function createConfigFile()
{
$data = '';
$name = array();
$value = array();
$type = array();
$settings = array();
$result = yasDB_select("SELECT * FROM settings WHERE id = 1");
while ($meta = $result->fetch_field()) {
$name[] = $meta->name;
$type[] = $meta->type;
}
$i = 0;
while ($row = $result->fetch_row()) {
$count = count($row);
$y = 0;
while ($y < $count) {
$value[] = current($row);
next($row);
$y++;
}
$i++;
}
$result->free_result();
for ($i = 0; $i < count($name); $i++) {
$settings[$name[$i]][0] = $value[$i];
$settings[$name[$i]][1] = $type[$i];
}
ksort($settings);
$keys = array_keys($settings);
$values = array_values($settings);
$data = "<?php" . "\n";
$data .= "#--------------------------------\n# http://www.yourarcadescript.com\n# config.inc.php\n#\t\tVERSION 2.5\n#\t\tCC BY-ND 3.0 Licensed (http://creativecommons.org/licenses/by-nd/3.0/)\n# \n# Do not manually edit\n# Use Admin Cpanel\n#--------------------------------" . "\n";
for ($i = 0; $i < count($settings); $i++) {
if ($keys[$i] != 'id' && $keys[$i] != 'gapassword') {
if ($values[$i][1] == 3) {
$data .= "\$setting['" . $keys[$i] . "'] = " . $values[$i][0] . ";" . "\n";
} else {
$data .= "\$setting['" . $keys[$i] . "'] = '" . addslashes($values[$i][0]) . "';" . "\n";
}
}
}
$data .= "?>";
unset($name);
unset($settings);
unset($value);
global $setting;
$file = $setting['sitepath'] . '/includes/config.inc.php';
$h = fopen($file, 'w');
fwrite($h, $data);
fclose($h);
}
function checkUser($uid, $oauth_provider, $username, $email, $twitter_otoken = '', $twitter_otoken_secret = '')
{
$query = yasDB_select("SELECT * FROM `user` WHERE oauth_uid = '{$uid}' and oauth_provider = '{$oauth_provider}'");
if ($query->num_rows != 0) {
# User is already present
} else {
#user not present. Insert a new Record
$query = yasDB_select("INSERT INTO `user` (oauth_provider, oauth_uid, username,email,twitter_oauth_token,twitter_oauth_token_secret,date) VALUES ('{$oauth_provider}', '{$uid}', '{$username}','{$email}','{$twitter_otoken}','{$twitter_otoken_secret}','" . time() . "')");
$query = yasDB_select("SELECT * FROM `user` WHERE oauth_uid = '" . $uid . "' and oauth_provider = '" . $oauth_provider . "' limit 1");
$result = $query->fetch_array(MYSQLI_BOTH);
return $result;
}
$result = $query->fetch_array(MYSQLI_BOTH);
return $result;
}
</label>
</div>
<?php
if (isset($_POST['edit_social'])) {
$fbid = yasDB_clean($_POST['fbAppId']);
$fbsecret = yasDB_clean($_POST['fbAppSecret']);
$twid = yasDB_clean($_POST['twAppId']);
$twsecret = yasDB_clean($_POST['twAppSecret']);
yasDB_update("UPDATE `settings` SET `fb_app_id` = '{$fbid}', `fb_app_secret` = '{$fbsecret}', `tw_app_id` = '{$twid}', `tw_app_secret` = '{$twsecret}' WHERE id = 1", false);
include "../includes/settings_function.inc.php";
createConfigFile();
echo '<center>Updated!';
echo '<br/><a href="index.php?act=socialids">Click to continue.</a></center>';
} else {
echo '<br/>';
$query = yasDB_select("SELECT `fb_app_id`, `fb_app_secret`, `tw_app_id`, `tw_app_secret` FROM `settings` WHERE `id` = 1");
$social = $query->fetch_array(MYSQLI_ASSOC);
?>
<div class="table">
<img src="img/bg-th-left.gif" width="8" height="7" alt="" class="left" />
<img src="img/bg-th-right.gif" width="7" height="7" alt="" class="right" />
<form name="app_ids" method="post" action="index.php?act=socialids">
<table class="listing form" cellpadding="0" cellspacing="0">
<tr>
<th class="full" colspan="2">Social App IDs</th>
</tr>
<tr>
<td class="first" style="width:100px;"><strong>Facebook App ID</strong></td>
<td class="last"><input type="text" name="fbAppId" value="<?php
echo $social['fb_app_id'];
?>
session_start();
require_once "../../../includes/db_functions.inc.php";
require_once "../../../includes/config.inc.php";
require_once "../../../includes/filelist.inc.php";
$dir = $setting['sitepath'] . '/avatars';
$files = dir_list($dir);
$os = array("gif", "jpg", "jpeg", "png", "GIF", "JPG", "JPEG", "PNG");
$n = 0;
$num = 0;
$count = count($files);
if ($count == 0) {
echo '<p>No free avatars available.</p>';
exit;
}
$avquery = yasDB_select("SELECT avatar FROM avatars WHERE userid = {$_SESSION['userid']}");
if ($avquery->num_rows != 0) {
while ($avfile = $avquery->fetch_array(MYSQL_ASSOC)) {
echo '
<div class="avatarpics">
<ul>
<li class="even"><input type="image" class="useravatars" src="' . $setting['siteurl'] . 'avatars/' . $avfile['avatar'] . '" onclick="switchAvatar(\'' . $avfile['avatar'] . '\');return false">
<center><input type="image" src="' . $setting['siteurl'] . 'templates/' . $setting['theme'] . '/skins/' . $setting['skin'] . '/images/close.png" height="15" width="15" name="avatar" value="Remove" onclick="deleteAvatar(\'' . addslashes($avfile['avatar']) . '\');return false"/></center></li>
