Просмотр файла catalogdeep/test/admin.php

Конкурс дизайнеров на 15000 рублей
Tor+I2P+DNSCrypt
Размер файла: 23.4Kb 
  1. <?php
  2.  
  3. /**
  4. * JAVA download-центр
  5. * (c) USED for МАКСИМКО)))
  6. */
  7.  
  8. session_name ( 'sid' );
  9. session_start ();
  10.  
  11. require_once ( dirname ( __FILE__ ) . "/functions.php" );
  12. require_once ( dirname ( __FILE__ ) . "/config.php" );
  13.  
  14. $start_time	=	microtime ();
  15.  
  16. $style	=	( isset ( $_SESSION['style'] ) AND file_exists ( dirname ( __FILE__ ) . "/style/" . $_SESSION['style'] . ".css" ) ) ? $_SESSION['style'] : '1';
  17. $onpage	=	isset ( $_SESSION['onpage'] ) ? ( int ) $_SESSION['onpage'] : 30;
  18. $order	=	@$_SESSION['order']	==	1 ? " `date` " : " `id` ";
  19. $pg		=	isset ( $_GET['pg'] ) ? ( int ) $_GET['pg'] : 0;
  20. $mod	=	isset ( $_GET['mod'] ) ? $_GET['mod'] : 'sections';
  21.  
  22.  
  23. header ( "Content-type: text/html; charset=utf-8" );
  24. echo myHeader ( "Админ-панель" );
  25.  
  26. if ( isset ( $_POST['pass'] ) )
  27. {
  28. if ( $_POST['pass'] == $admin_pass )
  29. $_SESSION['admin'] = 1;
  30. }
  31. if ( !isset ( $_SESSION['admin'] ) )
  32. {
  33. echo "<form action=\"" . $_SERVER['PHP_SELF'] . "\" method=\"post\">\n";
  34.  
  35. echo "<div class=\"rut\">\n";
  36. echo "Пароль:<br/><input type=\"password\" name=\"pass\"/><br/>\n";
  37. echo "<input type=\"submit\" value=\"Войти\"/>\n";
  38. echo "</div></form>";
  39. echo "<div class=\"rut2\"><a href=\"/\">На главную</a></div>\n";
  40. echo myFooter ();
  41.  
  42. $open	=	opendir ( 'tmp' );
  43. while ( $file	=	readdir ( $open ) )
  44. {
  45. if ( is_file ( 'tmp/' . $file ) )
  46. @unlink ( 'tmp/' . $file );
  47. }
  48. closedir ( $open );
  49.  
  50. exit ();
  51. }
  52.  
  53. mysql_connect ( $mysql_host, $mysql_user, $mysql_password ) &&
  54. mysql_select_db ( $mysql_database ) OR
  55. die ( "<html><body>Зайдите позже, серверу щас некогда</body></html>" );
  56.  
  57. mysql_unbuffered_query ( "SET NAMES 'utf8'" );
  58.  
  59. switch ( $mod )
  60.  
  61. {
  62.  
  63. default:
  64.  
  65. echo "<div class=\"title\">Админка</div>\n";
  66. echo "<div class=\"menu\">\n";
  67. echo "&#xbb; <a href=\"" . $_SERVER['PHP_SELF'] . "?mod=sections\">Управление разделами</a><br/>\n";
  68. echo "</div>";
  69.  
  70. break;
  71.  
  72. case 'sections':
  73. echo "<div class=\"rut\">Управление разделами</div>\n";
  74. echo "<div class=\"rut2\">\n";
  75. // Создание раздела
  76. if ( isset ( $_POST['new'] ) )
  77. {
  78. if (mysql_result(mysql_query("SELECT COUNT(*) FROM `java_sections` WHERE `name`='".mysql_real_escape_string($_POST['new'])."' LIMIT 1 " ), 0 ) == 0 )
  79. {
  80. mysql_query ( "INSERT INTO `java_sections` ( `name` ) VALUES ( '" . mysql_real_escape_string ( $_POST['new'] ) . "')" ) ? print "Раздел успешно создан!" : print ( "Ошибка создания раздела ( " . mysql_error () . ")" );
  81. echo "<br/><br/>\n";
  82. }
  83. }
  84. $query	=	mysql_query ( "SELECT * FROM `java_sections` ORDER BY name" );
  85. while ($row = mysql_fetch_array($query))
  86. {
  87. echo "&#xbb; <a href=\"" . $_SERVER['PHP_SELF'] . "?mod=list&amp;id=" . $row['id'] . "\">" . stripslashes ( $row['name'] ) . "</a>&nbsp;<a href=\"" . $_SERVER['PHP_SELF'] . "?mod=delsect&amp;id=" . $row['id'] . "\">[X]</a>|<a href=\"" . $_SERVER['PHP_SELF'] . "?mod=sectattr&amp;id=" . $row['id'] . "\">[E]</a><br/>\n";
  88. }
  89. echo "</div>";
  90. echo "<form action=\"" . $_SERVER['PHP_SELF'] . "?mod=sections&amp;\" method=\"post\">\n";
  91. echo "<div class=\"rut\"><b>Создать новый раздел</b></div><div class=\"rut2\"><br/>\n";
  92. echo "Название:<br/>\n";
  93. echo "<input name=\"new\"/><br/>\n";
  94. echo "<input type=\"submit\" value=\"Создать\"/><form></div>";
  95.  
