<?php $user->req("ForumAdmin"); if (is_valid_integer($_GET['aid']) && is_valid_signed_integer($_GET['fid'])) { $aid = $_GET['aid']; $fid = $_GET['fid']; } else { err_not_found("invalid fid or aid"); } db_exec("delete from f_moderators where aid = ? and fid = ?", array($aid, $fid)); Header("Location: useracl.phtml?message=" . urlencode("User ACL Deleted"));
<?php require_once "pagenav.inc.php"; $user->req("ForumAdmin"); page_header("Visits"); if (isset($_GET['message'])) { page_show_message($_GET['message']); } $visitsperpage = 100; if (is_valid_integer($_GET['page'])) { $page = $_GET['page']; } else { $page = 1; } $row = db_query_first("select count(*) from f_visits"); $numvisits = $row[0]; echo "{$numvisits} active user/ip pairs<br>\n"; $numpages = ceil($numvisits / $visitsperpage); function print_pages($page, $numpages) { $fmt = "showvisits.phtml?page=%d"; print "Page: " . gen_pagenav($fmt, $page, $numpages) . "<br>\n"; } print_pages($page, $numpages); $skipvisits = ($page - 1) * $visitsperpage; $sql = "select f_visits.*, u_users.name, u_users.email FROM f_visits LEFT JOIN u_users ON u_users.aid = f_visits.aid order by f_visits.ip limit {$skipvisits},{$visitsperpage}"; $sth = db_query($sql); ?> <p>
<?php $user->req("ForumAdmin"); if (is_valid_integer($_REQUEST['aid'])) { $aid = $_REQUEST['aid']; } else { err_not_found("Invalid FID or AID"); } /* If submit is set, shove the data into the database (well, after some */ /* error checking) */ if (isset($_POST['submit'])) { $opts = $_POST['opts']; for ($i = 0; $i < count($opts); $i++) { $capabilities = array(); if (is_valid_signed_integer($opts[$i]['fid'])) { $fid = $opts[$i]['fid']; if (isset($opts[$i]['Lock'])) { $capabilities[] = "Lock"; } if (isset($opts[$i]['Moderate'])) { $capabilities[] = "Moderate"; } if (isset($opts[$i]['Delete'])) { $capabilities[] = "Delete"; } if (isset($opts[$i]['OffTopic'])) { $capabilities[] = "OffTopic"; } if (isset($opts[$i]['Advertise'])) { $capabilities[] = "Advertise"; }
<?php $user->req("ForumAdmin"); if (!is_valid_integer($_GET['aid'])) { Header("Location: /admin/?message=" . urlencode("No AID!")); exit; } $aid = $_GET['aid']; $user = new AccountUser(); $user->find_by_aid((int) $aid); if (!$user->valid()) { Header("Location: /admin/?message=" . urlencode("Invalid AID {$aid}")); exit; } $user->setcookie(); if (!isset($_GET['page'])) { Header("Location: /admin/"); } else { Header("Location: " . $_GET['page']); }
<?php $user->req("ForumAdmin"); if (!$user->is_valid_token($_REQUEST['token'])) { err_not_found('Invalid token'); } if ($_GET['clean'] == 1) { $sql = "delete from u_pending where status = 'Done'"; db_exec($sql); $sql = "delete from u_pending where TO_DAYS(NOW()) - TO_DAYS(tstamp) > 30"; db_exec($sql); Header("Location: pending.phtml?message=" . urlencode("Cleaned up completed requests")); } else { if (is_valid_integer($_GET['aid']) && is_valid_integer($_GET['tid'])) { $aid = $_GET['aid']; $tid = $_GET['tid']; } else { err_not_found('Invalid aid/tid'); } $sql = "delete from u_pending where aid = ? and tid = ?"; db_exec($sql, array($aid, $tid)); Header("Location: pending.phtml?message=" . urlencode("Request Deleted")); }
function is_integer_negative() { $params = func_get_args(); $count = func_num_args(); $value = null; if (_get_value($params, $count, $value)) { if (is_valid_integer($value) && $value < 0) { return true; } } return false; }
<?php $user->req("ForumAdmin"); if (is_valid_integer($_GET['fid'])) { $fid = $_GET['fid']; } else { err_not_found("Invalid fid"); } $forum = db_query_first("select * from f_forums,f_indexes where f_forums.fid=f_indexes.fid and f_forums.fid = ?", array($fid)); page_header("Foruminfo for '" . $forum['name'] . "'"); if (isset($_GET['message'])) { page_show_message($_GET['message']); } ?> <a href="forummodify.phtml?fid=<?php echo $forum['fid']; ?> ">Modify forum</a><p> <table class="contents"> <tr><th>fid</th><td><?php echo $forum['fid']; ?> </td></tr> <tr><th>Name</th><td><?php echo $forum['name']; ?> </td></tr> <tr><th>Short name</th><td><?php echo $forum['shortname']; ?>