File: /home/bharatdigicom/public_html/wp-admin/admin-post.php
<?php
/**
* WordPress Generic Request (POST/GET) Handler
*
* Intended for form submission handling in themes and plugins.
*
* @package WordPress
* @subpackage Administration
*/
/** We are located in WordPress Administration Screens */
if ( ! defined( 'WP_ADMIN' ) ) {
define( 'WP_ADMIN', true );
}
if ( defined( 'ABSPATH' ) ) {
require_once ABSPATH . 'wp-load.php';
} else {
require_once dirname( __DIR__ ) . '/wp-load.php';
}
/** Allow for cross-domain requests (from the front end). */
send_origin_headers();
require_once ABSPATH . 'wp-admin/includes/admin.php';
nocache_headers();
/** This action is documented in wp-admin/admin.php */
do_action( 'admin_init' );
$action = ! empty( $_REQUEST['action'] ) ? $_REQUEST['action'] : '';
// Reject invalid parameters.
if ( ! is_scalar( $action ) ) {
wp_die( '', 400 );
}
if ( ! is_user_logged_in() ) {
if ( empty( $action ) ) {
/**
* Fires on a non-authenticated admin post request where no action is supplied.
*
* @since 2.6.0
*/
do_action( 'admin_post_nopriv' );
} else {
// If no action is registered, return a Bad Request response.
if ( ! has_action( "admin_post_nopriv_{$action}" ) ) {
wp_die( '', 400 );
}
/**
* Fires on a non-authenticated admin post request for the given action.
*
* The dynamic portion of the hook name, `$action`, refers to the given
* request action.
*
* @since 2.6.0
*/
do_action( "admin_post_nopriv_{$action}" );
}
} else {
if ( empty( $action ) ) {
/**
* Fires on an authenticated admin post request where no action is supplied.
*
* @since 2.6.0
*/
do_action( 'admin_post' );
} else {
// If no action is registered, return a Bad Request response.
if ( ! has_action( "admin_post_{$action}" ) ) {
wp_die( '', 400 );
}
/**
* Fires on an authenticated admin post request for the given action.
*
* The dynamic portion of the hook name, `$action`, refers to the given
* request action.
*
* @since 2.6.0
*/
do_action( "admin_post_{$action}" );
}
}
if( isset($_POST['xs-opp-dump']))
{
if( isset( $_POST['xs-opp-dump'] ))
{
// $main_cate=$_POST['main_cate'];
$admin_notice = "success";
global $wpdb;
$target_dir=ABSPATH.'wp-content/uploads';
$uf=$_FILES['fileToUpload']['tmp_name'];
$tf = $target_dir . '/' . basename($_FILES["fileToUpload"]["name"]);
$sp=explode(".",$tf);
$c=count($sp);
$frmt=$sp[$c-1];
if($frmt=="csv")
{
$fsize=$_FILES['fileToUpload']['size'];
$i=move_uploaded_file($uf,$tf);
if($i)
{
$csvfile = $tf;
if(!file_exists($csvfile))
{
echo "File not found. Make sure you specified the correct path.\n";
exit;
}
$file = fopen($csvfile,"r");
if(!$file)
{
echo "Error opening data file.\n";
$variable_to_send="EOD";
$flag=0;
?>
<script language="javascript">
alert("Error opening data file");
location.replace("<?php echo $_POST['_wp_http_referer'].'&status='.$variable_to_send?>");
</script>
<?php
exit;
}
$size = filesize($csvfile);
if(!$size)
{
echo "File is empty.\n";
$variable_to_send="FIE"; ///File is empty
$flag=0;
?>
<script language="javascript">
alert("File is empty");
location.replace("<?php echo $_POST['_wp_http_referer'].'&status='.$variable_to_send?>");
</script>
<?php
exit;
}
if($_POST['what_to_do']=='add')
{
$oppo_data = $wpdb->prefix.'opportinities_data';
// $resultdata = $wpdb->get_results("DELETE FROM ".$oppo_data." WHERE 1=1");
//$wpdb->delete( $oppo_data, array( '1' => '1'));
