add(ADD_NAVBAR_TITLE, tep_href_link(FILENAME_ADD_TESTIMONIALS, '', 'NONSSL')); require(DIR_WS_INCLUDES . 'template_top.php'); require('includes/validate.js.php'); require(DIR_WS_INCLUDES . 'aboutus_left.php'); //$action=$_REQUEST['action']; //if ($action=='process') // { //$process = true; $process = false; if (isset($HTTP_POST_VARS['action']) && ($HTTP_POST_VARS['action'] == 'process') && isset($HTTP_POST_VARS['formid']) && ($HTTP_POST_VARS['formid'] == $sessiontoken)) { $process = true; $cname = tep_db_prepare_input($HTTP_POST_VARS['cname']); $title = tep_db_prepare_input($HTTP_POST_VARS['title']); $loc = tep_db_prepare_input($HTTP_POST_VARS['loc']); $desp = tep_db_prepare_input($HTTP_POST_VARS['desp']); tep_db_query("insert into " . TABLE_CUSTOMER_TESTIMONIALS . " (testimonials_title, testimonials_html_text, testimonials_name, testimonials_location, date_added, status) values ('" . $title . "', '" . $desp . "','" . $cname . "','" . $loc . "', now(),'0')"); $qwe="true"; // reset session token $sessiontoken = md5(tep_rand() . tep_rand() . tep_rand() . tep_rand()); } ?>