\n"; // for php mail and wp_mail $header .= "X-Sender: $this->si_contact_from_email\n"; // for php mail $header .= "Return-Path: $this->si_contact_from_email\n"; // for php mail if ($html_mail == 'true') { $header .= 'Content-Type: text/html; charset='. get_option('blog_charset') . $php_eol; } else { $header .= 'Content-Type: text/plain; charset='. get_option('blog_charset') . $php_eol; } if(isset($si_contact_opt['email_subject']) && $si_contact_opt['email_subject'] != '') { $subj = $si_contact_opt['email_subject'] ." $subj"; } @ini_set('sendmail_from' , $this->si_contact_from_email); if ($si_contact_opt['php_mailer_enable'] == 'php') { $header_php .= $header; if (!$safe_mode) { // Pass the Return-Path via sendmail's -f command. @mail($email,$subj,$msg,$header_php, '-f '.$from_email); } else { // the fifth parameter is not allowed in safe mode @mail($email,$subj,$msg,$header_php); } }else if ($si_contact_opt['php_mailer_enable'] == 'geekmail') { // autoresponder sending with geekmail require_once WP_PLUGIN_DIR . '/si-contact-form/ctf_geekMail-1.0.php'; $ctf_geekMail = new ctf_geekMail(); if ($html_mail == 'true') { $ctf_geekMail->setMailType('html'); } else { $ctf_geekMail->setMailType('text'); } $ctf_geekMail->_setcharSet(get_option('blog_charset')); $ctf_geekMail->_setnewLine($php_eol); $ctf_geekMail->return_path($from_email); $ctf_geekMail->x_sender($from_email); $ctf_geekMail->from($from_email, $from_name); $ctf_geekMail->_replyTo($reply_to); $ctf_geekMail->to($email); $ctf_geekMail->subject($subj); $ctf_geekMail->message($msg); @$ctf_geekMail->send(); } else { add_filter( 'wp_mail_from_name', array(&$this,'si_contact_form_from_name'),1); add_filter( 'wp_mail_from', array(&$this,'si_contact_form_from_email'),1); add_action('phpmailer_init', array(&$this,'si_contact_form_mail_sender'),1); @wp_mail($email,$subj,$msg,$header); } } /** * Extract the mail contained and the received argument. * Handles the following usecases: * 1. Name and email concatenation - Webmaster,mail@example.com * 2. Only email * * Returns the email address */ function si_contact_extract_email($ctf_extracted_email) { $ctf_trimmed_email = trim($ctf_extracted_email); if(!preg_match("/,/", $ctf_trimmed_email) ) { // single email without,name $name = ''; // name,email $email = $ctf_trimmed_email; } else{ list($name, $email) = preg_split('#(? permission_level $choices = array ( $this->ctf_output_string( __('All registered users', 'si-contact-form')) => 'read', $this->ctf_output_string( __('Edit posts', 'si-contact-form')) => 'edit_posts', $this->ctf_output_string( __('Publish Posts', 'si-contact-form')) => 'publish_posts', $this->ctf_output_string( __('Moderate Comments', 'si-contact-form')) => 'moderate_comments', $this->ctf_output_string( __('Administer site', 'si-contact-form')) => 'level_10' ); // print the ' . "\n"; foreach ($choices as $text => $capability) : if ($capability == $checked_value) $checked = ' selected="selected" '; echo "\t". ' \n"; $checked = ''; endforeach; echo "\t\n"; } // end function si_contact_captcha_perm_dropdown // this function prints the contact form // and does all the decision making to send the email or not // [si_contact_form form='2'] function si_contact_form_short_code($atts) { global $captcha_path_cf, $ctf_captcha_dir, $si_contact_opt, $si_contact_gb, $ctf_version, $ctf_add_script, $vcita_add_script; $this->ctf_version = $ctf_version; // get options $si_contact_gb_mf = get_option("si_contact_form_gb"); extract(shortcode_atts(array( 'form' => '', 'redirect' => '', 'hidden' => '', 'email_to' => '', ), $atts)); $form_num = ''; $form_id_num = 1; if ( isset($form) && is_numeric($form) && $form <= $si_contact_gb_mf['max_forms'] ) { $form_num = (int)$form; $form_id_num = (int)$form; if ($form_num == 1) $form_num = ''; } // http://www.fastsecurecontactform.com/shortcode-options $shortcode_redirect = $redirect; $shortcode_hidden = $hidden; $shortcode_email_to = $email_to; // get options $si_contact_gb = $this->si_contact_get_options($form_num); // a couple language options need to be translated now. $this->si_contact_update_lang(); // Email address(s) to receive Bcc (Blind Carbon Copy) messages $ctf_email_address_bcc = $si_contact_opt['email_bcc']; // optional // optional subject list $subjects = array (); $subjects_test = explode("\n",trim($si_contact_opt['email_subject_list'])); if(!empty($subjects_test) ) { $ct = 1; foreach($subjects_test as $v) { $v = trim($v); if ($v != '') { $subjects["$ct"] = $v; $ct++; } } } // E-mail Contacts // the drop down list array will be made automatically by this code // checks for properly configured E-mail To: addresses in options. $ctf_contacts = array (); $ctf_contacts_test = trim($si_contact_opt['email_to']); if(!preg_match("/,/", $ctf_contacts_test) ) { if($this->ctf_validate_email($ctf_contacts_test)) { // user1@example.com $ctf_contacts[] = array('CONTACT' => __('Webmaster', 'si-contact-form'), 'EMAIL' => $ctf_contacts_test ); } } else { $ctf_ct_arr = explode("\n",$ctf_contacts_test); if (is_array($ctf_ct_arr) ) { foreach($ctf_ct_arr as $line) { // echo '|'.$line.'|' ; list($key, $value) = preg_split('#(?ctf_validate_email($value)) { $ctf_contacts[] = array('CONTACT' => $this->ctf_output_string($key), 'EMAIL' => $value); } } else { // multiple emails here // Webmaster,user1@example.com;user2@example.com;user3@example.com;[cc]user4@example.com;[bcc]user5@example.com $multi_cc_arr = explode(";",$value); $multi_cc_string = ''; foreach($multi_cc_arr as $multi_cc) { $multi_cc_t = str_replace('[cc]','',$multi_cc); $multi_cc_t = str_replace('[bcc]','',$multi_cc_t); if ($this->ctf_validate_email($multi_cc_t)) { $multi_cc_string .= "$multi_cc,"; } } if ($multi_cc_string != '') { // multi cc emails $ctf_contacts[] = array('CONTACT' => $this->ctf_output_string($key), 'EMAIL' => rtrim($multi_cc_string, ',')); } } } } // end foreach } // end if (is_array($ctf_ct_arr) ) { } // end else //print_r($ctf_contacts); // Site Name / Title $ctf_sitename = get_option('blogname'); // Site Domain without the http://www like this: $domain = '642weather.com'; // Can be a single domain: $ctf_domain = '642weather.com'; // Can be an array of domains: $ctf_domain = array('642weather.com','someothersite.com'); // get blog domain $uri = parse_url(get_option('home')); $blogdomain = preg_replace("/^www\./i",'',$uri['host']); $this->ctf_domain = $blogdomain; // set the type of request (SSL or not) if ( is_ssl() ) { $form_action_url = 'https://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; } else { $form_action_url = 'http://'.$_SERVER['HTTP_HOST'].