Yes, as I suspected. This part of the code is not written to support tablename prefixes:
Code:
function get_state_abbr($state_desc) {
global $db;
$states = $db->Execute("select zone_code from zones where zone_name like '%" . $state_desc . "%'");
while (!$states->EOF) {
return $states->fields['zone_code'];
}
return $state_desc;
}
It would need to be changed to:
Code:
function get_state_abbr($state_desc) {
global $db;
$states = $db->Execute("select zone_code from " . TABLE_ZONES . " where zone_name like '%" . $state_desc . "%'");
while (!$states->EOF) {
return $states->fields['zone_code'];
}
return $state_desc;
}
You should also work directly with their technical support team to make correct adjustments to the following lines. If you don't, then your payment transactions are not being handled securely, and you run the risk of credit card theft:
Code:
curl_setopt($c, CURLOPT_SSL_VERIFYHOST, 0);
curl_setopt($c, CURLOPT_SSL_VERIFYPEER, 0);
Bookmarks