} sql_free_result($res_team); sql_close($sgbd); if ($right_user['add_member']) { $page['link_add'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=form_member"); $page['admin'] = "1"; } else { $page['link_add'] = ""; $page['admin'] = ""; } $page['form_action'] = convert_url("index.php?r=" . $lang['general']['idurl_team'] . "&v1=player_list"); # text $page['link_team_player_list'] = convert_url("index.php?r=" . $lang['general']['idurl_team'] . "&v1=player_list"); $page['link_tri_name'] = convert_url("index.php?r=" . $lang['general']['idurl_team'] . "&v1=page_1_name_" . $sens_inv); $page['link_tri_club'] = convert_url("index.php?r=" . $lang['general']['idurl_team'] . "&v1=page_1_club_" . $sens_inv); $page['link_tri_position'] = convert_url("index.php?r=" . $lang['general']['idurl_team'] . "&v1=page_1_position_" . $sens_inv); $page['L_order'] = $lang['team']['order_by']; $page['L_player'] = $lang['team']['player']; $page['L_team'] = $lang['team']['team_name']; $page['L_number'] = $lang['team']['number']; $page['L_position'] = $lang['team']['position']; $page['L_captain'] = $lang['team']['captain']; $page['L_club'] = $lang['team']['club']; $page['L_position'] = $lang['team']['position']; $page['L_season'] = $lang['team']['season']; $page['L_first_page'] = $lang['team']['first_page']; $page['L_previous_page'] = $lang['team']['previous_page']; $page['L_next_page'] = $lang['team']['next_page']; $page['L_last_page'] = $lang['team']['last_page']; $page['L_add'] = $lang['team']['add_player']; $page['L_choose_season'] = $lang['team']['choose_season'];
} if (isset($_POST['name'])) { $page['value_name'] = $_POST['name']; } } } # listes des country $sql_liste = $sql['member']['select_country']; $sgbd = sql_connect(); $res_liste = sql_query($sql_liste); $i = "0"; while ($ligne = sql_fetch_array($res_liste)) { $page['country'][$i]['id'] = $ligne['country_id']; $page['country'][$i]['name'] = $ligne['country_name']; $page['country'][$i]['form_action'] = $page['form_action']; $page['country'][$i]['link_modification'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=form_country&v2=" . $ligne['country_id']); $page['country'][$i]['link_suppression'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=country_list&v2=" . $ligne['country_id'] . "&v3=delete"); $page['country'][$i]['L_edit'] = $lang['member']['edit']; $page['country'][$i]['L_delete'] = $lang['member']['delete']; $i++; } sql_free_result($res_liste); sql_close($sgbd); $page['L_title'] = $lang['member']['country_list']; $page['L_liste'] = $lang['member']['country_list']; $page['L_add'] = $lang['member']['add_country']; $page['L_valider'] = $lang['member']['submit']; $page['L_erreur'] = $lang['general']['E_erreur']; $page['L_field_required'] = $lang['general']['field_required']; $page['meta_title'] = $lang['member']['country_list']; $page['template'] = $tpl['member']['country_list'];
function own_link_count($html, $url) { $domain_name = get_domain($url); $link_arr = _striplinks($html); if ($link_arr) { $re_link_arr = is_array($link_arr) ? array_unique($link_arr) : $link_arr; $i = 0; foreach ($re_link_arr as $v) { $v = convert_url($v); if (strexists(trim(_expandlinks($v, $url)), $domain_name)) { $i++; } } return $i; } }
$page['L_current_step_info'] = $lang['match']['associate_value_info']; break; case 4: $page['L_current_step'] = $lang['match']['check_data']; $page['L_current_step_info'] = $lang['match']['check_data_info']; break; default: $page['L_current_step'] = $lang['match']['upload_file']; $page['L_current_step_info'] = $lang['match']['upload_file_info']; } if ($page['value_first_line'] == "1") { $page['first_line_checked'] = "checked=\"checked\""; } # link $page['form_action'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=import_match"); $page['link_list'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=match_list"); # text $page['L_title'] = $lang['match']['import_match']; $page['L_step'] = $lang['match']['step']; $page['L_csv_file'] = $lang['match']['csv_file']; $page['L_separator'] = $lang['match']['separator']; $page['L_first_line'] = $lang['match']['first_line']; $page['L_file_column'] = $lang['match']['file_column']; $page['L_associated_field'] = $lang['match']['associated_field']; $page['L_action'] = $lang['match']['action']; $page['L_valider'] = $lang['match']['submit']; $page['L_delete'] = $lang['match']['delete']; $page['L_back_list'] = $lang['match']['back_list']; $page['L_erreur'] = $lang['general']['E_erreur']; $page['L_field_required'] = $lang['general']['field_required']; $page['L_home'] = $lang['match']['home'];
$page['aff_dirigeant'] = ""; if ($page['nb_dirigeant'] != 0) { $page['aff_dirigeant'] = "1"; } else { $page['season'] = array(); } # link $page['link_match'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=match_list&v2=club_" . $page['id']); # modification $page['link_edit'] = ""; $page['link_delete'] = ""; if ($right_user['edit_club']) { $page['link_edit'] = convert_url("index.php?r=" . $lang['general']['idurl_club'] . "&v1=form_club&v2=" . $page['id']); } if ($right_user['delete_club']) { $page['link_delete'] = convert_url("index.php?r=" . $lang['general']['idurl_club'] . "&v1=club_list&v2=delete&v3=" . $page['id']); } # text $page['L_title'] = $page['name']; $page['L_club'] = $lang['club']['club']; $page['L_name'] = $lang['club']['name']; $page['L_abbreviation'] = $lang['club']['abbreviation']; $page['L_creation_year'] = $lang['club']['creation_year']; $page['L_color'] = $lang['club']['color']; $page['L_color_alternative'] = $lang['club']['color_alternative']; $page['L_address'] = $lang['club']['address']; $page['L_telephone'] = $lang['club']['telephone']; $page['L_fax'] = $lang['club']['fax']; $page['L_email'] = $lang['club']['email']; $page['L_url'] = $lang['club']['url']; $page['L_comment'] = $lang['club']['comment'];
<?php $page['L_title'] = $lang['member']['home']; $page['link_profile'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=profile"); $page['L_profile'] = $lang['member']['profile']; $page['template'] = $tpl['member']['home'];
$page['sex'][$i]['id'] = $ligne['sex_id']; $page['sex'][$i]['name'] = $ligne['sex_name']; if (isset($page['value_sex']) and $page['value_sex'] == $ligne['sex_id']) { $page['sex'][$i]['checked'] = "checked"; } else { $page['sex'][$i]['checked'] = ""; } $i++; } } sql_free_result($res_sex); sql_close($sgbd); } # links $page['form_action'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=registration"); $page['link_choose_avatar'] = convert_url("index.php?r=" . $lang['general']['idurl_file'] . "&v1=image_manager&parent_form=form_registration&field_name=avatar&file_type=image&fen=pop&folder=" . AVATAR_FOLDER, 0); # text $page['L_title'] = $lang['member']['form_registration']; $page['L_valider'] = $lang['member']['submit']; $page['L_delete'] = $lang['member']['delete']; $page['L_back_list'] = $lang['member']['back_list']; $page['L_erreur'] = $lang['general']['E_erreur']; $page['L_field_required'] = $lang['general']['field_required']; $page['L_identity'] = $lang['member']['identity']; $page['L_name'] = $lang['member']['name']; $page['L_firstname'] = $lang['member']['firstname']; $page['L_date_birth'] = $lang['member']['date_birth']; $page['L_place_birth'] = $lang['member']['place_birth']; $page['L_email'] = $lang['member']['email']; $page['L_size'] = $lang['member']['size']; $page['L_size_unit'] = $lang['member']['size_unit'];
