#!/usr/bin/perl
use CGI::Carp qw(fatalsToBrowser);
use strict;
use vars qw($fileattachment $ct @allfields @reqfields $fieldname $size $bld $label $bold $line %bold $sendmail $mailserver $o $cctype $in $username $password $basepath %in @in $htmlurl $htmlpath $cgiurl $cgipath $exportdir $formdir $attachdir $efooter $exporturl %cookie);
$basepath = './';
#
# Version: 2.01 - 030803
# 
#####################################################################
#                                                                   #
#    Copyright © 1999-2000 CGISCRIPTS.NET - All Rights Reserved     #
#                                                                   #
#####################################################################
#                                                                   #
#          THIS COPYRIGHT INFORMATION MUST REMAIN INTACT            #
#                AND MAY NOT BE MODIFIED IN ANY WAY                 #
#                                                                   #
#####################################################################
#
# When you downloaded this script you agreed to accept the terms 
# of this Agreement. This Agreement is a legal contract, which 
# specifies the terms of the license and warranty limitation between 
# you and CGISCRIPTS.NET. You should carefully read the following 
# terms and conditions before installing or using this software.  
# Unless you have a different license agreement obtained from 
# CGISCRIPTS.NET, installation or use of this software indicates 
# your acceptance of the license and warranty limitation terms
# contained in this Agreement. If you do not agree to the terms of this
# Agreement, promptly delete and destroy all copies of the Software.
#
# Versions of the Software 
# Only one copy of the registered version of CGISCRIPTS.NET 
# may used on one web site.
# 
# License to Redistribute
# Distributing the software and/or documentation with other products
# (commercial or otherwise) or by other than electronic means without
# CGISCRIPTS.NET's prior written permission is forbidden.
# All rights to the CGISCRIPTS.NET software and documentation not expressly
# granted under this Agreement are reserved to CGISCRIPTS.NET.
#
# Disclaimer of Warranty
# THIS SOFTWARE AND ACCOMPANYING DOCUMENTATION ARE PROVIDED "AS IS" AND
# WITHOUT WARRANTIES AS TO PERFORMANCE OF MERCHANTABILITY OR ANY OTHER
# WARRANTIES WHETHER EXPRESSED OR IMPLIED.   BECAUSE OF THE VARIOUS HARDWARE
# AND SOFTWARE ENVIRONMENTS INTO WHICH CGISCRIPTS.NET MAY BE USED, NO WARRANTY 
# OF FITNESS FOR A PARTICULAR PURPOSE IS OFFERED.  THE USER MUST ASSUME THE
# ENTIRE RISK OF USING THIS PROGRAM.  ANY LIABILITY OF CGISCRIPTS.NET WILL BE
# LIMITED EXCLUSIVELY TO PRODUCT REPLACEMENT OR REFUND OF PURCHASE PRICE.
# IN NO CASE SHALL CGISCRIPTS.NET BE LIABLE FOR ANY INCIDENTAL, SPECIAL OR
# CONSEQUENTIAL DAMAGES OR LOSS, INCLUDING, WITHOUT LIMITATION, LOST PROFITS
# OR THE INABILITY TO USE EQUIPMENT OR ACCESS DATA, WHETHER SUCH DAMAGES ARE
# BASED UPON A BREACH OF EXPRESS OR IMPLIED WARRANTIES, BREACH OF CONTRACT,
# NEGLIGENCE, STRICT TORT, OR ANY OTHER LEGAL THEORY. THIS IS TRUE EVEN IF
# CGISCRIPTS.NET IS ADVISED OF THE POSSIBILITY OF SUCH DAMAGES. IN NO CASE WILL
# CGISCRIPTS.NET' LIABILITY EXCEED THE AMOUNT OF THE LICENSE FEE ACTUALLY PAID
# BY LICENSEE TO CGISCRIPTS.NET.
#
# Credits:
# Andy Angrick - Programmer - angrick@cgiscript.net
# Mike Barone - Design - mbarone@cgiscript.net
#
# For information about this script or other scripts see 
# http://www.cgiscript.net
#
# Thank you for trying out our script.
# If you have any suggestions or ideas for a new innovative script
# please direct them to suggest@cgiscript.net.  Thanks.

########################################################################
#                       Config Variables                               #
########################################################################

require("$basepath/setup.cgi");

########################################################################
#                       End Config Variables                           #
########################################################################
(!$htmlurl)&&($htmlurl = $cgiurl);
(!$htmlpath)&&($htmlpath = $cgipath);
$in{'cgiurl'} = $cgiurl . 'CSMailto.cgi';
$exportdir = $htmlpath . '/export';
$formdir = $htmlpath . '/forms';
$attachdir = $htmlpath . '/attach';
$exporturl = $htmlurl . '/export';
$in{'formurl'} = $htmlurl . '/forms';
$in{'htmlurl'} = $htmlurl;
$efooter = "\n\n----------------------------------------\nForm Created with CSMailto, another www.cgiscript.net product";

require("$basepath/libs.cgi");

$| = 1;	
&main;		
exit; 

sub main{
($ENV{'PATH_INFO'} =~ /csv$/)&&(&DoExport());
print "Content-type: text/html\n\n";
($ENV{'CONTENT_TYPE'} =~ /multipart\/form-data/i)?(&getdata(1)):(&getdata());

&checkmethods;
($in{'command'} eq "mailform")&&(&MailForm);
($in{'command'} eq "")&&($in{'form-name'})&&(&MailForm);
($in{'command'} eq "showform")&&(&ShowForm);
($in{'command'} eq 'login')&&(&Login);
&GetLogin;
($in{'command'} eq "")&&(&ListForm);
($in{'command'} eq "showadd")&&(&ShowAdd);
($in{'command'} eq "createform")&&(&CreateForm);
($in{'command'} eq "manage")&&(&ListForm);
($in{'command'} eq "delete")&&(&DeleteForm);
($in{'command'} eq "modify")&&(&ModifyForm);
($in{'command'} eq "setcolor")&&(&SetColor);
($in{'command'} eq "showcolor")&&(&ShowColor);
($in{'command'} eq "showlinks")&&(&ShowLinks);
($in{'command'} eq "showupload")&&(&ShowUpload);
($in{'command'} eq "upload")&&(&Upload);
($in{'command'} eq "deleteudf")&&(&DeleteUDF);
($in{'command'} eq "moveup")&&(&Move('up'));
($in{'command'} eq "movedown")&&(&Move('down'));
}


sub DoExport{
&GetCookies;
$in{'UserName'} = $cookie{'UserName'};
$in{'PassWord'} = $cookie{'PassWord'};
(($in{'UserName'} ne $username)||(($in{'PassWord'} ne $password)))&&(exit);
my $rn = &GetRealName($ENV{'PATH_INFO'});
$rn =~ s/\.\.//;
my $rn2 .= "$rn.cgi";
(! -e "$exportdir/$rn2")&&(exit);
print "Content-type: application/msexcel\n";
print "Content-disposition: inline; filename=\"$rn\"\n\n";
my $sfile = &CheckSafe("$exportdir/$rn2");
open(EXP,"$sfile");
while(<EXP>){
print;
}
close EXP;
exit;
}