$_SERVER['REQUEST_URI']; } // Make sure the form was posted from your host name only. // This is a security feature to prevent spammers from posting from files hosted on other domain names // "Input Forbidden" message will result if host does not match $this->ctf_domain_protect = $si_contact_opt['domain_protect']; // Double E-mail entry is optional // enabling this requires user to enter their email two times on the contact form. $ctf_enable_double_email = $si_contact_opt['double_email']; // You can ban known IP addresses // SET $ctf_enable_ip_bans = 1; ON, $ctf_enable_ip_bans = 0; for OFF. $ctf_enable_ip_bans = 0; // Add IP addresses to ban here: (be sure to SET $ctf_enable_ip_bans = 1; to use this feature $ctf_banned_ips = array( '22.22.22.22', // example (add, change, or remove as needed) '33.33.33.33', // example (add, change, or remove as needed) ); // Wordwrap E-Mail message text so lines are no longer than 70 characters. // SET $ctf_wrap_message = 1; ON, $ctf_wrap_message = 0; for OFF. $ctf_wrap_message = 1; // add numbered keys starting with 1 to the $contacts array $cont = array(); $ct = 1; foreach ($ctf_contacts as $v) { $cont["$ct"] = $v; $ct++; } $contacts = $cont; unset($cont); // initialize vars $string = ''; $this->si_contact_error = 0; $si_contact_error_print = ''; $message_sent = 0; $mail_to = ''; $to_contact = ''; $name = $this->si_contact_get_var($form_id_num,'name'); $f_name = $this->si_contact_get_var($form_id_num,'f_name'); $m_name = $this->si_contact_get_var($form_id_num,'m_name'); $mi_name = $this->si_contact_get_var($form_id_num,'mi_name'); $l_name = $this->si_contact_get_var($form_id_num,'l_name'); $email = $this->si_contact_get_var($form_id_num,'email'); $email2 = $this->si_contact_get_var($form_id_num,'email'); $subject = $this->si_contact_get_var($form_id_num,'subject'); $message = $this->si_contact_get_var($form_id_num,'message'); $captcha_code = ''; $vcita_add_script = false; if ($si_contact_opt['vcita_enabled'] == 'true') $vcita_add_script = true; // optional extra fields // capture query string vars $have_attach = ''; for ($i = 1; $i <= $si_contact_opt['max_fields']; $i++) { if ($si_contact_opt['ex_field'.$i.'_label'] != '') { ${'ex_field'.$i} = ''; ${'si_contact_error_ex_field'.$i} = ''; if ($si_contact_opt['ex_field'.$i.'_type'] == 'time') { ${'ex_field'.$i.'h'} = $this->si_contact_get_var($form_id_num,'ex_field'.$i.'h'); ${'ex_field'.$i.'m'} = $this->si_contact_get_var($form_id_num,'ex_field'.$i.'m'); ${'ex_field'.$i.'ap'} = $this->si_contact_get_var($form_id_num,'ex_field'.$i.'ap'); } if( in_array($si_contact_opt['ex_field'.$i.'_type'],array('hidden','text','email','url','textarea','date','password')) ) { ${'ex_field'.$i} = $this->si_contact_get_var($form_id_num,'ex_field'.$i); } if ($si_contact_opt['ex_field'.$i.'_type'] == 'radio' || $si_contact_opt['ex_field'.$i.'_type'] == 'select') { $exf_opts_array = $this->si_contact_get_exf_opts_array($si_contact_opt['ex_field'.$i.'_label']); $check_ex_field = $this->si_contact_get_var($form_id_num,'ex_field'.$i); if($check_ex_field != '' && is_numeric($check_ex_field) && $check_ex_field > 0 ) { if( isset($exf_opts_array[$check_ex_field-1]) ) ${'ex_field'.$i} = $exf_opts_array[$check_ex_field-1]; } } if ($si_contact_opt['ex_field'.$i.'_type'] == 'select-multiple') { $exf_opts_array = $this->si_contact_get_exf_opts_array($si_contact_opt['ex_field'.$i.'_label']); $ex_cnt = 1; foreach ($exf_opts_array as $k) { if( $this->si_contact_get_var($form_id_num,'ex_field'.$i.'_'.$ex_cnt) == 1 ){ ${'ex_field'.$i.'_'.$ex_cnt} = 'selected'; } $ex_cnt++; } } if ($si_contact_opt['ex_field'.$i.'_type'] == 'checkbox' || $si_contact_opt['ex_field'.$i.'_type'] == 'checkbox-multiple') { $exf_array_test = trim($si_contact_opt['ex_field'.$i.'_label'] ); if(preg_match('#(?si_contact_get_exf_opts_array($si_contact_opt['ex_field'.$i.'_label']); $ex_cnt = 1; foreach ($exf_opts_array as $k) { if( $this->si_contact_get_var($form_id_num,'ex_field'.$i.'_'.$ex_cnt) == 1 ){ ${'ex_field'.$i.'_'.$ex_cnt} = 'selected'; } $ex_cnt++; } }else{ if($this->si_contact_get_var($form_id_num,'ex_field'.$i) == 1) ${'ex_field'.$i} = 'selected'; } } if ($si_contact_opt['ex_field'.$i.'_type'] == 'attachment') $have_attach = 'enctype="multipart/form-data" '; // for
'.$si_contact_opt['req_field_indicator'].'' : ''; $si_contact_error_captcha = ''; $si_contact_error_contact = ''; $si_contact_error_name = ''; $si_contact_error_f_name = ''; $si_contact_error_m_name = ''; $si_contact_error_mi_name = ''; $si_contact_error_l_name = ''; $si_contact_error_email = ''; $si_contact_error_email2 = ''; $si_contact_error_double_email = ''; $si_contact_error_subject = ''; $si_contact_error_message = ''; // see if WP user global $current_user, $user_ID; get_currentuserinfo(); // process form now if (isset($_POST['si_contact_action']) && ($_POST['si_contact_action'] == 'send') && isset($_POST['si_contact_form_id']) && ($_POST['si_contact_form_id'] == $form_id_num) ) { // include the code to process the form and send the mail include(WP_PLUGIN_DIR . '/si-contact-form/si-contact-form-process.php'); } // end if posted si_contact_action = send if($message_sent) { // Redirect to Home Page after message is sent $ctf_redirect_enable = $si_contact_opt['redirect_enable']; // Used for the delay timer once the message has been sent $ctf_redirect_timeout = $si_contact_opt['redirect_seconds']; // time in seconds to wait before loading another Web page // Web page to send the user to after the time has expired $ctf_redirect_url = $si_contact_opt['redirect_url']; // allow shortcode redirect to override redirect settings if ( $shortcode_redirect != '') { $ctf_redirect_enable = 'true'; $ctf_redirect_url = $shortcode_redirect; } // The $thank_you is what gets printed after the form is sent. $this->ctf_form_style = $this->si_contact_convert_css($si_contact_opt['form_style']); $ctf_thank_you = '
ctf_form_style.'> '; if ($si_contact_opt['text_message_sent'] != '') { $ctf_thank_you .= $si_contact_opt['text_message_sent']; } else { $ctf_thank_you .= __('Your message has been sent, thank you.', 'si-contact-form'); } $ctf_thank_you .= '
'; if ($ctf_redirect_enable == 'true') { if ($ctf_redirect_url == '#') // if you put # for the redirect URL it will redirect to the same page the form is on regardless of the page. $ctf_redirect_url = $form_action_url; // redirect query string code if ($si_contact_opt['redirect_query'] == 'true') { // build query string $query_string = $this->si_contact_export_convert($posted_data,$si_contact_opt['redirect_rename'],$si_contact_opt['redirect_ignore'],$si_contact_opt['redirect_add'],'query'); if(!preg_match("/\?/", $ctf_redirect_url) ) $ctf_redirect_url .= '?'.$query_string; else $ctf_redirect_url .= '&'.$query_string; } $ctf_thank_you .= << // EOT; $ctf_thank_you .= '
ctf_form_style.'> '.$this->ctf_output_string(__('Redirecting', 'si-contact-form')).'   '.__('Redirecting', 'si-contact-form').' ...