$page['page_parent'][$i]['id'] = $ligne['page_id']; $page['page_parent'][$i]['name'] = $ligne['page_title']; $page['value_page_parent'] == $ligne['page_id'] ? $page['page_parent'][$i]['selected'] = "selected" : ($page['page_parent'][$i]['selected'] = ""); $i++; } } } sql_free_result($res_page_parent); sql_close($sgbd); # links if ($right_user['delete_information'] and !empty($page['value_id'])) { $page['link_delete'] = convert_url("index.php?r=" . $lang['general']['idurl_information'] . "&v1=page_list&v2=delete&v3=" . $page['value_id']); } else { $page['link_delete'] = ""; } $page['link_list'] = convert_url("index.php?r=" . $lang['general']['idurl_information'] . "&v1=page_list"); /* text */ if (empty($page['value_id'])) { $page['L_title'] = $lang['information']['form_page_add']; } else { $page['L_title'] = $lang['information']['form_page_edit']; } $page['L_idurl'] = $lang['information']['idurl']; $page['L_title_page'] = $lang['information']['title']; $page['L_summary'] = $lang['information']['summary']; $page['L_text'] = $lang['information']['text']; $page['L_keyword'] = $lang['information']['keyword']; $page['L_idurl_auto'] = $lang['information']['idurl_auto']; $page['L_page_parent'] = $lang['information']['page_parent']; $page['L_choose_page_parent'] = $lang['information']['choose_page_parent']; $page['L_status'] = $lang['information']['status'];
if (isset($page['meta_description']) and $page['meta_description'] != "") { $index['meta_description'] = $page['meta_description']; } else { $index['meta_description'] = $lang['general']['meta_description']; } /* mots cles */ if (isset($page['meta_keyword']) and $page['meta_keyword'] != "") { $index['meta_keyword'] = $page['meta_keyword']; } else { $index['meta_keyword'] = $lang['general']['meta_keyword']; } /* url */ $index['meta_url'] = ROOT_URL; $index['page_url'] = ROOT_URL; if (isset($_SERVER['QUERY_STRING']) and $_SERVER['QUERY_STRING'] != "") { $index['page_url'] = convert_url("index.php?" . $_SERVER['QUERY_STRING']); } /*****************************************/ /**********************/ /* PAGE MAIN CONTENT */ /**********************/ /* on cherche si le contenu a un template declare */ /* si ce n'est pas le cas, erreur, sinon on charge le contenu */ if (!isset($page['template'])) { $page['template'] = $tpl['general']['message']; $page['L_message'] = "Template non trouvé"; $page['erreur'] = array(); } if ($in_plugin == 1) { $index['contenu'] = parse_template(ROOT . "/plugin/" . $page['template'], $page); } else {
$page['valid'][$i]['id'] = $id; $page['valid'][$i]['name'] = $lang['member']['valid_' . $id . '']; $page['valid'][$i]['checked'] = ""; if ($page['value_valid'] == $id) { $page['valid'][$i]['checked'] = 'checked="checked"'; } } # links if ($right_user['delete_member'] and !empty($page['value_id'])) { $page['link_delete'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=member_list&v2=delete&v3=" . $page['value_id']); } else { $page['link_delete'] = ""; } $page['link_list'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=member_list"); $page['link_choose_image'] = convert_url("index.php?r=" . $lang['general']['idurl_file'] . "&v1=image_manager&parent_form=form_member&field_name=photo&file_type=image&fen=pop", 0); $page['link_choose_avatar'] = convert_url("index.php?r=" . $lang['general']['idurl_file'] . "&v1=image_manager&parent_form=form_member&field_name=avatar&file_type=image&fen=pop", 0); # text if (empty($page['value_id'])) { $page['L_title'] = $lang['member']['form_member_add']; } else { $page['L_title'] = $lang['member']['form_member_edit']; } $page['L_valider'] = $lang['member']['submit']; $page['L_delete'] = $lang['member']['delete']; $page['L_back_list'] = $lang['member']['back_list']; $page['L_erreur'] = $lang['general']['E_erreur']; $page['L_field_required'] = $lang['general']['field_required']; $page['L_identity'] = $lang['member']['identity']; $page['L_name'] = $lang['member']['name']; $page['L_firstname'] = $lang['member']['firstname']; $page['L_date_birth'] = $lang['member']['date_birth'];
public function SendSoloAD($website) { if ($website == 'fap') { $GLOBALS['domain_name'] = $domain_name = 'freeadplanet'; $database = 'fap'; $abbr = 'FAP'; $mail_from = 'Free AD Planet'; $master_affid = '11187448'; } else { if ($website == 'tap') { $GLOBALS['domain_name'] = $domain_name = 'targetedadplanet'; $database = 'tap'; $abbr = 'TAP'; $mail_from = 'Targeted AD Planet'; $master_affid = '99999'; } else { exit("FATAL ERROR: website:{$website} in sendqueue.php unknown\n"); } } $db = $this->db; $bad_emails = array(); $good = $bad = $i = 0; $u_seconds = 2500000; $db->SelectDB('mle'); // get bounced emails $db->Query("SELECT bademail FROM bounced WHERE count < 5 OR mailboxfull > 0 ORDER BY bademail"); while (list($e) = $db->FetchRow()) { $bad_emails[] = strtolower($e); } $db->SelectDB($database); echo "Begin mailing {$abbr} {$domain_name} ... \n"; if ($db->Query("SELECT id, affid, subject, message, crediturl, usecredits, soload FROM mailqueue WHERE 1 ORDER BY id LIMIT 1")) { list($id, $affid, $subject, $message, $crediturl, $usecredits, $soload) = $db->FetchRow(); $db->Query("DELETE FROM mailqueue WHERE id='{$id}' LIMIT 1"); if ($db->Query("SELECT fname, username FROM users WHERE affid='{$affid}' LIMIT 1")) { list($fname, $username) = $db->FetchRow(); } else { return; } if ($soload) { $isHTML = $soload == '2' ? 1 : 0; // $soload 0=downline, 1=textsoload, 2=HTMLsoload $headerID = 'S'; $type = 9; $typename = 'Solo Ad'; $from_name = $abbr . ' SOLO AD'; $mailcount = $db->Query("SELECT fname, username, email, affid FROM users WHERE email != '' AND verified='1' AND vacation='0' ORDER BY email"); } else { $isHTML = 0; $headerID = 'D'; $type = 0; $typename = 'DownLine'; $from_name = $mail_from; $mailcount = $db->Query("SELECT fname, username, email, affid FROM users WHERE sponsor='{$affid}' AND email != '' AND verified='1' AND vacation='0' ORDER BY email LIMIT {$usecredits}"); } $res = $db->result; $footer = "\n\n** Click URL below to Earn Credits:\n[credit_url]\n\n______________________________________________________________\nThis message is not spam! You received this because you joined\nthe very successful {$domain_name}.com sent by {$typename} Submit\nand agreed to receive periodic mail from other members, in return\nfor You being able to post Your own offers.