function delete_block($bid) { $myblock = new XoopsBlock($bid); if ($myblock->getVar('block_type') == 'S') { $message = _AM_SYSTEMCANT; redirect_header('admin.php?fct=blocksadmin', 4, $message); exit; } elseif ($myblock->getVar('block_type') == 'M') { // Fix for duplicated blocks created in 2.0.9 module update // A module block can be deleted if there is more than 1 that // has the same func_num/show_func which is mostly likely // be the one that was duplicated in 2.0.9 if (1 >= ($count = XoopsBlock::countSimilarBlocks($myblock->getVar('mid'), $myblock->getVar('func_num'), $myblock->getVar('show_func')))) { $message = _AM_MODULECANT; redirect_header('admin.php?fct=blocksadmin', 4, $message); exit; } } xoops_token_confirm(array('fct' => 'blocksadmin', 'op' => 'delete_ok', 'bid' => $myblock->getVar('bid')), 'admin.php', sprintf(_AM_RUSUREDEL, $myblock->getVar('title'))); }
$contact = isset($_POST['contact']) ? trim($_POST['contact']) : ''; $email = isset($_POST['email']) ? trim($_POST['email']) : ''; $login = isset($_POST['login']) ? trim($_POST['login']) : ''; $passwd = isset($_POST['passwd']) ? trim($_POST['passwd']) : ''; $extrainfo = isset($_POST['extrainfo']) ? trim($_POST['extrainfo']) : ''; $db =& Database::getInstance(); $myts =& MyTextSanitizer::getInstance(); $newid = $db->genId($xoopsDB->prefix("bannerclient") . "_cid_seq"); $sql = sprintf("INSERT INTO %s (cid, name, contact, email, login, passwd, extrainfo) VALUES (%d, %s, %s, %s, %s, %s, %s)", $db->prefix("bannerclient"), intval($newid), $db->quoteString($myts->stripSlashesGPC($name)), $db->quoteString($myts->stripSlashesGPC($contact)), $db->quoteString($myts->stripSlashesGPC($email)), $db->quoteString($myts->stripSlashesGPC($login)), $db->quoteString($myts->stripSlashesGPC($passwd)), $db->quoteString($myts->stripSlashesGPC($extrainfo))); $db->query($sql); redirect_header("admin.php?fct=banners&op=BannersAdmin#top", 1, _AM_DBUPDATED); exit; break; case "BannerFinishDelete": xoops_cp_header(); xoops_token_confirm(array('op' => 'BannerFinishDelete2', 'bid' => intval($_GET['bid']), 'fct' => 'banners'), 'admin.php', _AM_SUREDELE); xoops_cp_footer(); break; case "BannerFinishDelete2": $bid = isset($_POST['bid']) ? intval($_POST['bid']) : 0; if ($bid <= 0 || !xoops_confirm_validate()) { redirect_header("admin.php?fct=banners&op=BannersAdmin#top"); } $db =& Database::getInstance(); $sql = sprintf("DELETE FROM %s WHERE bid = %u", $db->prefix("bannerfinish"), $bid); $db->query($sql); redirect_header("admin.php?fct=banners&op=BannersAdmin#top", 1, _AM_DBUPDATED); exit; break; case "BannerDelete": $bid = isset($_GET['bid']) ? intval($_GET['bid']) : 0;
$member_handler->removeUsersFromGroup($groupid, array($edituser->getVar('uid'))); } foreach ($_POST['groups'] as $groupid) { $member_handler->addUserToGroup($groupid, $edituser->getVar('uid')); } } } } } redirect_header("admin.php?fct=users", 1, _AM_DBUPDATED); break; case "delUser": xoops_cp_header(); $member_handler =& xoops_gethandler('member'); $userdata =& $member_handler->getUser($uid); xoops_token_confirm(array('fct' => 'users', 'op' => 'delUserConf', 'del_uid' => $userdata->getVar('uid')), 'admin.php', sprintf(_AM_AYSYWTDU, $userdata->getVar('uname'))); xoops_cp_footer(); break; case "delete_many": xoops_cp_header(); $count = count($_POST['memberslist_id']); $token =& XoopsSingleTokenHandler::quickCreate('users_deletemany'); if ($count > 0) { $list = $hidden = ''; for ($i = 0; $i < $count; $i++) { $id = intval($_POST['memberslist_id'][$i]); if ($id > 0) { $list .= ", <a href='" . XOOPS_URL . "/userinfo.php?uid={$id}' target='_blank'>" . htmlspecialchars($_POST['memberslist_uname'][$id]) . "</a>"; $hidden .= "<input type='hidden' name='memberslist_id[]' value='{$id}' />\n"; } }