</ul>
</div>';
}
}
$avquery->close();
while ($num < $count) {
$file = $files[$num]['name'];
$num++;
<?php
include "db_functions.inc.php";
$userid = yasDB_clean($_GET['uid']);
$query = yasDB_select("SELECT * FROM `user` WHERE `id` = '{$userid}'");
$userdata = $query->fetch_array(MYSQLI_ASSOC);
?>
<br/><br/>
<form id="profile" name="profile" method="post" action="index.php?act=profile">
<?php
if (!$userdata['oauth_provider']) {
?>
Name:<br />
<input type="text" name="name" value="<?php
echo $userdata['name'];
?>
" size="50" /><p>
<?php
}
if ($userdata['oauth_provider'] != "facebook") {
?>
Email:<br />
<input type="email" name="email" value="<?php
echo $userdata['email'];
?>
" size="50" /><p>
<?php
}
?>
Website:(Remember the http://)<br />
<input type="text" name="website" value="<?php
<td style="background-color:#fff;width:100%;"><textarea name="description" id="description" style="width:100%;"></textarea></td>
</tr>
<tr>
<td class="first"><strong>Instructions</strong></td><td class="last"></td>
<tr>
<td style="background-color:#fff;width:100%;"><textarea name="instructions" id="instructions" style="width:100%;"></textarea></td>
</tr>
<tr class="bg">
<td class="first"><strong>Keywords</strong></td>
<td class="last"><input type="text" name="keywords" style="width:275px;"/></td>
</tr>
<tr>
<td class="first" width="172"><strong>Category</strong></td>
<td class="last"><select name="category">
<?php
$query = yasDB_select("SELECT * FROM categories", false);
while ($row = $query->fetch_array(MYSQLI_ASSOC)) {
echo '<option value="' . $row['id'] . '">' . $row['name'] . '</option>';
}
$query->close();
?>
</select></td>
</tr>
<tr class="bg">
<td class="first"><strong>Game File Type</strong></td>
<td class="last"><select name="type">
<option value="SWF">swf</option>
<option value="DCR">dcr</option>
</select></td>
</tr>
<tr>
yasDB_update("UPDATE `ads` SET name = '{$name}', code = '{$code}' WHERE id = '{$id}'", false);
}
echo '<center>Updated!';
echo '<br><a href="index.php?act=ads">Click to continue.</a></center>';
} elseif (isset($_POST['delete_ad'])) {
$id = $_REQUEST["id"];
if ($id > 0 && $id < 12) {
yasDB_update("UPDATE ads SET code='Put AD code here' WHERE id = '{$id}'", false);
} else {
yasDB_delete("DELETE FROM ads WHERE id = '{$id}'", false);
}
echo '<center>The ad was deleted</center>';
echo '<center><br><a href="index.php?act=ads">Click to continue.</a></center>';
} else {
echo '<br/>';
$ads = yasDB_select("SELECT * FROM `ads` ORDER BY id asc", false);
while ($row = $ads->fetch_array(MYSQLI_ASSOC)) {
$ad = '<?php ';
$ad .= 'echo ad("' . $row['id'] . '");';
$ad .= ' ?>';
?>
<div class="table">
<img src="img/bg-th-left.gif" width="8" height="7" alt="" class="left" />
<img src="img/bg-th-right.gif" width="7" height="7" alt="" class="right" />
<form name="edit_ads" method="post" action="index.php?act=ads">
<input type="hidden" name="id" value="<?php
echo $row['id'];
?>
"/>
<table class="listing form" cellpadding="0" cellspacing="0">
<tr>
<div class="navh3">
<div align="center">Top 5 Members</div>
</div>
<div class="links1">
<p align="left">
<?php
$query = yasDB_select("SELECT * FROM user order by plays desc limit 5", false);
while ($row = $query->fetch_array(MYSQLI_ASSOC)) {
$id = $row['id'];
$username = $row['username'];
$plays = $row['plays'];
if ($setting['seo'] == 'yes') {
$memberlink = $setting['siteurl'] . 'showmember/' . $id . '.html';
} else {
$memberlink = $setting['siteurl'] . 'index.php?act=showmember&id=' . $id;
}
echo '<a href="' . $memberlink . '">' . $username . ' - ' . $plays . ' plays</a><br>';
}
$query->close();
?>
</p></div>
?>
</a>
</div>
<div class="clear"></div></div>
<?php
}
}
$query->close();
?>
<div class="clear"></div></div>
<!-- end of toprated -->
<!-- start of newest games box -->
<div class="container_box1"><div class="header">More Random Games</div>
<?php
$query = yasDB_select("SELECT id, title, thumbnail, description, plays FROM games ORDER BY rand() LIMIT 5", false);
if ($query->num_rows == 0) {
echo '<center><h3>We have no Newest games yet!</h3></center>';
}
if ($query->num_rows > 0) {
$pic_settings = array('w' => 130, 'h' => 100);
while ($games = $query->fetch_array(MYSQLI_ASSOC)) {
$gameurl = prepgame($games['title']);
$games['description'] = stripslashes($games['description']);
if (strlen($games['title']) > 19) {
$title = substr($games['title'], 0, 16) . '...';
} else {
$title = $games['title'];
}
if (file_exists($games['thumbnail'])) {
$thumbnail = urldecode($games['thumbnail']);
function install_vascogame($gameid)
{
global $mysqli;
$query = yasDB_select("SELECT * FROM `vascogames` WHERE `id` = '{$gameid}'", false);