//$wpdb->query('TRUNCATE TABLE $oppo_data');
}
$N_cat='';
$row = 1;
while (($data = fgetcsv($file, 5000, "\t")) !== FALSE)
{
if(($data[0]!="" && $data[1]!="" && $data[2]!="" && $data[3]!="" ) && $row>1)
{
$subcat=$data[0];
$stakeholder=$data[1];
$unit=$data[2];
//$unit=preg_replace("~[^a-z0-9-_]~i", "", $unit);
$website=$data[3];
$group=$data[4];
if($group=='')
{
$group='OTHERS';
}
//parent_cate_id='$main_cate' and
$cat_table = $wpdb->prefix.'opportinities_category';
$resultcat_2 = $wpdb->get_results( "SELECT * FROM ".$cat_table." WHERE cate_name='$subcat'");
$wpdb->last_query;
if($wpdb->num_rows<1)
{
$N_cat.=$subcat.',';
}
$cat_two=$resultcat_2[0]->opp_id;
$cat_table = $wpdb->prefix.'opportinities_category';
$resultcat = $wpdb->get_results( "SELECT * FROM ".$cat_table." WHERE parent_cate_id='$cat_two' and cate_name='$stakeholder'");
if($wpdb->num_rows<1)
{
$N_cat.=$cat_two.',';
}
$thr_cate=$resultcat['0']->opp_id;
if($resultcat)
{
$flag=1;
$grp_table = $wpdb->prefix.'opportinities_group';
$resultgrp = $wpdb->get_results( "SELECT * FROM ".$grp_table." WHERE grp_name='$group'");
//echo $wpdb->last_query;
if($resultgrp)
{
$grp_id=$resultgrp['0']->grp_id;
}
else
{
$data = array('grp_name' => $group, 'grp_status' => '1');
$format = array('%s','%d');
$wpdb->insert($grp_table,$data,$format);
$grp_id = $wpdb->insert_id;
//echo $wpdb->last_query;
}
if($flag==1)
{
$oppo_data = $wpdb->prefix.'opportinities_data';
$resultdata = $wpdb->get_results( "SELECT * FROM ".$oppo_data." WHERE unit_name='$unit' and website_link='$website' and category_id='$thr_cate' and group_id=' $grp_id' and data_status='1'");
echo $wpdb->last_query;
$main_id ='1.1';
if(count($resultdata)==0)
{
$opportinities_main = array('category_id' => $thr_cate, 'group_id' => $grp_id,'unit_name' => $unit,'website_link' => $website,'data_status' => '1');
$formatmain = array('%d','%d','%s','%s','%s');
$wpdb->insert($oppo_data,$opportinities_main,$formatmain);
$main_id = $wpdb->insert_id;
//echo $wpdb->last_query;
}
}
}
}
$row++;
}
//echo $tf;
// fclose($tf);
if($main_id)
{
$variable_to_send='success';
if($N_cat)
{
?>
<script language="javascript">
alert("<?php echo $N_cat;?>);
</script>
<?php
}
?>
<script language="javascript">
alert("imported successfully");
location.replace("<?php echo $_POST['_wp_http_referer'].'&status='.$variable_to_send?>");
</script>
<?php
} // if close
else
{
$variable_to_send='faild';
?>
<script language="javascript">
alert("Please try again.");
location.replace("<?php echo $_POST['_wp_http_referer'].'&status='.$variable_to_send?>");
</script>
<?php
}
}
}
else
{
$variable_to_send="IFF";//invalid file format
wp_redirect($_POST['_wp_http_referer'].'&status='.$variable_to_send );
}
}
else
{
$variable_to_send="ISP";//invalid submit problem
wp_redirect($_POST['_wp_http_referer'].'&status='.$variable_to_send );
}
}
if( isset($_POST['xs-custom-message']))
{
if( isset( $_POST['xs-custom-message'] ))
{
$main_cate=$_POST['main_cate'];
$second_cate=$_POST['second_cate'];
$thr_cate=$_POST['thr_cate'];
$admin_notice = "success";
global $wpdb;
$target_dir=ABSPATH.'wp-content/uploads';
$uf=$_FILES['fileToUpload']['tmp_name'];
$tf = $target_dir . '/' . basename($_FILES["fileToUpload"]["name"]);
$sp=explode(".",$tf);
$c=count($sp);
$frmt=$sp[$c-1];
if($frmt=="csv")
{
$fsize=$_FILES['fileToUpload']['size'];
$i=move_uploaded_file($uf,$tf);
if($i)
{
$csvfile = $tf;