} } } else { $err = 'Selected file does not exist)'; } if (!isset($err)) { redirect_header('admin.php?fct=tplsets&op=listtpl&moddir=' . $newtpl->getVar('tpl_module') . '&tplset=' . urlencode($newtpl->getVar('tpl_tplset')), 2, _MD_AM_DBUPDATED); } xoops_cp_header(); xoops_error($err); echo '<br /><a href="admin.php?fct=tplsets">' . _MD_AM_BTOTADMIN . '</a>'; xoops_cp_footer(); break; case 'generatemod': xoops_cp_header(); xoops_token_confirm(array('tplset' => $tplset, 'op' => 'generatemod_go', 'fct' => 'tplsets', 'moddir' => $moddir), 'admin.php', _MD_PLZGENERATE, _MD_GENERATE); xoops_cp_footer(); break; case 'generatemod_go': $tplset = isset($_POST['tplset']) ? $myts->stripslashesGPC(trim($_POST['tplset'])) : ''; if (!xoops_confirm_validate()) { redirect_header('admin.php?fct=tplsets', 3, 'Ticket Error'); } $tpltpl_handler =& xoops_gethandler('tplfile'); xoops_cp_header(); echo '<code>'; $tplfiles =& $tpltpl_handler->find('default', 'module', null, $_POST['moddir'], null, true); $fcount = count($tplfiles); if ($fcount > 0) { echo 'Installing module template files for template set ' . htmlspecialchars($tplset, ENT_QUOTES) . '...<br />'; for ($i = 0; $i < $fcount; $i++) {
} elseif (isset($_POST['op'])) { $op = $_POST['op']; } switch ($op) { case "RankForumEdit": $rank_id = isset($_GET['rank_id']) ? intval($_GET['rank_id']) : 0; if ($rank_id > 0) { include_once XOOPS_ROOT_PATH . "/modules/system/admin/userrank/userrank.php"; RankForumEdit($rank_id); } break; case "RankForumDel": $rank_id = isset($_GET['rank_id']) ? intval($_GET['rank_id']) : 0; if ($rank_id > 0) { xoops_cp_header(); xoops_token_confirm(array('fct' => 'userrank', 'op' => 'RankForumDelGo', 'rank_id' => $rank_id), 'admin.php', _AM_WAYSYWTDTR); xoops_cp_footer(); } break; case "RankForumDelGo": $rank_id = isset($_POST['rank_id']) ? intval($_POST['rank_id']) : 0; if ($rank_id <= 0 || !xoops_confirm_validate()) { redirect_header("admin.php?fct=userrank"); } $db =& Database::getInstance(); $sql = sprintf("DELETE FROM %s WHERE rank_id = %u", $db->prefix("ranks"), $rank_id); $db->query($sql); redirect_header("admin.php?fct=userrank&op=ForumAdmin", 1, _AM_DBUPDATED); break; case "RankForumAdd": if (!XoopsMultiTokenHandler::quickValidate('userrank_RankForumAdd')) {
function modifyUser($user) { global $xoopsDB, $xoopsConfig, $xoopsModule; xoops_cp_header(); $member_handler =& xoops_gethandler('member'); $user =& $member_handler->getUser($user); if (is_object($user)) { if (!$user->isActive()) { xoops_token_confirm(array('fct' => 'users', 'op' => 'reactivate', 'uid' => $user->getVar('uid')), 'admin.php', _AM_NOTACTIVE); xoops_cp_footer(); exit; } $uid_value = $user->getVar("uid"); $uname_value = $user->getVar("uname", "E"); $name_value = $user->getVar("name", "E"); $email_value = $user->getVar("email", "E"); $email_cbox_value = $user->getVar("user_viewemail") ? 