rem_special_chars($_REQUEST['username']); //$where_query = "LEFT JOIN " . DB_PREFIX . "users su ON su.user_id=a.owner_id "; $query[] = "MATCH u.username AGAINST ('" . $username . "*' IN BOOLEAN MODE) AND u.active=1"; } } else if ($_REQUEST['option'] == 'buyer_search')## PHP Pro Bid v6.00 search auctions on which the buyer requested has placed bids { if (!empty($_REQUEST['username'])) { $username = $db->rem_special_chars($_REQUEST['username']); $where_query = "LEFT JOIN " . DB_PREFIX . "bids b ON b.auction_id=a.auction_id LEFT JOIN " . DB_PREFIX . "users bu ON bu.user_id=b.bidder_id "; $query[] = "MATCH bu.username AGAINST ('" . $username . "*' IN BOOLEAN MODE) AND bu.active=1"; } } if (count($query)) { $addl_query = " AND " . $db->implode_array($query, ' AND '); } $where_query .= "WHERE a.active=1 AND a.approved=1 AND a.deleted=0 AND a.creation_in_progress=0 " . $addl_query; $order_field = (in_array($_REQUEST['order_field'], $auction_ordering)) ? $_REQUEST['order_field'] : 'a.end_time'; $order_type = (in_array($_REQUEST['order_type'], $order_types)) ? $_REQUEST['order_type'] : 'ASC'; ## if we are on the page for the first time, we will override the ordering variables if (!empty($_REQUEST['ordering'])) { switch ($_REQUEST['ordering']) { case 'end_time_asc': $order_field = 'a.end_time'; $order_type = 'ASC'; break; case 'end_time_desc': $order_field = 'a.end_time'; $order_type = 'DESC'; break; case 'start_price_asc': $order_field = 'a.start_price'; $order_type = 'ASC'; break; } } if ($setts['top_keywords_box']) { if (isset($_REQUEST['kw_search']) && $_REQUEST['user_search'] == "1" && !empty($_REQUEST['keywords_search'])) { $sql_select_words = $db->query("SELECT * FROM " . DB_PREFIX . "wordfilter"); while ($word_details = $db->fetch_array($sql_select_words)) { $_REQUEST['keywords_search'] = str_ireplace($word_details['word'], " ", $_REQUEST['keywords_search']); } $kw_exist = $db->count_rows('top_search_keywords', "WHERE keywords='" . $_REQUEST['keywords_search'] . "'"); if ($kw_exist) { $sql_update_count = $db->query("UPDATE " . DB_PREFIX . "top_search_keywords SET nbsearch=nbsearch+1 WHERE keywords='" . $_REQUEST['keywords_search'] . "'"); } else { $sql_insert_kwsearch = $db->query("INSERT INTO " . DB_PREFIX . "top_search_keywords (keywords, date, nbsearch) VALUES ('" . $_REQUEST['keywords_search'] . "','" .CURRENT_TIME . "', '1')"); } } if (isset($_REQUEST['kw_search']) && $_REQUEST['user_search'] == "1" && !empty($_REQUEST['basic_search'])) { $sql_select_words = $db->query("SELECT * FROM " . DB_PREFIX . "wordfilter"); while ($word_details = $db->fetch_array($sql_select_words)) { $_REQUEST['basic_search'] = str_ireplace($word_details['word'], " ", $_REQUEST['basic_search']); } $kw_exist = $db->count_rows('top_search_keywords', "WHERE keywords='" . $_REQUEST['basic_search'] . "'"); if ($kw_exist) { $sql_update_count = $db->query("UPDATE " . DB_PREFIX . "top_search_keywords SET nbsearch=nbsearch+1 WHERE keywords='" . $_REQUEST['basic_search'] . "'"); } else { $sql_insert_kwsearch = $db->query("INSERT INTO " . DB_PREFIX . "top_search_keywords (keywords, date, nbsearch) VALUES ('" . $_REQUEST['basic_search'] . "','" .CURRENT_TIME . "', '1')"); } } } $additional_vars = '&option=' . $_REQUEST['option'] . '&src_auction_id=' . $_REQUEST['src_auction_id'] . '&keywords_search=' . $_REQUEST['keywords_search'] . '&buyout_price=' . $_REQUEST['buyout_price'] . '&reserve_price=' . $_REQUEST['reserve_price'] . '&quantity=' . $_REQUEST['quantity'] . '&enable_swap=' . $_REQUEST['enable_swap'] . '&list_in=' . $_REQUEST['list_in'] . '&results_view=' . $_REQUEST['results_view'] . '&country=' . $_REQUEST['country'] . '&zip_code=' . $_REQUEST['zip_code'] . '&username=' . $_REQUEST['username'] . '&basic_search=' . $_REQUEST['basic_search'] . $custom_addl_vars; include_once('includes/page_browse_auctions.php'); include_once ('global_footer.php'); echo $template_output; ?>