$result = $query->fetch_array(MYSQLI_ASSOC);
$categories = array('action games' => 2, 'adventure games' => 3, 'strategy games' => 10, 'skill games' => 10, 'puzzle games' => 1, 'arcade games' => 9, 'shooting games' => 5, 'sports games' => 4, 'misc games' => 7, 'car games' => 4);
//Strategy
// Download and save game file
if ($result['file']) {
$g_url = str_replace("..", "", $result['file']);
$game_file = basename($g_url);
$game_file = "vasco_" . preg_replace('#\\W#', '', $result['title']) . "." . GetFileExtension($result['file']);
$game_url = '../swf/' . $game_file;
download_file($g_url, $game_url);
} else {
return false;
}
// Download and save thumbnail pic
if ($result['thumbnail']) {
$t_url = str_replace("..", "", $result['thumbnail']);
$smallthumb = "vasco_" . preg_replace('#\\W#', '', $result['title']) . "." . GetFileExtension($result['thumbnail']);
$thumb = '../img/' . $smallthumb;
download_file($t_url, $thumb);
}
$desc = yasDB_clean($result['description']);
// Prep for DB insert
$gamename = yasDB_clean($result['title']);
$gamefile = yasDB_clean(str_replace("../", "", $game_url));
$gamethumb = yasDB_clean(str_replace("../", "", $thumb));
$height = $result['height'];
$width = $result['width'];
$c = $result['category'];
$category = $categories[$c];
$query->close();
if ($category == null || $category == '' || $category == 0) {
$category == 7;
}
$query = yasDB_insert("INSERT INTO `games` (`id`, `title`, `description`, `instructions`, `keywords`, `file`, `height`, `width`, `category`, `plays`, `code`, `type`, `source`, `sourceid`, `thumbnail`, `thumbnail_200`, `screen1`, `screen2`, `screen3`, `screen4`) VALUES (NULL, '{$gamename}', '{$desc}', '', '', '{$gamefile}', {$height}, {$width}, {$category}, 0, '', 'SWF', 'VASCOGAMES', {$gameid}, '{$gamethumb}', '', '', '','','')", false);
if (!$query) {
echo 'Error updating Games database';
return false;
}
$query = yasDB_update("UPDATE `vascogames` SET `installed` = 1 WHERE `id` = {$result['id']}", false);
if (!query) {
echo 'Error updating vascogames database';
return false;
}
return true;
}
if (isset($_SESSION['user'])) {
$user = yasDB_clean($_SESSION['user']);
yasDB_update("UPDATE `user` set topics = topics +1 WHERE username = '******'");
// add a post to the user
yasDB_update("UPDATE `user` set totalposts = totalposts +1 WHERE username = '******'");
// add a post to user total
yasDB_update("UPDATE `stats` set numbers = numbers +1 WHERE id = '3'");
// adds a post to Forum Total Posts
yasDB_update("UPDATE `stats` set numbers = numbers +1 WHERE id = '4'");
// adds a post to Post Today
}
if ($result) {
?>
<center>Successful<br/></center>
<?php
$query = yasDB_select("SELECT max(id) AS lastid FROM forumtopics");
$answer = $query->fetch_array(MYSQLI_ASSOC);
if ($setting['seo'] == 'yes') {
$answerlink = $setting['siteurl'] . 'forumtopics/' . $answer['lastid'] . '/1.html';
} else {
$answerlink = $setting['siteurl'] . 'index.php?act=forumtopics&id=' . $answer['lastid'];
}
?>
<center><a href="<?php
echo $answerlink;
?>
">View your topic</a></center><?php
} else {
echo "<center>Could not create topic.</center>";
}
} elseif (!isset($_SESSION["user"])) {
}
echo '<center>Media successfully added!</font><br/>';
echo '<a href="index.php?">Click here to proceed</a></center>';
} else {
?>
<div class="table">
<form enctype="multipart/form-data" action="" method="post">
<table class="listing form" cellpadding="0" cellspacing="0">
<tr>
<th class="full" colspan="2">ADD YOUTUBE VIDEOS TO ALL PET HUMOR</th>
</tr>
<tr>
<td class="first" width="172"><strong>Category</strong></td>
<td class="last"><select name="category">
<?php
$query = yasDB_select("SELECT * FROM categories WHERE active='Yes'");
while ($row = $query->fetch_array(MYSQLI_ASSOC)) {
echo '<option value="' . $row['id'] . '">' . $row['name'] . '</option>';
}
$query->close();
?>
</select></td>
</tr>
<tr class="bg">
<td class="first"><strong>File</strong></td>
<td class="last"><select name="type">
<option value="YOUTUBE">youtube</option>
</select></td>
</tr>
<tr>
<td class="first" width="172"><strong>File path</strong></td>
$fopen = fopen($rrsfile, 'w');
fwrite($fopen, ob_get_contents());
fclose($fopen);
echo '<META http-equiv="refresh" content="2; URL=' . $setting['siteurl'] . 'admin/newsblogfeed.php?act=done">';
ob_end_flush();
$rrsfile = '../news-blog-feed.xml';
ob_start();
print "<?xml version=\"1.0\" encoding=\"ISO-8859-1\"?>\n";
print "" . "<rss version=\"2.0\">\n";
print "" . "<channel>\n";
print "" . "<title>" . $setting['sitename'] . "</title>\n";
print "" . "<link>" . $setting['siteurl'] . "</link>\n";
print "" . "<ttl>600</ttl>\n";
print "" . "<description>News Blog Rss Feed.</description>\n";
