<?php
/**
/registrazione.php
(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
require_once 'etc/class.ReCaptcha.php';
$ocarina = new Ocarina();
$captcha = new ReCaptcha();
$nickname = isset($_POST['nickname']) && $_POST['nickname'] !== '' ? $ocarina->purge($_POST['nickname']) : '';
$password = isset($_POST['password']) && $_POST['password'] !== '' ? $ocarina->purge($_POST['password']) : '';
$confPassword = isset($_POST['confPassword']) && $_POST['confPassword'] !== '' ? $ocarina->purge($_POST['confPassword']) : '';
$email = isset($_POST['email']) && $_POST['email'] !== '' ? $ocarina->purge($_POST['email']) : '';
$submit = isset($_POST['submit']) ? true : false;
$codiceRegistrazione = isset($_GET['codice']) && $_GET['codice'] !== '' ? $ocarina->purge($_GET['codice']) : '';
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 8) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
$ocarina->addValue('description', $ocarina->getLanguage('description', 8));
if ($ocarina->isLogged()) {
$ocarina->addValue('result', $ocarina->getLanguage('registration', 0));
} elseif ($codiceRegistrazione !== '') {
if ($ocarina->config[0]->validazioneaccount == 0) {
$ocarina->addValue('result', $ocarina->getLanguage('registration', 1));
} else {
if (!($ocarina->username = $ocarina->searchUserByField('codiceregistrazione', $codiceRegistrazione))) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log('~', 'Invalid validation code.');
}
$ocarina->addValue('result', $ocarina->getLanguage('registration', 2));
} elseif ($ocarina->username[0]->codiceregistrazione == $codiceRegistrazione) {
<?php
/**
/logout.php
(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
if (isset($_GET['redirect']) && $_GET['redirect'] !== '') {
$redirect = $ocarina->config[0]->url_index . '/' . $ocarina->purge($_GET['redirect']);
} elseif (isset($_SERVER['HTTP_REFERER']) && $_SERVER['HTTP_REFERER'] !== '') {
$redirect = $ocarina->purge($_SERVER['HTTP_REFERER']);
} else {
$redirect = $ocarina->config[0]->url_index . '/index.php';
}
if ($ocarina->isLogged()) {
$ocarina->logout();
header('Refresh: 0; URL=' . $redirect);
} else {
header('Refresh: 0; URL=' . $redirect);
}
<?php
/**
/categoria.php
(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$categoria = isset($_GET['cat']) ? $ocarina->purge($_GET['cat']) : '';
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('titolo', $categoria !== '' ? $ocarina->getLanguage('title', 0) . $categoria . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito : $ocarina->config[0]->nomesito);
$ocarina->addValue('description', $ocarina->getLanguage('description', 1));
if ($categoria == '') {
$ocarina->addValue('error', $ocarina->getLanguage('error', 1));
} else {
!($getNewsCat = $ocarina->searchNewsByCategory($categoria)) ? $ocarina->addValue('error_news', str_replace('{$cat}', $categoria, $ocarina->getLanguage('error', 2))) : $ocarina->addValue('news', $getNewsCat);
!($getPageCat = $ocarina->searchPageByCategory($categoria)) ? $ocarina->addValue('error_page', str_replace('{$cat}', $categoria, $ocarina->getLanguage('error', 3))) : $ocarina->addValue('pagine', $getPageCat);
}
$ocarina->isLogged() && $ocarina->username[0]->grado == 7 ? $ocarina->renderize('bannato.tpl') : $ocarina->renderize('archivio.tpl');
<?php
/**
/recuperapassword.php
(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
require_once 'etc/class.ReCaptcha.php';
$ocarina = new Ocarina();
$captcha = new ReCaptcha();
$email = isset($_POST['email']) && $_POST['email'] !== '' ? $ocarina->purge($_POST['email']) : '';
$codiceRecupero = isset($_GET['codice']) && $_GET['codice'] !== '' ? $ocarina->purge($_GET['codice']) : '';
$recupero = $codiceRecupero !== '' ? true : false;
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 7) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
$ocarina->addValue('description', $ocarina->getLanguage('description', 7));
if (!$submit) {
$ocarina->addValue('captcha', $captcha->getCaptcha());
$ocarina->addValue('result', $ocarina->getLanguage('recoverpassword', 8));