  96. break;
  97. ###############################################################################
  98. case 'editer':
  99. $id		=	intval ( $_GET['id'] );
  100.  
  101. $key	=	intval ( $_GET['key'] );
  102. $finfo	=	mysql_fetch_assoc ( mysql_query ( "SELECT * FROM `java_files` WHERE `id`=" . $id . " LIMIT 1" ) );
  103.  
  104. $urls	=	unserialize ( $finfo['urls'] );
  105. $need	=	$urls[$key];
  106. if ( isset ( $need['url'] ) ){
  107. $url	=	$need['url'];
  108. }else{
  109. $url	=	$need['url2'];}
  110. require_once('pclzip.lib.php');
  111. $zip=new PclZip($url);
  112. $content = $zip->extract(PCLZIP_OPT_BY_NAME, "META-INF/MANIFEST.MF" ,PCLZIP_OPT_EXTRACT_AS_STRING);
  113. $time=time();
  114. $vendor=preg_replace("~^.+MIDlet.Vendor:([^\n]+)\s.+$~is","$1",$content[0]['content']);
  115. if (ereg("MIDlet-Icon: ",$content[0]['content']))
  116. {
  117. $jad=explode("MIDlet-Icon: ",$content[0]['content']);
  118. $icon=str_replace("\n"," ", $jad[1]);
  119. $icon=str_replace("\r"," ", $icon);
  120. $icon=strtok($icon,' ');
  121. $icon=ereg_replace("^/","", $icon);
  122. }
  123. else $icon='icon.png';
  124. $content = $zip->extract(PCLZIP_OPT_BY_NAME, "$icon",PCLZIP_OPT_EXTRACT_AS_STRING);
  125. if (!isset($content[0]['content']) || $content[0]['content']=='')exit;
  126. $j=fopen("ico/$time.png", 'w');
  127. fwrite($j, $content[0]['content']);
  128. fclose($j);
  129. @chmod("ico/$time.png", 0777);
  130. mysql_query('UPDATE `java_files` SET `ico`="'.$time.'" WHERE `id`="'.$id.'";');
  131. mysql_query('UPDATE `java_files` SET `vendor`="'.$vendor.'" WHERE `id`="'.$id.'";');
  132. echo 'vendor: '.$vendor;
  133. echo'<br/>ICON: <img src="ico/'.$time.'.png" alt="ico"/><br/>';
  134. break;
  135. ##############################################################################
  136. case 'sectattr':
  137.  
  138. $id	=	isset ( $_GET['id'] ) ? ( int ) $_GET['id'] : NULL;
  139. echo "<div class=\"rut\">Свойства раздела</div>\n";
  140. echo "<div class=\"rut2\">\n";
  141.  
  142. if ( isset ( $_POST['name'] ) )
  143. {
  144. mysql_query ( "UPDATE `java_sections` SET `name`='" . mysql_real_escape_string ( $_POST['name'] ) . "' WHERE `id`='" . $id . "'" ) ? print "Свойства раздела изменены" : print ( "Ошибка изменения свойств ( " . mysql_error () . ")" );
  145. }
  146. else
  147. {
  148. $info	=	mysql_result ( mysql_query ( "SELECT `name` FROM `java_sections` WHERE `id`='" . $id . "' LIMIT 1" ), 'name' );
  149. echo "<form action=\"" . $_SERVER['PHP_SELF'] . "?mod=sectattr&amp;id=" . $id . "\" method=\"post\">\n";
  150. echo "Имя раздела:<br/><input name=\"name\" value=\"" . stripslashes ( $info ) . "\"/><br/>\n";
  151. echo "<input type=\"submit\" value=\"Изменить\"/></form>\n";
  152. echo "</div>";
  153. }
  154. break;
  155.  
  156. case 'list':
  157.  