\n\n[remove_url]\n32811 7th Ave SW, Federal Way, WA, 98023\n"; while ($e = mysqli_fetch_assoc($res)) { $e['email'] = strtolower($e['email']); // skip bounced emails if (in_array($e['email'], $bad_emails)) { echo "Skipping {$e['email']} ...\n"; continue; } if (in_array($e['email'], $this->prevmailed)) { echo 'Skipping previous mailed: ' . $e['email'] . "\n"; continue; } $this->prevmailed[] = $e['email']; $head = "From: {$from_name} <do_not_reply@{$domain_name}.com>\n"; $hash = substr(sha1('jd93JdmAz3hF1' . $e['affid']), 0, 5); $head .= "X-{$abbr}-UID: {$headerID}{$e['affid']} {$hash} Report: http://{$domain_name}.com/openticket.php"; $hash = substr(sha1($e['affid'] . 'sjdhf3938483jhdsjh'), 0, 5); // do not change tied to fap/tap $remove_url = "http://{$domain_name}.com/?c=remove&a={$e['affid']}&h={$hash}"; if ($e['affid'] != $affid or $affid == $master_affid) { $cred_url = convert_url($e['affid'], $crediturl, $affid, $db, $type); } else { $cred_url = 'Confirmation of your mailing. Earn links are valid only from other members.'; } if ($isHTML) { if (!stristr($cred_url, 'confirmation')) { $cred_url = '<a href="' . $cred_url . '">** Click Here</a> to Earn 5 times the Credits from this Solo AD.'; } $remove_url = '<a href="' . $remove_url . '">Click Here to Unsubscribe</a>'; $head .= "MIME-Version: 1.0\nContent-type: text/html; charset=iso-8859-1\n"; $mess = $message . str_replace("\n", '<br />', $footer); } else { $mess = $message . $footer; } $subj = str_ireplace(array('[fname]', '[firstname]', '[first_name]'), array($e['fname'], $e['fname'], $e['fname']), $subject); $mess = str_ireplace(array('[fname]', '[firstname]', '[first_name]', '[credit_url]', '[remove_url]'), array($e['fname'], $e['fname'], $e['fname'], $cred_url, $remove_url), $mess); if (mail($e['email'], $subj, $mess, $head)) { $good++; echo "{$lifecycle_counter}/{$this->lifecycle} " . ($i + 1) . "/{$mailcount} total:{$this->totalmailed} usecs:{$u_seconds} {$abbr}:{$typename} {$e['email']}\n"; } else { $bad++; echo "--> {$bad} BAD {$e['email']}\n"; } $i++; usleep($u_seconds); } mail('*****@*****.**', $subj, $mess, $head); //mail('*****@*****.**', $subj, $mess, $head); //mail('*****@*****.**', $subj, $mess, $head); $db->SelectDB('mle'); // logdate, logins, signup, mails, adminmail $today = date('F j, Y'); $db->Query("INSERT INTO hitcounter (logdate, mails) VALUES('{$today}', '{$good}') ON DUPLICATE KEY UPDATE mails = mails + {$good}"); echo "Done mailing {$mail_from} {$typename}\n\n"; $this->totalmailed += $good; if (is_file('/root/kill_sendqueue')) { exit("stopping current operation per kill_sendqueue request ... exiting\n"); } } else { echo "{$abbr} nothing to mail...\n"; } }
$page['news'][$i]['vignette_url']=ROOT_URL."/".IMG_DOSSIER."/".$ligne_image['vignette_dossier']."/".$ligne_image['vignette_url']; $page['news'][$i]['vignette_largeur']=$ligne_image['vignette_largeur']; $page['news'][$i]['vignette_hauteur']=$ligne_image['vignette_hauteur']; } else { $page['news'][$i]['image_url']=""; } */ $i++; } } sql_free_result($res_news); sql_close($sgbd); if ($right_user['add_news']) { $page['link_add'] = convert_url("index.php?r=" . $lang['general']['idurl_news'] . "&v1=form_news"); } else { $page['link_add'] = ""; } $page['L_add'] = $lang['news']['add_news']; $page['L_title'] = $lang['news']['news_list']; $page['L_first_page'] = $lang['news']['first_page']; $page['L_previous_page'] = $lang['news']['previous_page']; $page['L_next_page'] = $lang['news']['next_page']; $page['L_last_page'] = $lang['news']['last_page']; # meta $page['meta_title'] = $lang['news']['news_list']; if (isset($page['news'][0]['summary'])) { $page['meta_description'] = $page['news'][0]['summary']; $page['meta_keyword'] = $page['news'][0]['summary']; $page['meta_date'] = $page['news'][0]['release'];
<?php /***************************/ # MENU ADMIN /***************************/ $index['link_admin_home'] = ''; $index['link_admin'] = ''; $index['link_admin_configuration'] = ''; if ($right_user['home']) { $index['link_admin_home'] = convert_url("index.php?r=" . $lang['general']['idurl_admin']); } if ($right_user['admin']) { $index['link_admin'] = convert_url("index.php?r=" . $lang['general']['idurl_admin'] . "&v1=admin"); } if ($right_user['configuration']) { $index['link_admin_configuration'] = convert_url("index.php?r=" . $lang['general']['idurl_admin'] . "&v1=configuration"); } # text $index['L_administration'] = $lang['general']['administration']; $index['L_admin_home'] = $lang['general']['admin_home']; $index['L_admin'] = $lang['general']['admin']; $index['L_configuration'] = $lang['general']['configuration'];
function index_site($url, $reindex, $maxlevel, $soption, $url_inc, $url_not_inc, $can_leave, $use_robot, $use_nofollow, $cl, $all, $use_pref) { global $db_con, $mysql_table_prefix, $command_line, $mainurl, $tmp_urls, $domain_arr, $all_keywords, $smp, $follow_sitemap; global $link_check, $smap_dir, $index_media, $clear, $create_sitemap, $tmp_dir, $domaincb; global $max_links, $realnum, $debug, $no_log, $dba_act, $add_auth, $interrupt, $index_media, $thumb_folder; if (!$can_leave) { $can_leave = $domaincb; } $can_leave_domain = $can_leave; $starttime = getmicrotime(); // start time to index this site $black = '0'; // will become counter for hits of blacklist $site_id = ''; $skip = ''; $smp = '0'; $omit = array(); $url = $db_con->real_escape_string(stripslashes($url)); if (strstr($interrupt, "-")) { // if indexer should not be interrupted periodically $interrupt = '999999'; // never } $int_count = $interrupt; // $int_count will be decreased by each indexed link until $int_count = 1 printStandardReport('starting', $command_line, $no_log); if (!isset($all_keywords)) { mysqltest(); $sql_query = "SELECT keyword_ID, keyword from " . $mysql_table_prefix . "keywords"; $result = $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } while ($row = $result->fetch_array(MYSQLI_NUM)) { $all_keywords[addslashes($row[1])] = $row[0]; } if ($clear == 1) { clean_resource($result, '06'); } } $url = convert_url($url); $compurl = parse_addr($url); if ($compurl['path'] == '') { $url = $url . "/"; } $t = microtime(); $a = getenv("REMOTE_ADDR"); $sessid = md5($t . $a); if ($url != '/') { // ignore dummies $urlparts = parse_addr($url); $domain = $urlparts['host']; if (isset($urlparts['port'])) { $port = (int) $urlparts['port']; } else { $port = 80; } if (strpos($url, "?")) { $url_bas = substr($url, 0, strpos($url, "?")); } else { $url_bas = $url; } mysqltest(); $sql_query = "SELECT * from " . $mysql_table_prefix . "sites where url like '{$url_bas}%'"; $result = $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } $row = $result->fetch_array(MYSQLI_NUM); $site_id = $row[0]; $authent = $row[2]; if ($add_auth && $authent) { // for sites with