Beispiel #1
0
// PULLS ALL INFORMATION FROM THE POST REQUEST FOR THE CWFILE REQUEST \\
include "forms/logincheck.php";
if ($Login == "1") {
    $Article_Id = $_POST["id"];
    $Article_Type = $_POST["imgtype"];
    $Article_Trash = $_POST["trash"];
    $Article_Info = $_POST["content"];
    $Article_Active = $_POST["active"];
    $Article_Url = $_POST["url"];
    $Article_Date = strtotime("now");
    $Article_Name = $_POST["name"];
    $REDIRECT = $_POST["redirect"];
    $Image_Order = $_POST["ImageOrder"];
    $Image_Url = $_POST["ImageUrl"];
    $Rand = rand(100, 100000000);
    $StructureImgSizes = OtarDecrypt($key, $_POST['imgsizes']);
    $files = new UploadedFiles($_FILES);
    $GalleryRemoval = $_POST['removegal'];
    $Recipients = $_POST['recipient'];
    $CwFileUrl = $_POST['cwfileurl'];
    $EncryptArticle = $_POST['encryptid'];
    $Article_Content["name"] = $_POST["name"];
    $Article_Content["img"] = $_POST["img"];
    $SettingsAuto = $_POST["auto"];
    $SettingsAlbum = $_POST["album"];
    $SettingsBackground = $_POST["background"];
    $SettingsDashboard = $_POST["dashboard"];
    $SettingsSecure = $_POST["secure"];
    $Article_Other["gallery"] = $POST["gallery"];
    $Article_Other["client"] = $_POST["client"];
    $Article_Other["cwfilecode"] = $_POST["cwfilecode"];
Beispiel #2
0
<?php

include "forms/logincheck.php";
if ($Login == "1") {
    $AttId = OtarDecrypt($key, $_POST['id']);
    $AttId = $AttId['article'];
    if ($AttId == "") {
        $query = "SELECT * FROM cwoptions WHERE type='{$_POST['type']}' AND category='{$_POST['category']}' AND name='{$_POST['name']}' ";
        $result = mysql_query($query) or die(mysql_error());
        $row = mysql_fetch_array($result);
        if ($row['id'] == "") {
            mysql_query("INSERT INTO cwoptions\n\t\t\t(type, category, name, list) VALUES('{$_POST['type']}', '{$_POST['category']}', '{$_POST['name']}', '{$_POST['list']}' ) ") or die(mysql_error());
        } else {
            if ($row['active'] == "0") {
                $result = mysql_query("UPDATE cwoptions SET active='1' WHERE id='{$row['id']}'") or die(mysql_error());
            }
            if ($row['trash'] == "1") {
                $result = mysql_query("UPDATE cwoptions SET trash='0' WHERE id='{$row['id']}'") or die(mysql_error());
            }
        }
    } else {
        $result = mysql_query("UPDATE cwoptions SET active='{$_POST['active']}' WHERE id='{$AttId}'") or die(mysql_error());
        $result = mysql_query("UPDATE cwoptions SET category='{$_POST['category']}' WHERE id='{$AttId}'") or die(mysql_error());
        $result = mysql_query("UPDATE cwoptions SET name='{$_POST['name']}' WHERE id='{$AttId}'") or die(mysql_error());
        $result = mysql_query("UPDATE cwoptions SET list='{$_POST['list']}' WHERE id='{$AttId}'") or die(mysql_error());
    }
    header("Location: {$Domain}/admin/Attributes");
}
Beispiel #3
0
<?php

$ThemeId = OtarDecrypt($key, $_GET[type]);
include "../theme/{$ThemeId['0']}/settings.php";
?>
<div class="cl-mcont aside">	
<div class="page-aside">
<div>
<div class="content">
<h2><?php 
echo $ThemeId['1'];
?>
</h2>
<br><br><br>
<?php 
include "theme/cwadmin/extras/themesidebar.php";
?>
</div></div></div>





	  
    
