One Hat Cyber Team

Edit File: demandNote2.php

<?php
die();
ini_set('display_errors',1);
//require_once ('Mail/mime.php');
/*****ACTION POINT START***/
//uncomment the requires
//uncomment the sent update
//uncomment the connectionstring
//uncomment send mail
 /*****ACTION POINT END***/
 
require_once "Mail.php"; // PEAR Mail package
require_once ('Mail/mime.php'); // PEAR Mail_Mime packge
mysql_connect("localhost","niqsorgn_portal","@Xchange69!");
mysql_select_db("niqsorgn_pota1969");
//mysql_connect("localhost","root","@ajagbe@");
//mysql_select_db("niqs");
$sql=mysql_query("SELECT * FROM members a, dues b WHERE a.memberNo = b.memberNo AND a.sent !='2' AND a.memberEmail!='' ORDER BY a.memberID DESC LIMIT 0 , 600 ");
if(!$sql){
	echo mysql_error();
}
/*$sql=mysql_query("SELECT * FROM members a, dues b WHERE a.memberNo = b.memberNo AND a.sent !='2' AND a.memberEmail!='' AND (b.outstanding + b.annualSub + b.advance + b.upgradeCharge) > '500' ORDER BY a.memberID DESC LIMIT 0 , 600 ");*/

while ($row=mysql_fetch_array($sql)){
	$memNo=$row['memberNo'];
	$name=$row['memberSurname']." ".$row['memberOthernames'];
	$date=date('Y-m-d');
	$email=$row['memberEmail'];
	//$email = filter_var($email, FILTER_SANITIZE_EMAIL);
	$amount=number_format($row['outstanding'],2);
	$annualSub=$row['annualSub'];
	$advance=$row['advance'];
	$upgradeCharge=$row['upgradeCharge'];
	$annual=number_format($annualSub,2);
	$total=number_format($row['outstanding']+$annualSub+$advance+$upgradeCharge,2);
/*
$html='<table>
<tr><td height="370" valign="top" style="padding-left:120px !important;">Dear '.$name.' - '.$memNo.', 
The Institute is in the process of compiling and publishing Directory of Members and Practicing Firms to be uploaded on NIQS Website. 
Only financially up to date Members and Practicing Firms as at 31st May, 2016 would be included in the Directory. 
Consequently, you are hereby advised to pay up your outstanding balance of N'.$total.' in order to qualify for inclusion. 
Kindly pay to either of our bank accounts listed below: 
Nigerian Institute of Quantity Surveyors 
Skye Bank : 1150000015 
Or 
GT Bank: 0010899819 

Please scan the deposit slip/ payment teller or transfer receipt to niqsenquiry@gmail.com for prompt update of your record.
Best regards, 
M. ABBA TOR, FNIQS, MNIMN, MBA 
Secretary General 
08167593807

</td></tr>

</table>';
*/

$html='<table>
<tr><td height="370" valign="top" style="padding-left:120px !important;">Dear '.$name.' - '.$memNo.', 
The Institute is in the process of compiling and publishing Directory of Members and Practicing Firms to be uploaded on NIQS Website. 
Only financially up to date Members and Practicing Firms as at 31st May, 2016 would be included in the Directory. 
Consequently, you are hereby advised to pay up your outstanding balance of N'.$total.' in order to qualify for inclusion. 
Kindly pay to either of our bank accounts listed below: 
Nigerian Institute of Quantity Surveyors 
Skye Bank : 1150000015 
Or 
GT Bank: 0010899819 

Please scan the deposit slip/payment teller or transfer receipt to niqsenquiry@gmail.com for prompt update of your record. Please disregard this mail if you have paid. 
Best regards, 
Dr. Babatunde O. Adesiyan, FNIQS
Treasurer 
08167593807

</td></tr>

</table>';

$fmail = filter_var(strbefore($email,','), FILTER_SANITIZE_EMAIL); 
$smail = filter_var(strafter($email,','), FILTER_SANITIZE_EMAIL); 
$email="";

if (strcmp($fmail,$smail) === 0){
 $email = $fmail;
} else {
 $email = $fmail.",".$smail;
}

/*if (sendMail($email,$html)) {
	//update sent
@sendMail("cron_mail@niqs.org.ng",$html);

mysql_query("UPDATE members SET sent='2' WHERE memberNo='$memNo'");
}else{
	echo "Error Sending Mail";
}
*/
//@sendMail("cron_mail@niqs.org.ng",$html);
//mysql_query("UPDATE members SET sent='2' WHERE memberNo='$memNo'");

}
echo $html;
sendMail("o.ebiloma@niqs.org.ng,nimi266@yahoo.co.uk,n.ogungbemi.niqs.org.ng",$html);

function sendMail($email,$html){
	 $from = "info@niqs.org.ng"; //enter your email address
 $to = $email; //enter the email address of the contact your sending to
 $subject = "Publication of Directory of Members and Firms"; // subject of your email

$headers = array ('From' => $from,'To' => $to, 'Subject' => $subject);

$text = ''; // text versions of email.
//$html = "<html><body>Name: $name Email: $email Message: $message </body></html>"; // html versions of email.

$crlf = "\n";

$mime = new Mail_mime($crlf);
//$mime->setTXTBody($text);
$mime->setHTMLBody($html);

//do not ever try to call these lines in reverse order
$body = $mime->get();
$headers = $mime->headers($headers);

$host = "localhost"; // all scripts must use localhost
 $username = "info@niqs.org.ng"; //  your email address (same as webmail username)
 $password = "Welcome007!"; // your password (same as webmail password)

$smtp = Mail::factory('smtp', array ('host' => $host, 'auth' => true,
'username' => $username,'password' => $password,'port' => 25));

$mail = $smtp->send($to, $headers, $body);

if (PEAR::isError($mail)) {
	return 0;
//echo("" . $mail->getMessage() . "");
}
else {
	return 1;
//echo("Message successfully sent!");
// header("Location: http://www.example.com/");
}
}
 function strafter($string, $substring) {
 $pos = strpos($string, $substring);
 if ($pos === false)
 return $string;
 else 
 return(substr($string, $pos+strlen($substring)));
}

function strbefore($string, $substring) {
  $pos = strpos($string, $substring);
  if ($pos === false)
   return $string;
  else  
   return(substr($string, 0, $pos));
} 
?>