authentication we need to verify the value $url_status = url_status($url, $site_id, $sessid); $url_parts = parse_all_url($url); if ($url_status['state'] == 'ok' && $url_status['content'] == 'text') { if ($url_status['relocate']) { // if relocated, print message and redirect to new URL printRedirected($url_status['relocate'], $url_status['path'], $cl); if (strstr($url_status['path'], "//")) { // if redirected to absolute URL, use this for further usage $url = $url_status['path']; } else { $relo_url = str_replace($url_parts['query'], "", $url); // url without query $relo_url = substr($url, 0, strrpos($relo_url, "/") + 1); // url without file name if (strpos($url_status['path'], "./") === 0) { // if redirected relativ to same folder depth $url_status['path'] = str_replace("./", "", $url_status['path']); $url = "" . $relo_url . "" . $url_status['path'] . ""; } if (strpos($url_status['path'], "../") === 0) { // if redirected relativ and one folder up $url_status['path'] = str_replace("./", "", $url_status['path']); $relo_url = substr($url, 0, strpos($url_parts['path'])); // url without file name $relo_url = substr($url, 0, strrpos($relo_url, "/") + 1); // url without last folder $url = "" . $relo_url . "" . $url_status['path'] . ""; } } } // read file $contents = array(); $file = ''; $file = file_get_contents($url); if ($file === FALSE) { // we know another way to get the content $get_charset = ''; $contents = getFileContents($url, $get_charset); $file = $contents['file']; } // parse header only preg_match("@<head[^>]*>(.*?)<\\/head>@si", $file, $regs); $headdata = $regs[1]; // fetch the tag value preg_match("/<meta +name *=[\"']?Sphider-plus[\"']? *content=[\"'](.*?)[\"']/i", $headdata, $res); if (isset($res)) { if ($authent != $res[1]) { // invalid value in authentication tag $skip = '1'; printHeader($omit, $url, $command_line); printStandardReport('Skipped_03', $command_line, $no_log); } } else { // no authentication tag found in header $skip = '1'; printHeader($omit, $url, $command_line); printStandardReport('Skipped_02', $command_line, $no_log); } } else { $skip = '1'; printHeader($omit, $url, $command_line); printStandardReport('statError', $command_line, $no_log); } } if (!$skip) { if ($site_id != "" && $reindex == 1) { mysqltest(); $sql_query = "INSERT into " . $mysql_table_prefix . "temp (link, level, id) values ('{$url}', 0, '{$sessid}')"; $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } $sql_query = "SELECT url, level from " . $mysql_table_prefix . "links where site_id = {$site_id}"; $result = $db_con->query($sql_query); while ($row = $result->fetch_array(MYSQLI_ASSOC)) { $site_link = $row['url']; $link_level = $row['level']; if ($site_link != $url) { $sql_query = "INSERT into " . $mysql_table_prefix . "temp (link, level, id) values ('{$site_link}', '{$link_level}', '{$sessid}')"; $db_con->query($sql_query); } } $sql_query = "UPDATE " . $mysql_table_prefix . "sites set indexdate=now(), spider_depth ='{$maxlevel}', required = '{$url_inc}'," . "disallowed = '{$url_not_inc}', can_leave_domain='{$can_leave}', use_prefcharset='{$use_pref}' where site_id='{$site_id}'"; mysqltest(); $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } } else { if ($site_id == '') { mysqltest(); $sql_query = "INSERT into " . $mysql_table_prefix . "sites (url, indexdate, spider_depth, required, disallowed, can_leave_domain, use_prefcharset) " . "values ('{$url}', now(), '{$maxlevel}', '{$url_inc}', '{$url_not_inc}', '{$can_leave_domain}', '{$use_pref}')"; $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } $sql_query = "SELECT site_ID from " . $mysql_table_prefix . "sites where url='{$url}'"; $result = $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } $row = $result->fetch_array(MYSQLI_NUM); $site_id = $row[0]; if ($clear == 1) { clean_resource($result, '09'); } } else { mysqltest(); $sql_query = "UPDATE " . $mysql_table_prefix . "sites set indexdate=now(), spider_depth ='{$maxlevel}', required = '{$url_inc}'," . "disallowed = '{$url_not_inc}', can_leave_domain='{$can_leave_domain}', use_prefcharset='{$use_pref}' where site_id='{$site_id}'"; $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } } } $pending = array(); mysqltest(); $sql_query = "SELECT site_id, temp_id, level, count, num from " . $mysql_table_prefix . "pending where site_id='{$site_id}'"; $result = $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } $row = $result->fetch_array(MYSQLI_NUM); $pending = $row[0]; $level = '0'; $count = '0'; if ($clear == 1) { clean_resource($result, '10'); } $domain_arr = get_domains(); if ($pending == '') { mysqltest(); $sql_query = "INSERT into " . $mysql_table_prefix . "temp (link, level, id) values ('{$url}', 0, '{$sessid}')"; $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } } else { if ($pending != '') { printStandardReport('continueSuspended', $command_line, $no_log); mysqltest(); $pend_count = '0'; //$result = $db_con->query("SELECT temp_id, level, count from ".$mysql_table_prefix."pending where site_id='$site_id'"); $sql_query = "SELECT * from " . $mysql_table_prefix . "pending where site_id='{$site_id}'"; $result = $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } $row = $result->fetch_array(MYSQLI_NUM); if ($row) { $sessid = $row[1]; $level = $row[2]; $pend_count = $row[3] + 1; $num = $row[4]; $pending = 1; $tmp_urls = get_temp_urls($sessid); if ($clear == 1) { clean_resource($result, '11'); } } } } if ($pending != 1) { mysqltest(); $sql_query = "INSERT into " . $mysql_table_prefix . "pending (site_id, temp_id, level, count) values ('{$site_id}', '{$sessid}', '0', '0')"; $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } } $time = time(); $robots = "robots.txt"; // standardname of robots file if ($use_robot == '1') { $omit = check_robot_txt($url, $robots); } printHeader($omit, $url, $command_line); if ($link_check == 1) { printStandardReport('start_link_check', $command_line, $no_log); } if ($link_check == 0 && $reindex == 1) { printStandardReport('start_reindex', $command_line, $no_log); } if ($link_check == 0 && $reindex == 0) { printStandardReport('starting', $command_line, $no_log); } $mainurl = $url; $realnum = $num; $num = 0; while ($level <= $maxlevel && $soption == 'level' || $soption == 'full') { if ($pending == 1) { $count = $pend_count; $pending = 0; } else { $count = 0; } $links = array(); mysqltest(); $sql_query = "SELECT distinct link from " . $mysql_table_prefix . "temp where level={$level} && id='{$sessid}' order by link"; $result = $db_con->query($sql_query); $rows = $result->num_rows; if ($rows == 0) { break; } while ($row = $result->fetch_array(MYSQLI_ASSOC)) { $links[] = $row['link']; } // now loop through all available links(pages) while ($count < count($links)) { $num++; $realnum++; if ($realnum > $max_links) { // if max. links per page reached mysqltest(); $sql_query = "DELETE from " . $mysql_table_prefix . "temp where id = '{$sessid}'"; $db_con->query($sql_query); $sql_query = "DELETE from " . $mysql_table_prefix . "pending where site_id = '{$site_id}'"; $db_con->query($sql_query); printMaxLinks($max_links, $cl); printStandardReport('completed', $command_line, $no_log); return; } $thislink = $db_con->real_escape_string(stripslashes($links[$count])); $urlparts = parse_addr($thislink); $forbidden = 0; if (is_array($omit)) { // if valid robots.txt was found reset($omit); foreach ($omit as $omiturl) { $omiturl = trim($omiturl); $omiturl_parts = array(); $omiturl_parts = parse_addr($omiturl); if (@$omiturl_parts['scheme'] == '') { $check_omit = $urlparts['host'] . $omiturl; } else { $check_omit = $omiturl; } if (strpos($thislink, $check_omit)) { printRobotsReport($num, $thislink, $command_line); $realnum--; check_for_removal($thislink); $forbidden = 1; break; } } } if (!check_include($thislink, $url_inc, $url_not_inc)) { $realnum--; printUrlStringReport($num, $thislink, $command_line); //printUrlStringReport($realnum, $thislink, $command_line); check_for_removal($thislink); $forbidden = 1; } if ($forbidden == 0) { printRetrieving($num, stripslashes(rawurldecode($thislink)), $command_line); //printRetrieving($realnum, $thislink, $command_line); mysqltest(); $sql_query = "SELECT md5sum, indexdate from " . $mysql_table_prefix . "links where url='{$thislink}'"; $result = $db_con->query($sql_query); $rows = $result->num_rows; if ($rows == 0) { $url_status = index_url($thislink, $level + 1, $site_id, '', $domain, '', $sessid, $can_leave_domain, $reindex, $use_nofollow, $cl, $use_robot, $use_pref, $url_inc, $url_not_inc, $num); // check for touching the blacklist and its count against limit if ($url_status['black'] == "1") { $black++; if ($black > 20) { // limit until aborting the indexation of this site $url_status['aborted'] = "1"; $url_status['state'] = "<br /><br />Indexation aborted for this site, as it met too often the blacklist."; } } else { $black = 0; // reset counter, as should count only on continuous hits } // check for emergency exit if ($url_status['aborted'] == "1") { // delete all links from the temp table, which might be left for this site mysqltest(); $sql_query = "DELETE from " . $mysql_table_prefix . "temp where id = '{$sessid}'"; $db_con->query($sql_query); $sql_query = "DELETE from " . $mysql_table_prefix . "pending where site_id = '{$site_id}'"; $db_con->query($sql_query); $sql_query = "UPDATE " . $mysql_table_prefix . "sites set indexdate=now() where url = '{$url}'"; $db_con->query($sql_query); // end all loops $forbidden = '1'; $omit = ''; $reindex = ''; $count = '9999999999'; $pending = array(); if (!stristr($url_status['state'], "NOHOST") && !stristr($url_status['state'], "black")) { // NOHOST warning will be printed separately printWarning($url_status['state'], $command_line, $no_log); } } if (stristr($url_status['state'], "NOHOST")) { // delete all links from the temp table, which might be left for this site, etc mysqltest(); $sql_query = "DELETE from " . $mysql_table_prefix . "temp where id = '{$sessid}'"; $db_con->query($sql_query); $sql_query = "DELETE from " . $mysql_table_prefix . "pending where site_id = '{$site_id}'"; $db_con->query($sql_query); $sql_query = "UPDATE " . $mysql_table_prefix . "sites set indexdate=now() where url = '{$url}'"; $db_con->query($sql_query); // end all loops $forbidden = '1'; $omit = ''; $reindex = ''; $count = '9999999999'; $pending = array(); printWarning($url_status['state'], $command_line, $no_log); return; } // check for UFO file or invalid suffix (by redirected URL) if (stristr($url_status['state'], "ufo")) { //printWarning($url_status['state'],$command_line, $no_log); } if ($url_status['state'] != "ok") { printWarning($url_status['state'], $command_line, $no_log); } mysqltest(); $sql_query = "UPDATE " . $mysql_table_prefix . "pending set level ='{$level}', count='{$count}', num='{$realnum}' where site_id='{$site_id}'"; $db_con->query($sql_query); } else { if ($rows != 0 && $reindex == 1) { $row = $result->fetch_array(MYSQLI_ASSOC); $md5sum = $row['md5sum']; $indexdate = $row['indexdate']; if ($link_check == 1 && $reindex == 1) { link_check($thislink, $level + 1, $sessid, $can_leave_domain, $reindex, $site_id); } else { $url_status = index_url($thislink, $level + 1, $site_id, $md5sum, $domain, $indexdate, $sessid, $can_leave_domain, $reindex, $use_nofollow, $cl, $use_robot, $use_pref, $url_inc, $url_not_inc, $num); // check for emergency exit if ($url_status['aborted']) { // delete all links from the temp table, which might be left for this site mysqltest(); $sql_query = "DELETE from " . $mysql_table_prefix . "temp where id = '{$sessid}'"; $db_con->query($sql_query); // end all loops $forbidden = '1'; $omit = ''; $reindex = ''; $count = '9999999999'; $pending = array(); printWarning($url_status['state'], $command_line, $no_log); } } } else { printStandardReport('inDatabase', $command_line, $no_log); $realnum--; //$num--; } } if ($rows != 0) { mysqltest(); $sql_query = "UPDATE " . $mysql_table_prefix . "pending set level ='{$level}', count='{$count}', num='{$realnum}' where site_id='{$site_id}'"; $db_con->query($sql_query); } if ($clear == 1) { clean_resource($result, '13'); } } // check for interrupt counter if ($int_count == '1') { // interrupt the index procedure until interactive resume $sql_query = "UPDATE " . $mysql_table_prefix . "pending set level ='{$level}', count='{$count}', num='{$realnum}' where site_id='{$site_id}'"; $db_con->query($sql_query); printInterrupt($interrupt, $url, $cl); die; } $count++; $int_count--; } $level++; } } mysqltest(); $sql_query = "DELETE from " . $mysql_table_prefix . "temp where id = '{$sessid}'"; $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } $sql_query = "DELETE from " . $mysql_table_prefix . "pending where site_id = '{$site_id}'"; $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>"); printf("<p><strong>Invalid query string, which caused the SQL error:</strong></p>"); echo "<p> {$sql_query} </p>"; exit; } if ($create_sitemap == 1) { create_sitemap($site_id, $url); } printStandardReport('completed', $command_line, $no_log); $stats = get_Stats(); printDatabase($stats, $cl); } if ($index_media) { // delete all thumbnails in .../admin/tmp/thumbs/ folder clear_folder("." . $thumb_folder); } }