print "" . "<copyright>" . date("Y") . " " . $setting['sitename'] . " All rights reserved.</copyright>\n";
$query = yasDB_select("SELECT * FROM news ORDER BY id DESC");
while ($row = $query->fetch_array(MYSQLI_ASSOC)) {
$ID = $row['id'];
$date = $row['date'];
$topic = $row['topic'];
$news = $row['news_text'];
$rowurl = $row['news_text'];
$rowurl = str_replace(" ", "-", $rowurl);
$rowurl = str_replace("'", "_", $rowurl);
$rowurl = str_replace('"', "_", $rowurl);
$rowurl = str_replace('/', "_", $rowurl);
$rowurl = str_replace("\\", "_", $rowurl);
$rowurl = rawurlencode($rowurl);
if ($setting['seo'] == 'yes') {
$newslink = $setting['siteurl'] . 'shownews/' . $ID . '.html';
} else {
<div id="member_plays_header">Plays</div>
</div><div class="member_box">
<div class="member_box2">
<?php
$result = yasDB_select("SELECT count(id) FROM `user` ");
$query_data = $result->fetch_array(MYSQLI_NUM);
$numrows = $query_data[0];
$rquery = yasDB_select("SELECT `username` FROM `user` ORDER BY `plays` DESC", false);
$ranking = array();
$i = 0;
while ($cow = $rquery->fetch_array(MYSQLI_ASSOC)) {
$ranking[$i] = $cow['username'];
$i++;
}
$pageurl = new pagination($numrows, $setting['seo'], 'members', 15, 3);
$query = yasDB_select("SELECT * FROM user ORDER BY `username` asc LIMIT " . $pageurl->start . ", " . $pageurl->limit);
while ($row = $query->fetch_array(MYSQLI_ASSOC)) {
$rank = array_search($row['username'], $ranking) + 1;
$id = $row['id'];
$username = $row['username'];
$plays = $row['plays'];
if ($setting['seo'] == 'yes') {
$memberlink = $setting['siteurl'] . 'showmember/' . $id . '.html';
} else {
$memberlink = $setting['siteurl'] . 'index.php?act=showmember&id=' . $id;
}
if ($row['useavatar'] == '1') {
$avatarimage = $setting['siteurl'] . 'avatars/' . $row['avatarfile'];
} else {
$avatarimage = $setting['siteurl'] . 'avatars/useruploads/noavatar.jpg';
}
<?php
session_start();
include "db_functions.inc.php";
if (isset($_SESSION['userid'])) {
$gameid = yasDB_clean($_GET['gid']);
$userid = yasDB_clean($_SESSION['userid']);
$query = yasDB_select("SELECT `gameid` FROM `favourite` WHERE `userid` = {$userid} && `gameid` = {$gameid}");
if ($query->num_rows == 0) {
yasDB_insert("INSERT INTO `favourite` (userid, gameid) VALUES ({$userid}, {$gameid})");
}
}
<?php
$cache = RayCache::getInstance('newest', null, array('prefix' => 'tribox_', 'path' => 'cache/', 'expire' => $setting['cachelife']));
$data = $cache->read('newest');
if ($data) {
echo $data;
} else {
$cache->start_caching();
?>
<div class="navh3">Newest Games</div>
<div style="float:left;width:174px;height:auto;margin:0 0; padding:0 0;">
<?php
$query = yasDB_select("SELECT id, title, thumbnail FROM games ORDER BY id DESC LIMIT 8");
if ($query->num_rows == 0) {
echo '<center><h4>We have no rated games yet!</h4></center>';
} else {
$pic_settings = array('w' => 35, 'h' => 35);
while ($games = $query->fetch_array(MYSQLI_ASSOC)) {
$gameurl = prepgame($games['title']);
$games['description'] = stripslashes($games['description']);
$description = str_replace(array("\r\n", "\r", "\n", "'", '"'), ' ', $games['description']);
if (strlen($games['title']) > 25) {
$title = substr($games['title'], 0, 22) . '...';
} else {
$title = $games['title'];
}
if (file_exists($games['thumbnail'])) {
$thumbnail = urldecode($games['thumbnail']);
} else {
$thumbnail = $setting['siteurl'] . 'templates/' . $setting['theme'] . '/skins/' . $setting['skin'] . '/images/nopic.jpg';
}
</form>
</div>
<div class="editavatar_header">Free Avatars</div>
<div class="avatarBox">
<?php
$dir = $setting['sitepath'] . '/avatars';
$files = dir_list($dir);
$os = array("gif", "jpg", "jpeg", "png", "GIF", "JPG", "JPEG", "PNG");
$n = 0;
$num = 0;
$count = count($files);
if ($count == 0) {
echo '<p>No free avatars available.</p>';
exit;
}
$avquery = yasDB_select("SELECT avatar FROM avatars WHERE userid = '{$id}'");
if ($avquery->num_rows != 0) {
while ($avfile = $avquery->fetch_array(MYSQL_ASSOC)) {
echo '<div class="avatar_images">
<input type="image" class="useravatars" src="' . $setting['siteurl'] . 'avatars/' . $avfile['avatar'] . '" onclick="switchAvatar(\'' . $avfile['avatar'] . '\');return false">';
echo '<center><input type="image" src="' . $setting['siteurl'] . 'templates/' . $setting['theme'] . '/skins/' . $setting['skin'] . '/images/close.png" height="15" width="15" name="avatar" value="Remove" onclick="deleteAvatar(\'' . addslashes($avfile['avatar']) . '\');return false"/></center></div>';
}
}
$avquery->close();
while ($num < $count) {
$file = $files[$num]['name'];
$num++;
$n++;
$file = yasDB_clean($file);
$ext = pathinfo($file, PATHINFO_EXTENSION);
if (in_array($ext, $os)) {
$user = null;
}