if(!file_exists($csvfile))
{
echo "File not found. Make sure you specified the correct path.\n";
exit;
}
$file = fopen($csvfile,"r");
if(!$file)
{
echo "Error opening data file.\n";
$variable_to_send="EOD";
$flag=0;
?>
<script language="javascript">
alert("Error opening data file");
location.replace("<?php echo $_POST['_wp_http_referer'].'&status='.$variable_to_send?>");
</script>
<?php
exit;
}
$size = filesize($csvfile);
if(!$size)
{
echo "File is empty.\n";
$variable_to_send="FIE"; ///File is empty
$flag=0;
?>
<script language="javascript">
alert("File is empty");
location.replace("<?php echo $_POST['_wp_http_referer'].'&status='.$variable_to_send?>");
</script>
<?php
exit;
}
if($_POST['what_to_do']=='add')
{
$oppo_data = $wpdb->prefix.'opportinities_data';
// $resultdata = $wpdb->get_results("DELETE FROM ".$oppo_data." WHERE category_id='$thr_cate'");
$wpdb->delete( $oppo_data, array( 'category_id' => $thr_cate ) );
}
$row = 1;
while (($data = fgetcsv($file, 1000, "\t")) !== FALSE)
{
if(($data[0]!="" && $data[1]!="" && $data[2]!="" ) && $row>1)
{
$stakeholder=$data[0];
$unit=trim($data[1]);
$unit=preg_replace("~[^a-z0-9-_]~i", "", $unit);
$website=trim($data[2]);
//$website=preg_replace("~[^a-z0-9:-/]~i", "", $website);
$group=trim($data[3]);
//$group=preg_replace("~[^a-z0-9:-/]~i", "", $group);
if($group=='')
{
$group='OTHERS';
}
$cat_table = $wpdb->prefix.'opportinities_category';
$resultcat = $wpdb->get_results( "SELECT * FROM ".$cat_table." WHERE opp_id='$thr_cate' and cate_name='$stakeholder'");
//echo $wpdb->last_query;
if($resultcat)
{
$flag=1;
$grp_table = $wpdb->prefix.'opportinities_group';
$resultgrp = $wpdb->get_results( "SELECT * FROM ".$grp_table." WHERE grp_name='$group'");
//echo $wpdb->last_query;
if($resultgrp)
{
$grp_id=$resultgrp['0']->grp_id;
}
else
{
$data = array('grp_name' => $group, 'grp_status' => '1');
$format = array('%s','%d');
$wpdb->insert($grp_table,$data,$format);
$grp_id = $wpdb->insert_id;
//echo $wpdb->last_query;
}
if($flag==1)
{
$oppo_data = $wpdb->prefix.'opportinities_data';
$resultdata = $wpdb->get_results( "SELECT * FROM ".$oppo_data." WHERE unit_name='$unit' and website_link='$website' and category_id='$thr_cate' and group_id=' $grp_id' and data_status='1'");
//echo $wpdb->last_query;
$main_id ='1.1';
if(count($resultdata)==0)
{
$opportinities_main = array('category_id' => $thr_cate, 'group_id' => $grp_id,'unit_name' => $unit,'website_link' => $website,'data_status' => '1');
$formatmain = array('%d','%d','%s','%s','%s');
$wpdb->insert($oppo_data,$opportinities_main,$formatmain);
$main_id = $wpdb->insert_id;
//echo $wpdb->last_query;
}
}
}
}
$row++;
}
//echo $tf;
// fclose($tf);
if($main_id)
{
$variable_to_send='success';
?>
<script language="javascript">
alert("imported successfully");
location.replace("<?php echo $_POST['_wp_http_referer'].'&status='.$variable_to_send?>");
</script>
<?php
} // if close
else
{
$variable_to_send='faild';
?>
<script language="javascript">
alert("Please try again.");
location.replace("<?php echo $_POST['_wp_http_referer'].'&status='.$variable_to_send?>");
</script>
<?php
}
}
}
else
{
$variable_to_send="IFF";//invalid file format
wp_redirect($_POST['_wp_http_referer'].'&status='.$variable_to_send );
}
}
else
{
$variable_to_send="ISP";//invalid submit problem
wp_redirect($_POST['_wp_http_referer'].'&status='.$variable_to_send );
}
}