$page['status']['2']['selected'] = ""; if ($page['value_status'] == "0") { $page['status']['0']['selected'] = "selected"; } elseif ($page['value_status'] == "1") { $page['status']['1']['selected'] = "selected"; } elseif ($page['value_status'] == "2") { $page['status']['2']['selected'] = "selected"; } /* end status */ # links if ($right_user['delete_news'] and !empty($page['value_id'])) { $page['link_delete'] = convert_url("index.php?r=" . $lang['general']['idurl_news'] . "&v1=news_list&v2=delete&v3=" . $page['value_id']); } else { $page['link_delete'] = ""; } $page['link_list'] = convert_url("index.php?r=" . $lang['general']['idurl_news'] . "&v1=news_list"); # text $page['L_idurl'] = $lang['news']['idurl']; $page['L_subhead'] = $lang['news']['subhead']; $page['L_title_news'] = $lang['news']['title']; $page['L_subtitle'] = $lang['news']['subtitle']; $page['L_summary'] = $lang['news']['summary']; $page['L_text'] = $lang['news']['text']; $page['L_ps'] = $lang['news']['ps']; $page['L_keyword'] = $lang['news']['keyword']; $page['L_release'] = $lang['news']['date_release']; $page['L_format_date'] = $lang['news']['format_date']; $page['L_release_time'] = $lang['news']['time_release']; $page['L_format_time'] = $lang['news']['format_time']; $page['L_idurl_auto'] = $lang['news']['idurl_auto']; /* elements de text */
$page['page'][$i]['souspage'][$j]['image_hauteur'] = ""; $page['page'][$i]['souspage'][$j]['vignette_url'] = ""; $page['page'][$i]['souspage'][$j]['vignette_largeur'] = ""; $page['page'][$i]['souspage'][$j]['vignette_hauteur'] = ""; $j++; } } else { $page['page'][$i]['souspage'] = array(); } /* on recupere les infos de la premiere page pour les balises meta */ if ($i == "0") { $page['meta_description'] = html2txt($ligne['page_summary']); $page['meta_keyword'] = html2txt($ligne['page_title'] . " " . $ligne['page_summary']); $page['meta_date'] = $ligne['page_date_edit']; } $i++; } } sql_free_result($res_page); sql_close($sgbd); if ($right_user['add_information']) { $page['link_add'] = convert_url("index.php?r=" . $lang['general']['idurl_information'] . "&v1=form_page"); } else { $page['link_add'] = ""; } $_SESSION['menu_information'] = $page['page']; $page['L_add'] = $lang['information']['add_page']; $page['L_title'] = $lang['information']['information']; # meta $page['meta_title'] = $lang['information']['information']; $page['template'] = $tpl['information']['page_list'];
while ($ligne_sous_page = sql_fetch_array($res_sous_page)) { $page['souspage'][$i]['title'] = $ligne_sous_page['page_title']; $page['souspage'][$i]['link'] = convert_url("index.php?r=" . $lang['general']['idurl_information'] . "&v1=" . $ligne_sous_page['page_idurl']); $i++; } } sql_free_result($res_sous_page); sql_close($sgbd); # modification $page['link_edit'] = ""; $page['link_delete'] = ""; if ($right_user['edit_information']) { $page['link_edit'] = convert_url("index.php?r=" . $lang['general']['idurl_information'] . "&v1=form_page&v2=" . $page['page_id']); } if ($right_user['delete_information']) { $page['link_delete'] = convert_url("index.php?r=" . $lang['general']['idurl_information'] . "&v1=page_list&v2=delete&v3=" . $page['page_id']); } /* add de la visit */ $var['id'] = $page['page_id']; $sql_visit = sql_replace($sql['information']['edit_page_visit'], $var); $sgbd = sql_connect(); $res_visit = sql_query($sql_visit); sql_free_result($res_visit); sql_close($sgbd); /* end add visit */ # text $page['L_page'] = $lang['information']['information']; $page['L_date'] = $lang['information']['date_edit']; $page['L_author'] = $lang['information']['author']; $page['L_edit'] = $lang['information']['edit']; $page['L_delete'] = $lang['information']['delete'];
} if ($dbu_act == '5') { $db_con = db_connect($mysql_host5, $mysql_user5, $mysql_password5, $database5); if ($prefix != 0) { // if requested by Search-form, overwrite default table prefix $mysql_table_prefix = $prefix; } else { $mysql_table_prefix = $mysql_table_prefix5; } } $plus_nr = ''; @(include "" . $settings_dir . "/db" . $dbu_act . "/conf_" . $mysql_table_prefix . ".php"); if (!$plus_nr) { include "/admin/settings/backup/Sphider-plus_default-configuration.php"; } $url = convert_url($db_con->real_escape_string($url)); $query = $db_con->real_escape_string($query); $client_ip = $db_con->real_escape_string($client_ip); $mysql_table_prefix = $db_con->real_escape_string($mysql_table_prefix); // try to update the link in actual database $sql_query = "SELECT * from " . $mysql_table_prefix . "links where url = '{$url}' LIMIT 1"; $result = $db_con->query($sql_query); if ($debug && $db_con->errno) { $err_row = __LINE__ - 2; printf("<p><span class='red'> MySQL failure: %s \n<br /></span></p>", $db_con->error); if (__FUNCTION__) { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} in function(): " . __FUNCTION__ . " <br /></span></p>"); } else { printf("<p><span class='red'> Found in script: " . __FILE__ . " row: {$err_row} <br /></span></p>"); } printf("<p><span class='red'> Script execution aborted. <br /></span>");
function url_purify($url, $parent_url, $can_leave_domain) { global $ext, $mainurl, $apache_indexes, $strip_sessids; $urlparts = parse_url($url); $main_url_parts = parse_url($mainurl); if ($urlparts['host'] != "" && $urlparts['host'] != $main_url_parts['host'] && $can_leave_domain != 1) { return ''; } reset($ext); while (list($id, $excl) = each($ext)) { if (preg_match("/\\.{$excl}\$/i", $url)) { return ''; } } if (substr($url, -1) == '\\') { return ''; } if (isset($urlparts['query'])) { if ($apache_indexes[$urlparts['query']]) { return ''; } } if (preg_match("/[\\/]?mailto:|[\\/]?javascript:|[\\/]?news:/i", $url)) { return ''; } if (isset($urlparts['scheme'])) { $scheme = $urlparts['scheme']; } else { $scheme = ""; } //only http and https links are followed if (!($scheme == 'http' || $scheme == '' || $scheme == 'https')) { return ''; } //parent url might be used to build an url from relative path $parent_url = remove_file_from_url($parent_url); $parent_url_parts = parse_url($parent_url); if (substr($url, 0, 1) == '/') { $url = $parent_url_parts['scheme'] . "://" . $parent_url_parts['host'] . $url; } else { if (!isset($urlparts['scheme'])) { $url = $parent_url . $url; } } $url_parts = parse_url($url); $urlpath = $url_parts['path']; $regs = array(); while (preg_match("/[^\\/]*\\/[.]{2}\\//", $urlpath, $regs)) { $urlpath = str_replace($regs[0], "", $urlpath); } //remove relative path instructions like ../ etc $urlpath = preg_replace("/\\/+/", "/", $urlpath); $urlpath = preg_replace("/[^\\/]*\\/[.]{2}/", "", $urlpath); $urlpath = str_replace("./", "", $urlpath); $query = ""; if (isset($url_parts['query'])) { $query = "?" . $url_parts['query']; } if ($main_url_parts['port'] == 80 || $url_parts['port'] == "") { $portq = ""; } else { $portq = ":" . $main_url_parts['port']; } $url = $url_parts['scheme'] . "://" . $url_parts['host'] . $portq . $urlpath . $query; //if we index sub-domains if ($can_leave_domain == 1) { return $url; } $mainurl = remove_file_from_url($mainurl); if ($strip_sessids == 1) { $url = remove_sessid($url); } //only urls in staying in the starting domain/directory are followed $url = convert_url($url); if (strstr($url, $mainurl) == false) { return ''; } else { return $url; } }