} elseif (!$ocarina->isLogged()) {
if ($email == '' && $recupero && $codiceRecupero !== '') {
if (!($ocarinaname = $ocarina->searchUserByField('codicerecupero', $codiceRecupero))) {
$ocarina->addValue('result', $ocarina->getLanguage('recoverpassword', 0));
if ($ocarina->config[0]->log == 1) {
$ocarina->log('~', 'Invalid recover code.');
}
$ocarina->addValue('recupera', '');
} elseif ($ocarinaname[0]->codicerecupero == $codiceRecupero) {
$codice = $ocarina->getCode();
$password = substr($codice, strlen($codice) - 24);
user()
user($nickname)
countuser()
countaccess()
countpm()
registration($nickname, $password, $email)
login($nickname, $password)
logout()
islogged()
nickname()
useronline()
visitatoronline()
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$action = isset($_GET['action']) ? $ocarina->purge($_GET['action']) : '';
$titolo = isset($_GET['title']) ? $ocarina->purge($_GET['title']) : '';
$nickname = isset($_GET['nickname']) ? $ocarina->purge($_GET['nickname']) : '';
$password = isset($_GET['password']) ? $ocarina->purge($_GET['password']) : '';
$email = isset($_GET['email']) ? $ocarina->purge($_GET['email']) : '';
$contenuto = isset($_GET['content']) ? $ocarina->purge($_GET['content']) : '';
$id = isset($_GET['id']) && is_numeric($_GET['id']) ? (int) $_GET['id'] : '';
$actionPermitted = array('news', 'lastnews', 'countnews', 'searchnews', 'votenews', 'comment', 'searchcomment', 'createcomment', 'mycomment', 'page', 'countpage', 'votepage', 'searchpage', 'user', 'countuser', 'countaccess', 'countpm', 'login', 'logout', 'islogged', 'nickname', 'useronline', 'visitatoronline');
if ($action == 'news' && $titolo !== '') {
if (!($ocarina = $ocarina->getNews($titolo))) {
echo '{"response":"1"}';
} else {
echo '{';
echo '"response": {';
echo '"id":' . json_encode($ocarina[0]->id) . ',';
echo '"author":' . json_encode($ocarina[0]->autore) . ',';
<?php
/**
/admin/modificaannuncio.php
(C) Giovanni Capuano 2011
*/
require_once '../core/class.Ocarina.php';
$ocarina = new Ocarina();
$titolo_annuncio = isset($_POST['titolo']) && $_POST['titolo'] !== '' ? $ocarina->purge($_POST['titolo']) : '';
$testo_annuncio = isset($_POST['testo']) && $_POST['testo'] !== '' ? $news->purgeSlashes($news->purgeByXSS($_POST['testo'])) : '';
$selected = isset($_POST['selected']) && $_POST['selected'] !== '' ? $ocarina->purge($_POST['selected']) : '';
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = 'admin';
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 28) . $ocarina->getLanguage('title', 2) . $ocarina->getLanguage('title', 10) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if ($ocarina->isLogged() && $ocarina->username[0]->grado <= 2) {
if (!$submit && $selected == '') {
$result = '<form action="" method="post">' . $ocarina->getLanguage('editad', 0) . '<select name="selected">';
if (($allAd = $ocarina->getAd()) !== false) {
foreach ($allAd as $v) {
$result .= '<option value="' . $v->minititolo . '">' . $v->titolo . '</option>';
}
}
$result .= '</select><input type="submit" name="sel_submit" value="' . $ocarina->getLanguage('title', 28) . '" /></form>';
$ocarina->addValue('result', $result);
} elseif (!$submit && $selected !== '') {
$ocarina->addValue('bbcode', 0);
$ocarina->addValue('nocategory', 1);
if ($this_annuncio = $ocarina->getAd($selected)) {
$ocarina->addValue('titolo_default', $this_annuncio[0]->titolo);
$ocarina->addValue('testo', $this_annuncio[0]->contenuto);
} else {
<?php
/**
/admin/plugin.php
(C) Giovanni Capuano 2011
*/
require_once '../core/class.Ocarina.php';
require_once '../core/class.Plugin.php';
$ocarina = new Ocarina();
$plugin = isset($_FILES['plugin']) && $_FILES['plugin'] !== '' ? $_FILES['plugin'] : '';
$disinstall = isset($_GET['disinstall']) && $_GET['disinstall'] !== '' ? $ocarina->purge($_GET['disinstall']) : '';
$active = isset($_GET['active']) && $_GET['active'] !== '' ? $ocarina->purge($_GET['active']) : '';
$deactive = isset($_GET['deactive']) && $_GET['deactive'] !== '' ? $ocarina->purge($_GET['deactive']) : '';