sub ShowForm{
$in{'form'} =~ s/\.\.//g;
(! -e "$formdir/$in{'form'}.htm")&&(&PError("Error. Invalid form name"));
my $sfile = &CheckSafe("$formdir/$in{'form'}.htm");
open(OUT,"$sfile")||print "$!: $sfile<br>";
while(<OUT>){
my $o = $_;
$o =~ s/\r//g;
$o =~ s/\"/\\"/g;
$o =~ s/(scr)(ipt)/$1\"\+\"$2/gsi;
my @mylines = split(/\r*\n/,$o);    
    foreach my $q (@mylines){
      print qq|document.write("$q\\n");\n|;
      }
}
close OUT;
exit;
}

sub DeleteUDF{
my ($c);
for my $i (1..$in{'items'}){

  if($in{'id'} ne $i){
    $c++;
    $in{"capudf$c"} = $in{"capudf$i"};
    $in{"fnudf$c"} = $in{"fnudf$i"};
    $in{"tsizeudf$c"} = $in{"tsizeudf$i"};
    $in{"taheightudf$c"} = $in{"taheightudf$i"};
    $in{"tawidthudf$c"} = $in{"tawidthudf$i"};
    $in{"dsizeudf$c"} = $in{"dsizeudf$1"};
    $in{"optionsudf$c"} = $in{"optionsudf$i"};
    $in{"useudf$c"} = $in{"useudf$i"};
    $in{"requdf$c"} = $in{"requdf$i"};
    $in{"maxsudf$c"} = $in{"maxsudf$i"};
    $in{"fextudf$c"} = $in{"fextudf$i"};
    $in{"typeudf$c"} = $in{"typeudf$i"};
    }

  }
$in{'items'} --;

if($in{'items'} == 0){
    $in{"capudf1"} = '';
    $in{"fnudf1"} = '';
    $in{"tsizeudf1"} = '';
    $in{"taheightudf1"} = '';
    $in{"tawidthudf1"} = '';
    $in{"dsizeudf1"} = '';
    $in{"optionsudf1"} = '';
    $in{"useudf1"} = '';
    $in{"requdf1"} = '';
    $in{"maxsudf1"} = '';
    $in{"fextudf1"} = '';
    $in{"typeudf1"} = '';
}
&ShowAdd('modify');
}

sub Move{
my($t) = @_;
my($i1,$i2);
if($t eq 'up'){
 $i1 = $in{'id'};
 $i2 = $in{'id'}-1;
($i2 < 1)&&($i2 = 1);
}
else{
 $i1 = $in{'id'};
 $i2 = $in{'id'}+1;
($i2 > $in{'items'})&&($i2=$in{'items'});
}

my $a1 = $in{"capudf$i1"};
my $a2 = $in{"fnudf$i1"};
my $a3 = $in{"tsizeudf$i1"};
my $a4 = $in{"taheightudf$i1"};
my $a5 = $in{"tawidthudf$i1"};
my $a6 = $in{"dsizeudf$i1"};
my $a7 = $in{"optionsudf$i1"};
my $a8 = $in{"useudf$i1"};
my $a9 = $in{"requdf$i1"};
my $a10 = $in{"maxsudf$i1"};
my $a11 = $in{"fextudf$i1"};
my $a12 = $in{"typeudf$i1"};

my $b1 = $in{"capudf$i2"};
my $b2 = $in{"fnudf$i2"};
my $b3 = $in{"tsizeudf$i2"};
my $b4 = $in{"taheightudf$i2"};
my $b5 = $in{"tawidthudf$i2"};
my $b6 = $in{"dsizeudf$i2"};
my $b7 = $in{"optionsudf$i2"};
my $b8 = $in{"useudf$i2"};
my $b9 = $in{"requdf$i2"};
my $b10 = $in{"maxsudf$i2"};
my $b11 = $in{"fextudf$i2"};
my $b12 = $in{"typeudf$i2"};

$in{"capudf$i1"} = $b1;
$in{"fnudf$i1"} = $b2;
$in{"tsizeudf$i1"} = $b3;
$in{"taheightudf$i1"} = $b4;
$in{"tawidthudf$i1"} = $b5;
$in{"dsizeudf$i1"} = $b6;
$in{"optionsudf$i1"} = $b7;
$in{"useudf$i1"} = $b8;
$in{"requdf$i1"} = $b9;
$in{"maxsudf$i1"} = $b10;
$in{"fextudf$i1"} = $b11;
$in{"typeudf$i1"} = $b12;

$in{"capudf$i2"} = $a1;
$in{"fnudf$i2"} = $a2;
$in{"tsizeudf$i2"} = $a3;
$in{"taheightudf$i2"} = $a4;
$in{"tawidthudf$i2"} = $a5;
$in{"dsizeudf$i2"} = $a6;
$in{"optionsudf$i2"} = $a7;
$in{"useudf$i2"} = $a8;
$in{"requdf$i2"} = $a9;
$in{"maxsudf$i2"} = $a10;
$in{"fextudf$i2"} = $a11;
$in{"typeudf$i2"} = $a12;

&ShowAdd('modify');
}

sub Login{
&PageOut("$cgipath/t_login.htm");
exit;
}

sub GetLogin{
&GetCookies;
$in{'UserName'} = $cookie{'UserName'};
$in{'PassWord'} = $cookie{'PassWord'};
if(!$in{'UserName'}){
&PageOut("$cgipath/t_login.htm");
exit;
}
else{
(($in{'UserName'} ne $username)||(($in{'PassWord'} ne $password)))&&(&PError("Error. Invalid username or password"));
}
}

sub Upload{
(!$in{'file'})&&(&PError("Error. Please select a file."));
($in{'id'} == 1)&&($in{'id'} = '');
my $rn = &GetRealName($in{'file'});
&SaveFile($in{'file'},"$attachdir/$rn");
print <<"EOF";
<script language=javascript>
var rndURL = (1000*Math.random());
alert("File Uploaded.");
window.opener.document.form1.attachment$in{'id'}.value="$attachdir/$rn";
window.close();
</script>
EOF
}

sub ShowUpload{
&PageOut("$cgipath/t_upload.htm");
exit;
}

sub ShowColor{
$in{'c'.$in{'cc'}} = 'checked';
&PageOut("$cgipath/color_selector.htm");
exit;
}

sub SetColor{

print <<"EOF";
<script language=javascript>
window.opener.document.form1.$in{'fieldname'}.value="$in{'colorselect'}";
window.opener.document.form1.B1.click();
window.close();
</script>
EOF

}

sub ModifyForm{
undef $/;
my $datafile = $in{'page'};
$datafile =~ s/\.htm//;
if(-e "$formdir/$datafile.cgi"){
  $in{'page'} = "$datafile.cgi";
  }
my $sfile = &CheckSafe("$formdir/$in{'page'}");
open(DB,"$sfile");
my $all = <DB>;
close DB;
$/ = "\n";
my ($in) = $all =~ /\<input type=hidden name=in value=\"(.*)\"\>/;