  158. $id = isset ( $_GET['id'] ) ? ( int ) $_GET['id'] : NULL;
  159. $title = mysql_result ( mysql_query ( "SELECT `name` FROM `java_sections` WHERE `id`='" . $id . "' LIMIT 1" ), 'name' );
  160. header ( "Content-type: text/html; charset=utf-8" );
  161. echo "<div class=\"rut\">" . stripslashes ( $title ) . "</div>\n";
  162. echo "<div class=\"rut2\">\n";
  163. $query = mysql_query("SELECT * FROM `java_files` WHERE `indir`='".$id."' ORDER BY date DESC LIMIT ".$pg.", ".$onpage);
  164. while ( $row	=	mysql_fetch_array ( $query ) )
  165. {
  166. echo "&#xbb; <a href=\"" . $_SERVER['PHP_SELF'] . "?mod=file&amp;id=" . $row['id'] . "&rz=" . $id . "\">" . stripslashes ( $row['name'] ) . "</a><br/>\n";
  167. }
  168. echo "</div>\n";
  169. echo "<div class=\"rut\"><a href=\"" . $_SERVER['PHP_SELF'] . "?mod=addfile&amp;id=" . $id . "\">Добавить файл</a></div>\n";
  170. $total	=	mysql_result ( mysql_query ( "SELECT COUNT(*) FROM `java_files` WHERE `indir`='" . $id . "'" ), 0 );
  171. if ( $pg >= $onpage )
  172. echo "<a href=\"" . $_SERVER['PHP_SELF'] . "?mod=list&amp;id=" . $id . "&amp;pg=" . ( $pg - $onpage ) . "\">&#xab; Назад</a><br/>\n";
  173. if ( $total > $pg + $onpage )
  174. echo "<a href=\"" . $_SERVER['PHP_SELF'] . "?mod=list&amp;id=" . $id . "&amp;pg=" . ( $pg + $onpage ) . "\">Вперед &#xbb;</a>\n";
  175.  
  176. break;
  177.  
  178. case 'addfile':
  179.  
  180. $id		=	isset ( $_GET['id'] ) ? ( int ) $_GET['id'] : NULL;
  181. $title	=	mysql_result ( mysql_query ( "SELECT `name` FROM `java_sections` WHERE `id`='" . $id . "' LIMIT 1" ), 'name' );
  182. header ( "Content-type: text/html; charset=utf-8" );
  183. echo "<div class=\"rut\">Добавить файл в \"" . stripslashes ( $title ) . "\"</div>\n";
  184. echo "<div class=\"rut2\">\n";
  185. echo "<form action=\"" . $_SERVER['PHP_SELF'] . "?mod=process&amp;id=" . $id . "\" method=\"post\" enctype=\"multipart/form-data\">\n";
  186. echo "Имя файла:<br/>\n";
  187. echo "<input name=\"name\"/><br/>\n";
  188. echo "Описание:<br/>\n";
  189. echo "<textarea name=\"descr\" rows=\"8\" cols=\"26\"></textarea><br/>\n";
  190. echo "Адрес скриншота:<br/>\n";
  191. echo "<input name=\"screenurl\"/><br/>\n";
  192. echo "..или выгрузить скрин:<br/>\n";
  193. echo "<input type=\"file\" name=\"screenfile\"/><br/>\n";
  194. echo "Выгружать <input name=\"num\" style=\"-wap-input-format:'5N'\" size=\"2\" value=\"1\"/> файлов<br/>";
  195. echo "способом <input type=\"radio\" name=\"method\" value=\"import\" checked=\"checked\"/>импорт | <input type=\"radio\" name=\"method\" value=\"upload\"/>upload | <input type=\"radio\" name=\"method\" value=\"write\"/>вписать адрес<br/>\n";
  196. echo "<input type=\"submit\" value=\"Вперед\"/></form>\n";
  197. echo "</div>\n";
  198.  
  199. break;
  200.  
  201. case 'process':
  202.  
  203. echo "<div class=\"rut\">Загружаем файлы</div>\n";
  204. echo "<div class=\"rut2\">\n";
  205. // подгружаем скриншот
  206. $md5	=	md5 ( time () . microtime () );
  207. if ( empty ( $_FILES['screenfile']['error'] ) )
  208. {
  209. $fname	=	$_FILES['screenfile']['name'];
  210. $et		=	explode ( '.', $fname );
  211. $rex	=	strtolower ( $et[count($et) - 1] ); # Расширение файла
  212.  