$submit = $plugin !== '' ? true : false;
$ocarina->skin = 'admin';
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 34) . $ocarina->getLanguage('title', 2) . $ocarina->getLanguage('title', 10) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if ($ocarina->isLogged() && $ocarina->username[0]->grado == 1) {
if ($disinstall !== '') {
if (!Plugin::pluginExists($disinstall)) {
$ocarina->addValue('result', $ocarina->getLanguage('disinstallplugin', 0));
} elseif (!Plugin::disinstallPlugin($disinstall) || !$ocarina->deleteDir($ocarina->config[0]->root_index . '/plugin/plugins/' . $disinstall . '/')) {
$ocarina->addValue('result', $ocarina->getLanguage('disinstallplugin', 1));
} else {
$ocarina->addValue('result', $ocarina->getLanguage('disinstallplugin', 2));
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Plugin `' . $disinstall . '` disinstalled.');
}
}
} elseif ($active !== '') {
if (!Plugin::pluginExists($active)) {
$ocarina->addValue('result', $ocarina->getLanguage('activeplugin', 0));
<?php
/**
/admin/cancellapagina.php
(C) Giovanni Capuano 2011
*/
require_once '../core/class.Ocarina.php';
$ocarina = new Ocarina();
$minititolo_pagina = isset($_POST['content']) && $_POST['content'] !== '' ? $ocarina->purge($_POST['content']) : '';
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = 'admin';
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 13) . $ocarina->getLanguage('title', 2) . $ocarina->getLanguage('title', 10) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if ($ocarina->isLogged() && $ocarina->username[0]->grado < 3) {
if (!$submit) {
$ocarina->addValue('content', $ocarina->searchPage('', 'wildcard'));
} else {
if ($minititolo_pagina !== '') {
if ($ocarina->deletePage($minititolo_pagina)) {
$ocarina->addValue('result', $ocarina->getLanguage('deletepage', 0));
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Page \'' . $minititolo_pagina . '\' deleted.');
}
} else {
$ocarina->addValue('result', $ocarina->getLanguage('deletepage', 1));
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Page \'' . $minititolo_pagina . '\' deletion failed.');
}
}
} else {
$ocarina->addValue('result', $ocarina->getLanguage('deletepage', 2));
if ($ocarina->config[0]->log == 1) {
<?php
/**
/admin/cancellaannuncio.php
(C) Giovanni Capuano 2011
*/
require_once '../core/class.Ocarina.php';
$ocarina = new Ocarina();
$minititolo_annuncio = isset($_POST['content']) && $_POST['content'] !== '' ? $ocarina->purge($_POST['content']) : '';
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = 'admin';
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 27) . $ocarina->getLanguage('title', 2) . $ocarina->getLanguage('title', 10) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if ($ocarina->isLogged() && $ocarina->username[0]->grado <= 2) {
if (!$submit) {
$ocarina->addValue('content', $ocarina->getAd());
} else {
if ($minititolo_annuncio !== '') {
if ($ocarina->deleteAd($minititolo_annuncio)) {
$ocarina->addValue('result', $ocarina->getLanguage('deletead', 0));
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Ad \'' . $minititolo_annuncio . '\' deleted.');
}
} else {
$ocarina->addValue('result', $ocarina->getLanguage('deletead', 1));
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Ad \'' . $minititolo_annuncio . '\' deletion failed.');
}
}
} else {
$ocarina->addValue('result', $ocarina->getLanguage('deletead', 2));
if ($ocarina->config[0]->log == 1) {
<?php
/**
/feed.php
(C) Giovanni Capuano 2011
*/
header('Content-Type:text/xml');
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$content = isset($_GET['content']) && $_GET['content'] !== '' ? $ocarina->purge($_GET['content']) : '';
if ($content == 'page') {
echo $ocarina->feedPage($ocarina->config[0]->url_index . '/feed/page.html', 0, 10);
} elseif ($content == 'news') {
echo $ocarina->feedNews($ocarina->config[0]->url_index . '/feeed/news.html', 0, 10);
} else {
echo $ocarina->feedNews($ocarina->config[0]->url_index . '/feeed/news.html', 0, 10);
}
<?php