1 : 0; $url_value = $user->getVar("url", "E"); // $avatar_value = $user->getVar("user_avatar"); $temp = $user->getVar("theme"); // $theme_value = empty($temp) ? $xoopsConfig['default_theme'] : $temp; $timezone_value = $user->getVar("timezone_offset"); $icq_value = $user->getVar("user_icq", "E"); $aim_value = $user->getVar("user_aim", "E"); $yim_value = $user->getVar("user_yim", "E"); $msnm_value = $user->getVar("user_msnm", "E"); $location_value = $user->getVar("user_from", "E"); $occ_value = $user->getVar("user_occ", "E"); $interest_value = $user->getVar("user_intrest", "E"); $sig_value = $user->getVar("user_sig", "E"); $sig_cbox_value = $user->getVar("attachsig") == 1 ? 1 : 0; $umode_value = $user->getVar("umode"); $uorder_value = $user->getVar("uorder"); // RMV-NOTIFY $notify_method_value = $user->getVar("notify_method"); $notify_mode_value = $user->getVar("notify_mode"); $bio_value = $user->getVar("bio", "E"); $rank_value = $user->rank(false); $mailok_value = $user->getVar('user_mailok', 'E'); $op_value = "updateUser"; $form_title = _AM_UPDATEUSER . ": " . $user->getVar("uname"); $form_isedit = true; $groups = array_values($user->getGroups()); $token = XoopsMultiTokenHandler::quickCreate('users_synchronize'); include XOOPS_ROOT_PATH . "/modules/system/admin/users/userform.php"; echo "<br /><b>" . _AM_USERPOST . "</b><br /><br />\n"; echo "<table>\n"; echo "<tr><td>" . _AM_COMMENTS . "</td><td>" . $user->getVar("posts") . "</td></tr>\n"; echo "</table>\n"; echo "<br />" . _AM_PTBBTSDIYT . "<br />\n"; echo "<form action=\"admin.php\" method=\"post\">\n"; echo $token->getHtml(); echo "<input type=\"hidden\" name=\"id\" value=\"" . $user->getVar("uid") . "\" />"; echo "<input type=\"hidden\" name=\"type\" value=\"user\" />\n"; echo "<input type=\"hidden\" name=\"fct\" value=\"users\" />\n"; echo "<input type=\"hidden\" name=\"op\" value=\"synchronize\" />\n"; echo "<input type=\"submit\" value=\"" . _AM_SYNCHRONIZE . "\" />\n"; echo "</form>\n"; } else { echo "<h4 style='text-align:left;'>"; echo _AM_USERDONEXIT; echo "</h4>"; } xoops_cp_footer(); }
$image =& $image_handler->get($image_id); if (!is_object($image)) { redirect_header('admin.php?fct=images', 1); } if (!$image_handler->delete($image)) { xoops_cp_header(); xoops_error(sprintf(_MD_FAILDEL, $image->getVar('image_id'))); xoops_cp_footer(); exit; } @unlink(XOOPS_UPLOAD_PATH . '/' . $image->getVar('image_name')); redirect_header('admin.php?fct=images', 2, _MD_AM_DBUPDATED); } if ($op == 'delcat') { xoops_cp_header(); xoops_token_confirm(array('op' => 'delcatok', 'imgcat_id' => $imgcat_id, 'fct' => 'images'), 'admin.php', _MD_RUDELIMGCAT); xoops_cp_footer(); exit; } if ($op == 'delcatok') { if (!xoops_confirm_validate()) { system_images_error("Ticket Error"); } $imgcat_id = intval($_POST['imgcat_id']); if ($imgcat_id <= 0) { redirect_header('admin.php?fct=images', 1); } $imgcat_handler = xoops_gethandler('imagecategory'); $imagecategory =& $imgcat_handler->get($imgcat_id); if (!is_object($imagecategory)) { redirect_header('admin.php?fct=images', 1);
