<?php include_once "../../_config.php"; include_once "../../classes/btmysql.php"; include_once "../../classes/member.php"; $mysqli = new btmysql($dbhost, $dbuser, $dbpass, $dbname); $mysqli->set_tablePrefix($dbprefix); $member = new Member($mysqli); $websiteInfoObj = new Basic($mysqli, "websiteinfo", "websiteinfo_id"); $member->select($_POST['user']); if ($member->authorizeLogin($_POST['pass'], 1) && $member->get_info("rank_id") == "1") { $memberInfo = $member->get_info_filtered(); $websiteInfoObj->select(1); $websiteInfoObj->update(array("theme"), array($_POST['themeName'])); echo "\n\t\t\n\t\t\t<script type='text/javascript'>\n\t\t\t\n\t\t\t\t\$.post('../themes/" . $_POST['themeName'] . "/menuimport_default.php');\n\t\t\t\n\t\t\t</script>\n\t\t\n\t\t"; } else { if (!$member->select($_POST['user'])) { echo "Unable to select user " . $_POST['user'] . "<br>"; } if (!$member->authorizeLogin($_POST['pass'], 1)) { echo "Not Authorized<br>"; } if (!$member->get_info("rank_id") == "1") { echo "Not Admin<br>"; } }
$_SESSION['btUsername'] = $_COOKIE['btUsername']; $_SESSION['btPassword'] = $_COOKIE['btPassword']; } else { session_start(); } if (!isset($_SESSION['csrfKey'])) { $_SESSION['csrfKey'] = md5(uniqid()); } include $prevFolder . "_config.php"; define("BASE_DIRECTORY", $BASE_DIRECTORY); //define("BASE_DIRECTORY", str_replace("//", "/", $_SERVER['DOCUMENT_ROOT'].$MAIN_ROOT)); define("MAIN_ROOT", $MAIN_ROOT); $PAGE_NAME = ""; include_once BASE_DIRECTORY . "_functions.php"; define("FULL_SITE_URL", getHTTP() . $_SERVER['SERVER_NAME'] . MAIN_ROOT); $mysqli = new btmysql($dbhost, $dbuser, $dbpass, $dbname); $mysqli->set_tablePrefix($dbprefix); $mysqli->set_testingMode(true); $logObj = new Basic($mysqli, "logs", "log_id"); // Get Clan Info $webInfoObj = new WebsiteInfo($mysqli); $webInfoObj->select(1); $websiteInfo = $webInfoObj->get_info_filtered(); $CLAN_NAME = $websiteInfo['clanname']; $THEME = $websiteInfo['theme']; define("THEME", $THEME); $arrWebsiteLogoURL = parse_url($websiteInfo['logourl']); if (!isset($arrWebsiteLogoURL['scheme']) || $arrWebsiteLogoURL['scheme'] == "") { $websiteInfo['logourl'] = $MAIN_ROOT . "themes/" . $THEME . "/" . $websiteInfo['logourl']; } $IP_ADDRESS = $_SERVER['REMOTE_ADDR'];
<?php if ($_POST['step2submit']) { // Check Connection Again $mysqli = new btmysql($_POST['dbhost'], $_POST['dbuser'], $_POST['dbpass'], $_POST['dbname']); $mysqli->set_tablePrefix($_POST['tableprefix']); if ($mysqli->connect_errno !== 0) { $dispError = "\n\t\t\t <b>·</b> Unable to connect to database! Make sure you entered the correct information.<br><br>\n\t\t\t <b>MySQL Response:</b> " . $mysqli->connect_error . "<br>"; $countErrors++; } else { if ($_POST['installType'] == 1) { // Fresh Install // Check Username if (trim($_POST['adminusername']) == "") { $countErrors++; $dispError .= " <b>·</b> The admin username may not be blank.<br>"; } // Check Password if ($_POST['adminpassword'] != $_POST['adminpassword_repeat']) { $countErrors++; $dispError .= " <b>·</b> Your passwords did not match.<br>"; } if (strlen(trim($_POST['adminpassword'])) < 6) { $countErrors++; $dispError .= " <b>·</b> The admin password must be at least 6 characters long.<br>"; } } else { // Updating $member = new Member($mysqli); $member->select($_POST['adminusername']); if (!$member->authorizeLogin($_POST['adminpassword'], 1)) {