Размер файла: 3.19Kb
<?php
error_reporting(0);
$urls='ban.php';
include("config.php");
include("./includes/".$ver."/banned");
list($msec, $sec) = explode(chr(32), microtime());
$headtime = $sec + $msec;
$nocache = rand(10000, 99999);
header ("Content-type: text/html; charset=utf-8");
header("Last-Modified: ".gmdate("D, d M Y H:i:s")." GMT");
header("Cache-Control: no-cache, must-relative");
include("./template/head.php");
//AUTH
$q = mysql_query("SELECT `level` FROM `chat_users` WHERE `id` = '".$id."' AND `password` = '".$password."';");
if(mysql_num_rows($q) == 0)
{
include("./reginc.php");
include("./template/foot.php");
exit();
}
//END AUTH
//ONLINE
$online = time() + 60;
$update = mysql_query("UPDATE `chat_users` SET `time` = '".$online."', `place` = 0 WHERE `id` = '".$id."';");
//END ONLINE
$level = mysql_result($q, 0);
if($level < 3)
{
echo "Доступ запрещен<br/>\n";
include("./template/foot.php");
exit();
}
$uid = intval($_GET['uid']);
$sql = mysql_query("SELECT `level`, `nickname` FROM `chat_users` WHERE `id` = '".$uid."';");
if(mysql_num_rows($sql) == 0)
{
echo "Пользователь не найден в базе данных.<br/>\n";
include("./template/foot.php");
exit();
}
else
{
$lev = mysql_result($sql, 0, 'level');
$nick = mysql_result($sql, 0, 'nickname');
}
if($lev > $level or $uid == 1)
{
echo "Вы не можете блокировать данного пользователя. Нет прав.<br/>\n";
include("./template/foot.php");
exit();
}
//ONLINE
$online = time() + 60;
$update = mysql_query("UPDATE `chat_users` SET `time` = '".$online."', `place` = 0, `ip` = '".getenv('REMOTE_ADDR')."', `ua` = '".htmlspecialchars(getenv('HTTP_USER_AGENT'))."' WHERE `id` = '".$id."';");
//END ONLINE
if(isset($_GET['act']))
{
$sql = mysql_query("SELECT * FROM `chat_banned_nicknames` WHERE `nickname` = '".$nick."';");
if(mysql_affected_rows() == 0)
{
mysql_query("DELETE FROM `chat_users` WHERE `nickname` = '".$nick."';");
mysql_query("INSERT INTO `chat_banned_nicknames` SET `nickname` = '".$nick."';");
//LOGS
$query = mysql_query("SELECT `nickname` FROM `chat_users` WHERE `id` = '".$id."';");
$moder = mysql_result($query, 0);
$q = mysql_query("INSERT INTO `chat_logs` VALUES(0, '".$moder."', 2, '".$nick."', '', '".date("d-m-y H:i:s")."', ".time().");");
echo "Ник ".$nick." уcпешно забанен.<br/>\n";
}
else
{
echo "Ник ".$nick." уже забанен.<br/>\n";
}
}
else
{
echo "Вы уверены, что хотите забанить никнейм \"$nick\"?<br/>\n";
if(!empty($_GET['rid'])) echo "<a href=\"ban.php?act=ban&nocache=$nocache&uid=$uid&rid=".intval($_GET['rid'])."\">[Да]</a> <a href=\"room.php?rid=".intval($_GET['rid'])."\">[Нет]</a><br/>\n";
if(!empty($_GET['key'])) echo "<a href=\"ban.php?act=ban&nocache=$nocache&uid=$uid&key=".$_GET['key']."\">[Да]</a> <a href=\"intim.php?key=".$_GET['key']."\">[Нет]</a><br/>\n";
}
if(!empty($_GET['rid'])) echo "<a href=\"room.php?rid=".intval($_GET['rid'])."\">В чат</a><br/>\n";
if(!empty($_GET['key'])) echo "<a href=\"intim.php?key=".$_GET['key']."\">В чат</a><br/>\n";
echo "<a href=\"index.php\">Меню чата</a><br/>";
include("./template/foot.php");
break;
?>