if (!empty($user_profile)) {
$username = $user_profile['name'];
$uid = $user_profile['id'];
$email = $user_profile['email'];
$user = new User();
$userdata = $user->checkUser($uid, 'facebook', $username, $email);
if (!empty($userdata)) {
$_SESSION['userid'] = $userdata['id'];
$_SESSION['oauth_id'] = $uid;
$_SESSION['user'] = $userdata['username'];
$_SESSION['email'] = $email;
$_SESSION['oauth_provider'] = $userdata['oauth_provider'];
$now = time();
$query = yasDB_select("SELECT `id` FROM `membersonline` WHERE `memberid` = '{$userdata['id']}'");
if ($query->num_rows == 0) {
yasDB_insert("INSERT INTO `membersonline` (id, memberid, timeactive) VALUES ('', '{$userdata['id']}', '{$now}')", false);
} else {
yasDB_update("UPDATE `membersonline` SET timeactive='{$now}' WHERE `memberid`='{$userdata['id']}'");
}
header("Location: " . $setting['siteurl']);
exit;
}
} else {
die("There was an error.");
}
} else {
$login_url = $facebook->getLoginUrl(array('scope' => 'email'));
header("Location: " . $login_url);
}
<div class="container_box1">
<div class="header">Forgot Password:</div>
<div class="container_box2">
<form name="myform" action="<?php
echo $setting['siteurl'] . 'index.php?act=forgotpassword';
?>
" method="post">
Username: <input type="text" name="username" size="30" /><br/><br/>
Email: <input type="text" name="useremail" size="30" /><br/><br/>
<input type="submit" name="submit" value="Submit" /><br/><br/>
</form>
<?php
if (isset($_POST["username"]) || isset($_POST["useremail"])) {
$username = $_POST["username"];
$useremail = $_POST["useremail"];
$res = yasDB_select("SELECT * FROM user WHERE username='******' AND email='{$useremail}'", false);
$row = $res->fetch_array(MYSQLI_ASSOC);
$res->close();
if (!empty($row)) {
$email = $row["email"];
srand((double) microtime() * 1000000);
$random = rand(1234, 2343);
$password = $row["name"] . $random;
$upassword = md5($password);
yasDB_update("UPDATE user SET password='******' WHERE username='******'", false);
$headers = "From: {$setting['email']} \n";
//from address
$headers .= "MIME-Version: 1.0\n";
$headers .= "Content-type: text/html; charset=iso-8859-1 \n";
$subject = $setting['sitename'] . " Password Reset - Do Not Reply";
$body = "<div align=center><br><br>----------------------------- Password Reset--------------------------------<br><br><br><br>\n\t\tYour New Password is: {$password}<br/>\n\t\tPlease log in and create a new password if you wish.</div>";
function install_mgfgame($gameid)
{
global $mysqli;
$query = yasDB_select("SELECT * FROM `mgffeed` WHERE `id` = '{$gameid}'", false);
$result = $query->fetch_array(MYSQLI_ASSOC);
// Download and save game file
if ($result['file']) {
$g_url = str_replace("..", "", $result['file']);
$game_file = basename($g_url);
$game_file = "mgf_" . $result['title'] . "." . GetFileExtension($result['file']);
$game_url = '../swf/' . $game_file;
download_file($g_url, $game_url);
} else {
return false;
}
// Download and save thumbnail pic
if ($result['thumbnail']) {
$t_url = str_replace("..", "", $result['thumbnail']);
$smallthumb = "mgf_" . $result['title'] . "." . GetFileExtension($result['thumbnail']);
$sm_thumb = '../img/' . $smallthumb;
download_file($t_url, $sm_thumb);
}
$desc = yasDB_clean($result['description']);
// Prep for DB insert
$gamename = yasDB_clean($result['title']);
$keywords = yasDB_clean($result['keywords']);
$gamefile = yasDB_clean(str_replace("../", "", $game_url));
$gamethumb = yasDB_clean(str_replace("../", "", $sm_thumb));
$gamethumb200 = yasDB_clean(str_replace("../", "", $med_thumb));
$height = intval($result['height']);
$width = intval($result['width']);
$instructions = yasDB_clean($result['instructions']);
$keywords = yasDB_clean($result['keywords']);
$category = $result['category'];
$review = yasDB_clean($result['review']);
$query->close();
$query = yasDB_insert("INSERT INTO `games` (`id`, `title`, `description`, `instructions`, `keywords`, `file`, `height`, `width`, `category`, `plays`, `code`, `type`, `source`, `sourceid`, `thumbnail`, `ismochi`, `thumbnail_200`, `screen1`, `screen2`, `screen3`, `screen4`, `review`, `active`) VALUES (NULL, '{$gamename}', '{$desc}', '{$instructions}', '{$keywords}', '{$gamefile}', {$height}, {$width}, {$category}, 0, '', 'SWF', 'OTHER', {$gameid}, '{$gamethumb}', 0, '{$gamethumb200}', '', '','','', '{$review}', 1)", false);
if (!$query) {
echo 'Error updating Games database';
return false;
}
$query = yasDB_update("UPDATE mgffeed SET installed = '1' WHERE id = {$result['id']}", false);
if (!$query) {
echo 'Error updating mgffeed database';
return false;
}
return true;
}
<table class="listing" cellpadding="0" cellspacing="0">
<thead>
<tr>
<th width="90px">Title</th>