<div class="content">
<div class="cl-mcont">
<div class="page-head">
<ol class="breadcrumb">
<li><a href="/admin">Dashboard</a></li>
<li><a href="/admin/Design">Themes</a></li>
Beispiel #4
0
<?php

include "forms/logincheck.php";
if ($Login == "1") {
    include "forms/logincheck.php";
    $Id = OtarDecrypt($key, $_POST['user']);
    if ($Current_Admin == $Id) {
        $Allow = "1";
    }
    $Rand = rand("0", "100000");
    if ($Allow == "1") {
        $files = new UploadedFiles($_FILES);
        $FullName = $_POST['name'];
        $SplitName = explode(" ", $FullName);
        $query = "SELECT * FROM users WHERE id='{$Id}'";
        $result = mysql_query($query) or die(mysql_error());
        $row = mysql_fetch_array($result);
        $row = PbUnSerial($row);
        $Info = $row['info'];
        if ($_POST["ref"] == "my-info") {
            $Info['dob'] = $_POST["dob"];
            $Info['last_name'] = $_POST["last_name"];
            $Info['first_name'] = $_POST["first_name"];
            $Img = $_POST['img'];
            $Array["profilepic"]["img"] = $Img;
            $ImgArray = CwProfilePic($Array, $files, $Rand);
            $Info['img'] = $ImgArray["file"];
            if ($Info['first_name'] == "") {
                $Info['firstname'] = $SplitName['0'];
            }
            if ($Info['last_name'] == "") {
Beispiel #5
0
include "../pblast/config.php";
$Incoming = $_GET['pbrequest'];
$Incoming = OtarDecrypt($PB_Access, $Incoming);
$Request['type'] = "extplorer";
$Request['api'] = $Pblast_Api;
$Request['secret'] = $Pblast_Secret;
$Request['pbsession'] = $Incoming['pbsession'];
$Request['user'] = $Incoming['user'];
$Request = OtarEncrypt($PB_Access, $Request);
$body = "?pbrequest={$Request}";
$url = 'http://www.pblast.in/api/extplorer.php';
$ch = curl_init();
curl_setopt($ch, CURLOPT_URL, $url . $body);
curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1);
curl_setopt($ch, CURLOPT_TIMEOUT, '3');
$Response = trim(curl_exec($ch));
curl_close($ch);
$Response = OtarDecrypt($key, $Response);
if ($Response['type'] == "auth") {
    if ($Response['error'] == "") {
        if ($Response['content'] == "success") {
            $Verify = 1;
        }
    }
}
if ($Verify == "1") {
    $Pb_Edit_Users = $_GET['pbchange'];
    $_SESSION['Pb_Edit_Users'] = $_GET['pbchange'];
    $User = $Incoming['account']['user'];
    $Pass = $Incoming['account']['pass'];
}
Beispiel #6
0
    }
    // CONNECT INFORMATION TO TAGS SEARCH DATABASE \\
    $TagArticle = $Article_Id;
    $Tags = explode(",", $Tags);
    foreach ($Tags as $value) {
        $query = "SELECT * FROM cw_tags WHERE name='{$value}'";
        $result = mysql_query($query) or die(mysql_error());
        $row = mysql_fetch_array($result);
        $TagSearchId = $row["id"];
        if ($TagSearchId == "") {
            $TagId = array("{$TagArticle}");
            $TagId = OtarEncrypt($key, $TagId);
            if ($value == "") {
            } else {
                mysql_query("INSERT INTO cw_tags\n\t\t\t\t(name, content) VALUES('{$value}', '{$TagId}') ") or die(mysql_error());
            }
        } else {
            $TagId = $row["content"];
            $TagId = OtarDecrypt($key, $TagId);
            if (in_array($TagArticle, $TagId)) {
            } else {
                array_push($TagId, $TagArticle);
                $NewTagArray = OtarEncrypt($key, $TagId);
                $result = mysql_query("UPDATE cw_tags SET content='{$NewTagArray}' WHERE id='{$TagSearchId}'") or die(mysql_error());
            }
        }
    }
    $REDIRECT = "admin/Menu";
    $Domain = $Array["siteinfo"]["domain"];
    header("Location: {$Domain}/{$REDIRECT}");
}
Beispiel #7
0
<?php