$i++; } if (!empty($tab_file)) { sort($tab_file); } foreach ($tab_file as $f) { $type = strtolower(substr($f, strrpos($f, ".") + 1)); if (in_array($type, $type_allowed)) { $page['file'][$j]['i'] = $j; $page['file'][$j]['name'] = $f; $page['file'][$j]['url'] = $page['root_url'] . $page['current_folder'] . $f; $page['file'][$j]['L_select'] = $lang['file']['select_file']; $page['file'][$j]['L_delete'] = $lang['file']['delete']; $page['file'][$j]['link_delete'] = ''; if ($right_user['delete_file']) { $page['file'][$j]['link_delete'] = convert_url("index.php?r=" . $lang['general']['idurl_file'] . "&v1=file_manager&mode=delete&file=" . $page['current_folder'] . $f . $fin_url, 0); } $page['file'][$j]['size'] = filesize_format(@filesize($rep . $f)); $page['file'][$j]['width'] = ""; $page['file'][$j]['height'] = ""; if (in_array($type, $type_allowed)) { $page['file'][$j]['type'] = $type; } else { $page['file'][$j]['type'] = "unknown"; } $page['file'][$j]['L_view'] = $lang['file']['view_image']; $page['file'][$j]['category'] = ""; if (in_array($type, $type_allowed_image)) { $page['file'][$j]['category'] = "image"; } if (in_array($type, $type_allowed_video)) {
$page['status']['2']['checked'] = "checked"; break; case "-1": $page['status']['3']['checked'] = "checked"; break; default: $page['status']['0']['checked'] = "checked"; } # links $page['form_action'] = convert_url("index.php?r=" . $lang['general']['idurl_forum'] . "&v1=form_forum&v2=" . $page['value_id']); if ($right_user['delete_forum'] and !empty($page['value_id'])) { $page['link_delete'] = convert_url("index.php?r=" . $lang['general']['idurl_forum'] . "&v1=forum_list&v2=delete&v3=" . $page['value_id']); } else { $page['link_delete'] = ""; } $page['link_list'] = convert_url("index.php?r=" . $lang['general']['idurl_forum'] . "&v1=forum_list"); # elements de text if (empty($page['value_id'])) { $page['L_title'] = $lang['forum']['form_forum_add']; } else { $page['L_title'] = $lang['forum']['form_forum_edit']; } $page['L_valider'] = $lang['forum']['submit']; $page['L_delete'] = $lang['forum']['delete']; $page['L_back_list'] = $lang['forum']['back_forum_list']; $page['L_erreur'] = $lang['general']['E_erreur']; $page['L_field_required'] = $lang['general']['field_required']; $page['L_idurl'] = $lang['forum']['idurl']; $page['L_name'] = $lang['forum']['name']; $page['L_idurl_auto'] = $lang['forum']['idurl_auto']; $page['L_description'] = $lang['forum']['description'];
$s->execute(array($post['layout'])); $layout = $s->fetch(); } if ($post) { if ($post['type'] == 'php') { ob_start(); eval('?>' . convert_url($post['data'] ? $post['data'] : $post['blobdata'])); $contents = ob_get_clean(); } else { $contents = $post['data'] ? $post['data'] : $post['blobdata']; } } if ($layout) { if ($layout['type'] == 'php') { ob_start(); eval('?>' . convert_url($layout['data'])); $reponse = ob_get_clean(); } else { $reponse = $layout['data']; } } else { $reponse = $contents; } if (!empty($post['header'])) { foreach (explode("\n", $post['header']) as $v) { if ($v) { header(trim($v)); } } } echo $reponse;
$page['stats'][$i]['link_modification'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=form_stats&v2=" . $ligne['stats_id']); $page['stats'][$i]['link_suppression'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=stats_list&v2=" . $ligne['stats_id'] . "&v3=delete"); $page['stats'][$i]['L_edit'] = $lang['match']['edit']; $page['stats'][$i]['L_delete'] = $lang['match']['delete']; # ordre $page['stats'][$i]['L_up'] = $lang['match']['up']; $page['stats'][$i]['L_down'] = $lang['match']['down']; $page['stats'][$i]['link_up'] = ""; $page['stats'][$i]['link_down'] = ""; if ($i == "0") { $page['stats'][$i]['link_down'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=stats_list&v2=order&v3=down&v4=" . $ligne['stats_id']); } elseif ($i == $nb_ligne - 1) { $page['stats'][$i]['link_up'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=stats_list&v2=order&v3=up&v4=" . $ligne['stats_id']); } else { $page['stats'][$i]['link_up'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=stats_list&v2=order&v3=up&v4=" . $ligne['stats_id']); $page['stats'][$i]['link_down'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=stats_list&v2=order&v3=down&v4=" . $ligne['stats_id']); } $i++; } sql_free_result($res_liste); sql_close($sgbd); $page['L_title'] = $lang['match']['stats_list']; $page['L_liste'] = $lang['match']['stats_list']; $page['L_name'] = $lang['match']['name']; $page['L_abbreviation'] = $lang['match']['abbreviation']; $page['L_code'] = $lang['match']['code']; $page['L_type'] = $lang['match']['type']; $page['L_value'] = $lang['match']['value']; $page['L_formula'] = $lang['match']['formula']; $page['L_explication_formula'] = $lang['match']['explication_formula']; $page['L_add'] = $lang['match']['add_stats'];
<?php /***************************/ # MENU MEMBER /***************************/ $index['menu_member'] = "1"; $index['login'] = $_SESSION['session_login']; $index['link_profile'] = ''; $index['link_member_home'] = ''; $index['link_deconnection'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=logout", 0); if ($right_user['profile']) { $index['link_profile'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=profile"); } if ($right_user['home_member']) { $index['link_member_home'] = convert_url("index.php?r=" . $lang['general']['idurl_member']); } /* si la personne est admin, on affiche le link admin */ if ($right_user['admin']) { $index['link_admin'] = convert_url("index.php?r=" . $lang['general']['idurl_admin']); } else { $index['link_admin'] = ""; } /* texts a afficher */ $index['L_member_home'] = $lang['member']['home_member']; $index['L_deconnection'] = $lang['general']['deconnection']; $index['L_profile'] = $lang['general']['profile'];
<?php include_once create_path("administration/tpl_administration.php"); include_once create_path("administration/lg_administration_" . LANG . ".php"); if (!isset($_GET['v1'])) { if (!$right_user['home']) { header("location:" . convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=form_connection") . ""); exit; } else { include create_path("administration/home.php"); } } else { switch ($_GET['v1']) { case "admin": include create_path("administration/admin.php"); break; case "configuration": include create_path("administration/configuration.php"); break; case "menu-management": include create_path("administration/menu_management.php"); break; case "right-management": include create_path("administration/right_management.php"); break; } }