###get data input variables.
my($loc,$key,$val);
my @in = split(/&/,$in);

  foreach my $i (0 .. $#in) {
    # Convert plus's to spaces
    $in[$i] =~ s/\+/ /g;

    # Convert %XX from hex numbers to alphanumeric
    $in[$i] =~ s/%(..)/pack("c",hex($1))/ge;

    # Split into key and value.
    $loc = index($in[$i],"=");
    $key = substr($in[$i],0,$loc);
    $val = substr($in[$i],$loc+1);
    $in{$key} .= '\0' if (defined($in{$key})); # - is the multiple separator
    $in{$key} .= $val;
    }
&ShowAdd('modify');
}

sub DeleteForm{
my $datafile = $in{'page'};
$datafile =~ s/\.htm//;
unlink("$formdir/$in{'page'}");
unlink("$formdir/$datafile.cgi");
print <<"EOF";
<script language=javascript>
var rndURL = (1000*Math.random());
alert("Form Deleted!");
window.location = "$in{'cgiurl'}?command=manage&rnd="+rndURL;
</script>
EOF
}

sub ListForm{
my $sfile = &CheckSafe("$formdir");
opendir(FORM,"$sfile")||die print "$!: $formdir";
my @forms = grep(/.htm$/, readdir(FORM));
closedir(FORM);
foreach my $i (sort (@forms)){
undef $/;
$sfile = &CheckSafe("$formdir/$i");
open(DB,"$sfile")||print "$formdir/$i - $!<br>";
my $all = <DB>;
close DB;
$/ = "\n";
next if ($all !~ /\<input type=hidden name=form-name value=\"(.*)\"\>/);
my ($heading) = $all =~ /\<input type=hidden name=form-formheading value=\"(.*)\"\>/;
(!$heading)&&($heading = "(no heading)");
$in{'line'} .= "<TR>
    <TD align=left bgColor=#DEE4E0 noWrap><input type=\"button\" value=\"Modify\" onClick=\"Modify('$i');\">
      <input type=\"button\" value=\"Delete\" onClick=\"Delete('$i');\">  <input type=\"button\" value=\"Test\" onClick=\"ShowForm('$i');\">
    </TD>
    <TD align=left bgColor=#DEE4E0 noWrap><font size=\"2\">$i</font>
    </TD>
    <TD align=left bgColor=#DEE4E0 noWrap><font size=\"2\">$heading</font>
    </TD>
    <TD align=left bgColor=#DEE4E0 noWrap><font size=\"2\"><input type=button value=\"View\" onClick=\"ShowLinks('$i');\"></font>
    </TD>
  </TR>
";
}
&PageOut("$cgipath/t_List_Form.htm")||die print "$!: ${cgipath}/t_List_Form.htm";
}

sub MailForm{

my (@tmpf,$ff);
if(!$in{'command'}){
  (!$in{'form-name'})&&(&PError("Error. Invalid form."));
  foreach my $i (sort keys %in){
    next if($i eq 'cgiurl');
    next if($i eq 'command');
    next if($i eq 'form-name');
    next if($i eq 'formurl');
    next if($i eq 'htmlurl');
    push(@tmpf,"$i~$i");
    }
  $ff = 1;
  }

&getfieldsfromform;

if($ff){
  $in{'form-allfields'} = join(",",@tmpf);
  }

$in{'Date'} = &ctime(time);

$in{'REMOTE_ADDR'} = $ENV{'REMOTE_ADDR'};
$in{'HTTP_HOST'} = $ENV{'HTTP_HOST'};
$in{'HTTP_USER_AGENT'} = $ENV{'HTTP_USER_AGENT'};
$in{'HTTP_REFERRER'} = $ENV{'HTTP_REFERRER'};


foreach my $i (%in){
	$in{$i} =~ s/&#(\d+);/pack("c",$1)/ge;
	$in{$i} =~ s/\\n/\n/g;
	}

my @fields = split(",",$in{'form-allfields'});
my @req = split(",",$in{'form-reqfields'});
my (%rq,$c,$fn);
foreach my $i (@fields){
($c,$fn) = split("~",$i);
$rq{$fn} = $c;
}
foreach my $i (@req){
(!$in{$i})&&($rq{$i})&&(&PError("Error. Field $rq{$i} is required"));
}
##validate email field if exists
($in{'Email'})&&(!&check_email($in{'Email'}))&&(&PError("Error. Invalid email address"));

($in{'VEmail'})&&($in{'VEmail'} ne $in{'Email'})&&(&PError("Error. Please retype email address."));

if($in{'form-results'}){
$in{'form-results'} =~ s/FORM\(([\w\-\_]+)\)/$in{$1}/g;
}
else{
  $in{'form-results'} = "Form Submission\nThe following information was submitted on $in{'Date'}:\n\n";
  foreach my $i (@fields){
    ($c,$fn) = split("~",$i);
    $in{'form-results'} .= "$c: $in{$fn}\n";
   }
$in{'form-results'} .= $efooter;
  }

if($in{'form-reply'}){
$in{'form-reply'} =~ s/FORM\(([\w\-\_]+)\)/$in{$1}/g;
}
else{
  $in{'form-reply'} = "Thank you for submitting the following information:\n\n";
  foreach my $i (@fields){
    ($c,$fn) = split("~",$i);
    $in{'form-reply'} .= "$c: $in{$fn}\n";
   }
$in{'form-reply'} .= $efooter;
  }

##send out email message
($in{'form-resultshtml'} eq 'checked')&&($cctype="\nContent-type: text/html");
($in{'form-bcc'})&&($o = "\nBCC: $in{'form-bcc'}");
($in{'form-cc'})&&($o .= "\nCC: $in{'form-cc'}");

($in{'Email'})&&($in{'form-from'} = $in{'Email'});


&AddResultAttachment;

$in{'form-subject'} =~ s/FORM\(([\w\-\_]+)\)/$in{$1}/g;
$in{'form-to'} =~ s/FORM\(([\w\-\_]+)\)/$in{$1}/g;


if($sendmail){
my $sfile = &CheckSafe("$sendmail");
open(MAIL,"|$sfile -t");
print MAIL <<"EOF";
To: $in{'form-to'}$o
From: $in{'form-from'}
Subject: $in{'form-subject'}$cctype

$in{'form-results'}
EOF
close MAIL;
}
else{
require "$basepath/sendmail.cgi";
&SendMail("$in{'form-to'}",$in{'form-from'},"$in{'form-subject'}$cctype",$in{'form-results'},$mailserver,$in{'form-cc'},$in{'form-bcc'});
}


($in{'form-autohtml'} eq 'checked')&&($cctype ="\nContent-type: text/html");

if($in{'form-attachment'}){
&AddAttachment;
}

$in{'form-replysubject'} =~ s/FORM\(([\w\-\_]+)\)/$in{$1}/g;