} else { $err[] = sprintf(_FAILFETCHIMG, $i); } } if (count($err) > 0) { xoops_cp_header(); xoops_error($err); xoops_cp_footer(); exit; } redirect_header('admin.php?fct=avatars', 2, _MD_AM_DBUPDATED); } if ($op == 'delfile') { xoops_cp_header(); $user_id = isset($_GET['user_id']) ? intval($_GET['user_id']) : 0; xoops_token_confirm(array('op' => 'delfileok', 'avatar_id' => intval($_GET['avatar_id']), 'fct' => 'avatars', 'user_id' => $user_id), 'admin.php', _MD_RUDELIMG); xoops_cp_footer(); exit; } if ($op == 'delfileok') { if (!xoops_confirm_validate()) { xoops_cp_header(); xoops_error("Ticket Error"); xoops_cp_footer(); exit; } $avatar_id = intval($_POST['avatar_id']); if ($avatar_id <= 0) { redirect_header('admin.php?fct=avatars', 1); } $avt_handler = xoops_gethandler('avatar');
} } } echo "<a href='admin.php?fct=modulesadmin'>" . _MD_AM_BTOMADMIN . "</a>"; xoops_cp_footer(); exit; } if ($op == 'update') { $module_handler =& xoops_gethandler('module'); $mod =& $module_handler->getByDirname($module); if ($mod->getInfo('image') != false && trim($mod->getInfo('image')) != '') { $msgs = '<img src="' . XOOPS_URL . '/modules/' . $mod->getVar('dirname') . '/' . trim($mod->getInfo('image')) . '" alt="" />'; } $msgs .= '<br /><span style="font-size:smaller;";>' . $mod->getVar('name') . '</span><br /><br />' . _MD_AM_RUSUREUPD; xoops_cp_header(); xoops_token_confirm(array('dirname' => $module, 'op' => 'update_ok', 'fct' => 'modulesadmin'), 'admin.php', $msgs, _MD_AM_UPDATE); xoops_cp_footer(); exit; } if ($op == 'update_ok') { if (!xoops_confirm_validate()) { system_modulesadmin_error("Ticket Error"); } $dirname = trim($_POST['dirname']); $module_handler =& xoops_gethandler('module'); $module =& $module_handler->getByDirname($dirname); $prev_version = $module->getVar('version'); include_once XOOPS_ROOT_PATH . '/class/template.php'; xoops_template_clear_module_cache($module->getVar('mid')); // we dont want to change the module name set by admin $temp_name = $module->getVar('name');
foreach ($read_bids as $r_bid) { $blockperm =& $gperm_handler->create(); $blockperm->setVar('gperm_groupid', $groupid); $blockperm->setVar('gperm_itemid', $r_bid); $blockperm->setVar('gperm_name', 'block_read'); $blockperm->setVar('gperm_modid', 1); $gperm_handler->insert($blockperm); } redirect_header("admin.php?fct=groups&op=adminMain", 1, _AM_DBUPDATED); } break; case "del": xoops_cp_header(); $member_handler =& xoops_gethandler('member'); $group =& $member_handler->getGroup($g_id); xoops_token_confirm(array('fct' => 'groups', 'op' => 'delConf', 'g_id' => $g_id), 'admin.php', sprintf(_AM_AREUSUREDEL, $group->getVar('name'))); xoops_cp_footer(); break; case "delConf": if (!xoops_confirm_validate()) { system_groups_error("Ticket Error"); } $g_id = !empty($_POST['g_id']) ? intval($_POST['g_id']) : 0; if ($g_id > 0 && !in_array($g_id, array(XOOPS_GROUP_ADMIN, XOOPS_GROUP_USERS, XOOPS_GROUP_ANONYMOUS))) { $member_handler =& xoops_gethandler('member'); $group =& $member_handler->getGroup($g_id); $member_handler->deleteGroup($group); $gperm_handler =& xoops_gethandler('groupperm'); $gperm_handler->deleteByGroup($g_id); } redirect_header("admin.php?fct=groups&op=adminMain", 1, _AM_DBUPDATED);