$DecryptId = OtarDecrypt($key, $_GET['type']);
$query = "SELECT * FROM admin WHERE type='menu' AND id='{$DecryptId}'";
$result = mysql_query($query) or die(mysql_error());
$Menu = mysql_fetch_array($result);
$Menu = PbUnSerial($Menu);
$query = "SELECT * FROM admin WHERE type='menu' AND url='{$Get_Url}' ANd active='1' AND trash='0'";
$result = mysql_query($query) or die(mysql_error());
$Manual = mysql_fetch_array($result);
$Manual = PbUnSerial($Manual);
$Manual_Access = $Manual['access'];
$Manual['url'] = strtolower($Manual['url']);
$ManualTheme = $Manual['theme'];
if ($ManualTheme == "") {
    $ManualTheme = "cwadmin";
}
if ($Manual['id'] != "") {
    if ($UserSiteAccess[$Manual_Access] == "1" or $Manual['access'] == "") {
        if ($Get_Url == $Manual['url']) {
            $OverRight['theme'] = "theme/{$ManualTheme}";
            if ($Get_Type == "") {
                $OverRight['file'] = $Manual['content']['url'];
            } else {
                $OverRight['file'] = $Manual['content']['type'];
            }
        }
    }
}
<?php

$Array = "";
$ArticleId = OtarDecrypt($key, "");
$Id = $Article['id'];
$Query = "SELECT * FROM page_function WHERE template='{$PageInfo['template']}' AND page='{$PageArticleId}' AND trash='0' ORDER BY list";
$Result = mysql_query($Query) or die(mysql_error());
while ($Row = mysql_fetch_array($Result)) {
    if ($Row['contents'] == "") {
    } else {
        $Row['contents'] = unserialize($Row['contents']);
    }
    $FunctionId = $Row[id];
    ?>
<tr class="odd gradeX">
<td><?php 
    echo $Row["function"];
    ?>
</td>
<td><?php 
    echo $Row['contents']['category'];
    ?>
</td>
<td><?php 
    echo $Row["list"];
    ?>
</td>
<td><?php 
    if ($Row['active'] == "1") {
        echo "Active";
    } else {
Beispiel #9
0
<?php

include "forms/logincheck.php";
if ($Login == "1") {
    include "forms/logincheck.php";
    $Id = $_POST["PageIds"];
    $Id = OtarDecrypt($key, $Id);
    $Id = $Id['access'];
    $Rand = rand("0", "100000");
    if ($UserSiteAccess['grantaccess'] == "1" and $UserSiteAccess['edituseraccess'] == "1") {
        $Allow = "1";
    }
    if ($Allow == "1") {
        $SiteAccess = $_POST['siteaccess'];
        $SiteAccess = serialize($SiteAccess);
        $Name = $_POST['name'];
        $Active = $_POST['active'];
        $AccessLevel = $_POST['accesslevel'];
        if ($Id == "") {
            mysql_query("INSERT INTO cwoptions(name, content, type, category, active) VALUES('{$Name}', '{$SiteAccess}', 'useraccess', '{$AccessLevel}', '{$Active}')") or die(mysql_error());
        } else {
            $query = "SELECT * FROM cwoptions WHERE id='{$Id}'";
            $result = mysql_query($query) or die(mysql_error());
            $row = mysql_fetch_array($result);
            $PrevLevel = $row['category'];
            if (isset($AccessLevel)) {
                $result = mysql_query("UPDATE cwoptions SET category='{$AccessLevel}' WHERE id='{$Id}'") or die(mysql_error());
            }
            if (isset($Active)) {
                $result = mysql_query("UPDATE cwoptions SET active='{$Active}' WHERE id='{$Id}'") or die(mysql_error());
            }
Beispiel #10
0
<?php