  213. move_uploaded_file ( $_FILES['screenfile']['tmp_name'], 'tmp/tmp.' . $rex );
  214. markImage ( 'tmp/tmp.' . $rex, 'tmp/' . $md5 . '.png' );
  215. unlink ( 'tmp/tmp.' . $rex );
  216. echo "Скриншот:<br/><img src=\"tmp/" . $md5 . ".png\" alt=\"-\"/><br/>\n";
  217. }
  218. elseif ( isset ( $_POST['screenurl'] ) )
  219. {
  220. $et		=	explode ( '.', $_POST['screenurl'] );
  221. $rex	=	strtolower ( $et[count($et) - 1] ); # Расширение файла
  222. copy ( $_POST['screenurl'], 'tmp/tmp.' . $rex );
  223. markImage ( 'tmp/tmp.' . $rex, 'tmp/' . $md5 . '.png' );
  224. unlink ( 'tmp/tmp.' . $rex );
  225. echo "Скриншот:<br/><img src=\"tmp/" . $md5 . "..png\" alt=\"-\"/><br/>\n";
  226. }
  227. else
  228. echo "Скриншот не загружен..";
  229.  
  230.  
  231. echo "<div class=\"rut\">Загружаем файлы</div>\n";
  232. echo "<div class=\"rut2\">\n";
  233. if ( $_POST['method'] ==	'import' )
  234. {
  235. echo "<form method=\"post\" action=\"" . $_SERVER['PHP_SELF'] . "?mod=uf&amp;id=" . $_GET['id'] . "\">\n";
  236. for ( $i = 1; $i <= $_POST['num']; $i++ )
  237. {
  238. echo "<b>Файл " . $i . ":</b><br/>\n";
  239. echo "Пояснение:<input name=\"descr" . $i . "\"/><br/>\n";
  240. echo "Адрес:<input name=\"url" . $i . "\"/><br/>\n";
  241. }
  242. }
  243. elseif ( $_POST['method'] == 'upload' )
  244. {
  245. echo "<form method=\"post\" action=\"" . $_SERVER['PHP_SELF'] . "?mod=uf&amp;id=" . $_GET['id'] . "\" enctype=\"multipart/form-data\">\n";
  246. for ( $i = 1; $i <= $_POST['num']; $i++ )
  247. {
  248. echo "<b>Файл " . $i . ":</b><br/>\n";
  249. echo "Пояснение:<input name=\"descr" . $i . "\"/><br/>\n";
  250. echo "Файл:<input name=\"file" . $i . "\" type=\"file\"/><br/>\n";
  251. }
  252. }
  253. else
  254. {
  255. echo "<form method=\"post\" action=\"" . $_SERVER['PHP_SELF'] . "?mod=uf&amp;id=" . $_GET['id'] . "\">\n";
  256. for ( $i = 1; $i <= $_POST['num']; $i++ )
  257. {
  258. echo "<b>Файл " . $i . ":</b><br/>\n";
  259. echo "Пояснение:<input name=\"descr" . $i . "\"/><br/>\n";
  260. echo "Адрес (относительно скрипта!):<input name=\"url" . $i . "\"/><br/>\n";
  261. }
  262. }
  263. echo "<input type=\"hidden\" name=\"name\" value=\"" . $_POST['name'] . "\"/>\n";
  264. echo "<input type=\"hidden\" name=\"descr\" value=\"" . $_POST['descr'] . "\"/>\n";
  265. echo "<input type=\"hidden\" name=\"method\" value=\"" . $_POST['method'] . "\"/>\n";
  266. echo "<input type=\"hidden\" name=\"id\" value=\"" . $_GET['id'] . "\"/>\n";
  267. echo "<input type=\"hidden\" name=\"num\" value=\"" . $_POST['num'] . "\"/>\n";
  268. echo "<input type=\"hidden\" name=\"screen\" value=\"" . 'tmp/' . $md5 . ".png\"/>\n";
  269. echo "<input type=\"submit\" value=\"Завершить!\"/>";
  270. echo "</form>\n";
  271.  
  272. break;
  273.  
  274. case 'uf':
  275.  