'; // do not remove the above EOT line } // thank you message is printed here $string .= $ctf_thank_you; }else{ // The $ctf_welcome_intro is what gets printed when the contact form is first presented. // It is not printed when there is an input error and not printed after the form is completed $ctf_welcome_intro = "\n". $si_contact_opt['welcome']; // welcome intro is printed here $string .= $ctf_welcome_intro; // include the code to display the form include(WP_PLUGIN_DIR . '/si-contact-form/si-contact-form-display.php'); } // end if ( message sent return $string; } // end function si_contact_form_short_code function si_contact_export_convert($posted_data,$rename,$ignore,$add,$return = 'array') { $query_string = ''; $posted_data_export = array(); //rename field names array $rename_fields = array(); $rename_fields_test = explode("\n",$rename); if ( !empty($rename_fields_test) ) { foreach($rename_fields_test as $line) { if(preg_match("/=/", $line) ) { list($key, $value) = explode("=",$line); $key = trim($key); $value = trim($value); if ($key != '' && $value != '') $rename_fields[$key] = $value; } } } // add fields $add_fields_test = explode("\n",$add); if ( !empty($add_fields_test) ) { foreach($add_fields_test as $line) { if(preg_match("/=/", $line) ) { list($key, $value) = explode("=",$line); $key = trim($key); $value = trim($value); if ($key != '' && $value != '') { if($return == 'array') $posted_data_export[$key] = $value; else $query_string .= $key . '=' . urlencode( stripslashes($value) ) . '&'; } } } } //ignore field names array $ignore_fields = array(); $ignore_fields = array_map('trim', explode("\n", $ignore)); // $posted_data is an array of the form name value pairs foreach ($posted_data as $key => $value) { if( is_string($value) ) { if(in_array($key, $ignore_fields)) continue; $key = ( isset($rename_fields[$key]) ) ? $rename_fields[$key] : $key; if($return == 'array') $posted_data_export[$key] = $value; else $query_string .= $key . '=' . urlencode( stripslashes($value) ) . '&'; } } if($return == 'array') return $posted_data_export; else return $query_string; } // end function si_contact_export_convert function si_contact_get_var($form_id_num,$name) { $value = (isset( $_GET["$form_id_num$name"])) ? $this->ctf_clean_input($_GET["$form_id_num$name"]) : ''; return $value; } function si_contact_get_exf_opts_array($label) { $exf_opts_array = array(); $exf_opts_label = ''; $exf_array_test = trim($label); if(!preg_match('#(?' ); fclose( $handle ); } } } // end function si_contact_init_temp_dir // needed for emptying temp directories for attachments and captcha session files function si_contact_clean_temp_dir($dir, $minutes = 30) { // deletes all files over xx minutes old in a temp directory if ( ! is_dir( $dir ) || ! is_readable( $dir ) || ! is_writable( $dir ) ) return false; $count = 0; $list = array(); if ( $handle = @opendir( $dir ) ) { while ( false !== ( $file = readdir( $handle ) ) ) { if ( $file == '.' || $file == '..' || $file == '.htaccess' || $file == 'index.php') continue; $stat = @stat( $dir . $file ); if ( ( $stat['mtime'] + $minutes * 60 ) < time() ) { @unlink( $dir . $file ); $count += 1; } else { $list[$stat['mtime']] = $file; } } closedir( $handle ); // purge xx amount of files based on age to limit a DOS flood attempt. Oldest ones first, limit 500 if( isset($list) && count($list) > 499) { ksort($list); $ct = 1; foreach ($list as $k => $v) { if ($ct > 499) @unlink( $dir . $v ); $ct += 1; } } } return $count; } // used for file attachment feature function si_contact_validate_attach( $file, $ex_field ) { global $si_contact_opt; $result['valid'] = true; if ($si_contact_opt['php_mailer_enable'] == 'php') { $result['valid'] = false; $result['error'] = __('Attachments not supported.', 'si-contact-form'); return $result; } if ( ($file['error'] && UPLOAD_ERR_NO_FILE != $file['error']) || !is_uploaded_file( $file['tmp_name'] ) ) { $result['valid'] = false; $result['error'] = __('Attachment upload failed.', 'si-contact-form'); return $result; } if ( empty( $file['tmp_name'] ) ) { $result['valid'] = false; $result['error'] = __('This field is required.', 'si-contact-form'); return $result; } // check file types $file_type_pattern = $si_contact_opt['attach_types']; if ( $file_type_pattern == '' ) $file_type_pattern = 'doc,pdf,txt,gif,jpg,jpeg,png'; $file_type_pattern = str_replace(',','|',$si_contact_opt['attach_types']); $file_type_pattern = str_replace(' ','',$file_type_pattern); $file_type_pattern = trim( $file_type_pattern, '|' ); $file_type_pattern = '(' . $file_type_pattern . ')'; $file_type_pattern = '/\.' . $file_type_pattern . '$/i'; if ( ! preg_match( $file_type_pattern, $file['name'] ) ) { $result['valid'] = false; $result['error'] = __('Attachment file type not allowed.', 'si-contact-form'); return $result; } // check size $allowed_size = 1048576; // 1mb default if ( preg_match( '/^([[0-9.]+)([kKmM]?[bB])?$/', $si_contact_opt['attach_size'], $matches ) ) { $allowed_size = (int) $matches[1]; $kbmb = strtolower( $matches[2] ); if ( 'kb' == $kbmb ) { $allowed_size *= 1024; } elseif ( 'mb' == $kbmb ) { $allowed_size *= 1024 * 1024; } } if ( $file['size'] > $allowed_size ) { $result['valid'] = false; $result['error'] = __('Attachment file size is too large.', 'si-contact-form'); return $result; } $filename = $file['name']; // safer file names for scripts. if ( preg_match( '/\.(php|pl|py|rb|cgi)\d?$/', $filename ) ) $filename .= '.txt'; $attach_dir = WP_PLUGIN_DIR . '/si-contact-form/attachments/'; $filename = wp_unique_filename( $attach_dir, $filename ); $new_file = trailingslashit( $attach_dir ) . $filename; if ( false === @move_uploaded_file( $file['tmp_name'], $new_file ) ) { $result['valid'] = false; $result['error'] = __('Attachment upload failed while moving file.', 'si-contact-form'); return $result; } // uploaded only readable for the owner process @chmod( $new_file, 0400 ); $this->uploaded_files[$ex_field] = $new_file; $result['file_name'] = $filename; // needed for email message return $result; } // makes bold html email labels function make_bold($label) { global $si_contact_opt; if ($si_contact_opt['email_html'] == 'true') return ''.$label.''; else return $label; } // checks if captcha is enabled based on the current captcha permission settings set in the plugin options function isCaptchaEnabled() { global $si_contact_opt, $ctf_add_script; if ($si_contact_opt['captcha_enable'] !== 'true') { return false; // captcha setting is disabled for si contact } // skip the captcha if user is loggged in and the settings allow if (is_user_logged_in() && $si_contact_opt['captcha_perm'] == 'true') { // skip the CAPTCHA display if the minimum capability is met if ( current_user_can( $si_contact_opt['captcha_perm_level'] ) ) { // skip capthca return false; } } $ctf_add_script = true; return true; } // end function isCaptchaEnabled function captchaCheckRequires() { global $captcha_path_cf; $ok = 'ok'; // Test for some required things, print error message if not OK. if ( !extension_loaded('gd') || !function_exists('gd_info') ) { $this->captchaRequiresError .= '

ctf_error_style.'>'.__('ERROR: si-contact-form.php plugin says GD image support not detected in PHP!', 'si-contact-form').'

