<?php
ob_start();
error_reporting(E_ERROR | E_WARNING | E_PARSE);
require_once 'Sistema/Classes/bancodeDados.inc.php';
$DB = new dbConnect();
require_once 'Sistema/Classes/configs.inc.php';
$CONF = new configs();
require_once 'Sistema/Classes/menu.inc.php';
$MENU = new MenuListas();
require_once 'Sistema/Classes/login.inc.php';
$LOG = new sistemaLogin();
//CONECTA NO BANCO
echo $DB->conectMysql();
//RETORNA CONFIGURACOES
$UrlGeral = $CONF->DadosCondig();
$VarVerificacao = true;
//TODAS A PAGINAS POSSUEM ESSA VARIAVEL, PARA NÃO SEREM ACESSADAS SEPARADAMENTOS DO INDEX
include 'Sistema/Includes/Funcoes.php';
$LOG->FechaCookies();
header('location: index.php');
ob_end_flush();
$sqlSitemap = mysql_query("\n\t\t\t\t\t\t\t\t\t\t\t\t\tCREATE TABLE `tbl_sitemap` (\n\t\t\t\t\t\t\t\t\t\t\t\t\t `id` int(9) NOT NULL auto_increment,\n\t\t\t\t\t\t\t\t\t\t\t\t\t `descricao` text NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t `url` text NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t `prioridade` varchar(3) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t `data_edit` date NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t PRIMARY KEY (`id`)\n\t\t\t\t\t\t\t\t\t\t\t\t\t) ENGINE=InnoDB DEFAULT CHARSET=latin1 AUTO_INCREMENT=1;\n\t\t\t\t\t\t\t\t\t\t\t\t") or die('<div class="erro">Não foi possível conectar: ' . mysql_error() . '</div>');
if ($sqlSitemap) {
$sqlAcoes = mysql_query("\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tCREATE TABLE `tbl_acoes` (\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `idLogin` int(9) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `nomeLogin` varchar(100) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `tabelaFerramenta` varchar(200) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `id_ferramenta` int(9) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `tituloAcao` varchar(300) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `acao` varchar(100) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `LinkFerramenta` varchar(500) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `permalink` varchar(200) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `data_acao` datetime NOT NULL\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t) ENGINE=InnoDB DEFAULT CHARSET=latin1;\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t") or die('<div class="erro">Não foi possível conectar: ' . mysql_error() . '</div>');
if ($sqlAcoes) {
$sqlInt = mysql_query("\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tCREATE TABLE `tbl_inteligencia` (\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `auto_comp_campo_tab` varchar(200) NOT NULL\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t) ENGINE=InnoDB DEFAULT CHARSET=latin1;\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t") or die('<div class="erro">Não foi possível conectar: ' . mysql_error() . '</div>');
if ($sqlInt) {
$sqlPage = mysql_query("\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tCREATE TABLE `tbl_paginas` (\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `id` int(9) NOT NULL auto_increment,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `nome_ferramenta` varchar(200) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `status` varchar(5) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `sub` varchar(5) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `sub_de` varchar(50) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t PRIMARY KEY (`id`)\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t) ENGINE=InnoDB DEFAULT CHARSET=latin1 AUTO_INCREMENT=1;\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t") or die('<div class="erro">Não foi possível conectar: ' . mysql_error() . '</div>');
if ($sqlPage) {
$sqlConfig = mysql_query("\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tCREATE TABLE `tbl_configs` (\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `urlGeral` varchar(500) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `url_site` varchar(500) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `titulo_site` varchar(200) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `frase` text NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `palavras` text NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `email` varchar(200) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `arquivo` text NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `datamod` date NOT NULL\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t) ENGINE=InnoDB DEFAULT CHARSET=latin1;\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t") or die('<div class="erro">Não foi possível conectar: ' . mysql_error() . '</div>');
if ($sqlConfig) {
$sqlConfigADD = mysql_query("\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tINSERT INTO `tbl_configs` (`urlGeral`, `url_site`, `titulo_site`, `frase`, `palavras`, `email`) VALUES \n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t('http://" . $url_site . "/painel-admin/', 'http://" . $url_site . "', '', '', '', '');\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t") or die('<div class="erro">Não foi possível conectar: ' . mysql_error() . '</div>');