  276. $id		=	( int ) $_POST['id'];
  277. mysql_query ( "INSERT INTO `java_files` ( `name`, `indir`, `descr`, `date` ) VALUES ( '" . mysql_real_escape_string ( $_POST['name'] ) . "', '" . $id . "', '" . mysql_real_escape_string ( $_POST['descr'] ) . "', '" . time () . "')" );
  278. $fid	=	mysql_insert_id ();
  279. $method	=	$_POST['method'];
  280. $num	=	( int ) $_POST['num'];
  281. $array	=	array ();
  282. if ( $method == 'upload' )
  283. {
  284. for ( $i = 1; $i <= $num; $i++ )
  285. {
  286. $url		=	'file' . $i;
  287. //$url		=	$$url;
  288. //exit($url);
  289. move_uploaded_file ( $_FILES[$url]['tmp_name'], 'files/' . $fid . '_' . $i . '.jar' );
  290. $descr		=	'descr'.$i;
  291. $descr		=	$_POST[$descr];
  292. $array[]	=	array ( 'descr'	=>	$descr, 'url'	=> 'files/' . $fid . '_' . $i . '.jar' );
  293. }
  294. }
  295. elseif ( $method == 'import' )
  296. {
  297. for ( $i = 1; $i <= $num; $i++ )
  298. {
  299. $url		=	$_POST['url' . $i];//echo $url;
  300. //$url		=	$$url;
  301. copy ( $url, 'files/' . $fid . '_' . $i . '.jar' );
  302. $descr		=	$_POST['descr'.$i];
  303. //$descr		=	$_POST[$descr];
  304. $array[]	=	array ( 'descr'	=>	$descr, 'url'	=> 'files/' . $fid . '_' . $i . '.jar' );
  305. }
  306. }
  307. else
  308. {
  309. for ( $i = 1; $i <= $num; $i++ )
  310. {
  311. $url		=	$_POST['url' . $i];//echo $url;
  312. //$url		=	$$url;
  313. //copy ( $url, 'files/' . $fid . '_' . $i . '.jar' );
  314. $descr		=	$_POST['descr'.$i];
  315. //$descr		=	$_POST[$descr];
  316. $array[]	=	array ( 'descr'	=>	$descr, 'url2'	=> $url );
  317. }
  318. }
  319. $arr	=	serialize ( $array );
  320. copy ( $_POST['screen'], 'screen/' . $fid . '.png' );
  321. mysql_query ( "UPDATE `java_files` SET `urls`='" . $arr . "' WHERE `id`='" . $fid . "'" );
  322.  
  323. echo "<div class=\"rut\">Загружаем файлы</div>\n";
  324. echo "<div class=\"rut2\">\n";
  325.  
  326. echo "Файл успешно выгружен<br/>";
  327. echo "<a href=\"admin.php?id=".$fid."&amp;mod=file&rz=".$id."\">К файлу</a></div>\n";
  328. break;
  329.  
  330. #######COSMEXE_DORABOTKA##########
  331. case 'xaddfile':
  332. $rz		=	isset ( $_GET['rz'] ) ? ( int ) $_GET['rz'] : NULL;
  333. $id		=	isset ( $_GET['id'] ) ? ( int ) $_GET['id'] : NULL;
  334. $title	=	mysql_result ( mysql_query ( "SELECT `name` FROM `java_sections` WHERE `id`='" . $rz. "' LIMIT 1" ), 'name' );
  335. header ( "Content-type: text/html; charset=utf-8" );
  336. echo "<div class=\"rut\">Добавить файл в \"".stripslashes($title)."\"</div>\n";
  337. echo "<div class=\"rut2\">\n";
  338. echo "<form action=\"" . $_SERVER['PHP_SELF'] . "?mod=xprocess&amp;rz=" . $rz . "&id=" . $id . "\" method=\"post\" enctype=\"multipart/form-data\">\n";
  339. echo "Выгружать <input name=\"num\" style=\"-wap-input-format:'5N'\" size=\"2\" value=\"1\"/> файлов<br/>";
  340. echo "способом <input type=\"radio\" name=\"method\" value=\"import\" checked=\"checked\"/>импорт | <input type=\"radio\" name=\"method\" value=\"upload\"/>upload | <input type=\"radio\" name=\"method\" value=\"write\"/>вписать адрес<br/>\n";
  341. echo "<input type=\"submit\" value=\"Вперед\"/></form>\n";
  342. echo "</div>\n";
  343.  
  344. break;
  345.  
  346. case 'xprocess':
  347. $id		=	isset ( $_GET['id'] ) ? ( int ) $_GET['id'] : NULL;
  348.  
  349. echo "<div class=\"rut\">Загружаем файлы</div>\n";
  350. echo "<div class=\"rut2\">\n";
  351.  