###send out autoresponse
if(($in{'form-autoresponse'} eq "YES")&&($in{'Email'})){
if($sendmail){
my $sfile = &CheckSafe("$sendmail");
open(MAIL,"|$sfile -t");
print MAIL<<"EOF";
To: $in{'Email'}
From: $in{'form-replyfrom'}
Subject: $in{'form-replysubject'}$cctype

$in{'form-reply'}
EOF

close MAIL;
}
else{
require "$basepath/sendmail.cgi";
&SendMail("$in{'Email'}",$in{'form-replyfrom'},"$in{'form-replysubject'}$cctype",$in{'form-reply'},$mailserver);
}
}


###export data to file
if($in{'form-extfile'} eq "YES"){
my (@af);
##export fields first if file doesn't exist
if(! -e "$exportdir/$in{'form-name'}.csv.cgi"){
my $sfile = &CheckSafe("$exportdir/$in{'form-name'}.csv.cgi");
open(TAB,">$sfile");
foreach my $i (@fields){
($c,$fn) = split("~",$i);
$fn = "\"$fn\"";
push(@af,$fn);
}
print TAB join(",",@af)."\n";
close TAB;
}
##export the record
undef @af;
my $sfile = &CheckSafe("$exportdir/$in{'form-name'}.csv.cgi");
open(TAB,">>$sfile");
foreach my $i (@fields){
($c,$fn) = split("~",$i);
my $encap = "\"$in{$fn}\"";
push(@af,$encap);
}
print TAB join(",",@af)."\n";
close TAB;
}

if($in{'form-redirect'}){
  print <<"EOF";
<script language=javascript>
window.location="$in{'form-redirect'}";
</script>
EOF
  }
elsif($in{'form-redirecttext'}){
  $in{'form-redirecttext'} =~ s/FORM\(([\w\-\_]+)\)/$in{$1}/g; 
  print $in{'form-redirecttext'};
  }
else{
print "<font face=verdana size=2><h1>Form Confirmation<hr></h1>Thank you for submitting the following information:<br><table border=0>";
foreach my $i (@fields){
($c,$fn) = split("~",$i);
print "<tr><td align=right><font face=verdana size=2><b>$c:</b> </td><td>$in{$fn}</td></tr>\n";
}
print "</table><br><font face=verdana size=2><a href=\"javascript: history.back();\">Return to Form</a>";
}
exit;
}

sub CreateForm{
($in{'B1'} eq "Add New Field")&&(&ShowAdd);
my(@udfs,$fieldnum,$maxudf,@atmts,@options);
(!$in{'formname'})&&(&PError("Error. Please enter a name for your form."));
($in{'formname'} =~ /[\W]/)&&(&PError("Error. Invalid form name."));
($in{'autoresponse'} eq "YES")&&(!$in{'replyfrom'})&&(&PError("Error. Please enter a from address for the autoresponser."));
($in{'autoresponse'} eq "YES")&&(!$in{'replysubject'})&&(&PError("Error. Please enter a subject for the autoresponser."));
(!$in{'sfr'})&&(&PError("Error. Please enter an email address to send form to."));
(!$in{'sff'})&&($in{'sff'}=$in{'sfr'});

##check to see if we have header or footer
if(($in{'header'})&&(-e "$in{'header'}")){
my $sfile = &CheckSafe("$in{'header'}");
open(HEAD,"$sfile");
while(<HEAD>){
  $in{'theader'} .= $_;
  }
close HEAD;
}

if(($in{'footer'})&&(-e "$in{'footer'}")){
my $sfile = &CheckSafe("$in{'footer'}");
open(HEAD,"$sfile");
while(<HEAD>){
  $in{'tfooter'} .= $_;
  }
close HEAD;
}

(($in{'backgnd'})||($in{'backcolortxt'}))&&($in{'backgndurl'} = "<body background=\"$in{'backgnd'}\" bgcolor=\"#$in{'backcolortxt'}\">");


$line = '';
my @field = split(/\\0/,$in{'field'});
my @req = split(/\\0/,$in{'req'});
foreach my $i (@req){
($in{$i})?($bold{$in{$i}} = "<b>"):($bold{$i} = "<b>");
($in{$i})?(push(@reqfields,$in{$i})):(push(@reqfields,$i));
}

my($comment,$contact,$file);
for my $i (0..$#field){
$size='';
$bld ='';
$label='';
$fieldname='';
($field[$i] eq "FirstName")&&(&MakeField('First Name','FirstName',26));
($field[$i] eq "LastName")&&(&MakeField('Last Name','LastName',26));
($field[$i] eq "Company")&&(&MakeField('Company','Company',26));
($field[$i] eq "Address1")&&(&MakeField('Address 1','Address1',26));
($field[$i] eq "Address2")&&(&MakeField('Address 2','Address2',26));
($field[$i] eq "City")&&(&MakeField('City','City',26));
($field[$i] eq "State")&&(&MakeField('State/Province','State',4));
($field[$i] eq "Zip")&&(&MakeField('Zip Code','Zip',26));
($field[$i] eq "Country")&&(&MakeField('Country','Country',26));
($field[$i] eq "WebSite")&&(&MakeField('Web Site','WebSite',26));
($field[$i] eq "Email")&&(&MakeField('Email Address','Email',26));
($field[$i] eq "VEmail")&&($bold{'VEmail'} = "<b>")&&(push(@reqfields,'VEmail'));
($field[$i] eq "VEmail")&&(&MakeField('Verify Email','VEmail',26));
($field[$i] eq "ICQ")&&(&MakeField('ICQ Address','ICQ',26));
($field[$i] eq "HomePhone")&&(&MakeField('Home Phone','HomePhone',13));
($field[$i] eq "BusinessPhone")&&(&MakeField('Business Phone','BusinessPhone',13));
($field[$i] eq "FaxPhone")&&(&MakeField('Fax','FaxPhone',13));
($field[$i] eq "Comments")&&($comment=1);
($field[$i] eq "Contact")&&($contact=1);
($field[$i] eq "file")&&($file=1);
}