'; $this->captchaRequiresError .= '

'.__('Contact your web host and ask them why GD image support is not enabled for PHP.', 'si-contact-form').'

'; $ok = 'no'; } if ( !function_exists('imagepng') ) { $this->captchaRequiresError .= '

ctf_error_style.'>'.__('ERROR: si-contact-form.php plugin says imagepng function not detected in PHP!', 'si-contact-form').'

'; $this->captchaRequiresError .= '

'.__('Contact your web host and ask them why imagepng function is not enabled for PHP.', 'si-contact-form').'

'; $ok = 'no'; } if ( !@strtolower(ini_get('safe_mode')) == 'on' && !file_exists("$captcha_path_cf/securimage.php") ) { $this->captchaRequiresError .= '

ctf_error_style.'>'.__('ERROR: si-contact-form.php plugin says captcha_library not found.', 'si-contact-form').'

'; $ok = 'no'; } if ($ok == 'no') return false; return true; } // fix for simple facebook connect plugin // http://wordpress.org/support/topic/402560 function ctf_sfc_filter($classes) { $classes[] = 'ctf-captcha'; return $classes; } // this function adds the captcha to the contact form function si_contact_get_captcha_html($si_contact_error_captcha,$form_id_num) { global $ctf_captcha_url, $ctf_captcha_dir, $captcha_path_cf, $captcha_url_cf, $si_contact_gb, $si_contact_opt; $req_field_ind = ( $si_contact_opt['req_field_indicator_enable'] == 'true' ) ? ''.$si_contact_opt['req_field_indicator'].'' : ''; $capt_disable_sess = 0; if ($si_contact_gb['captcha_disable_session'] == 'true') $capt_disable_sess = 1; // fix for simple facebook connect plugin // http://wordpress.org/support/topic/402560 add_filter('sfc_img_exclude',array(&$this,'ctf_sfc_filter'),1); $string = ''; // Test for some required things, print error message right here if not OK. if ($this->captchaCheckRequires()) { $si_contact_opt['captcha_image_style'] = 'border-style:none; margin:0; padding:0px; padding-right:5px; float:left;'; $si_contact_opt['audio_image_style'] = 'border-style:none; margin:0; padding:0px; vertical-align:top;'; $si_contact_opt['reload_image_style'] = 'border-style:none; margin:0; padding:0px; vertical-align:bottom;'; // the captch html $string = '
ctf_title_style.'>
ctf_captcha_div_style_sm = $this->si_contact_convert_css($si_contact_opt['captcha_div_style_sm']); $this->ctf_captcha_div_style_m = $this->si_contact_convert_css($si_contact_opt['captcha_div_style_m']); // url for no session captcha image $securimage_show_url = $captcha_url_cf .'/securimage_show.php?'; $securimage_size = 'width="175" height="60"'; if($si_contact_opt['captcha_small'] == 'true') { $securimage_show_url .= 'ctf_sm_captcha=1&'; $securimage_size = 'width="132" height="45"'; } $parseUrl = parse_url($captcha_url_cf); $securimage_url = $parseUrl['path']; if($si_contact_opt['captcha_difficulty'] == 'low') $securimage_show_url .= 'difficulty=1&'; if($si_contact_opt['captcha_difficulty'] == 'high') $securimage_show_url .= 'difficulty=2&'; if($si_contact_opt['captcha_no_trans'] == 'true') $securimage_show_url .= 'no_trans=1&'; if($capt_disable_sess) { // clean out old captcha no session temp files $this->si_contact_clean_temp_dir($ctf_captcha_dir); // pick new prefix token $prefix_length = 16; $prefix_characters = '0123456789ABCDEFGHIJKLMNOPQRSTUVWXTZabcdefghiklmnopqrstuvwxyz'; $prefix = ''; $prefix_count = strlen($prefix_characters); while ($prefix_length--) { $prefix .= $prefix_characters[mt_rand(0, $prefix_count-1)]; } $securimage_show_rf_url = $securimage_show_url . 'prefix='; $securimage_show_url .= 'prefix='.$prefix; } else { // no session $securimage_show_rf_url = $securimage_show_url . 'ctf_form_num=' .$form_id_num; $securimage_show_url .= 'ctf_form_num=' .$form_id_num; } $string .= ($si_contact_opt['captcha_small'] == 'true') ? $this->ctf_captcha_div_style_sm : $this->ctf_captcha_div_style_m; $string .= '> '; $string .= ($si_contact_opt['tooltip_captcha'] != '') ? $this->ctf_output_string( $si_contact_opt['tooltip_captcha'] ) : $this->ctf_output_string(__('CAPTCHA Image', 'si-contact-form')); $string .=''."\n"; if($capt_disable_sess) $string .= ' '."\n"; $ctf_audio_type = 'noaudio'; //Audio feature is disabled by Mike Challis until further notice because a proof of concept code CAPTCHA solving exploit was released - Security Advisory - SOS-11-007. $si_contact_opt['enable_audio'] = 'false'; if($si_contact_opt['enable_audio'] == 'true') { $ctf_audio_type = 'wav'; if($si_contact_opt['enable_audio_flash'] == 'true') { $ctf_audio_type = 'flash'; $securimage_play_url = $securimage_url.'/securimage_play.swf?ctf_form_num='.$form_id_num; $securimage_play_url2 = $securimage_url.'/securimage_play.php?ctf_form_num='.$form_id_num; if($capt_disable_sess){ $securimage_play_url = $securimage_url.'/securimage_play.swf?prefix='.$prefix; $securimage_play_url2 = $securimage_url.'/securimage_play.php?prefix='.$prefix; } $string .= '
'; }else{ $securimage_play_url = $captcha_url_cf.'/securimage_play.php?ctf_form_num='.$form_id_num; if($capt_disable_sess) $securimage_play_url = $captcha_url_cf.'/securimage_play.php?prefix='.$prefix; $string .= '
si_contact_convert_css($si_contact_opt['field_div_style']).'>'.$this->ctf_echo_if_error($si_contact_error_captcha).' si_contact_convert_css($si_contact_opt['captcha_input_style']).' type="text" value="" id="si_contact_captcha_code'.$form_id_num.'" name="si_contact_captcha_code" '.$this->ctf_aria_required.' size="'.absint($si_contact_opt['captcha_field_size']).'" />
'; } else { $string .= $this->captchaRequiresError; } return $string; } // end function si_contact_get_captcha_html // shows contact form errors function ctf_echo_if_error($this_error){ if ($this->si_contact_error) { if (!empty($this_error)) { return '
ctf_error_style.'>'. $this_error . '
'."\n"; } } } // end function ctf_echo_if_error // functions for protecting and validating form input vars function ctf_clean_input($string, $preserve_space = 0) { if (is_string($string)) { if($preserve_space) return $this->ctf_sanitize_string(strip_tags($this->ctf_stripslashes($string)),$preserve_space); return trim($this->ctf_sanitize_string(strip_tags($this->ctf_stripslashes($string)))); } elseif (is_array($string)) { reset($string); while (list($key, $value) = each($string)) { $string[$key] = $this->ctf_clean_input($value,$preserve_space); } return $string; } else { return $string; } } // end function ctf_clean_input // functions for protecting and validating form vars function ctf_sanitize_string($string, $preserve_space = 0) { if(!$preserve_space) $string = preg_replace("/ +/", ' ', trim($string)); return preg_replace("/[<>]/", '_', $string); } // end function ctf_sanitize_string // functions for protecting and validating form vars function ctf_stripslashes($string) { //if (get_magic_quotes_gpc()) { // wordpress always has magic_quotes On regardless of PHP settings!! return stripslashes($string); // } else { // return $string; // } } // end function ctf_stripslashes // functions for protecting output against XSS. encode < > & " ' (less than, greater than, ampersand, double quote, single quote). function ctf_output_string($string) { $string = str_replace('&', '&', $string); $string = str_replace('"', '"', $string); $string = str_replace("'", ''', $string); $string = str_replace('<', '<', $string); $string = str_replace('>', '>', $string); return $string; } // end function ctf_output_string // A function knowing about name case (i.e. caps on McDonald etc) // $name = name_case($name); function ctf_name_case($name) { global $si_contact_opt; if ($si_contact_opt['name_case_enable'] !