  352. if ( $_POST['method'] ==	'import' )
  353. {
  354. echo "<form method=\"post\" action=\"" . $_SERVER['PHP_SELF'] . "?mod=xuf&amp;rz=" . $_GET['rz'] . "\">\n";
  355. for ( $i = 1; $i <= $_POST['num']; $i++ )
  356. {
  357. echo "<b>Файл " . $i . ":</b><br/>\n";
  358. echo "Пояснение:<input name=\"descr" . $i . "\"/><br/>\n";
  359. echo "Адрес:<input name=\"url" . $i . "\"/><br/>\n";
  360. }
  361. }
  362. elseif ( $_POST['method'] == 'upload' )
  363. {
  364. echo "<form method=\"post\" action=\"" . $_SERVER['PHP_SELF'] . "?mod=xuf&amp;rz=" . $_GET['rz'] . "\" enctype=\"multipart/form-data\">\n";
  365. for ( $i = 1; $i <= $_POST['num']; $i++ )
  366. {
  367. echo "<b>Файл " . $i . ":</b><br/>\n";
  368. echo "Пояснение:<input name=\"descr" . $i . "\"/><br/>\n";
  369. echo "Файл:<input name=\"file" . $i . "\" type=\"file\"/><br/>\n";
  370. }
  371. }
  372. else
  373. {
  374. echo "<form method=\"post\" action=\"" . $_SERVER['PHP_SELF'] . "?mod=xuf&amp;rz=" . $_GET['rz'] . "\">\n";
  375. for ( $i = 1; $i <= $_POST['num']; $i++ )
  376. {
  377. echo "<b>Файл " . $i . ":</b><br/>\n";
  378. echo "Пояснение:<input name=\"descr" . $i . "\"/><br/>\n";
  379. echo "Адрес (относительно скрипта!):<input name=\"url" . $i . "\"/><br/>\n";
  380. }
  381. }
  382. echo "<input type=\"hidden\" name=\"id\" value=\"" . $id . "\"/>\n";
  383. echo "<input type=\"hidden\" name=\"name\" value=\"" . $_POST['name'] . "\"/>\n";
  384. echo "<input type=\"hidden\" name=\"descr\" value=\"" . $_POST['descr'] . "\"/>\n";
  385. echo "<input type=\"hidden\" name=\"method\" value=\"" . $_POST['method'] . "\"/>\n";
  386. echo "<input type=\"hidden\" name=\"rz\" value=\"" . $_GET['rz'] . "\"/>\n";
  387. echo "<input type=\"hidden\" name=\"num\" value=\"" . $_POST['num'] . "\"/>\n";
  388. echo "<input type=\"hidden\" name=\"screen\" value=\"" . 'tmp/' . $md5 . ".png\"/>\n";
  389. echo "<input type=\"submit\" value=\"Завершить!\"/>";
  390. echo "</form>\n";
  391.  
  392. break;
  393.  
  394. case 'xuf':
  395.  
  396. $fid		=	( int ) $_POST['id'];
  397. $method	=	$_POST['method'];
  398. $num	=	( int ) $_POST['num'];
  399. $array	=	array ();
  400. if ( $method == 'upload' )
  401. {
  402. for ( $i = 1; $i <= $num; $i++ )
  403. {
  404. $url		=	'file' . $i;
  405. //$url		=	$$url;
  406. //exit($url);
  407. move_uploaded_file ( $_FILES[$url]['tmp_name'], 'files/' . $fid . '_' . $i . '.jar' );
  408. $descr		=	'descr'.$i;
  409. $descr		=	$_POST[$descr];
  410. $array[]	=	array ( 'descr'	=>	$descr, 'url'	=> 'files/' . $fid . '_' . $i . '.jar' );
  411. }
  412. }
  413. elseif ( $method == 'import' )
  414. {
  415. for ( $i = 1; $i <= $num; $i++ )
  416. {
  417. $url		=	$_POST['url' . $i];//echo $url;
  418. //$url		=	$$url;
  419. copy ( $url, 'files/' . $fid . '_' . $i . '.jar' );
  420. $descr		=	$_POST['descr'.$i];
  421. //$descr		=	$_POST[$descr];
  422. $array[]	=	array ( 'descr'	=>	$descr, 'url'	=> 'files/' . $fid . '_' . $i . '.jar' );
  423. }
  424. }
  425. else
  426. {
  427. for ( $i = 1; $i <= $num; $i++ )
  428. {
  429. $url		=	$_POST['url' . $i];//echo $url;
  430. //$url		=	$$url;
  431. //copy ( $url, 'files/' . $fid . '_' . $i . '.jar' );
  432. $descr		=	$_POST['descr'.$i];
  433. //$descr		=	$_POST[$descr];
  434. $array[]	=	array ( 'descr'	=>	$descr, 'url2'	=> $url );
  435. }
  436. }
  437. $arr	=	serialize ( $array );
  438. copy ( $_POST['screen'], 'screen/' . $fid . '.png' );
  439. mysql_query ( "UPDATE `java_files` SET `urls`='" . $arr . "' WHERE `id`='" . $fid . "'" );
  440.  