$i = "0"; while ($ligne = sql_fetch_array($res_liste)) { $page['position'][$i]['id'] = $ligne['position_id']; $page['position'][$i]['name'] = $ligne['position_name']; $page['position'][$i]['order'] = $ligne['position_order']; $page['position'][$i]['link_up'] = ''; $page['position'][$i]['link_down'] = ''; if ($ligne['position_order'] != "1") { $page['position'][$i]['link_up'] = convert_url("index.php?r=" . $lang['general']['idurl_team'] . "&v1=position_list&v2=organize&v3=up&v4=" . $ligne['position_order'] . "&v5=" . $ligne['position_id']); } if ($ligne['position_order'] != $nb_ligne) { $page['position'][$i]['link_down'] = convert_url("index.php?r=" . $lang['general']['idurl_team'] . "&v1=position_list&v2=organize&v3=down&v4=" . $ligne['position_order'] . "&v5=" . $ligne['position_id']); } $page['position'][$i]['form_action'] = $page['form_action']; $page['position'][$i]['link_modification'] = convert_url("index.php?r=" . $lang['general']['idurl_team'] . "&v1=form_position&v2=" . $ligne['position_id']); $page['position'][$i]['link_suppression'] = convert_url("index.php?r=" . $lang['general']['idurl_team'] . "&v1=position_list&v2=" . $ligne['position_id'] . "&v3=delete"); $page['position'][$i]['L_edit'] = $lang['team']['edit']; $page['position'][$i]['L_delete'] = $lang['team']['delete']; $i++; } sql_free_result($res_liste); sql_close($sgbd); # text $page['L_title'] = $lang['team']['position_list']; $page['L_liste'] = $lang['team']['position_list']; $page['L_add'] = $lang['team']['add_position']; $page['L_valider'] = $lang['team']['submit']; $page['L_erreur'] = $lang['general']['E_erreur']; $page['L_field_required'] = $lang['general']['field_required']; $page['meta_title'] = $lang['team']['position_list']; $page['template'] = $tpl['team']['position_list'];
} sql_free_result($res_member); sql_close($sgbd); # liste des clubs $page['club'] = array(); if ($page['aff_club'] == 1) { include_once create_path("club/sql_club.php"); include_once create_path("club/lg_club_" . LANG . ".php"); include_once create_path("club/tpl_club.php"); $var['condition'] = ""; $var['order'] = ""; $var['limit'] = ""; $included = 1; include create_path("club/club_list.php"); unset($included); $page['club'] = $page['club']; } $page['form_action'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=manager_list"); if ($right_user['add_member']) { $page['link_add'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=form_member"); } else { $page['link_add'] = ""; } $page['L_add'] = $lang['member']['add_member']; $page['L_choose_season'] = $lang['member']['choose_season']; $page['L_dirigeant'] = $lang['member']['dirigeant']; $page['L_job'] = $lang['member']['job']; $page['L_choose_club'] = $lang['member']['choose_club']; $page['L_title'] = $lang['member']['member_job_list']; $page['meta_title'] = $lang['member']['member_job_list']; $page['template'] = $tpl['member']['member_job_list'];
if ($right_user['edit_competition']) { $page['competition'][$i]['link_edit'] = convert_url("index.php?r=" . $lang['general']['idurl_competition'] . "&v1=form_competition&v2=" . $ligne['competition_id']); } if ($right_user['delete_competition']) { $page['competition'][$i]['link_delete'] = convert_url("index.php?r=" . $lang['general']['idurl_competition'] . "&v1=competition_list&v2=delete&v3=" . $ligne['competition_id']); } $i++; } } sql_free_result($res_competition); sql_close($sgbd); if ($right_user['add_competition']) { $page['link_add'] = convert_url("index.php?r=" . $lang['general']['idurl_competition'] . "&v1=form_competition"); $page['admin'] = "1"; } else { $page['link_add'] = ""; $page['admin'] = ""; } # text $page['link_competition'] = convert_url("index.php?r=" . $lang['general']['idurl_competition'] . "&v1=competition_list"); $page['link_tri_name'] = convert_url("index.php?r=" . $lang['general']['idurl_competition'] . "&v1=page_1_name_" . $sens_inv); $page['L_order'] = $lang['competition']['order_by']; $page['L_name'] = $lang['competition']['name']; $page['L_first_page'] = $lang['competition']['first_page']; $page['L_previous_page'] = $lang['competition']['previous_page']; $page['L_next_page'] = $lang['competition']['next_page']; $page['L_last_page'] = $lang['competition']['last_page']; $page['L_add'] = $lang['competition']['add_competition']; $page['L_title'] = $lang['competition']['competition_list']; $page['meta_title'] = $lang['competition']['competition_list']; $page['template'] = $tpl['competition']['competition_list'];
$page['group'] = $page['group']; $page['day'] = $page['day']; if ($page['show_group'] == 1) { $page['display_group'] = "block"; } if ($page['show_day'] == 1) { $page['display_day'] = "block"; } } # links $page['link_match'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=match_list"); $page['link_tri_date'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=page_" . $page_num . "_date_" . $sens_inv); $page['form_action'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=match_list"); $page['link_import_match'] = ''; if ($right_user['add_match']) { $page['link_import_match'] = convert_url("index.php?r=" . $lang['general']['idurl_match'] . "&v1=import_match"); } # text $page['L_season'] = $lang['match']['season']; $page['L_competition'] = $lang['match']['competition']; $page['L_club'] = $lang['match']['club']; $page['L_team'] = $lang['match']['team']; if (CLUB != 0) { $page['L_club'] = $page['L_team']; } $page['L_choose_season'] = $lang['match']['choose_season']; $page['L_choose_competition'] = $lang['match']['choose_competition']; $page['L_choose_club'] = $lang['match']['choose_club']; $page['L_choose_team'] = $lang['match']['choose_team']; $page['L_submit'] = $lang['match']['submit']; $page['L_order'] = $lang['match']['order_by'];
$page['group'][$i]['selected'] = 'selected'; $page['group'][$i]['checked'] = 'checked="checked"'; } $page['group'][$i]['form_action'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=group_list"); $page['group'][$i]['link_edit'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=form_group&v2=" . $ligne['group_id']); $page['group'][$i]['link_delete'] = convert_url("index.php?r=" . $lang['general']['idurl_member'] . "&v1=group_list&v2=" . $ligne['group_id'] . "&v3=delete"); $page['group'][$i]['L_edit'] = $lang['member']['edit']; $page['group'][$i]['L_delete'] = $lang['member']['delete']; $i++; } sql_free_result($res_liste); sql_close($sgbd); # link $page['link_right_management'] = ''; if ($right_user['right_management']) { $page['link_right_management'] = convert_url("index.php?r=" . $lang['general']['idurl_admin'] . "&v1=right-management"); } # text if (!isset($included) or $included == 0) { $page['L_title'] = $lang['member']['group_list']; $page['L_liste'] = $lang['member']['group_list']; $page['L_add'] = $lang['member']['add_group']; $page['L_submit'] = $lang['member']['submit']; $page['L_erreur'] = $lang['general']['E_erreur']; $page['L_field_required'] = $lang['general']['field_required']; $page['L_name'] = $lang['member']['name']; $page['L_description'] = $lang['member']['description']; $page['L_right_management'] = $lang['member']['right_management']; $page['meta_title'] = $lang['member']['group_list']; $page['template'] = $tpl['member']['group_list']; }