== 'true') { return $name; // name_case setting is disabled for si contact } if ($name == '') return ''; $break = 0; $newname = strtoupper($name[0]); for ($i=1; $i < strlen($name); $i++) { $subed = substr($name, $i, 1); if (((ord($subed) > 64) && (ord($subed) < 123)) || ((ord($subed) > 48) && (ord($subed) < 58))) { $word_check = substr($name, $i - 2, 2); if (!strcasecmp($word_check, 'Mc') || !strcasecmp($word_check, "O'")) { $newname .= strtoupper($subed); }else if ($break){ $newname .= strtoupper($subed); }else{ $newname .= strtolower($subed); } $break = 0; }else{ // not a letter - a boundary $newname .= $subed; $break = 1; } } return $newname; } // end function ctf_name_case // checks proper url syntax (not perfect, none of these are, but this is the best I can find) // tutorialchip.com/php/preg_match-examples-7-useful-code-snippets/ function ctf_validate_url($url) { $regex = "((https?|ftp)\:\/\/)?"; // Scheme $regex .= "([a-zA-Z0-9+!*(),;?&=\$_.-]+(\:[a-zA-Z0-9+!*(),;?&=\$_.-]+)?@)?"; // User and Pass $regex .= "([a-zA-Z0-9-.]*)\.([a-zA-Z]{2,6})"; // Host or IP $regex .= "(\:[0-9]{2,5})?"; // Port $regex .= "(\/#\!)?"; // Path hash bang (twitter) (mike challis added) $regex .= "(\/([a-zA-Z0-9+\$_-]\.?)+)*\/?"; // Path $regex .= "(\?[a-zA-Z+&\$_.-][a-zA-Z0-9;:@&%=+\/\$_.-]*)?"; // GET Query $regex .= "(#[a-zA-Z_.-][a-zA-Z0-9+\$_.-]*)?"; // Anchor return preg_match("/^$regex$/", $url); } // end function ctf_validate_url // checks proper email syntax (not perfect, none of these are, but this is the best I can find) function ctf_validate_email($email) { global $si_contact_opt; //check for all the non-printable codes in the standard ASCII set, //including null bytes and newlines, and return false immediately if any are found. if (preg_match("/[\\000-\\037]/",$email)) { return false; } // regular expression used to perform the email syntax check // http://fightingforalostcause.net/misc/2006/compare-email-regex.php //$pattern = "/^[-a-z0-9~!$%^&*_=+}{\'?]+(\.[-a-z0-9~!$%^&*_=+}{\'?]+)*@([a-z0-9_][-a-z0-9_]*(\.[-a-z0-9_]+)*\.(aero|arpa|biz|com|coop|edu|gov|info|int|mil|museum|name|net|org|pro|travel|mobi|asia|cat|jobs|tel|[a-z][a-z])|([0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}\.[0-9]{1,3}))(:[0-9]{1,5})?$/i"; //$pattern = "/^([_a-zA-Z0-9-]+)(\.[_a-zA-Z0-9-]+)*@([a-zA-Z0-9-]+)(\.[a-zA-Z0-9-]+)*(\.[a-zA-Z]{2,4})$/i"; $pattern = "/^[-_a-z0-9\'+*$^&%=~!?{}]++(?:\.[-_a-z0-9\'+*$^&%=~!?{}]+)*+@(?:(?![-.])[-a-z0-9.]+(?si_contact_error = 1; } } // end function ctf_forbidifnewlines // helps spam protect email input // blocks contact form posted from other domains function ctf_spamcheckpost() { if(!isset($_SERVER['HTTP_USER_AGENT'])){ return __('Invalid User Agent', 'si-contact-form'); } // Make sure the form was indeed POST'ed: // (requires your html form to use: si_contact_action="post") if(!$_SERVER['REQUEST_METHOD'] == "POST"){ return __('Invalid POST', 'si-contact-form'); } // Make sure the form was posted from an approved host name. if ($this->ctf_domain_protect == 'true') { $print_authHosts = ''; // Host names from where the form is authorized to be posted from: if (is_array($this->ctf_domain)) { $this->ctf_domain = array_map(strtolower, $this->ctf_domain); $authHosts = $this->ctf_domain; foreach ($this->ctf_domain as $each_domain) { $print_authHosts .= ' '.$each_domain; } } else { $this->ctf_domain = strtolower($this->ctf_domain); $authHosts = array("$this->ctf_domain"); $print_authHosts = $this->ctf_domain; } // Where have we been posted from? if( isset($_SERVER['HTTP_REFERER']) and trim($_SERVER['HTTP_REFERER']) != '' ) { $fromArray = parse_url(strtolower($_SERVER['HTTP_REFERER'])); // Test to see if the $fromArray used www to get here. $wwwUsed = preg_match("/^www\./i",$fromArray['host']); if(!in_array((!$wwwUsed ? $fromArray['host'] : preg_replace("/^www\./i",'',$fromArray['host'])), $authHosts ) ){ return sprintf( __('Invalid HTTP_REFERER domain. See FAQ. The domain name posted from does not match the allowed domain names of this form: %s', 'si-contact-form'), $print_authHosts ); } } } // end if domain protect // check posted input for email injection attempts // Check for these common exploits // if you edit any of these do not break the syntax of the regex $input_expl = "/(content-type|mime-version|content-transfer-encoding|to:|bcc:|cc:|document.cookie|document.write|onmouse|onkey|onclick|onload)/i"; // Loop through each POST'ed value and test if it contains one of the exploits fromn $input_expl: foreach($_POST as $k => $v){ if (is_string($v)){ $v = strtolower($v); $v = str_replace('donkey','',$v); // fixes invalid input with "donkey" in string $v = str_replace('monkey','',$v); // fixes invalid input with "monkey" in string if( preg_match($input_expl, $v) ){ return __('Illegal characters in POST. Possible email injection attempt', 'si-contact-form'); } } } return 0; } // end function ctf_spamcheckpost function si_contact_plugin_action_links( $links, $file ) { //Static so we don't call plugin_basename on every plugin row. static $this_plugin; if ( ! $this_plugin ) $this_plugin = plugin_basename(__FILE__); if ( $file == $this_plugin ){ $settings_link = '' . __( 'Settings', 'si-contact-form' ) . ''; array_unshift( $links, $settings_link ); // before other links } return $links; } // end function si_contact_plugin_action_links function si_contact_form_num() { // get options $si_contact_gb_mf = get_option("si_contact_form_gb"); $form_num = ''; if ( isset($_GET['ctf_form_num']) && is_numeric($_GET['ctf_form_num']) && $_GET['ctf_form_num'] > 1 && $_GET['ctf_form_num'] <= $si_contact_gb_mf['max_forms'] ) { $form_num = (int)$_GET['ctf_form_num']; } return $form_num; } // end function si_contact_form_num // load things during init function si_contact_init() { if (function_exists('load_plugin_textdomain')) { load_plugin_textdomain('si-contact-form', false, dirname(plugin_basename(__FILE__)).'/languages' ); } } // end function si_contact_init function si_contact_get_options($form_num) { global $si_contact_opt, $si_contact_gb, $si_contact_gb_defaults, $si_contact_option_defaults, $ctf_version; $si_contact_gb_defaults = array( 'donated' => 'false', 'max_forms' => '4', 'max_fields' => '4', 'captcha_disable_session' => 'true', 'vcita_auto_install' => 'true', /* --- vCita Global Settings --- */ 'vcita_dismiss' => 'false', 'ctf_version' => $ctf_version ); $si_contact_option_defaults = array( 'form_name' => '', 'welcome' => __('

Comments or questions are welcome.