<th>Categories</th>
<th>Rating</th>
<th>Description</th>
<th>Keywords</th>
<th>Leaderboard</th>
<th>Install</th>
</tr>
</thead>
<?php
//*************************************************************************************************************************************************
$sql = 'SELECT * FROM mochigames WHERE' . $sql_rating . $sql_category . $sql_keywords . $sql_description . ' isinstalled = 0 AND hidden = 0 ORDER BY id DESC ' . $limit;
$query = yasDB_select($sql, false);
if ($query->num_rows == 0) {
echo '<center><b style="color: #7F7F7F">No games meet your criteria.</b></center>';
} else {
$i = 0;
while ($row = $query->fetch_array(MYSQLI_ASSOC)) {
$i++;
?>
<script type="text/javascript">
$(document).ready(function() {
$("#game<?php
echo $i;
?>
").fancybox({
'type' : 'swf',
}
$result = yasDB_select("SELECT count(id) FROM categories", false);
$query_data = $result->fetch_array(MYSQLI_NUM);
$numrows = $query_data[0];
$result->close();
$rows_per_page = 15;
$lastpage = ceil($numrows / $rows_per_page);
$pageno = (int) $pageno;
if ($pageno > $lastpage) {
$pageno = $lastpage;
}
if ($pageno < 1) {
$pageno = 1;
}
$limit = 'LIMIT ' . ($pageno - 1) * $rows_per_page . ',' . $rows_per_page;
$query = yasDB_select("select * from categories {$limit}", false);
if ($query->num_rows == 0) {
echo '<center>No categories in the database!</center>';
} else {
?>
<br/><center>
<form name="add" method="post" action="">
Name: <input type="text" name="name" /> <input type="submit" class="button" value="Add Category" name="add">
</form></center><br />
<div class="table">
<img src="img/bg-th-left.gif" width="8" height="7" alt="" class="left" />
<img src="img/bg-th-right.gif" width="7" height="7" alt="" class="right" />
<table class="listing" cellpadding="0" cellspacing="0">
<tr>
<th class="first" width="30px">ID</th>
$hobbies = yasDB_clean($_POST['hobbies']);
$shhobs = yasDB_clean($_POST['shhobs']);
$shloc = yasDB_clean($_POST['shloc']);
$sheml = yasDB_clean($_POST['sheml']);
$shname = yasDB_clean($_POST['shname']);
$shabout = yasDB_clean($_POST['shabout']);
$deact = yasDB_clean($_POST['deact']);
$cmtsdisabled = yasDB_clean($_POST['cmtsdisabled']);
yasDB_update("UPDATE `user` SET website = '{$website}', name = '{$name}', email = '{$email}', location = '{$location}', aboutme = '{$aboutme}', hobbies = '{$hobbies}', shhobs = '{$shhobs}', shloc = '{$shloc}', sheml = '{$sheml}', shname = '{$shname}', shabout = '{$shabout}', deact = '{$deact}', cmtsdisabled = '{$cmtsdisabled}' WHERE username = '******'");
if (!empty($_POST['password'])) {
$password = md5(yasDB_clean($_POST['password']));
yasDB_update("UPDATE user SET password = '******' WHERE username = '******'");
}
echo '<META HTTP-EQUIV="Refresh" CONTENT="0; URL=index.php?act=profile">';
} else {
$query = yasDB_select("SELECT * FROM `user` WHERE username = '******'");
$row = $query->fetch_array(MYSQLI_ASSOC);
echo ' <div class="containbox2"><div id="preview"></div><div id="profileBox">
<form name="usersettings" id="profile" method="post" action="index.php?act=profile">
<table class="tg">
<tr>
<th class="tg-s6z2" colspan="4">' . $user . 's Profile:</th>
</tr>
<tr>
<td class="tg-vn4c">Name:</td>
<td class="tg-vn4c"><input type="text" name="name" id="s-a-g" value="' . $row['name'] . '" size="30" /></td>
<td class="tg-vn4c">Email:</td>
<td class="tg-vn4c"><input type="text" name="email" id="s-a-g" value="' . $row['email'] . '" size="30" /></td>
</tr>
<tr>
<td class="tg-0ord">Website:(Remember the http://)</td>
<?php
session_start();
require_once "db_functions.inc.php";
require_once "config.inc.php";
if (isset($_SESSION['userid'])) {
$af = yasDB_clean($_GET['af']);
$userid = yasDB_clean($_SESSION['userid']);
yasDB_delete("DELETE FROM `avatars` WHERE `userid` = '{$userid}' and `avatar` = '{$af}'");
unlink("../avatars/" . $af);
$query = yasDB_select("SELECT `avatarfile` FROM `user` WHERE `id` = '{$userid}'");
$useraf = $query->fetch_array(MYSQLI_ASSOC);
if ($af == $useraf['avatarfile']) {
yasDB_update("UPDATE user SET avatarfile = 'useruploads/noavatar.JPG' WHERE id = {$userid}");
echo 'useruploads/noavatar.JPG';
} else {
echo $useraf['avatarfile'];
}
}
<div class="nav_box"><div class="nav">Login</div>
<div class="nav_box2">
<?php
if (isset($_SESSION["user"])) {
$user = $_SESSION["user"];
$query = yasDB_select("select `useavatar`, `avatarfile`, `plays` from `user` where `username` = '{$user}'");
$row = $query->fetch_array(MYSQLI_ASSOC);
if ($row['useavatar'] == '1') {
$avatarimage = $setting['siteurl'] . 'avatars/' . $row['avatarfile'];
} else {
$avatarimage = $setting['siteurl'] . 'avatars/useruploads/noavatar.JPG';
}
echo "<h2>Welcome <b>" . $user . "</b></h2><br/>";