###do user defined fields
foreach my $i (sort keys(%in)){
($i =~ /^useudf.*/)&&(push(@udfs,$i));
}
##sort
foreach my $i (@udfs){
($fieldnum) = $i =~ /^useudf(.*)/;
($fieldnum > $maxudf)&&($maxudf=$fieldnum);
}

foreach my $x (1..$maxudf){
my $i = "useudf$x";
$bold = '';
$line = '';
next if ($in{$i} ne "checked");
($fieldnum) = $i =~ /^useudf(.*)/;
($in{'requdf'.$fieldnum} eq 'checked')&&($bold='<b>')&&($bold{$in{'fnudf'.$fieldnum}} = '<b>')&&(push(@reqfields,$in{'fnudf'.$fieldnum}));
($in{'typeudf'.$fieldnum} ne "HTML")&&(!$in{'fnudf'.$fieldnum})&&(&PError("Error. Please enter a field name for user defined field number $fieldnum"));
($in{'typeudf'.$fieldnum} eq "TEXT")&&(&MakeField($in{'capudf'.$fieldnum},$in{'fnudf'.$fieldnum},$in{'tsizeudf'.$fieldnum}));
($in{'typeudf'.$fieldnum} eq "TEXTAREA")&&(&TextArea($in{'capudf'.$fieldnum},$in{'fnudf'.$fieldnum},$in{'tawidthudf'.$fieldnum},$in{'taheightudf'.$fieldnum}));


if($in{'typeudf'.$fieldnum} eq "HTML"){
$line = "<tr>
<td valign=top colspan=2>".
$in{'optionsudf'.$fieldnum}
."
</td></tr>
";
}

if($in{'typeudf'.$fieldnum} eq "UPLOAD"){
&FUpload($in{'capudf'.$fieldnum},$in{'fnudf'.$fieldnum});
push(@atmts,"$in{'fnudf'.$fieldnum}~$in{'maxsudf'.$fieldnum}~$in{'fextudf'.$fieldnum}");
}

if ($in{'typeudf'.$fieldnum} eq "CHECKBOX"){
push(@allfields,"$in{'capudf'.$fieldnum}~$in{'fnudf'.$fieldnum}");
$line = "<tr>
<td align=right valign=top nowrap><font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" >$bold
$in{'capudf'.$fieldnum}:</b></font></td><td align=left valign=top nowrap>
<font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" >
";
@options = split(/\r*\n/,$in{'optionsudf'.$fieldnum});
foreach $i (@options){
$line .= "<input type=checkbox name=\"$in{'fnudf'.$fieldnum}\" value=\"$i\">$i<br>\n";
}
$line .= "</b></font></td></tr>";
}

if ($in{'typeudf'.$fieldnum} eq "DROPDOWN"){
push(@allfields,"$in{'capudf'.$fieldnum}~$in{'fnudf'.$fieldnum}");
$line = "<tr>
<td align=right valign=top nowrap><font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" >$bold
$in{'capudf'.$fieldnum}:</b></font></td><td align=left valign=top nowrap>
<font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" >
";
$line .= "<select name=\"$in{'fnudf'.$fieldnum}\" size=\"$in{'dsizeudf'.$fieldnum}\">\n";
@options = split(/\r*\n/,$in{'optionsudf'.$fieldnum});
foreach $i (@options){
$line .= "<option>$i</option>\n";
}
$line .="</select></td></tr>\n";
}

if ($in{'typeudf'.$fieldnum} eq "RADIO"){
push(@allfields,"$in{'capudf'.$fieldnum}~$in{'fnudf'.$fieldnum}");
$line = "<tr>
<td align=right valign=top nowrap><font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" >$bold
$in{'capudf'.$fieldnum}:</b></font></td><td align=left valign=top>
<font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" >
";
@options = split(/\r*\n/,$in{'optionsudf'.$fieldnum});
foreach $i (@options){
$line .= "<input type=radio name=\"$in{'fnudf'.$fieldnum}\" value=\"$i\">$i <br>";
}
$line .="\n</td></tr>";
}

$in{'formline'} .=$line;
}

($comment)&&(&TextArea('Comments','Comments',40,6));
($contact)&&(&Radio('Contact Required','Contact','Yes','No'));
($file)&&(&FUpload('File Upload','file'));

$in{'allfields'} = join(",",@allfields);
$in{'reqfields'} = join(",",@reqfields);
$in{'uploadfields'} = join("»",@atmts);

$in{'results'} =~ s/\r*\n/\\n/g;
$in{'results'} =~ s/([^\w\s])/'&#'.ord($1).';'/ge;
$in{'reply'} =~ s/\r*\n/\\n/g;
$in{'reply'} =~ s/([^\w\s])/'&#'.ord($1).';'/ge;
$in{'redirecttext'} =~ s/\r*\n/\\n/g;
$in{'redirecttext'} =~ s/([^\w\s])/'&#'.ord($1).';'/ge;


$in{'in'} = $in;

if($in{'overwrite'}){
my $sfile = &CheckSafe("${cgipath}/t_Form.htm");
open(OUT,"$sfile");
$sfile = &CheckSafe("${formdir}/$in{'formname'}.htm");
open(SAVE,">$sfile") || (&PError($!));
while(<OUT>){
$_ =~ s/in\(([\w\-\_]+)\)/$in{$1}/g;
print SAVE;
}
close OUT;
close SAVE;
}
my $sfile = &CheckSafe("${formdir}/$in{'formname'}.cgi");
open(OUT,">$sfile");
print OUT <<"EOF";
<input type=hidden name=in value="$in{'in'}">
<input type=hidden name=form-allfields value="$in{'allfields'}">
<input type=hidden name=form-reqfields value="$in{'reqfields'}">
<input type=hidden name=form-name value="$in{'formname'}">
<input type=hidden name=form-to value="$in{'sfr'}">
<input type=hidden name=form-from value="$in{'sff'}">
<input type=hidden name=form-subject value="$in{'fsubject'}">
<input type=hidden name=form-results value="$in{'results'}">
<input type=hidden name=form-extfile value="$in{'extfile'}">
<input type=hidden name=form-autoresponse value="$in{'autoresponse'}">
<input type=hidden name=form-replyfrom value="$in{'replyfrom'}">
<input type=hidden name=form-replysubject value="$in{'replysubject'}">
<input type=hidden name=form-reply value="$in{'reply'}">
<input type=hidden name=form-formheading value="$in{'formheading'}">
<input type=hidden name=form-hfontsize value="$in{'hfontsize'}">
<input type=hidden name=form-hfontcolor value="$in{'hfontcolortxt'}">
<input type=hidden name=form-hfontface value="$in{'hfontface'}">
<input type=hidden name=form-fontsize value="$in{'fontsize'}">
<input type=hidden name=form-fontcolor value="$in{'fontcolortxt'}">
<input type=hidden name=form-fontface value="$in{'fontface'}">
<input type=hidden name=form-redirect value="$in{'redirect'}">
<input type=hidden name=form-redirecttext value="$in{'redirecttext'}">
<input type=hidden name=form-contact value="$in{'Contact'}">
<input type=hidden name=form-attachment value="$in{'attachment'}">
<input type=hidden name=form-attachment2 value="$in{'attachment2'}">
<input type=hidden name=form-attachment3 value="$in{'attachment3'}">
<input type=hidden name=form-attachment4 value="$in{'attachment4'}">
<input type=hidden name=form-attachment5 value="$in{'attachment5'}">
<input type=hidden name=form-attachment6 value="$in{'attachment6'}">
<input type=hidden name=form-attachment7 value="$in{'attachment7'}">
<input type=hidden name=form-attachment8 value="$in{'attachment8'}">
<input type=hidden name=form-resultshtml value="$in{'resultshtml'}">
<input type=hidden name=form-autohtml value="$in{'autohtml'}">
<input type=hidden name=form-cc value="$in{'cc'}">
<input type=hidden name=form-bcc value="$in{'bcc'}">
<input type=hidden name=form-backgnd value="$in{'backgnd'}">
<input type=hidden name=form-header value="$in{'header'}">
<input type=hidden name=form-footer value="$in{'footer'}">
<input type=hidden name=form-maxsize value="$in{'maxsize'}">
<input type=hidden name=form-uploads value="$in{'uploadfields'}">
EOF

print <<"EOF";
<script language=javascript>
var rndURL = (1000*Math.random());
alert("Form Saved!");
window.location = "$in{'cgiurl'}?command=manage&rnd="+rndURL;
</script>
EOF