include "api/pblast/ref/main.php";
include "api/pblast/config.php";
$Request = $_REQUEST['request'];
$Request = OtarDecrypt($PB_Access, $Request);
$Secured = $Request['secured'];
$Info = $Secured['info'];
$RequestId = $Secured['requestid'];
$Requestor = $Request['website'];
$Redirect = $Secured['redirect'];
$Type = $Secured['type'];
$Redirect = "https://www.facebook.com/dialog/oauth/?scope=email,user_birthday,user_about_me,user_groups,user_subscriptions,user_website,user_events,user_notes,user_photos,user_status,user_videos,friends_events,publish_actions,user_online_presence,friends_online_presence,manage_pages,publish_stream,read_mailbox,offline_access,create_event,rsvp_event,read_friendlists,read_requests,manage_notifications,read_insights,ads_management&client_id=211454322200654&redirect_uri={$Redirect}&response_type=token";
$Social = $Secured['social'];
#$Social = strtuopper($Social);
$Userid = $Secured['userid'];
if ($Type == "login") {
    $query = "SELECT * FROM tasks WHERE requestid='{$RequestId}'";
    $result = mysql_query($query) or die(mysql_error());
    $row = mysql_fetch_array($result);
    if ($row[id] == "") {
        $Content = "Oh snap! Link Your {$Social} Account.";
        mysql_query("INSERT INTO tasks \n            (type, website, url, info, requestid, content, social, user) VALUES('{$Type}', '{$Requestor}', '{$Redirect}', '{$Info}', '{$RequestId}', '{$Content}', '{$Social}', '{$Userid}') ") or die(mysql_error());
    }
}
if ($Type == "task") {
    $result = mysql_query("UPDATE tasks SET active='0' WHERE social='{$Social}' AND user='******'") or die(mysql_error());
}
Beispiel #11
0
<?php

$Value = $_GET[end];
$Value = OtarDecrypt($Array, $Value);
$Status = $Value[status];
$TransId = $Value[id];
$TransId = OtarDecrypt($Array, $TransId);
$query = "SELECT * FROM trans WHERE transid='{$TransId}' AND active='1' AND trash='0'";
$result = mysql_query($query) or die(mysql_error());
$row = mysql_fetch_array($result);
$TransId = $row[transid];
if ($TransId == "") {
    $REDIRECT = "Events";
} else {
    if ($Status == "1") {
        $result = mysql_query("UPDATE trans SET status='Complete' WHERE transid='{$TransId}'") or die(mysql_error());
        $TransId = OtarEncrypt($Array, $TransId);
        $REDIRECT = "Dashboard/Orders/{$TransId}";
    } else {
        $result = mysql_query("UPDATE trans SET status='Pending' WHERE transid='{$TransId}'") or die(mysql_error());
        $TransId = OtarEncrypt($Array, $TransId);
        $REDIRECT = "Dashboard/Orders/{$TransId}";
        // CREATE QR BARCODE \\
    }
}
$Domain = $Array[siteinfo][domain];
?>
<script type="text/javascript">
<!--
window.location = "<?php 
echo "{$Domain}/{$REDIRECT}";
Beispiel #12
0
<?php

$Trans_Id = OtarDecrypt($key, $_GET['type']);
$query = "SELECT * FROM trans WHERE id='{$Trans_Id}'";
$result = mysql_query($query) or die(mysql_error());
$row = mysql_fetch_array($result);
$Cw_Shipment = "10";
$Cart_Total = $row['price'];
$ReturnComplete['id'] = $Trans_Id;
$ReturnComplete['status'] = "1";
$ReturnComplete = OtarEncrypt($key, $ReturnComplete);
$ReturnCanceled['id'] = $Trans_Id;
$ReturnCanceled['status'] = "0";
$ReturnCanceled = OtarEncrypt($key, $ReturnCanceled);
$Structure_Type = "payment-process";
include "{$THEME}/layout.php";
include "api/paypal/payment.php";
Beispiel #13
0
<?php