echo '<center><img id="avatarimage" src="' . $avatarimage . '" height="100" width="100" align="top"/>
</center><br/>';
echo "<center><h2>Games played:</h2>\n\t<b>" . $row['plays'] . "</b></center>";
if ($setting['seo'] == 'yes') {
?>
<form name="menuform">
<select name="menu" onChange="top.location.href = this.form.menu.options[this.form.menu.selectedIndex].value;return false;">
<option value="#" selected><span>Select</span></option>
<option value="<?php
echo '' . $setting['siteurl'] . 'index.php';
?>
" title="Home"><span>Home</span></option>
<option value="<?php
echo '' . $setting['siteurl'] . 'editavatar.html';
?>
" title="Edit Avatar">Edit Avatar</option>
<option value="<?php
echo '' . $setting['siteurl'] . 'profile.html';
}
$result = yasDB_select("SELECT count(id) FROM forumcats", false);
$query_data = $result->fetch_array(MYSQLI_NUM);
$numrows = $query_data[0];
$result->close();
$rows_per_page = 15;
$lastpage = ceil($numrows / $rows_per_page);
$pageno = (int) $pageno;
if ($pageno > $lastpage) {
$pageno = $lastpage;
}
if ($pageno < 1) {
$pageno = 1;
}
$limit = 'LIMIT ' . ($pageno - 1) * $rows_per_page . ',' . $rows_per_page;
$query = yasDB_select("select * from forumcats {$limit}", false);
if ($query->num_rows == 0) {
echo '<center>No categories in the database!</center>';
} else {
?>
<br/><center>
<form name="add" method="post" action="">
Name: <input type="text" name="name" /> <input type="submit" class="button" value="Add Category" name="add">
</form></center><br />
<div class="table">
<img src="img/bg-th-left.gif" width="8" height="7" alt="" class="left" />
<img src="img/bg-th-right.gif" width="7" height="7" alt="" class="right" />
<table class="listing" cellpadding="0" cellspacing="0">
<tr>
<th class="first" width="30px">ID</th>
echo '
<center>
<form method="post">
<input type="hidden" name="upload" value="1" />
Enter your email to be notified about our new addition of downloadable games:
<br />
<input type="text" name="email" maxlength="30" width="300" />
<input type="submit" value="Submit" />
</form>
</center>';
$result = yasDB_select("SELECT count(id) FROM `downgames` ");
$query_data = $result->fetch_array(MYSQLI_NUM);
$numrows = $query_data[0];
$result->close();
$pageurl = new pagination($numrows, $setting['seo'], 'download', $setting['gperpage'], 3);
$select_games = yasDB_select("SELECT * FROM downgames ORDER BY `id` DESC LIMIT " . $pageurl->start . ", " . $pageurl->limit);
while ($games = $select_games->fetch_array(MYSQLI_ASSOC)) {
$thumbpath = $setting['siteurl'] . urldecode(str_replace("../", "", $games['thumbnail']));
$filepath = str_replace("../", "", $games['file']);
if (strlen($games['description']) > 180) {
$games['description'] = substr($games['description'], 0, 180) . '...';
}
$games['description'] = stripslashes($games['description']);
$description = str_replace(array("\r\n", "\r", "\n", "'", '"'), ' ', $games['description']);
$pic_settings = array('w' => 130, 'h' => 100);
echo '<div class="download">
<ul>
<li class="title"><div class="downloadheader">' . $games['title'] . '</div></li>
<li class="even"><div class="container_box7"><div class="gameholderimg"><img align="absmiddle" src="' . resize($thumbpath, $pic_settings, "download") . '" alt="' . $thumbpath . '" width="130" height="100" /></div><div class="desc">' . $games['description'] . '</div>';
if ($games['mochi'] != '') {
echo '<div class="clear"></div><div class="downloadgame"><center><a href="' . $setting['siteurl'] . $filepath . '" onclick="return download_link(' . $games['id'] . ')"><img align="absmiddle" src="' . $setting['siteurl'] . 'templates/' . $setting['theme'] . '/skins/' . $setting['skin'] . '/images/buttons/download.png" width="100" height="30" /></a></center></div>';
function install_playtomic($gameid)
{
$table = '';
$pre = 'ptomic';
global $mysqli;
$categories = array('Action' => 2, 'Adventure' => 3, 'Strategy' => 10, 'Multiplayer' => 2, 'Puzzle' => 1, 'Rhythm' => 7, 'Shooter' => 5, 'Sports' => 4, 'Other' => 7, 'RPG' => 3, 'Arcade' => 9, 'Driving' => 4, 'Defense' => 10, 'Rhythm' => 7, 'Education' => 7, 'Gadgets' => 1, 'Fighting' => 2, 'Dress Up' => 8, 'Board Game' => 7, 'Pimp & Customize' => 8, 'Pimp & Customize' => 8);
$query = yasDB_select("SELECT * FROM `playtomicfeed` WHERE `id` = '{$gameid}'", false);
$result = $query->fetch_array(MYSQLI_ASSOC);
$gamename = $result['name'];
$thumburl = $result['thumburl'];
$thumburl_200 = $result['thumbnail_200x200'];
$screen1_thumb = '';
$screen2_thumb = '';
$screen3_thumb = '';
$screen4_thumb = '';
$gameurl = $result['gameurl'];
$c = explode(",", $result['categories']);
// Remove comma delimiter and seperate categories into array in order to insert single category.