}

sub TextArea{
my($lbl,$fldnm,$cols,$rows) = @_;
push(@allfields,"$lbl~$fldnm");
$in{'formline'} .= "<tr>
    <td align=right valign=top nowrap><font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" >$bold{$fldnm}$lbl:</b></font></td>
    <td nowrap><textarea name=\"$fldnm\" cols=$cols rows=$rows></textarea></td>
  </tr>";
}

sub Radio{
my($lbl,$fldnm,@options) = @_;
push(@allfields,"$lbl~$fldnm");
$in{'Contact'} = 'YES';
$in{'formline'} .= "<tr>
    <td align=right valign=top nowrap><font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" >$bold{$fldnm}$lbl:</b></font></td>
    <td nowrap><font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" ><input type=radio name=\"$fldnm\" value=YES checked> Yes <input type=radio name=\"$fldnm\" value=NO> No</td>
  </tr>";
}

sub FUpload{
my($lbl,$fldnm,@options) = @_;
push(@allfields,"$lbl~$fldnm");
$in{'formline'} .= "<tr>
    <td align=right valign=top nowrap><font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" >$bold{$fldnm}$lbl:</b></font></td>
    <td nowrap><font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" ><input type=file name=\"$fldnm\"></td>
  </tr>";
}

sub MakeField{
my($lbl,$fldnm,$sz) = @_;
push(@allfields,"$lbl~$fldnm");
$label = $lbl;
$fieldname=$fldnm;
$size = $sz;
$in{'formline'} .= "<tr>
    <td align=right valign=top nowrap><font face=\"$in{'fontface'}\" size=\"$in{'fontsize'}\" color=\"\#$in{'fontcolortxt'}\" >$bold{$fldnm}$label:</b></font></td>
    <td nowrap><input name=\"$fieldname\" size=\"$size\"></td>
  </tr>";
}

sub ShowAdd{
my ($type) = @_;
my @field = split(/\\0/,$in{'field'});
my @req = split(/\\0/,$in{'req'});
foreach my $i (@field){
  $in{"f$i"}="checked";
  }
foreach my $i (@req){
  $in{"r$i"}="checked";
  }
(!$in{'items'})&&($in{'items'} = 1);
($in{'B1'} eq "Add New Field")&&($in{'items'}++);
$in{'tcommand'} = "createform";
($type eq 'modify')?($in{'button'} = " Save Changes "):($in{'button'} = " Create Form ");
foreach my $i (1..$in{'items'}){
   $in{'newudf'} .= &GetUDF($i);
  }
##default values
(!$in{'hfontface'})&&($in{'hfontface'} = 'verdana,arial,helvetica');
(!$in{'hfontsize'})&&($in{'hfontsize'} = '2');
(!$in{'fontface'})&&($in{'fontface'} = 'verdana,arial,helvetica');
(!$in{'fontsize'})&&($in{'fontsize'} = '2');
(!$in{'fontcolortxt'})&&($in{'fontcolortxt'} = '000000');
(!$in{'backcolortxt'})&&($in{'backcolortxt'} = 'FFFFFF');
(!$in{'hfontcolortxt'})&&($in{'hfontcolortxt'} = '000000');
($in{'autoresponse'} eq "YES")&&($in{'autoYES'} = 'checked');

(-e "$exportdir/$in{'formname'}.csv")&&($in{'expview'} = "[<a href=\"$exporturl/$in{'formname'}.csv\" target=\"_blank\">view</a>]");
(-e "$exportdir/$in{'formname'}.csv.cgi")&&($in{'expview'} = "[<a href=\"$in{'cgiurl'}/$in{'formname'}.csv\" target=\"_blank\">view</a>]");

&PageOut("$cgipath/t_Mailto_Form.htm");
exit;
}


sub GetUDF{
my($i) = @_;
my($u1,$u2,$u3,$u4,$u5,$u6,$u7,$u8,$u9,$u10,$u11,$u12,$u13,$u14,$u15,$u16,$u17,$u18);
$u1 = $in{"capudf$i"};
$u2 = $in{"fnudf$i"};
$u3 = $in{"tsizeudf$i"};
$u4 = $in{"taheightudf$i"};
$u5 = $in{"tawidthudf$i"};
$u6 = $in{"dsizeudf$i"};
$u7 = $in{"optionsudf$i"};
$u8 = $in{"useudf$i"};
$u9 = $in{"requdf$i"};
$u17 = $in{"maxsudf$i"};
$u18 = $in{"fextudf$i"};
($in{"typeudf$i"} eq 'TEXT')&&($u10 = 'checked');
($in{"typeudf$i"} eq 'TEXTAREA')&&($u11 = 'checked');
($in{"typeudf$i"} eq 'CHECKBOX')&&($u12 = 'checked');
($in{"typeudf$i"} eq 'DROPDOWN')&&($u13 = 'checked');
($in{"typeudf$i"} eq 'RADIO')&&($u14 = 'checked');
($in{"typeudf$i"} eq 'UPLOAD')&&($u15 = 'checked');
($in{"typeudf$i"} eq 'HTML')&&($u16 = 'checked');

my $a = "
<tr>

    <TD align=middle bgColor=#e4dfd6 noWrap width=50><FONT 
      face=Verdana><B><SMALL>Use&nbsp;</SMALL></B></FONT></TD>
    <TD align=middle bgColor=#e4dfd6 noWrap width=50><FONT 
      face=Verdana><B><SMALL>Req.&nbsp;</SMALL></B></FONT></TD>
    <TD align=left bgColor=#e4dfd6 noWrap colspan=\"2\"><b><font size=\"2\">User-defined
      field #$i</font></b> <font size=1>[<a href=\"javascript:MoveUp('$i');\">Move Up</a>] [<a href=\"javascript:MoveDown('$i');\">Move Down</a>] [<a href=\"javascript:DeleteUDF('$i');\">Delete</a>]</font></TD>
  </tr>
  <tr>
  