', 'si-contact-form'), 'email_to' => __('Webmaster', 'si-contact-form').','.get_option('admin_email'), 'php_mailer_enable' => 'wordpress', 'email_from' => '', 'email_from_enforced' => 'false', 'email_reply_to' => '', 'email_bcc' => '', 'email_subject' => get_option('blogname') . ' ' .__('Contact:', 'si-contact-form'), 'email_subject_list' => '', 'name_format' => 'name', 'name_type' => 'required', 'email_type' => 'required', 'subject_type' => 'required', 'message_type' => 'required', 'preserve_space_enable' => 'false', 'max_fields' => $si_contact_gb_defaults['max_fields'], 'double_email' => 'false', 'name_case_enable' => 'false', 'sender_info_enable' => 'true', 'domain_protect' => 'true', 'email_check_dns' => 'false', 'email_html' => 'false', 'akismet_disable' => 'false', 'akismet_send_anyway' => 'true', 'captcha_enable' => 'true', 'captcha_small' => 'false', 'captcha_difficulty' => 'medium', 'captcha_no_trans' => 'false', 'enable_audio' => 'true', 'enable_audio_flash' => 'false', 'captcha_perm' => 'false', 'captcha_perm_level' => 'read', 'redirect_enable' => 'true', 'redirect_seconds' => '3', 'redirect_url' => get_option('home'), 'redirect_query' => 'false', 'redirect_ignore' => '', 'redirect_rename' => '', 'redirect_add' => '', 'redirect_email_off' => 'false', 'silent_send' => 'off', 'silent_url' => '', 'silent_ignore' => '', 'silent_rename' => '', 'silent_add' => '', 'silent_email_off' => 'false', 'export_enable' => 'true', 'export_ignore' => '', 'export_rename' => '', 'export_add' => '', 'export_email_off' => 'false', 'ex_fields_after_msg' => 'false', 'date_format' => 'mm/dd/yyyy', 'cal_start_day' => '0', 'time_format' => '12', 'attach_types' => 'doc,pdf,txt,gif,jpg,jpeg,png', 'attach_size' => '1mb', 'textarea_html_allow' => 'false', 'enable_areyousure' => 'false', 'auto_respond_enable' => 'false', 'auto_respond_html' => 'false', 'auto_respond_from_name' => 'WordPress', 'auto_respond_from_email' => get_option('admin_email'), 'auto_respond_reply_to' => get_option('admin_email'), 'auto_respond_subject' => '', 'auto_respond_message' => '', 'req_field_indicator_enable' => 'true', 'req_field_label_enable' => 'true', 'req_field_indicator' => ' *', 'border_enable' => 'false', 'form_style' => 'width:375px;', 'border_style' => 'border:1px solid black; padding:10px;', 'required_style' => 'text-align:left;', 'notes_style' => 'text-align:left;', 'title_style' => 'text-align:left; padding-top:5px;', 'field_style' => 'text-align:left; margin:0;', 'field_div_style' => 'text-align:left;', 'error_style' => 'text-align:left; color:red;', 'select_style' => 'text-align:left;', 'captcha_div_style_sm' => 'width:175px; height:50px; padding-top:2px;', 'captcha_div_style_m' => 'width:250px; height:65px; padding-top:2px;', 'captcha_input_style' => 'text-align:left; margin:0; width:50px;', 'submit_div_style' => 'text-align:left; padding-top:2px;', 'button_style' => 'cursor:pointer; margin:0;', 'reset_style' => 'cursor:pointer; margin:0;', 'powered_by_style' => 'font-size:x-small; font-weight:normal; padding-top:5px;', 'field_size' => '40', 'captcha_field_size' => '6', 'text_cols' => '30', 'text_rows' => '10', 'aria_required' => 'false', 'auto_fill_enable' => 'true', 'title_border' => '', 'title_dept' => '', 'title_select' => '', 'title_name' => '', 'title_fname' => '', 'title_mname' => '', 'title_miname' => '', 'title_lname' => '', 'title_email' => '', 'title_email2' => '', 'title_email2_help' => '', 'title_subj' => '', 'title_mess' => '', 'title_capt' => '', 'title_submit' => '', 'title_reset' => '', 'title_areyousure' => '', 'text_message_sent' => '', 'tooltip_required' => '', 'tooltip_captcha' => '', 'tooltip_audio' => '', 'tooltip_refresh' => '', 'tooltip_filetypes' => '', 'tooltip_filesize' => '', 'enable_reset' => 'false', 'enable_credit_link' => 'false', 'error_contact_select' => '', 'error_name' => '', 'error_email' => '', 'error_email2' => '', 'error_field' => '', 'error_subject' => '', 'error_message' => '', 'error_input' => '', 'error_captcha_blank' => '', 'error_captcha_wrong' => '', 'error_correct' => '', 'vcita_enabled' => 'false', /* --- vCita Settings --- */ 'vcita_approved' => 'false', /* --- vCita Settings --- */ 'vcita_uid' => '', 'vcita_email' => '', 'vcita_confirm_tokens' => '', 'vcita_initialized' => 'false', 'vcita_first_name' => '', 'vcita_last_name' => '', ); // optional extra fields $si_contact_max_fields = $si_contact_gb_defaults['max_fields']; if ($si_contact_opt = get_option("si_contact_form$form_num")) { // when not in admin if (isset($si_contact_opt['max_fields'])) // use previous setting if it is set $si_contact_max_fields = $si_contact_opt['max_fields']; } for ($i = 1; $i <= $si_contact_max_fields; $i++) { // initialize new $si_contact_option_defaults['ex_field'.$i.'_default'] = '0'; $si_contact_option_defaults['ex_field'.$i.'_default_text'] = ''; $si_contact_option_defaults['ex_field'.$i.'_req'] = 'false'; $si_contact_option_defaults['ex_field'.$i.'_label'] = ''; $si_contact_option_defaults['ex_field'.$i.'_type'] = 'text'; $si_contact_option_defaults['ex_field'.$i.'_max_len'] = ''; $si_contact_option_defaults['ex_field'.$i.'_label_css'] = ''; $si_contact_option_defaults['ex_field'.$i.'_input_css'] = ''; $si_contact_option_defaults['ex_field'.$i.'_attributes'] = ''; $si_contact_option_defaults['ex_field'.$i.'_regex'] = ''; $si_contact_option_defaults['ex_field'.$i.'_regex_error'] = ''; $si_contact_option_defaults['ex_field'.$i.'_notes'] = ''; $si_contact_option_defaults['ex_field'.$i.'