/**
/inviamp.php
(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
require_once 'etc/class.ReCaptcha.php';
$ocarina = new Ocarina();
$captcha = new ReCaptcha();
$destinatario = isset($_POST['destinatario']) && $_POST['destinatario'] !== '' ? $ocarina->purge($_POST['destinatario']) : '';
$oggetto = isset($_POST['oggetto']) && $_POST['oggetto'] !== '' ? $ocarina->purge($_POST['oggetto']) : '';
$contenuto = isset($_POST['contenuto']) && $_POST['contenuto'] !== '' ? $ocarina->purge($_POST['contenuto']) : '';
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 33) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if (!$ocarina->isLogged()) {
$ocarina->addValue('result', $ocarina->getLanguage('error', 4));
} elseif (!$submit) {
$ocarina->addValue('listautenti', $ocarina->getUser());
$ocarina->addValue('captcha', $captcha->getCaptcha());
} elseif ($submit) {
$captcha->checkCaptcha();
if ($captcha->getError() !== false) {
$ocarina->addValue('result', $ocarina->getLanguage('registration', 12));
} elseif ($destinatario !== '' && $oggetto !== '' && $contenuto !== '') {
if ($ocarina->isUser($destinatario) && $ocarina->createPM(array($ocarina->username[0]->nickname, $destinatario, date('d-m-y'), date('G:m:i'), $oggetto, $contenuto, 0))) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'PM sent to ' . $destinatario . '.');
}
$ocarina->addValue('result', $ocarina->getLanguage('sendpm', 0));
<?php
/**
/admin/disinstallaskin.php
(C) Giovanni Capuano 2011
*/
require_once '../core/class.Ocarina.php';
$ocarina = new Ocarina();
$nomeskin = isset($_POST['nomeskin']) && $_POST['nomeskin'] !== '' ? $ocarina->purge($_POST['nomeskin']) : '';
$submit = $nomeskin !== '' ? true : false;
$ocarina->skin = 'admin';
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 31) . $ocarina->getLanguage('title', 2) . $ocarina->getLanguage('title', 10) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if ($ocarina->isLogged() && ($ocarina->username[0]->grado == 1 || $ocarina->username[0]->grado == 4)) {
if ($nomeskin !== '') {
if ($ocarina->deleteSkin($nomeskin)) {
$ocarina->addValue('result', $ocarina->getLanguage('removeskin', 0));
} else {
$ocarina->addValue('result', $ocarina->getLanguage('removeskin', 1));
}
} else {
$ocarina->addValue('listaskin', $ocarina->getSkinList());
}
} else {
$ocarina->addValue('result', $ocarina->getLanguage('error', 4));
}
$ocarina->addValue('submit', $submit);
$ocarina->isLogged() && $ocarina->username[0]->grado == 7 ? $ocarina->renderize('bannato.tpl') : $ocarina->renderize('disinstallaskin.tpl');
<?php /** /admin/configurazione.php (C) Giovanni Capuano 2011 */ require_once '../core/class.Ocarina.php'; /* Sono lieto di mostrarvi la peggior disgrazia, dopo avere me come autore, di Ocarina :) */ $ocarina = new Ocarina(); $nomesito = isset($_POST['nomesito']) && $_POST['nomesito'] !== '' ? $ocarina->purge($_POST['nomesito']) : ''; $email = isset($_POST['email']) && $_POST['email'] !== '' ? $ocarina->purge($_POST['email']) : ''; $registrazioni = isset($_POST['registrazioni']) && is_numeric($_POST['registrazioni']) && $_POST['registrazioni'] !== '' ? $ocarina->purge((int) $_POST['registrazioni']) : ''; $validazioneaccount = isset($_POST['validazioneaccount']) && is_numeric($_POST['validazioneaccount']) && $_POST['validazioneaccount'] !== '' ? $ocarina->purge((int) $_POST['validazioneaccount']) : ''; $commenti = isset($_POST['commenti']) && is_numeric($_POST['commenti']) && $_POST['commenti'] !== '' ? $ocarina->purge((int) $_POST['commenti']) : ''; $approvacommenti = isset($_POST['approvacommenti']) && is_numeric($_POST['approvacommenti']) && $_POST['approvacommenti'] !== '' ? $ocarina->purge((int) $_POST['approvacommenti']) : ''; $log = isset($_POST['log']) && is_numeric($_POST['log']) && $_POST['log'] !== '' ? $ocarina->purge((int) $_POST['log']) : ''; $plugin = isset($_POST['plugin']) && is_numeric($_POST['plugin']) && $_POST['plugin'] !== '' ? $ocarina->purge((int) $_POST['plugin']) : ''; $cookie = isset($_POST['cookie']) && $_POST['cookie'] !