    <TD align=middle bgColor=#dee4e0 noWrap vAlign=top width=50><INPUT 
      name=useudf$i type=checkbox value=checked $u8></TD>
    <TD align=middle bgColor=#dee4e0 noWrap vAlign=top width=50><INPUT 
      name=requdf$i type=checkbox value=checked $u9></TD>
    <TD align=left bgColor=#dee4e0 noWrap vAlign=top colspan=\"2\">&nbsp;<font size=\"2\">Caption:<input type=\"text\" name=\"capudf$i\" size=\"20\" value=\"$u1\">
      Fieldname:<input type=\"text\" name=\"fnudf$i\" size=\"20\" value=\"$u2\"><br>
      <div align=\"center\">
        <center><table border=\"1\" cellpadding=\"2\" cellspacing=\"0\" bordercolordark=\"#FFFFFF\" bordercolorlight=\"#000000\">
            <tr>
              <td nowrap colspan=\"7\" bgcolor=\"#E4DFD6\"><font face=\"Verdana, helvitica, arial\" size=\"2\"><b>Field
                Type</b></font><font face=\"Verdana, helvitica, arial\" size=\"1\">&nbsp;</font></td>
            </tr>
            <tr>
              <td nowrap valign=top valign=\"middle\" align=\"center\">
                <table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">
                  <tr>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"2\"><input type=\"radio\" name=\"typeudf$i\" value=\"TEXT\" $u10></font></td>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"2\">Text</font></td>
                  </tr>
                </table>
              </td>
              <td nowrap valign=top valign=\"middle\" align=\"center\" bgcolor=\"#DEE4E0\">
                <table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">
                  <tr>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"2\"><input type=\"radio\" name=\"typeudf$i\" value=\"TEXTAREA\" $u11></font></td>
                    <td nowrap valign=top><font face=\"Verdana, helvitica, arial\" size=\"2\">Text
                Area</font></td>
                  </tr>
                </table>
              </td>
              <td nowrap valign=top valign=\"top\" align=\"center\" rowspan=\"2\">
                <table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">
                  <tr>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"2\"><input type=\"radio\" name=\"typeudf$i\" value=\"CHECKBOX\" $u12></font></td>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"2\">Checkbox&nbsp;</font></td>
                  </tr>
                </table>
              </td>
              <td nowrap valign=top valign=\"middle\" align=\"center\" bgcolor=\"#DEE4E0\">
                <table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">
                  <tr>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"2\"><input type=\"radio\" name=\"typeudf$i\" value=\"DROPDOWN\" $u13></font></td>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"2\">Dropdown</font></td>
                  </tr>
                </table>
              </td>
              <td nowrap valign=top valign=\"top\" align=\"center\" rowspan=\"2\">
                <table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">
                  <tr>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"2\"><input type=\"radio\" name=\"typeudf$i\" value=\"RADIO\" $u14></font></td>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"2\">Radio</font></td>
                  </tr>
                </table>
              </td>
              <td nowrap valign=top valign=\"top\" align=\"center\" rowspan=\"2\">
	                      <table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">
	                        <tr>
	                          <td><font face=\"Verdana, helvitica, arial\" size=\"2\"><input type=\"radio\" name=\"typeudf$i\" value=\"UPLOAD\" $u15></font></td>
	                          <td><font face=\"Verdana, helvitica, arial\" size=\"2\">Upload</font></td>
	                        </tr>
	                        <tr>
				<td><font face=\"Verdana, helvitica, arial\" size=\"1\"><input type=\"text\" name=\"maxsudf$i\" value=\"$u17\" size=3></font></td>
				<td><font face=\"Verdana, helvitica, arial\" size=\"1\">Max Size (KB)</font></td>
	                        </tr>
	                        <tr>
				<td><font face=\"Verdana, helvitica, arial\" size=\"1\"><input type=\"text\" name=\"fextudf$i\" value=\"$u18\" size=3></font></td>
				<td><font face=\"Verdana, helvitica, arial\" size=\"1\">Allowed Extensions</font></td>
	                        </tr>
	                      </table>
              </td>
             <td valign=\"top\" align=\"center\" rowspan=\"2\">
	      	                      <table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">
	      	                        <tr>
	      	                          <td><font face=\"Verdana, helvitica, arial\" size=\"2\"><input type=\"radio\" name=\"typeudf$i\" value=\"HTML\" $u16></font></td>
	      	                          <td><font face=\"Verdana, helvitica, arial\" size=\"2\">HTML</font></td>
	      	                        </tr>
	      	                      </table>
	      <font face=\"Verdana, helvitica, arial\" size=\"1\">Enter HTML in the optional parameters field.                      
              </td>
            </tr>
            <tr>
              <td nowrap valign=top valign=\"middle\" align=\"center\">
                <table border=\"0\" width=\"100%\" cellspacing=\"0\" cellpadding=\"0\">
                  <tr>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"1\">Size:</font></td>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"1\"><input type=\"text\" name=\"tsizeudf$i\" size=\"2\" value=\"$u3\"></font></td>
                  </tr>
                </table>
              </td>
              <td nowrap valign=top valign=\"middle\" align=\"center\" bgcolor=\"#DEE4E0\">
                <table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">
                  <tr>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"1\">Height:</font></td>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"1\"><input type=\"text\" name=\"taheightudf$i\" size=\"2\" value=\"$u4\"></font></td>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"1\">Width:</font></td>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"1\"><input type=\"text\" name=\"tawidthudf$i\" size=\"2\" value=\"$u5\"></font></td>
                  </tr>
                </table>
              </td>
      </font>
              <td nowrap valign=top valign=\"middle\" align=\"center\" bgcolor=\"#DEE4E0\"><table border=\"0\" cellspacing=\"0\" cellpadding=\"0\">
                  <tr>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"1\">Rows</font><font size=\"2\"><font face=\"Verdana, helvitica, arial\" size=\"2\">:</font></font></td>
                    <td><font face=\"Verdana, helvitica, arial\" size=\"1\"><input type=\"text\" name=\"dsizeudf$i\" size=\"2\" value=\"$u6\"></font></td>
                  </tr>
                </table>
</td>
            </tr>
            <tr>
              <td nowrap valign=top colspan=\"7\" bgcolor=\"#E4DFD6\"><font face=\"Verdana, helvitica, arial\" size=\"2\"><b>Option
                Parameters</b></font><font face=\"Verdana, helvitica, arial\" size=\"1\">
                (list all the options, each on separate line)</font></td>
            </tr>
            <tr>
              <td valign=\"top\" align=\"left\" colspan=\"7\">
                <table border=\"0\" width=\"100%\" cellspacing=\"0\" cellpadding=\"0\">
                  <tr>
                    <td valign=\"top\" align=\"left\"><font face=\"Verdana, helvitica, arial\" size=\"1\">Example,
                      if the form was asking what your favorite color was. Type
                      it like this in the box to the right:</font><font face=\"Verdana, helvitica, arial\" size=\"2\"><br>
                      </font><font face=\"Courier New\" size=\"1\"><b>Red<br>
                      Blue<br>
                      Green</b></font></td>
                    <td valign=\"top\" align=\"right\"><font size=\"2\" face=\"Verdana, helvitica, arial\"><textarea rows=\"4\" name=\"optionsudf$i\" cols=\"25\">$u7</textarea></font></td>
                  </tr>
                </table>
              </td>
            </tr>
          </table></center>
      </div>
      </TD>
</tr>
";
return $a;
}