  441. echo "<div class=\rut\">Загружаем файлы</div>\n";
  442. echo "<div class=\"rut2\">\n";
  443.  
  444. echo "Файл успешно выгружен<br/>";
  445. echo "<a href=\"index.php?id=" . $fid . "&amp;mod=file\">К файлу</a></div>\n";
  446.  
  447. break;
  448.  
  449. ###################END_COSMEXE_DORABOTKA#################
  450.  
  451. case 'delsect':
  452.  
  453. if ( !isset ( $_GET['agree'] ) )
  454. {
  455. echo "<div class=\"rut\">Подтверждение удаления</div>\n";
  456. echo "<div class=\"rut2\">\n";
  457. echo "<span style=\"color:red\"><b>Вы подтверждаете удаление папки, а так же всех вложенных в нее файлов, комментариев и т.д.?</b></span><br/>\n";
  458. echo "<div class=\"rut\"><a href=\"" . $_SERVER['PHP_SELF'] . "?mod=delsect&amp;id=" . $_GET['id'] . "&amp;agree\">Да</a>&nbsp;<a href=\"" . $_SERVER['PHP_SELF'] . "\">Нет</a></div></div>\n";
  459. }
  460. else
  461. {
  462. $id		=	intval ( $_GET['id'] );
  463. // Все файлы из категории
  464. $query	=	mysql_query ( "SELECT * FROM `java_files` WHERE `indir`='" . $id . "'" );
  465. while ( $row	=	mysql_fetch_array ( $query ) )
  466. {
  467. $urls	=	unserialize ( $row['urls'] );
  468. foreach ( $urls AS $url )
  469. {
  470. @unlink ( $url['url'] );
  471. }
  472. @unlink ( "screen/" . $row['id'] . ".png" );
  473. mysql_unbuffered_query ( "DELETE FROM `java_comments` WHERE `fid`='" . $row['id'] . "'" );
  474. mysql_unbuffered_query ( "DELETE FROM `java_files` WHERE `id`='" . $row['id'] . "'" );
  475. }
  476. mysql_unbuffered_query ( "DELETE FROM `java_sections` WHERE `id`='" . $id . "'" );
  477. mysql_unbuffered_query ( "OPTIMIZE TABLE `java_sections`" );
  478. mysql_unbuffered_query ( "OPTIMIZE TABLE `java_files`" );
  479. mysql_unbuffered_query ( "OPTIMIZE TABLE `java_comments`" );
  480. echo "<div class=\"all\"><div class=\"head\"><img src=\"http://imsota.ru/imsota.png\"></a></div>\n";
  481. echo "<div class=\"rek\">Завершено</div>\n";
  482. echo "<div class=\"menu3\">\n";
  483. echo "Все папки, файлы, скриншоты, комментарии удалены</div>\n";
  484. }
  485. break;
  486.  
  487. case 'file':
  488. $rz		=	isset ( $_GET['rz'] ) ? ( int ) $_GET['rz'] : NULL;
  489. $id		=	isset ( $_GET['id'] ) ? ( int ) $_GET['id'] : NULL;
  490.  
  491. if ( isset ( $_GET['delsrc'] ) )
  492. {
  493. @unlink ( 'screen/' . $id . '.png' );
  494. }
  495.  
  496. if ( isset ( $_GET['newsrc'] ) AND empty ( $_FILES['file']['error'] ) )
  497. {
  498. $fname	=	$_FILES['file']['name'];
  499. $et		=	explode ( '.', $fname );
  500. $rex	=	strtolower ( $et[count($et) - 1] ); # Расширение файла
  501.  
  502. @unlink ( 'screen/' . $id . '.png' );
  503.  
  504. move_uploaded_file ( $_FILES['file']['tmp_name'], 'tmp/tmp.' . $rex );
  505. markImage ( 'tmp/tmp.' . $rex, 'tmp/ggg.png' );
  506. copy ( 'tmp/ggg.png', 'screen/' . $id . '.png' );
  507. @unlink ( 'tmp/tmp.' . $rex );
  508. @unlink ( 'tmp/ggg.png' );echo 'ggggg';
  509. }
  510.  
  511. if ( isset ( $_GET['modify'] ) )
  512. {
  513. mysql_query ( "UPDATE `java_files` SET `name`='" . mysql_real_escape_string ( $_POST['name'] ) . "', `descr`='" . mysql_real_escape_string ( $_POST['descr'] ) . "' WHERE `id`='" . $id . "'" ) or die ( mysql_error ());
  514. }
  515.  