== '' ? $ocarina->purge($_POST['cookie']) : ''; $loginexpire = isset($_POST['loginexpire']) && $_POST['loginexpire'] !== '' ? $ocarina->purge($_POST['loginexpire']) : ''; $skin = isset($_POST['skin']) && $_POST['skin'] !== '' ? $ocarina->purge($_POST['skin']) : ''; $description = isset($_POST['description']) && $_POST['description'] !== '' ? $ocarina->purge($_POST['description']) : ''; $limitenews = isset($_POST['limitenews']) && is_numeric($_POST['limitenews']) && $_POST['limitenews'] !== '' ? $ocarina->purge((int) $_POST['limitenews']) : ''; $impaginazionenews = isset($_POST['impaginazionenews']) && is_numeric($_POST['impaginazionenews']) && $_POST['impaginazionenews'] !== '' ? $ocarina->purge((int) $_POST['impaginazionenews']) : ''; $limiteonline = isset($_POST['limiteonline']) && is_numeric($_POST['limiteonline']) && $_POST['limiteonline'] !== '' ? $ocarina->purge((int) $_POST['limiteonline']) : ''; $permettivoto = isset($_POST['permettivoto']) && is_numeric($_POST['permettivoto']) && $_POST['permettivoto'] !== '' ? $ocarina->purge((int) $_POST['permettivoto']) : ''; $url = isset($_POST['url']) && $_POST['url'] !== '' ? $ocarina->purge($_POST['url']) : ''; $url_index = isset($_POST['url_index']) && $_POST['url_index'] !== '' ? $ocarina->purge($_POST['url_index']) : ''; $url_admin = isset($_POST['url_admin']) && $_POST['url_admin'] !== '' ? $ocarina->purge($_POST['url_admin']) : ''; $url_rendering = isset($_POST['url_rendering']) && $_POST['url_rendering'] !== '' ? $ocarina->purge($_POST['url_rendering']) : ''; $url_immagini = isset($_POST['url_immagini']) && $_POST['url_immagini'] !== '' ? $ocarina->purge($_POST['url_immagini']) : ''; $root = isset($_POST['root']) && $_POST['root'] !== '' ? $ocarina->purge($_POST['root']) : '';
<?php
/**
/modificapassword.php
(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$config = $ocarina->getConfig();
$oldPassword = isset($_POST['oldPassword']) && $_POST['oldPassword'] !== '' ? $ocarina->purge($_POST['oldPassword']) : '';
$password = isset($_POST['password']) && $_POST['password'] !== '' ? $ocarina->purge($_POST['password']) : '';
$confPassword = isset($_POST['confPassword']) && $_POST['confPassword'] !== '' ? $ocarina->purge($_POST['confPassword']) : '';
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 5) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
$ocarina->addValue('description', $ocarina->getLanguage('description', 3));
if ($ocarina->isLogged()) {
if ($oldPassword !== '' && $password !== '' && $confPassword !== '') {
if (md5($ocarina->salt . $oldPassword) == $ocarina->username[0]->password && $password == $confPassword && strlen($password) > 4) {
if ($ocarina->editUser('password', md5($ocarina->salt . $password), $ocarina->username[0]->nickname)) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Password modificated.');
}
$ocarina->addValue('result', $ocarina->getLanguage('editpassword', 0) . header('Refresh: 2; URL=' . $ocarina->config[0]->url_index . '/logout.php?redirect=login.php'));
} else {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Password modification failed');
}
$ocarina->addValue('result', $ocarina->getLanguage('editpassword', 1));
}
} else {
<?php
/**
/admin/creacategoria.php
(C) Giovanni Capuano 2011
*/
require_once '../core/class.Ocarina.php';
$ocarina = new Ocarina();
$ocarina_news = isset($_POST['categoria_news']) && isset($_POST['creaCategoriaNews']) && $_POST['categoria_news'] !== '' ? $ocarina->purge($_POST['categoria_news']) : '';
$ocarina_pagina = isset($_POST['categoria_pagina']) && isset($_POST['creaCategoriaPagine']) && $_POST['categoria_pagina'] !== '' ? $ocarina->purge($_POST['categoria_pagina']) : '';
$ocarina_news_rimuovi = isset($_POST['categoria_news_rimuovi']) && isset($_POST['rimuoviCategoriaNews']) && $_POST['categoria_news_rimuovi'] !== '' ? $ocarina->purge($_POST['categoria_news_rimuovi']) : '';
$ocarina_pagina_rimuovi = isset($_POST['categoria_pagina_rimuovi']) && isset($_POST['rimuoviCategoriaPagine']) && $_POST['categoria_pagina_rimuovi'] !== '' ? $ocarina->purge($_POST['categoria_pagina_rimuovi']) : '';