sub ShowLinks{
my $ssiurl = $in{'formurl'};
$ssiurl =~ s/http:\/\/.*?\//\//i;
$ssiurl =~ s/\/\//\//g;
$in{'disurl'} = "<!--#include virtual=\"$ssiurl/$in{'form'}\" -->";
$in{'dirurl'} = "$in{'formurl'}/$in{'form'}";
$in{'dirurl'} =~ s/([^:])\/\//$1\//g;
my $rn = &GetRealName($in{'form'});
$rn =~ s/\.htm//g;
$in{'jsurl'} = qq|<script language=javascript src="$in{'cgiurl'}?command=showform&form=$rn"></script>|;
&PageOut("$cgipath/t_show_links.htm");
exit;
}

sub GetRealName{
my ($filename) = @_;
my(@array,$real_name);
    if ($filename =~ /\//) {
	@array = split(/\//, $filename);
	$real_name = pop(@array);
    } elsif ($filename =~ /\\/) {
	@array = split(/\\/, $filename);
	$real_name = pop(@array);
    } else {
	$real_name = "$filename";
    }
return $real_name;
}


sub getfieldsfromform{
my($formname);
#clear out the fields:
$in{'form-allfields'} = '';
$in{'form-reqfields'} = '';
$in{'form-to'} = '';
$in{'form-from'} = '';
$in{'form-subject'} = '';
$in{'form-results'} = '';
$in{'form-extfile'} = '';
$in{'form-autoresponse'} = '';
$in{'form-replyfrom'} = '';
$in{'form-replysubject'} = '';
$in{'form-reply'} = '';
$in{'form-hfontsize'} = '';
$in{'form-hfontcolor'} = '';
$in{'form-hfontface'} = '';
$in{'form-fontsize'} = '';
$in{'form-fontcolor'} = '';
$in{'form-fontface'} = '';
$in{'form-redirect'} = '';
$in{'form-redirecttext'} = '';
$in{'form-contact'} = '';
$in{'form-attachment'} = '';
$in{'form-attachment2'} = '';
$in{'form-attachment3'} = '';
$in{'form-attachment4'} = '';
$in{'form-attachment5'} = '';
$in{'form-attachment6'} = '';
$in{'form-attachment7'} = '';
$in{'form-attachment8'} = '';
$in{'form-resultshtml'} = '';
$in{'form-autohtml'} = '';
$in{'form-cc'} = '';
$in{'form-bcc'} = '';
$in{'form-backgnd'} = '';
$in{'form-header'} = '';
$in{'form-footer'} = '';
$in{'form-maxsize'} = '';
$in{'form-uploads'} = '';

if(-e "$formdir/$in{'form-name'}.cgi"){
  $formname = "$in{'form-name'}.cgi";
  }
else{
  $formname = "$in{'form-name'}.htm";
  }

my $sfile = &CheckSafe("$formdir/$formname");
open(FILE,"$sfile")||(&PError("Error. Invalid form!"));

while(<FILE>){

if($_ =~ /<input type=hidden name=form-allfields value=\"(.*)\">/){
  $in{'form-allfields'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-reqfields value=\"(.*)\">/){
  $in{'form-reqfields'} = $1;
  }

if($_ =~ /<input type=hidden name=form-to value=\"(.*)\">/){
  $in{'form-to'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-from value=\"(.*)\">/){
  $in{'form-from'} = $1;
  }

if($_ =~ /<input type=hidden name=form-subject value=\"(.*)\">/){
  $in{'form-subject'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-results value=\"(.*?)\">/s){
  $in{'form-results'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-extfile value=\"(.*)\">/){
  $in{'form-extfile'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-autoresponse value=\"(.*?)\">/s){
  $in{'form-autoresponse'} = $1;
  }

if($_ =~ /<input type=hidden name=form-replyfrom value=\"(.*)\">/){
  $in{'form-replyfrom'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-replysubject value=\"(.*)\">/){
  $in{'form-replysubject'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-reply value=\"(.*?)\">/s){
  $in{'form-reply'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-formheading value=\"(.*)\">/){
  $in{'form-formheading'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-hfontsize value=\"(.*)\">/){
  $in{'form-hfontsize'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-hfontcolor value=\"(.*)\">/){
  $in{'form-hfontcolor'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-hfontface value=\"(.*)\">/){
  $in{'form-hfontface'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-fontsize value=\"(.*)\">/){
  $in{'form-fontsize'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-fontcolor value=\"(.*)\">/){
  $in{'form-fontcolor'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-fontface value=\"(.*)\">/){
  $in{'form-fontface'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-redirect value=\"(.*)\">/){
  $in{'form-redirect'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-redirecttext value=\"(.*)\">/){
  $in{'form-redirecttext'} = $1;
  }
  
  
if($_ =~ /<input type=hidden name=form-contact value=\"(.*)\">/){
  $in{'form-contact'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-attachment value=\"(.*)\">/){
  $in{'form-attachment'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-attachment2 value=\"(.*)\">/){
  $in{'form-attachment2'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-attachment3 value=\"(.*)\">/){
  $in{'form-attachment3'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-attachment4 value=\"(.*)\">/){
  $in{'form-attachment4'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-attachment5 value=\"(.*)\">/){
  $in{'form-attachment5'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-attachment6 value=\"(.*)\">/){
  $in{'form-attachment6'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-attachment7 value=\"(.*)\">/){
  $in{'form-attachment7'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-attachment8 value=\"(.*)\">/){
  $in{'form-attachment8'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-resultshtml value=\"(.*)\">/){
  $in{'form-resultshtml'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-autohtml value=\"(.*)\">/){
  $in{'form-autohtml'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-cc value=\"(.*)\">/){
  $in{'form-cc'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-bcc value=\"(.*)\">/){
  $in{'form-bcc'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-backgnd value=\"(.*)\">/){
  $in{'form-backgnd'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-header value=\"(.*)\">/){
  $in{'form-header'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-footer value=\"(.*)\">/){
  $in{'form-footer'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-maxsize value=\"(.*)\">/){
  $in{'form-maxsize'} = $1;
  }
  
if($_ =~ /<input type=hidden name=form-uploads value=\"(.*)\">/){
  $in{'form-uploads'} = $1;
  }

}
close FILE;

}

sub checkmethods{

if ($ENV{'REQUEST_METHOD'} eq "GET") {
  ($in{'command'} eq "mailform")&&(&PError("Invalid Request Method!"));
  ($in{'command'} eq "upload")&&(&PError("Invalid Request Method!"));
  ($in{'command'} eq "setcolor")&&(&PError("Invalid Request Method!"));
  ($in{'command'} eq "createform")&&(&PError("Invalid Request Method!"));
  ($in{'command'} eq "")&&($in{'form-name'})&&(&PError("Invalid Request Method!"));
  }

}


sub CheckSafe{
my ($file) = @_;
($file =~ /\.\./)&&(&PError("Error. Invalid filename"));
($file =~ /\|/)&&(&PError("Error. Invalid filename"));
return $file;
}