#include("../../config/functions.php");
#include("../../config/database.php");
$Array = "";
$ArticleId = OtarDecrypt($Array, $_GET[articleid]);
$Id = $Article[id];
$Query = "SELECT * FROM page_function WHERE template='{$PageInfo['template']}' AND page='{$PageArticleId}' AND trash='0' ORDER BY list";
$Result = mysql_query($Query) or die(mysql_error());
while ($Row = mysql_fetch_array($Result)) {
    if ($Row[contents] == "") {
    } else {
        $Row[contents] = unserialize($Row[contents]);
    }
    $FunctionId = $Row[id];
    ?>
<tr class="odd gradeX">
<td><?php 
    echo $Row["function"];
    ?>
</td>
<td><?php 
    echo $Row[contents][category];
    ?>
</td>
<td><?php 
    echo $Row["list"];
    ?>
</td>
<td><?php 
    if ($Row[active] == "1") {
Beispiel #14
0
<?php

include "../../config/encrypt.php";
include "../../config/functions.php";
include "../../config/database.php";
include "config.php";
$Request = $_GET['request'];
$Request = OtarDecrypt($PB_Access, $Request);
$Request['type'] = OtarDecrypt($Pblast_Secret, $Request['type']);
$Request['pbsession'] = OtarDecrypt($Pblast_Secret, $Request['pbsession']);
$Request['user'] = OtarDecrypt($Pblast_Secret, $Request['user']);
$File = $Request['type'] . ".php";
if (file_exists($File)) {
    include "{$File}";
} else {
    $Response['auth'] = "0";
    $Response['error'] = "file not found";
    $Response = OtarEncrypt($Pblast_Secret, $Response);
    echo $Response;
}
Beispiel #15
0
<?php

include "functions.php";
include "encrypt.php";
include "database.php";
$User = OtarDecrypt($key, $_GET['user']);
$query = "SELECT * FROM tasks WHERE active='1' AND trash='0' AND user='******'";
$result = mysql_query($query) or die(mysql_error());
while ($row = mysql_fetch_array($result)) {
    ?>
    <div class="alert alert-block alert-danger fade in">
    <button type="button" class="close close-sm" data-dismiss="alert"> <i class="icon-remove"></i> </button>
    <strong><a href="<?php 
    echo $row['url'];
    ?>
" target='_blank'><?php 
    echo $row['content'];
    ?>
</a></strong></div>
<?php 
}
<?php

$ThemeId = OtarDecrypt($key, $_GET['type']);
include "../theme/{$ThemeId['0']}/settings.php";
?>


<div class="cl-mcont aside">	
<div class="page-aside">
<div>
<div class="content">
<h2><?php 
echo $ThemeId['1'];
?>
</h2>
<br><br><br>
<?php 
include "theme/cwadmin/extras/themesidebar.php";
?>
</div></div></div>





	  
    
<div class="content">
<div class="cl-mcont">
<div class="page-head">
<ol class="breadcrumb">
Beispiel #17
0
<?php

// PULLS ALL INFORMATION FROM THE POST REQUEST FOR THE ARTICLE \\
include "forms/logincheck.php";
if ($Login == "1") {
    $Article_Type = $_POST["imgtype"];
    $Article_Name = $_POST["name"];
    $Article_Active = $_POST["active"];
    $Article_Content = $_POST["content"];
    $PageIds = $_POST["PageIds"];
    $PageIds = OtarDecrypt($key, $PageIds);
    $Article_Id = $PageIds["article"];
    // REMOVES ALL AND ANY ILLEGAL CHARACTERS \\
    $Article_Code = CharacterRemoval($Article_Code);
    $Article_Name = CommaRemoval($Article_Name);
    if ($Article_Id == "") {
        // CREATE A NEW LISTING WITH THE INFORMATION PROVIDED \\
        mysql_query("INSERT INTO cwoptions(type, active, name, content) VALUES('access', '{$Article_Active}',  '{$Article_Name}', '{$Article_Content}') ") or die(mysql_error());
    } else {
        // UPDATE THE DATABASE WITH ANY NEW/OLD INFORMATION \\
        $result = mysql_query("UPDATE cwoptions SET name='{$Article_Name}' WHERE id='{$Article_Id}'") or die(mysql_error());
        $result = mysql_query("UPDATE cwoptions SET content='{$Article_Content}' WHERE id='{$Article_Id}'") or die(mysql_error());
        $result = mysql_query("UPDATE cwoptions SET active='{$Article_Active}' WHERE id='{$Article_Id}'") or die(mysql_error());
    }
    $REDIRECT = "admin/CwAccess";
    $Domain = $Array["siteinfo"]["domain"];
    header("Location: {$Domain}/{$REDIRECT}");
}