ONu $ONu

<?
include("topstuff.php");
// require_once("errorcheck.php");
//include("checkvars.php");
if($HTTPS){
// echo "<h1> SECURE</h1>";
	$securepath="https://secure.bizshop.com";
	$path="http://bizshop.com";
}else {
	$path="http://bizshop.com";
}
include("buyerstuff.php");
//include("testdb.php");
mysql("$DBName","INSERT INTO Orders VALUES ('$BID','$UserID','$Date','$OrderTotal','')");
$ONu=mysql_insert_id();
//echo "<h1>ONu $ONu</h1>";
mysql("$DBName","INSERT INTO shipTo VALUES ('$shipFName','$shipLName','$shipCompany','$shipAddA','$shipAddB','$shipCity','$shipState','$shipZip','$shipCountry','$shipPhone','$shipEmail','$BID','$ONu')");
mysql("$DBName","UPDATE Buyers SET OrderNumber='$ONu' WHERE BuyerID='$BID'");


$result=mysql( "$DBName", "SELECT * FROM Buyers WHERE BuyerID='$BID'");
while ($row=mysql_fetch_row($result)) {
include("Selectfrom_Buyer.php");
}
$UserID=$UID;
// echo "<h1><font color=green>UserID $UserID</font></h1>";
$result=mysql("$DBName","SELECT * FROM CartItems WHERE UserID='$UserID'");
while ($row  =  mysql_fetch_row($result)) {
$CartUserID=$row[0];
$CartItemSKU=$row[1];
$CartItemsQty=$row[2];
$CartNotes=$row[3];
$CartShipping=$row[4];
$CartDate=$row[5];
$CartItemsID=$row[6];
	$result2=mysql("$DBName","SELECT * FROM Items WHERE ItemID='$CartItemSKU'");
	while ($row2=mysql_fetch_row($result2)) {
	$ItemSKU=$row2[0];
if (strpos($ItemSKU,'CD')){
	$ThisisCD=$IIS;
	$ISC='0.00';
}
	$ItemName=$row2[1];
	$ItemDescription=$row2[2];
	$ItemCost=$row2[3];
	$ItemCategory=$row2[4];
	$ItemShipping=$row2[5];
	$ItemID=$row2[6];

// $To[$i]=(($CartItemsQty * $ItemCost)+($CartItemsQty * $ItemShipping));
$To[$i]=($CartItemsQty * $ItemCost);
mysql("$DBName","INSERT INTO Receipts VALUES (
'$BID','$UserID','$ONu',
'$Date','$ItemID','$ItemSKU','$ItemName','$Note',
'$ItemCost','$ShipMethod','$ItemShipping','$CartItemsQty','$Tax','$To[$i]','$Shipped','$Paid')");
mysql("$DBName","INSERT INTO EVENTS VALUES (
'$EventID','$packID','Order Placed for $ItemName',
'$BID','$UserID','$Date','$To[$i]')");
// mysql("$DBName","Update Buyers set Balance=Balance+$To[$i] where BuyerID='$BID'");
$i++;
	}
   
}

// mysql("$DBName","DELETE FROM CartItems WHERE UserID='$UserID'");
// mysql("$DBName","DELETE FROM Users WHERE User='$UserID'");


if ($buyContact == "1") {
$buyContact="Yes";
} else {
$buyContact="No"; }

include("emailstuff.php");