  516. if ( isset ( $_GET['delfile'] ) )
  517. {
  518. @unlink ( 'screen/' . $id . '.png' );
  519. mysql_unbuffered_query ( "DELETE FROM `java_comments` WHERE `fid`='" . $id . "'" );
  520. mysql_unbuffered_query ( "DELETE FROM `java_files` WHERE `id`='" . $id . "'" );
  521.  
  522. echo "<div class=\"menu\">\n";
  523. echo "Файл удален...";
  524. echo "\n</div>\n";
  525.  
  526. echo "<div class=\"fpic\"><a href=\"" . $_SERVER['PHP_SELF'] . "\">Админка</a><br/><a href=\"/\">На главную</a></div>\n";
  527. echo myFooter ();
  528. exit;
  529. }
  530. $info	=	mysql_fetch_assoc ( mysql_query ( "SELECT * FROM `java_files` WHERE `id`='" . $id . "' LIMIT 1" ) );
  531. header ( "Content-type: text/html; charset=utf-8" );
  532.  
  533. echo "<div class=\"star\"></div>\n";
  534. echo "<div class=\"title\">".stripslashes($info['name'])."</div>";
  535. echo "<div class=\"menu\"><div class=\"rut\">\n";
  536. if (file_exists('screen/'.$info['id'].".png"))
  537. {
  538. echo "<img src=\"screen/" . $info['id'] . ".png\" alt=\"" . stripslashes ( $info['name'] ) . "\"/><br/><a href=\"" . $_SERVER['PHP_SELF'] . "?mod=file&amp;id=" . $id . "&amp;delsrc\">[Удалить скриншот]</a></div>\n";
  539. }
  540.  
  541. echo "<div class=\"rut2\">\n";
  542. echo "<form action=\"" . $_SERVER['PHP_SELF'] . "?mod=file&amp;id=" . $id . "&amp;newsrc\" method=\"post\" enctype=\"multipart/form-data\">\n";
  543. echo "<input type=\"file\" name=\"file\"/><br/>\n";
  544. echo "<input type=\"submit\" value=\"Загрузить новый скриншот\"/></form></div>\n";
  545.  
  546. echo "<div class=\"rut\">\n";
  547. echo "<form action=\"" . $_SERVER['PHP_SELF'] . "?mod=file&amp;id=" . $id . "&amp;modify\" method=\"post\">\n";
  548. echo "Имя:<br/><input name=\"name\" value=\"" . $info['name'] . "\"/><br/>\n";
  549.  
  550. echo "Описание<br/><textarea name=\"descr\" rows=\"7\" cols=\"30\">" . stripslashes ( $info['descr'] ) . "</textarea><br/>\n";
  551. echo "<input type=\"submit\" value=\"Обновить\"/>\n";
  552. echo "</form>\n";
  553. echo "<a href=\"" . $_SERVER['PHP_SELF'] . "?mod=file&amp;id=" . $id . "&amp;delfile\">Удалить файл</a>\n";
  554. echo "</div>\n";
  555. echo "<div class=\"rut2\">Выберите файл для извлечения картинки и производителя:<br/>";
  556. $urls	=	unserialize ( $info['urls'] );
  557.  
  558. foreach ( $urls AS $key=>$url )
  559.  
  560. {
  561.  
  562. //if (!isset($url['']))
  563.  
  564. if (isset($url['url']))
  565.  
  566. echo "> <a href=\"" . $_SERVER['PHP_SELF'] . "?id=" . $id . "&amp;mod=editer&amp;key=" . $key . "\">" . stripslashes ( $url['descr'] ) . "</a> (" . round ( filesize ( $url['url'] ) / 1024, 0 ) . "кб)<br/>\n";
  567.  
  568. else
  569.  
  570. echo "> <a href=\"" . $_SERVER['PHP_SELF'] . "?id=" . $id . "&amp;mod=editer&amp;key=" . $key . "\">" . stripslashes ( $url['descr'] ) . "</a> (" . round ( filesize ( $url['url2'] ) / 1024, 0 ) . "кб)<br/>\n";
  571. }
  572. echo "<a href=\"" . $_SERVER['PHP_SELF'] . "?mod=xaddfile&amp;id=" . $id . "&rz=" . $rz . "\">Добавить Новый экран</a></div>\n";
  573.  
  574.  
  575. break;
  576.  
  577.  
  578. }
  579.  
  580. echo "<div class=\"fpic\"><a href=\"" . $_SERVER['PHP_SELF'] . "\">Админка</a><br/><a href=\"/\">На главную</a></div>\n";
  581. echo myFooter ();
  582.  
  583. ?>