File size: 1.85Kb
<?php defined('ACCESS') OR die('No direct script access...');
/**
* Author - koder_alex
* ISQ - 669906617
* VK - https://vk.com/koder_alex
* It is forbidden to give, sell, modify.
*/
if (isset($_POST['peer']) && is_numeric($_POST['peer']) && mysql_result(mysql_query("SELECT COUNT(id) FROM user WHERE `id` = '".(int) $_POST['peer']."'", $db), 0))
$peer = d_user((int) $_POST['peer'], false);
else
$peer = d_user(0, false);
if(empty($_POST['dataID']))
{
$_SESSION['_VK_mail'] = array(
'text' => 'Ошибка доступа.',
'type' => 'error'
);
setData(array());
}
$_POST['dataID'] = my_esc($_POST['dataID']);
if(!mysql_result(mysql_query("SELECT COUNT(id) FROM `mail` WHERE `id` IN (".$_POST['dataID'].") AND (`id_user` = '".$user['id']."' OR `id_kont` = '".$user['id']."') AND unlink != '".$user['id']."'"), 0))
{
$_SESSION['_VK_mail'] = array(
'text' => 'Ошибка доступа.',
'type' => 'error'
);
setData(array());
}
mysql_query("DELETE FROM `mail` WHERE `unlink` = '".$peer['id']."' AND `id` IN (".$_POST['dataID'].")");
if(mysql_result(mysql_query("SELECT ROW_COUNT();"), 0))
{
$q = mysql_query("SELECT folder, tmp_name FROM mail_files_vk WHERE `action` = 'sent' AND `id_mail` IN (".$_POST['dataID'].")");
while($unlink = mysql_fetch_assoc($q))
unlink(H . 'mail/files/' . $unlink['folder'] . '/' . $unlink['tmp_name']);
mysql_query("DELETE FROM `mail_files_vk` WHERE `action` = 'sent' AND `id_mail` IN (".$_POST['dataID'].")");
}
mysql_query("DELETE FROM `mail_important` WHERE `id_user` = '".$user['id']."' AND `id_mail` IN (".$_POST['dataID'].")");
mysql_query("UPDATE `mail` SET `unlink` = '".$user['id']."' WHERE `id` IN (".$_POST['dataID'].")");
$_SESSION['_VK_mail'] = array(
'text' => 'Сообщения удаленны.',
'type' => 'ok'
);
setData(array());