function BannerClientDelete($cid) { global $xoopsConfig, $xoopsModule; $cid = intval($cid); $xoopsDB =& Database::getInstance(); $myts =& MyTextSanitizer::getInstance(); xoops_cp_header(); $result = $xoopsDB->query("SELECT cid, name FROM " . $xoopsDB->prefix("bannerclient") . " WHERE cid={$cid}"); list($cid, $name) = $xoopsDB->fetchRow($result); $name = $myts->makeTboxData4Show($name); echo "<table width='100%' border='0' cellspacing='1' class='outer'><tr><td class=\"odd\">"; echo "\r\n <h4>" . _AM_DELEADC . "</h4>\r\n " . sprintf(_AM_SUREDELCLI, $name) . "<br /><br />"; $result2 = $xoopsDB->query("SELECT imageurl, clickurl, htmlbanner, htmlcode FROM " . $xoopsDB->prefix("banner") . " WHERE cid={$cid}"); $numrows = $xoopsDB->getRowsNum($result2); if ($numrows == 0) { echo "" . _AM_NOBNRRUN . "<br /><br />"; } else { echo "<font color='#ff0000'><b>" . _AM_WARNING . "</b></font><br />\r\n " . _AM_ACTBNRRUN . "<br /><br />"; } while (list($imageurl, $clickurl, $htmlbanner, $htmlcode) = $xoopsDB->fetchRow($result2)) { $imageurl = htmlspecialchars($imageurl, ENT_QUOTES); $clickurl = htmlspecialchars($clickurl, ENT_QUOTES); $bannerobject = ""; if ($htmlbanner) { $bannerobject = $myts->displayTarea($htmlcode, 1); } else { $bannerobject = '<div><a href="' . $clickurl . '" rel="external">'; if (strtolower(substr($imageurl, strrpos($imageurl, "."))) == ".swf") { $bannerobject = $bannerobject . '<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=6,0,40,0" width="468" height="60">' . '<param name="movie" value="' . $imageurl . '"></param>' . '<param name="quality" value="high"></param>' . '<embed src="' . $imageurl . '" quality="high" pluginspage="http://www.macromedia.com/shockwave/download/index.cgi?P1_Prod_Version=ShockwaveFlash" type="application/x-shockwave-flash" width="468" height="60">' . '</embed>' . '</object>'; } else { $bannerobject = $bannerobject . '<img src="' . $imageurl . '" alt="" />'; } $bannerobject = $bannerobject . '</a></div>'; } echo $bannerobject . "<a href='{$clickurl}'>{$clickurl}</a><br /><br />"; } xoops_token_confirm(array('fct' => 'banners', 'op' => 'BannerClientDelete2', 'cid' => $cid), 'admin.php', _AM_SUREDELBNR); echo "</td></tr></table>"; xoops_cp_footer(); }
} } if (!isset($err)) { redirect_header('admin.php?fct=smilies&op=SmilesAdmin', 2, _AM_DBUPDATED); } else { xoops_cp_header(); xoops_error($err); xoops_cp_footer(); exit; } break; case "SmilesDel": $id = isset($_GET['id']) ? intval($_GET['id']) : 0; if ($id > 0) { xoops_cp_header(); xoops_token_confirm(array('fct' => 'smilies', 'op' => 'SmilesDelOk', 'id' => $id), 'admin.php', _AM_WAYSYWTDTS); xoops_cp_footer(); } break; case "SmilesDelOk": $id = isset($_POST['id']) ? intval($_POST['id']) : 0; if ($id <= 0 || !xoops_confirm_validate()) { redirect_header('admin.php?fct=smilies', 3, "Ticket Error"); } $db =& Database::getInstance(); $sql = sprintf("DELETE FROM %s WHERE id = %u", $db->prefix('smiles'), $id); $db->query($sql); redirect_header("admin.php?fct=smilies&op=SmilesAdmin", 2, _AM_DBUPDATED); break; case "SmilesAdmin": default:
exit; } } else { redirect_header("index.php", 2, _AD_NORIGHT); exit; } $op = "list"; if (!empty($_GET['op'])) { $op = $_GET['op']; } if (!empty($_POST['op'])) { $op = $_POST['op']; } if (!file_exists(XOOPS_CACHE_PATH . '/adminmenu.php') && $op != 'generate') { xoops_header(); xoops_token_confirm(array('op' => 'generate'), 'admin.php', _AD_PRESSGEN); xoops_footer(); exit; } switch ($op) { case "list": xoops_cp_header(); // ###### Output warn messages for security ###### if (is_dir(XOOPS_ROOT_PATH . "/install/")) { xoops_error(sprintf(_WARNINSTALL2, XOOPS_ROOT_PATH . '/install/')); echo '<br />'; } if (is_writable(XOOPS_ROOT_PATH . "/mainfile.php")) { xoops_error(sprintf(_WARNINWRITEABLE, XOOPS_ROOT_PATH . '/mainfile.php')); echo '<br />'; }