function strMid($str1, $str2, $str3)
{
$strMid = strRight($str1, $str2);
return strLeft($strMid, $str3);
}
if ($_POST['dbName'] > '0' && $_POST['dbTemplate'] > '0' && strtolower($_POST['dbName']) != 'admin') {
if (!file_exists('../db/domains/' . $_POST['dbName'] . '.db3')) {
copy('../db/templates/' . $_POST['dbTemplate'], '../db/domains/' . $_POST['dbName'] . '.db3');
header('Location: login.php?user='******'dbName'] . '\\admin&pass=admin');
exit;
}
}
}
if (isset($_POST['Update'])) {
}
if (isset($_POST['Go']) && $_POST['sqlQuery']) {
$strsql = $_POST['sqlQuery'];
foreach ($dbDomains as $domain) {
$resultsShow = $resultsShow . $domain . ':<br>';
descnn();
$_SESSION['domain'] = strLeft($domain, '.');
jCnn();
$results = $GLOBALS['db']->exec($strsql);
if (!$results) {
$err = $GLOBALS['db']->errorInfo();
$resultsShow = $resultsShow . $err[2] . '<hr>';
} else {
$resultsShow = $resultsShow . $results . '<hr>';
}
}
$_SESSION['domain'] = 'admin';
}
?>
<html>
<head>
if (isset($_SESSION['domain'])) {
header('Location: destroy.php');
exit;
}
$_SESSION['domain'] = '.';
require "../../cgi_bin/phpFun.php";
unset($_SESSION['domain']);
$_SESSION['language'] = substr($_SERVER['HTTP_ACCEPT_LANGUAGE'], 0, 2);
require "../ap/languages/language.php";
//$langFiles=dirList('../ap/languages/*.inc');
//-------------------------------------------------
// Main
//-------------------------------------------------
if (isset($_POST['user']) && isset($_POST['pass'])) {
$_SESSION['home'] = realpath('../db/domains/');
$_SESSION['domain'] = strLeft($_POST['user'], '\\');
if ($_POST['user'] == 'admin' && $_POST["pass"] == $mainPassword) {
$_SESSION['domain'] = 'admin';
header('Location: admin.php');
exit;
}
if (jCnn()) {
login();
}
}
function login()
{
$strsql = "insert into [log] ([user], [ip], [urlFrom]) values('" . $_POST["user"] . "', '" . $_SERVER["REMOTE_ADDR"] . "', '" . $_SERVER["SERVER_NAME"] . "');";
$results = $GLOBALS['db']->exec($strsql);
$strsql = "select idAgent, level from [agents] where user='******'\\') . "' and password='******';";
$results = $GLOBALS['db']->query($strsql);