_notes_after'] = ''; } // upgrade path from old version if (!get_option('si_contact_form') && get_option('si_contact_email_to')) { // just now updating, migrate settings $si_contact_option_defaults = $this->si_contact_migrate($si_contact_option_defaults); } // upgrade path from old version 2.0.1 or older if (!get_option('si_contact_form_gb') && get_option('si_contact_form')) { // just now updating, migrate settings $si_contact_gb_defaults = $this->si_contact_migrate2($si_contact_gb_defaults); } // install the global option defaults add_option('si_contact_form_gb', $si_contact_gb_defaults, '', 'yes'); // install the option defaults add_option('si_contact_form', $si_contact_option_defaults, '', 'yes'); // multi-form $si_contact_max_forms = ( isset($_POST['si_contact_max_forms']) && is_numeric($_POST['si_contact_max_forms']) ) ? $_POST['si_contact_max_forms'] : $si_contact_gb_defaults['max_forms']; for ($i = 2; $i <= $si_contact_max_forms; $i++) { add_option("si_contact_form$i", $si_contact_option_defaults, '', 'yes'); } // get the options from the database $si_contact_gb = get_option("si_contact_form_gb"); /* --- vCita Migrate - Start --- */ // Upgrade ! - Save state and check if the user already in vCita, happens only once. if (!isset($si_contact_gb['vcita_auto_install'])) { $si_contact_gb['vcita_auto_install'] = 'false'; } // Upgrade ! - Set initial value for dismiss flag if (!isset($si_contact_gb['vcita_dismiss'])) { $si_contact_gb['vcita_dismiss'] = 'false'; } /* --- vCita Migrate - End --- */ // Save the previous version if (isset($si_contact_gb['ctf_version'])) { $ctf_previous_version = $si_contact_gb['ctf_version']; } else { $ctf_previous_version = 'new'; } // array merge incase this version has added new options $si_contact_gb = array_merge($si_contact_gb_defaults, $si_contact_gb); $si_contact_gb['ctf_version'] = $ctf_version; update_option("si_contact_form_gb", $si_contact_gb); // get the options from the database $si_contact_gb = get_option("si_contact_form_gb"); // get the options from the database $si_contact_opt = get_option("si_contact_form$form_num"); if (!isset($si_contact_opt['max_fields'])) { // updated from version < 3.0.3 $si_contact_opt['max_fields'] = $si_contact_gb['max_fields']; update_option("si_contact_form$form_num", $si_contact_opt); } // array merge incase this version has added new options $si_contact_opt = array_merge($si_contact_option_defaults, $si_contact_opt); // strip slashes on get options array foreach($si_contact_opt as $key => $val) { $si_contact_opt[$key] = $this->ctf_stripslashes($val); } if ($si_contact_opt['title_style'] == '' && $si_contact_opt['field_style'] == '') { // if styles seem to be blank, reset styles $si_contact_opt = $this->si_contact_copy_styles($si_contact_option_defaults,$si_contact_opt); } // new field type defaults on version 2.6.3 if ( !isset($si_contact_gb['2.6.3']) ) { // optional extra fields for ($i = 1; $i <= $si_contact_opt['max_fields']; $i++) { if ($si_contact_opt['ex_field'.$i.'_label'] != '' && $si_contact_opt['ex_field'.$i.'_type'] != 'radio' && $si_contact_opt['ex_field'.$i.'_type'] != 'select' ) { $si_contact_opt['ex_field'.$i.'_default'] = '0'; } if ($si_contact_opt['ex_field'.$i.'_label'] == '') { $si_contact_opt['ex_field'.$i.'_default'] = '0'; $si_contact_opt['ex_field'.$i.'_default_text'] = ''; $si_contact_opt['ex_field'.$i.'_req'] = 'false'; $si_contact_opt['ex_field'.$i.'_label'] = ''; $si_contact_opt['ex_field'.$i.'_type'] = 'text'; $si_contact_opt['ex_field'.$i.'_max_len'] = ''; $si_contact_opt['ex_field'.$i.'_label_css'] = ''; $si_contact_opt['ex_field'.$i.'_input_css'] = ''; $si_contact_opt['ex_field'.$i.'_attributes'] = ''; $si_contact_opt['ex_field'.$i.'_regex'] = ''; $si_contact_opt['ex_field'.$i.'_regex_error'] = ''; $si_contact_opt['ex_field'.$i.'_notes'] = ''; $si_contact_opt['ex_field'.$i.'_notes_after'] = ''; } } update_option("si_contact_form", $si_contact_opt); for ($i = 2; $i <= $si_contact_gb['max_forms']; $i++) { // get the options from the database $si_contact_opt{$i} = get_option("si_contact_form$i"); for ($f = 1; $f <= $si_contact_opt['max_fields']; $f++) { if ($si_contact_opt{$i}['ex_field'.$f.'_label'] != '' && $si_contact_opt{$i}['ex_field'.$f.'_type'] != 'radio' && $si_contact_opt{$i}['ex_field'.$f.'_type'] != 'select' ) { $si_contact_opt{$i}['ex_field'.$f.'_default'] = '0'; } if ($si_contact_opt{$i}['ex_field'.$f.'_label'] == '') { $si_contact_opt{$i}['ex_field'.$f.'_default'] = '0'; } } update_option("si_contact_form$i", $si_contact_opt{$i}); unset($si_contact_opt{$i}); } $si_contact_opt = get_option("si_contact_form$form_num"); $si_contact_opt = array_merge($si_contact_option_defaults, $si_contact_opt); foreach($si_contact_opt as $key => $val) { $si_contact_opt[$key] = $this->ctf_stripslashes($val); } $si_contact_gb['2.6.3'] = 1; update_option("si_contact_form_gb", $si_contact_gb); $si_contact_gb = get_option("si_contact_form_gb"); $si_contact_gb = array_merge($si_contact_gb_defaults, $si_contact_gb); } /* --- vCita User Initialization - Start --- */ $si_contact_opt = $this->vcita_validate_initialized_user($form_num, $si_contact_opt, $si_contact_gb, $ctf_previous_version); /* --- vCita User Initialization - End --- */ return $si_contact_gb; } // end function si_contact_get_options // used when resetting or copying style settings function si_contact_copy_styles($this_form_arr,$destination_form_arr) { $style_copy_arr = array( 'border_enable','form_style','border_style','required_style','notes_style', 'title_style','field_style','field_div_style','error_style','select_style', 'captcha_div_style_sm','captcha_div_style_m','captcha_input_style','submit_div_style','button_style', 'reset_style', 'powered_by_style','field_size','captcha_field_size','text_cols','text_rows'); foreach($style_copy_arr as $style_copy) { $destination_form_arr[$style_copy] = $this_form_arr[$style_copy]; } return $destination_form_arr; } function si_contact_start_session() { // a PHP session cookie is set so that the captcha can be remembered and function // this has to be set before any header output //echo "starting session ctf"; // start cookie session, but do not start session if captcha is disabled in options // Also required for vCita functionallity if( !isset( $_SESSION ) ) { // play nice with other plugins session_cache_limiter ('private, must-revalidate'); session_start(); // echo "session started ctf"; } if (is_admin()) { $_SESSION["vcita_expert"] = true; } } // end function si_contact_start_session function si_contact_migrate($si_contact_option_defaults) { // read the options from the prior version $new_options = array (); foreach($si_contact_option_defaults as $key => $val) { $new_options[$key] = $this->ctf_stripslashes( get_option( "si_contact_$key" )); // now delete the options from the prior version delete_option("si_contact_$key"); } // delete settings no longer used delete_option('si_contact_email_language'); delete_option('si_contact_email_charset'); delete_option('si_contact_email_encoding'); // by returning this the old settings will carry over to the new version return $new_options; } // end function si_contact_migrate function si_contact_migrate2($si_contact_gb_defaults) { // read the options from the prior version $new_options = array (); $migrate_opt = get_option("si_contact_form"); $new_options['donated'] = $migrate_opt['donated']; $new_options['max_forms'] = $si_contact_gb_defaults['max_forms']; $new_options['max_fields'] = $si_contact_gb_defaults['max_fields']; if(defined('SI_CONTACT_FORM_MAX_FORMS') && SI_CONTACT_FORM_MAX_FORMS > $si_contact_gb_defaults['max_forms']) { $new_options['max_forms'] = SI_CONTACT_FORM_MAX_FORMS; } if(defined('SI_CONTACT_FORM_MAX_FIELDS') && SI_CONTACT_FORM_MAX_FIELDS > $si_contact_gb_defaults['max_fields']) { $new_options['max_fields'] = SI_CONTACT_FORM_MAX_FIELDS; } unset($migrate_opt); // by returning this the old settings will carry over to the new version //print_r($new_options); exit; return $new_options; } // end function si_contact_migrate2 // restores settings from a contact form settings backup file function si_contact_form_backup_restore($bk_form_num) { global $si_contact_opt, $si_contact_gb, $si_contact_gb_defaults, $si_contact_option_defaults; require_once WP_PLUGIN_DIR . '/si-contact-form/admin/si-contact-form-restore.php'; } // end function si_contact_form_backup_restore // outputs a contact form settings backup file function si_contact_backup_download() { global $si_contact_opt, $si_contact_gb, $si_contact_gb_defaults, $si_contact_option_defaults, $ctf_version; require_once WP_PLUGIN_DIR . '/si-contact-form/admin/si-contact-form-backup.php'; } // end function si_contact_backup_download function get_captcha_url_cf() { // The captcha URL cannot be on a different domain as the site rewrites to or the cookie won't work // also the path has to be correct or the image won't load. // WP_PLUGIN_URL was not getting the job done! this code should fix it. //http://media.example.com/wordpress WordPress address get_option( 'siteurl' ) //http://tada.example.com Blog address get_option( 'home' ) //http://example.com/wordpress WordPress address get_option( 'siteurl' ) //http://example.com/ Blog address get_option( 'home' ) $site_uri = parse_url(get_option('home')); $home_uri = parse_url(get_option('siteurl')); $captcha_url_cf = plugins_url( 'captcha' , __FILE__ ); if ($site_uri['host'] == $home_uri['host']) { // use $captcha_url_cf above } else { $captcha_url_cf = get_option( 'home' ) . '/'.PLUGINDIR.'/si-contact-form/captcha'; } // set the type of request (SSL or not) if ( is_ssl() ) { $captcha_url_cf = preg_replace('|http://|', 'https://', $captcha_url_cf); } return $captcha_url_cf; } function si_contact_admin_head() { // only load this header stuff on the admin settings page if(isset($_GET['page']) && is_string($_GET['page']) && preg_match('/si-contact-form.php$/',$_GET['page']) ) { ?> si_contact_from_email; } function si_contact_form_from_name() { return $this->si_contact_from_name; } function si_contact_form_mail_sender($phpmailer) { // add Sender for Return-path to wp_mail $phpmailer->Sender = $this->si_contact_mail_sender; } function ctf_notes($notes) { return '
ctf_notes_style.'> '.$notes.'
'; } function si_contact_convert_css($string) { if( preg_match("/^style=\"(.*)\"$/i", $string) ){ return $string; } if( preg_match("/^class=\"(.*)\"$/i", $string) ){ return $string; } return 'style="'.$string.'"'; } // end function si_contact_convert_css function si_contact_add_script(){ global $si_contact_opt, $ctf_add_script; if (!$ctf_add_script) return; wp_register_script('si_contact_form', plugins_url('captcha/ctf_captcha.js', __FILE__), array(), '1.0', true); wp_print_scripts('si_contact_form'); } } // end of class } // end of if class // Pre-2.8 compatibility if ( ! function_exists( 'esc_html' ) ) { function esc_html( $text ) { return wp_specialchars( $text ); } } // Pre-2.8 compatibility if ( ! function_exists( 'esc_attr' ) ) { function esc_attr( $text ) { return attribute_escape( $text ); } } if (class_exists("siContactForm")) { $si_contact_form = new siContactForm(); } if (isset($si_contact_form)) { $captcha_url_cf = $si_contact_form->get_captcha_url_cf(); $captcha_path_cf = WP_PLUGIN_DIR . '/si-contact-form/captcha'; // only used for the no-session captcha setting $ctf_captcha_url = $captcha_url_cf . '/temp/'; $ctf_captcha_dir = $captcha_path_cf . '/temp/'; $si_contact_form->si_contact_init_temp_dir($ctf_captcha_dir); // si_contact initialize options add_action('init', array(&$si_contact_form, 'si_contact_init'),1); $si_contact_gb = get_option("si_contact_form_gb"); if ( isset($si_contact_gb['captcha_disable_session']) && $si_contact_gb['captcha_disable_session'] == 'true') { // add javascript (conditionally to footer) // http://scribu.net/wordpress/optimal-script-loading.html add_action( 'wp_footer', array(&$si_contact_form,'si_contact_add_script')); add_action( 'admin_footer', array(&$si_contact_form,'si_contact_add_script')); } //echo 'vcita:'.$si_contact_gb['vcita_dismiss'].' sess:'.$si_contact_gb['captcha_disable_session']; if ( $si_contact_gb['captcha_disable_session'] == 'false' || $si_contact_gb['vcita_dismiss'] == 'false' ) { // start the PHP session - used by CAPTCHA, also used by vCita add_action('init', array(&$si_contact_form,'si_contact_start_session'),2); } // si contact form admin options add_action('admin_menu', array(&$si_contact_form,'si_contact_add_tabs'),1); add_action('admin_head', array(&$si_contact_form,'si_contact_admin_head'),1); add_action('wp_footer', array(&$si_contact_form,'vcita_si_contact_add_script'),1); // this is for downloading settings backup txt file. add_action('admin_init', array(&$si_contact_form,'si_contact_backup_download'),1); add_action('admin_enqueue_scripts', array(&$si_contact_form,'vcita_add_admin_js'),1); add_action('admin_notices', array(&$si_contact_form, 'si_contact_vcita_admin_warning')); // adds "Settings" link to the plugin action page add_filter( 'plugin_action_links', array(&$si_contact_form,'si_contact_plugin_action_links'),10,2); // use shortcode to print the contact form or process contact form logic // can use dashes or underscores: [si-contact-form] or [si_contact_form] add_shortcode('si_contact_form', array(&$si_contact_form,'si_contact_form_short_code'),1); add_shortcode('si-contact-form', array(&$si_contact_form,'si_contact_form_short_code'),1); // If you want to use shortcodes in your widgets or footer add_filter('widget_text', 'do_shortcode'); add_filter('wp_footer', 'do_shortcode'); // options deleted when this plugin is deleted in WP 2.7+ if ( function_exists('register_uninstall_hook') ) register_uninstall_hook(__FILE__, 'si_contact_unset_options'); } ?>