$category = $categories[$c[0]];
$slug = str_replace(array('-', '_'), '', $result['slug']);
// Download and save game file
$game_file = $pre . "_" . $slug . "." . GetFileExtension($result['gameurl']);
$game_url = '../swf/' . $game_file;
download_file($gameurl, $game_url);
$gamefile = 'swf/' . $game_file;
// Download and save 100x100 thumbnail pic
$smallthumb = $pre . "_" . $slug . "." . GetFileExtension($result['thumburl']);
$sm_thumb = '../img/' . $smallthumb;
download_file($thumburl, $sm_thumb);
$gamethumb = 'img/' . $smallthumb;
// Download and save 200x200 thumbnail pic
$gamethumb200 = '';
/*if(!empty($result['thumbnail_200x200']) || $type == 0) {
$t_url = str_replace("..", "", $result['thumbnail_200x200']);
$mediumthumb = $pre."_200_" . $slug . "." . GetFileExtension($result['thumbnail_200x200']);
$med_thumb = '../img/' . $mediumthumb;
download_file($t_url, $med_thumb);
$gamethumb200 = 'img/' . $mediumthumb;
} else {
$gamethumb200 = '';
}*/
/////////////////////////////////////////////////////////////////////////////////////////////////
// Remove code comment to download the game screen images - depends on availabilty in the feed //
/////////////////////////////////////////////////////////////////////////////////////////////////
/*
// Download and save screen 1 pic
if($result['screenthumburl1']) {
$t_url = str_replace("..", "", $result['screenthumburl1']);
$largethumb = $pre."_screen1_" . $slug . "." . GetFileExtension($result['screenthumburl1']);
$screen1_thumb = '../img/' . $largethumb;
download_file($t_url, $screen1_thumb);
}
// Download and save screen 2 pic
if($result['screenthumburl2']) {
$t_url = str_replace("..", "", $result['screenthumburl2']);
$largethumb = $pre."_screen2_" . $slug . "." . GetFileExtension($result['screenthumburl2']);
$screen2_thumb = '../img/' . $largethumb;
download_file($t_url, $screen2_thumb);
}
// Download and save screen 3 pic
if($result['screenthumburl3']) {
$t_url = str_replace("..", "", $result['screenthumburl3']);
$largethumb = $pre."_screen3_" . $slug . "." . GetFileExtension($result['screenthumburl3']);
$screen3_thumb = '../img/' . $largethumb;
download_file($t_url, $screen3_thumb);
}
// Download and save screen 4 pic
if($result['screenthumburl2']) {
$t_url = str_replace("..", "", $result['screenthumburl4']);
$largethumb = $pre."_screen4_" . $slug . "." . GetFileExtension($result['screenthumburl4']);
$screen4_thumb = '../img/' . $largethumb;
download_file($t_url, $screen4_thumb);
}
*/
$desc = yasDB_clean($result['description']);
// Prep for DB insert
$instructions = yasDB_clean($result['instructions']);
$keywords = $result['keywords'];
$keywords = yasDB_clean($keywords);
$gamename = yasDB_clean($gamename);
$gamefile = yasDB_clean($gamefile);
$gamethumb = yasDB_clean($gamethumb);
$height = $result['height'];
$width = $result['width'];
$query->close();
$query = yasDB_insert("INSERT INTO `games` (`id`, `title`, `description`, `instructions`, `keywords`, `file`, `height`, `width`, `category`, `plays`, `code`, `type`, `source`, `sourceid`, `thumbnail`, `thumbnail_200`, `screen1`, `screen2`, `screen3`, `screen4`) VALUES (NULL, '{$gamename}', '{$desc}', '{$instructions}', '{$keywords}', '{$gamefile}', '{$height}', '{$width}', {$category}, 0, '', 'SWF', 'PLAYTOMIC', {$gameid}, '{$gamethumb}', '{$gamethumb200}', '{$screen1_thumb}', '{$screen2_thumb}','{$screen3_thumb}','{$screen4_thumb}')", false);
if (!$query) {
echo 'Error updating Games database';
return false;
}
$query = yasDB_update("UPDATE `playtomicfeed` SET isinstalled = 1 WHERE id = '{$result['id']}'", false);
if (!query) {
echo 'Error updating $table database';
return false;
}
return true;
}
<?php
$cache = RayCache::getInstance('newest', null, array('prefix' => $setting['theme'] . '_', 'path' => 'cache/', 'expire' => $setting['cachelife']));
$data = $cache->read('newest');
if ($data) {
echo $data;
} else {
$cache->start_caching();
?>
<div class="nav_box"><div class="nav">Newest Games</div>
<div class="nav_box2">
<div class="links1">
<?php
$query = yasDB_select("SELECT id, title FROM games ORDER BY id DESC LIMIT 5");
while ($games = $query->fetch_array(MYSQLI_ASSOC)) {
$gameurl = prepgame($games['title']);
if ($setting['seo'] == 'yes') {
$gurl = $setting['siteurl'] . 'game/' . $games['id'] . '/' . $gameurl . '.html';
} else {
$gurl = $setting['siteurl'] . 'index.php?act=game&id=' . $games['id'];
}
?>
<a href="<?php
echo $gurl;
?>
"><?php
echo $games['title'];
?>
</a>
<div class="nav_box"><div class="nav">Favorite Games</div>
<div class="nav_box2"><div style="margin:5px;">
<?php
if (isset($_SESSION["user"])) {
?>
<div class="links1"><?php
$user = $_SESSION["user"];
$userid = $_SESSION["userid"];
$query = yasDB_select("SELECT * FROM favourite WHERE userid= '{$userid}' limit 5", false);
while ($row = $query->fetch_array(MYSQLI_ASSOC)) {
$games = yasDB_select("SELECT * FROM games WHERE id = '{$row['gameid']}'", false);
$game = $games->fetch_array(MYSQLI_ASSOC);
$gameurl = $game['file'];
$gameurl = str_replace(" ", "-", $gameurl);
$gameurl = str_replace("'", "_", $gameurl);
$gameurl = str_replace('"', "_", $gameurl);
$gameurl = str_replace('/', "_", $gameurl);
$gameurl = str_replace("\\", "_", $gameurl);
$gameurl = rawurlencode($gameurl);
if ($setting['seo'] == 'yes') {
echo '<a href="' . $setting['siteurl'] . 'game/' . $game['id'] . '/' . $gameurl . '.html' . '">' . $game['title'] . '</a>';
} else {
echo '<a href="' . $setting['siteurl'] . 'index.php?act=game&id=' . $game['id'] . '">' . $game['title'] . '</a>';
}
}
if ($query->num_rows == 0) {
echo 'There are no games in your Favorites.';
} else {
if ($setting['seo'] == 'yes') {
echo '<center><a href="' . $setting['siteurl'] . 'favourites.html">More</a></center>';
} else {