$submit = isset($_POST['creaCategoriaNews']) || isset($_POST['creaCategoriaPagine']) || isset($_POST['rimuoviCategoriaNews']) || isset($_POST['rimuoviCategoriaPagine']) ? true : false;
$ocarina->skin = 'admin';
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 18) . $ocarina->getLanguage('title', 2) . $ocarina->getLanguage('title', 10) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if ($ocarina->isLogged() && $ocarina->username[0]->grado <= 3) {
if ($ocarina_news_rimuovi == 'Senza categoria' || $ocarina_pagina_rimuovi == 'Senza categoria') {
$ocarina->addValue('result', $ocarina->getLanguage('managecategory', 4));
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Category ' . $ocarina_news_rimuovi . ' deletion denied.');
}
} elseif (!$submit) {
$ocarina->addValue('categorie_news', $ocarina->getCategory('news'));
$ocarina->addValue('categorie_pagine', $ocarina->getCategory('pagine'));
} else {
if ($ocarina_news !== '') {
if ($ocarina->createCategory('news', $ocarina_news)) {
$ocarina->addValue('result', $ocarina->getLanguage('managecategory', 0));
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Category ' . $ocarina_news . ' created.');
}
<?php
/**
/admin/modificapagina.php
(C) Giovanni Capuano 2011
*/
require_once '../core/class.Ocarina.php';
$ocarina = new Ocarina();
$titolo_pagina = isset($_POST['titolo']) && $_POST['titolo'] !== '' ? $ocarina->purgeSlashes($ocarina->purgeByXSS($_POST['titolo'])) : '';
$categoria_pagina = isset($_POST['categoria']) && $_POST['categoria'] !== '' ? $ocarina->purge($_POST['categoria']) : '';
$testo_pagina = isset($_POST['testo']) && $_POST['testo'] !== '' ? $ocarina->purgeSlashes($ocarina->purgeByXSS($_POST['testo'])) : '';
$selected = isset($_POST['selected']) && $_POST['selected'] !== '' ? $ocarina->purgeSlashes($ocarina->purgeByXSS($_POST['selected'])) : '';
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = 'admin';
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 23) . $ocarina->getLanguage('title', 2) . $ocarina->getLanguage('title', 10) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if ($ocarina->isLogged() && $ocarina->username[0]->grado < 4) {
if (!$submit && $selected == '') {
$result = '<form action="" method="post">' . $ocarina->getLanguage('editpage', 0) . '<select name="selected">';
if ($ocarina->username[0]->grado == 3) {
$pageByUser = $ocarina->searchPageByUser($ocarina->username[0]->nickname);
if ($pageByUser !== false) {
foreach ($pageByUser as $v) {
$result .= '<option value="' . $v->minititolo . '">' . $v->titolo . '</option>';
}
}
} elseif ($ocarina->username[0]->grado < 3) {
$allPage = $ocarina->searchPage('', 'wildcard');
if ($allPage !== false) {
foreach ($allPage as $v) {
$result .= '<option value="' . $v->minititolo . '">' . $v->titolo . '</option>';
}
<?php
/**
/pagina.php
(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$titolo = isset($_GET['titolo']) && $_GET['titolo'] !== '' ? $ocarina->purge($_GET['titolo']) : '';
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
if ($titolo == '') {
$ocarina->addValue('error', $ocarina->getLanguage('page', 0));
$ocarina->addValue('titolo', $ocarina->config[0]->nomesito);
} else {
if (!($getPage = $ocarina->getPage($titolo))) {
$ocarina->addValue('error', $ocarina->getLanguage('page', 1));
$ocarina->addValue('titolo', $ocarina->config[0]->nomesito);
} else {
$ocarina->addValue('description', $ocarina->getDescription($getPage[0]->contenuto));
$ocarina->addValue('pagina', $getPage);
$ocarina->addValue('titolo', $getPage[0]->titolo !== '' ? $getPage[0]->titolo . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito : $ocarina->config[0]->nomesito);
}
}
$ocarina->isLogged() && $ocarina->username[0]->grado == 7 ? $ocarina->renderize('bannato.tpl') : $ocarina->renderize('pagina.tpl');
<?php
/**
/admin/immagini.php
(C) Giovanni Capuano 2011
*/
require_once '../core/class.Ocarina.php';
$ocarina = new Ocarina();