if ($sqlConfigADD) {
$sqlLogin = mysql_query("\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\tCREATE TABLE `tbl_login` (\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `id_login` int(11) NOT NULL auto_increment,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `nome_usuario` varchar(100) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `sql_salt` varchar(200) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `sql_senha` varchar(200) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `sql_login` varchar(200) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t `sql_nivel` int(1) NOT NULL,\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t PRIMARY KEY (`id_login`)\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t) ENGINE=InnoDB DEFAULT CHARSET=latin1 AUTO_INCREMENT=1;\n\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t\t") or die('<div class="erro">Não foi possível conectar: ' . mysql_error() . '</div>');
if ($sqlLogin) {
require_once 'painel-admin/Sistema/Classes/login.inc.php';
$CadLog = new sistemaLogin();
$CadLog->Login = $login_admin;
$CadLog->Senha = $senha_admin;
$CadLog->PaginaLogin = '******';
$CadLog->Permissao = 1;
$CadLog->Nome = $login_admin;
if ($CadLog->CadLogin() == true) {
$ConteudoPageBanco = '
<?php
class dbConnect{
var $localhost = false;
var $username = false;
var $password = false;
var $db_name = false;
public function conectMysql(){
<?php
ob_start();
error_reporting(E_ERROR | E_WARNING | E_PARSE);
if (isset($_COOKIE['idLogin']) and isset($_COOKIE['UserLogin']) and isset($_COOKIE['NivelLogin'])) {
header('location: index.php');
} else {
require_once 'Sistema/Classes/bancodeDados.inc.php';
$DB = new dbConnect();
require_once 'Sistema/Classes/configs.inc.php';
$CONF = new configs();
require_once 'Sistema/Classes/menu.inc.php';
$MENU = new MenuListas();
require_once 'Sistema/Classes/login.inc.php';
$LOG = new sistemaLogin();
//CONECTA NO BANCO
echo $DB->conectMysql();
//RETORNA CONFIGURACOES
$UrlGeral = $CONF->DadosCondig();
$VarVerificacao = true;
//TODAS A PAGINAS POSSUEM ESSA VARIAVEL, PARA NÃO SEREM ACESSADAS SEPARADAMENTOS DO INDEX
include 'Sistema/Includes/Funcoes.php';
include 'Sistema/Includes/Headermenuoff.php';
if (isset($_POST['submit'])) {
if (strstr($_POST['log_senha'], " ") or strstr($_POST['log_name'], " ") or strstr($_POST['log_senha'], "'") or strstr($_POST['log_name'], "'") or strstr($_POST['log_senha'], '"') or strstr($_POST['log_name'], '"') or strstr($_POST['log_senha'], "<") or strstr($_POST['log_name'], "<") or strstr($_POST['log_senha'], ">") or strstr($_POST['log_name'], ">") or strstr($_POST['log_senha'], "=") or strstr($_POST['log_name'], "=")) {
echo "<div class='aviso erro' style='width:300px; margin: 0 auto;'><p>Login ou senha incorretos</p></div>";
} else {
$LOG->Login = $_POST['log_name'];
$LOG->Senha = $_POST['log_senha'];
$LOG->PaginaLogin = '******';
$LOG->Permissao = 1;
<?php
require_once 'bancodeDados.inc.php';
$DB = new dbConnect();
echo $DB->conectMysql();
require_once 'login.inc.php';
$LG = new sistemaLogin();
$LG->Login = $_POST['inp_login'];
$LG->Senha = $_POST['inp_senha'];
$LG->PaginaLogin = '******';
$LG->Permissao = 1;
if ($LG->VerificaDados() == true) {
setcookie('idLogin', $_POST['inp_login'], time() + 2 * 3600);
// durar 2 horas
header('location: index.php');
}
echo $_COOKIE['idLogin'];
?>
<form action="" method="post" enctype="multipart/form-data">
<input type="text" name="inp_login" /><br />
<input type="password" name="inp_senha" /><br />
<input type="submit" name="submit" value="Cadastrar" /><br />
</form>
if ($CadLog->CadLogin() == true) {
echo "<div class='aviso certo'><p>Usuário cadastrado com sucesso!</div>";
} else {
echo "<div class='aviso erro'><p>Não foi possível cadastrar! ( verifique se o login digitado já exite )</div>";
}
} else {
echo "<div class='aviso erro'><p>Repita a senha corretamente</p></div>";
}
}
}
if (isset($_POST['editarlogin'])) {
if (strstr($_POST['log_senha'], " ") or strstr($_POST['log_name'], " ") or strstr($_POST['log_senha'], "'") or strstr($_POST['log_name'], "'") or strstr($_POST['log_senha'], '"') or strstr($_POST['log_name'], '"') or strstr($_POST['log_senha'], "<") or strstr($_POST['log_name'], "<") or strstr($_POST['log_senha'], ">") or strstr($_POST['log_name'], ">") or strstr($_POST['log_senha'], "=") or strstr($_POST['log_name'], "=")) {
echo "<div class='aviso erro'><p>Não use espaço e os caracteres (<,>,=,',\")</p></div>";
} else {
if ($_POST['novasenha'] == $_POST['log_repita']) {
$CadLog = new sistemaLogin();
$CadLog->Login = $_POST['log_name'];
$CadLog->Senha = $_POST['log_senha'];
$CadLog->PaginaLogin = '******';
$CadLog->Permissao = $_POST['log_permi'];
$CadLog->Nome = $_POST['usuario_name'];
$CadLog->Novasenha = $_POST['novasenha'];
$CadLog->Id_edit = $_POST['Id_edit'];
$CadLog->Log_atual = $_POST['Log_atual'];
if ($CadLog->EditLogin() == true) {
echo "<div class='aviso certo'><p>Usuário editado com sucesso!</div>";
} else {
echo "<div class='aviso erro'><p>Não foi possível editar ( verifique se a senha atual esta correta )!</div>";
}
} else {
echo "<div class='aviso erro'><p>Repita a senha corretamente</p></div>";