$delete = isset($_GET['delete']) && $_GET['delete'] ? $ocarina->purge($_GET['delete']) : '';
$ocarina->skin = 'admin';
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 19) . $ocarina->getLanguage('title', 2) . $ocarina->getLanguage('title', 10) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if ($ocarina->isLogged() && $ocarina->username[0]->grado < 4 && $delete == '') {
$ocarina->addValue('immagini', $ocarina->getImage());
} elseif ($ocarina->isLogged() && $ocarina->username[0]->grado < 4 && $delete !== '') {
if ($ocarina->deleteImage($ocarina->config[0]->root_immagini . '/' . $delete)) {
if (isset($_SERVER['HTTP_REFERER'])) {
header('Location: ' . $_SERVER['HTTP_REFERER']);
} else {
header('Location: ' . $config[0]->url_admin . '/immagini.php');
}
} else {
$ocarina->addValue('result', $ocarina->getLanguage('error', 4));
}
}
$ocarina->isLogged() && $ocarina->username[0]->grado == 7 ? $ocarina->renderize('bannato.tpl') : $ocarina->renderize('index.tpl');
<?php
/**
/login.php
(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$nickname = isset($_POST['nickname']) && $_POST['nickname'] !== '' ? $ocarina->purge($_POST['nickname']) : '';
$password = isset($_POST['password']) && $_POST['password'] !== '' ? $ocarina->purge($_POST['password']) : '';
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 4) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
$ocarina->addValue('description', $ocarina->getLanguage('description', 2));
if ($ocarina->isLogged()) {
$ocarina->addValue('result', 'Hai già effettuato l\'accesso, non hai bisogno di farlo nuovamente.');
} elseif ($submit) {
if ($nickname !== '' && $password !== '') {
if ($ocarina->login($nickname, $password)) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($nickname, 'Logged in.');
}
$ocarina->addValue('result', $ocarina->getLanguage('login', 0) . header('Refresh: 2; URL=' . $ocarina->config[0]->url_index . '/index.php?welcome=true'));
} else {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($nickname, 'Login failed.');
}
$ocarina->addValue('result', $ocarina->getLanguage('login', 1));
}
} else {
if ($ocarina->config[0]->log == 1) {
<?php
/**
/ricerca.php
(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$cercaNews = isset($_GET['news']) ? $ocarina->purge($_GET['news']) : '';
$cercaPagine = isset($_GET['pagine']) ? $ocarina->purge($_GET['pagine']) : '';
$cercaCommenti = isset($_GET['commenti']) ? $ocarina->purge($_GET['commenti']) : '';
$cerca = true;
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 9) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
$ocarina->addValue('description', $ocarina->getLanguage('description', 9));
if ($cercaNews !== '') {
!($search = $ocarina->searchNews($cercaNews)) ? $ocarina->addValue('error_news', $ocarina->getLanguage('search', 0)) : $ocarina->addValue('news', $search);
$cerca = false;
} elseif ($cercaPagine !== '') {
!($search = $ocarina->searchPage($cercaPagine, 'wildcard')) ? $ocarina->addValue('error_page', $ocarina->getLanguage('search', 1)) : $ocarina->addValue('pagina', $search);
$cerca = false;
} elseif ($cercaCommenti !== '') {
!($search = $ocarina->searchComment($cercaCommenti)) ? $ocarina->addValue('error_comment', $ocarina->getLanguage('search', 2)) : $ocarina->addValue('commento', $search);
$cerca = false;
}
$ocarina->addValue('cerca', $cerca);
$ocarina->isLogged() && $ocarina->username[0]->grado == 7 ? $ocarina->renderize('bannato.tpl') : $ocarina->renderize('ricerca.tpl');
<?php
/**
/profilo.php
(C) Giovanni Capuano 2011
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$nickname = isset($_GET['nickname']) && $_GET['nickname'] !== '' ? $ocarina->purge($_GET['nickname']) : '';
if ($nickname == '') {
$nickname = isset($_POST['nickname']) && $_POST['nickname'] !== '' ? $ocarina->purge($_POST['nickname']) : '';
}
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('description', $nickname !== '' ? $ocarina->getLanguage('description', 6) . $nickname . '.' : $ocarina->getLanguage('description', 5));
if ($nickname == '') {
$ocarina->addValue('titolo', $ocarina->getLanguage('profile', 0) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
$ocarina->addValue('listautenti', $ocarina->getUser());
} else {
$ocarina->addValue('titolo', $ocarina->isLogged() && $nickname == $ocarina->username[0]->nickname ? $ocarina->getLanguage('profile', 1) : $ocarina->getLanguage('profile', 2) . $nickname . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
$getUser = $ocarina->getUser($nickname);
$ocarina->addValue('result', $getUser ? $getUser : $ocarina->getLanguage('profile', 3));
}
$ocarina->isLogged() && $ocarina->username[0]->grado == 7 ? $ocarina->renderize('bannato.tpl') : $ocarina->renderize('profilo.tpl');
<?php
/**
/news.php
(C) Giovanni Capuano 2012
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$titolo = isset($_GET['titolo']) ? $ocarina->purge($_GET['titolo']) : '';
$comment = isset($_POST['comment']) ? $ocarina->purgeSlashes($ocarina->purgeByXSS($_POST['comment'])) : '';
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
if ($titolo == '') {
$ocarina->addValue('titolo', $ocarina->config[0]->nomesito);
$ocarina->addValue('error', $ocarina->getLanguage('news', 1));
} else {
if (!($news = $ocarina->getNews($titolo))) {
$ocarina->addValue('error', $ocarina->getLanguage('news', 2));
$ocarina->addValue('titolo', $ocarina->config[0]->nomesito);
} else {
$ocarina->addValue('description', $ocarina->getDescription($news[0]->contenuto));
$ocarina->addValue('news', $news);
$ocarina->addValue('titolo', $news[0]->titolo . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
if (!($getComment = $ocarina->getComment($news[0]->minititolo))) {
$ocarina->addValue('commenti', $ocarina->getLanguage('news', 3));
} else {
$ocarina->addValue('commenti', $getComment);
}
if ($comment !== '' && $ocarina->isLogged()) {
$array = $ocarina->config[0]->approvacommenti == 0 ? array($ocarina->username[0]->nickname, $comment, $news[0]->minititolo, date('d-m-y'), date('G:m:s'), 1) : array($ocarina->username[0]->nickname, $comment, $news[0]->minititolo, date('d-m-y'), date('G:m:s'), 0);
if ($ocarina->config[0]->commenti == 0) {
$ocarina->addValue('commentsent', $ocarina->getLanguage('news', 4) . header('Refresh: 2; URL=' . $ocarina->config[0]->url_index . '/release/' . $titolo . '.html'));
<?php
/**
/modificaprofilo.php
(C) Giovanni Capuano 2012
*/
require_once 'core/class.Ocarina.php';
$ocarina = new Ocarina();
$email = isset($_POST['email']) && $_POST['email'] !== '' ? $ocarina->purge($_POST['email']) : '';
$skin = isset($_POST['skin']) && $_POST['skin'] !== '' ? $ocarina->purge($_POST['skin']) : '';
$bio = isset($_POST['bio']) && $_POST['bio'] !== '' ? $ocarina->purge($_POST['bio']) : '';
$avatar = isset($_POST['avatar']) && $_POST['avatar'] !== '' ? $ocarina->purge($_POST['avatar']) : '';
$password = isset($_POST['password']) && $_POST['password'] !== '' ? $ocarina->salt . $ocarina->purge($_POST['password']) : '';
$submit = isset($_POST['submit']) ? true : false;
$ocarina->skin = $ocarina->isLogged() ? $ocarina->username[0]->skin : $ocarina->config[0]->skin;
$ocarina->addValue('titolo', $ocarina->getLanguage('title', 6) . $ocarina->getLanguage('title', 2) . $ocarina->config[0]->nomesito);
$ocarina->addValue('description', $ocarina->getLanguage('description', 4));
if ($ocarina->isLogged()) {
if (!$submit) {
$ocarina->addValue('email', $ocarina->username[0]->email);
$ocarina->addValue('bio', $ocarina->username[0]->bio);
$ocarina->addValue('avatar', $ocarina->username[0]->avatar);
$ocarina->addValue('listaskin', $ocarina->getSkinList());
$ocarina->addValue('skinattuale', $ocarina->skin);
} else {
if ($ocarina->isEmail($email) && $email !== '' && $skin !== '' && $password !== '') {
if ($ocarina->isEmailUsed($ocarina->username[0]->nickname, $email) || !$ocarina->checkPassword($ocarina->username[0]->password, $password)) {
if ($ocarina->config[0]->log == 1) {
$ocarina->log($ocarina->username[0]->nickname, 'Profile modification failed.');
}
$ocarina->addValue('result', $ocarina->getLanguage('editprofile', 0));
