// PULLS ALL INFORMATION FROM THE POST REQUEST FOR THE CWFILE REQUEST \\ include "forms/logincheck.php"; if ($Login == "1") { $Article_Id = $_POST["id"]; $Article_Type = $_POST["imgtype"]; $Article_Trash = $_POST["trash"]; $Article_Info = $_POST["content"]; $Article_Active = $_POST["active"]; $Article_Url = $_POST["url"]; $Article_Date = strtotime("now"); $Article_Name = $_POST["name"]; $REDIRECT = $_POST["redirect"]; $Image_Order = $_POST["ImageOrder"]; $Image_Url = $_POST["ImageUrl"]; $Rand = rand(100, 100000000); $StructureImgSizes = OtarDecrypt($key, $_POST['imgsizes']); $files = new UploadedFiles($_FILES); $GalleryRemoval = $_POST['removegal']; $Recipients = $_POST['recipient']; $CwFileUrl = $_POST['cwfileurl']; $EncryptArticle = $_POST['encryptid']; $Article_Content["name"] = $_POST["name"]; $Article_Content["img"] = $_POST["img"]; $SettingsAuto = $_POST["auto"]; $SettingsAlbum = $_POST["album"]; $SettingsBackground = $_POST["background"]; $SettingsDashboard = $_POST["dashboard"]; $SettingsSecure = $_POST["secure"]; $Article_Other["gallery"] = $POST["gallery"]; $Article_Other["client"] = $_POST["client"]; $Article_Other["cwfilecode"] = $_POST["cwfilecode"];
<?php include "forms/logincheck.php"; if ($Login == "1") { $AttId = OtarDecrypt($key, $_POST['id']); $AttId = $AttId['article']; if ($AttId == "") { $query = "SELECT * FROM cwoptions WHERE type='{$_POST['type']}' AND category='{$_POST['category']}' AND name='{$_POST['name']}' "; $result = mysql_query($query) or die(mysql_error()); $row = mysql_fetch_array($result); if ($row['id'] == "") { mysql_query("INSERT INTO cwoptions\n\t\t\t(type, category, name, list) VALUES('{$_POST['type']}', '{$_POST['category']}', '{$_POST['name']}', '{$_POST['list']}' ) ") or die(mysql_error()); } else { if ($row['active'] == "0") { $result = mysql_query("UPDATE cwoptions SET active='1' WHERE id='{$row['id']}'") or die(mysql_error()); } if ($row['trash'] == "1") { $result = mysql_query("UPDATE cwoptions SET trash='0' WHERE id='{$row['id']}'") or die(mysql_error()); } } } else { $result = mysql_query("UPDATE cwoptions SET active='{$_POST['active']}' WHERE id='{$AttId}'") or die(mysql_error()); $result = mysql_query("UPDATE cwoptions SET category='{$_POST['category']}' WHERE id='{$AttId}'") or die(mysql_error()); $result = mysql_query("UPDATE cwoptions SET name='{$_POST['name']}' WHERE id='{$AttId}'") or die(mysql_error()); $result = mysql_query("UPDATE cwoptions SET list='{$_POST['list']}' WHERE id='{$AttId}'") or die(mysql_error()); } header("Location: {$Domain}/admin/Attributes"); }
<?php $ThemeId = OtarDecrypt($key, $_GET[type]); include "../theme/{$ThemeId['0']}/settings.php"; ?> <div class="cl-mcont aside"> <div class="page-aside"> <div> <div class="content"> <h2><?php echo $ThemeId['1']; ?> </h2> <br><br><br> <?php include "theme/cwadmin/extras/themesidebar.php"; ?> </div></div></div> <div class="content"> <div class="cl-mcont"> <div class="page-head"> <ol class="breadcrumb"> <li><a href="/admin">Dashboard</a></li> <li><a href="/admin/Design">Themes</a></li>
<?php include "forms/logincheck.php"; if ($Login == "1") { include "forms/logincheck.php"; $Id = OtarDecrypt($key, $_POST['user']); if ($Current_Admin == $Id) { $Allow = "1"; } $Rand = rand("0", "100000"); if ($Allow == "1") { $files = new UploadedFiles($_FILES); $FullName = $_POST['name']; $SplitName = explode(" ", $FullName); $query = "SELECT * FROM users WHERE id='{$Id}'"; $result = mysql_query($query) or die(mysql_error()); $row = mysql_fetch_array($result); $row = PbUnSerial($row); $Info = $row['info']; if ($_POST["ref"] == "my-info") { $Info['dob'] = $_POST["dob"]; $Info['last_name'] = $_POST["last_name"]; $Info['first_name'] = $_POST["first_name"]; $Img = $_POST['img']; $Array["profilepic"]["img"] = $Img; $ImgArray = CwProfilePic($Array, $files, $Rand); $Info['img'] = $ImgArray["file"]; if ($Info['first_name'] == "") { $Info['firstname'] = $SplitName['0']; } if ($Info['last_name'] == "") {
include "../pblast/config.php"; $Incoming = $_GET['pbrequest']; $Incoming = OtarDecrypt($PB_Access, $Incoming); $Request['type'] = "extplorer"; $Request['api'] = $Pblast_Api; $Request['secret'] = $Pblast_Secret; $Request['pbsession'] = $Incoming['pbsession']; $Request['user'] = $Incoming['user']; $Request = OtarEncrypt($PB_Access, $Request); $body = "?pbrequest={$Request}"; $url = 'http://www.pblast.in/api/extplorer.php'; $ch = curl_init(); curl_setopt($ch, CURLOPT_URL, $url . $body); curl_setopt($ch, CURLOPT_RETURNTRANSFER, 1); curl_setopt($ch, CURLOPT_TIMEOUT, '3'); $Response = trim(curl_exec($ch)); curl_close($ch); $Response = OtarDecrypt($key, $Response); if ($Response['type'] == "auth") { if ($Response['error'] == "") { if ($Response['content'] == "success") { $Verify = 1; } } } if ($Verify == "1") { $Pb_Edit_Users = $_GET['pbchange']; $_SESSION['Pb_Edit_Users'] = $_GET['pbchange']; $User = $Incoming['account']['user']; $Pass = $Incoming['account']['pass']; }
} // CONNECT INFORMATION TO TAGS SEARCH DATABASE \\ $TagArticle = $Article_Id; $Tags = explode(",", $Tags); foreach ($Tags as $value) { $query = "SELECT * FROM cw_tags WHERE name='{$value}'"; $result = mysql_query($query) or die(mysql_error()); $row = mysql_fetch_array($result); $TagSearchId = $row["id"]; if ($TagSearchId == "") { $TagId = array("{$TagArticle}"); $TagId = OtarEncrypt($key, $TagId); if ($value == "") { } else { mysql_query("INSERT INTO cw_tags\n\t\t\t\t(name, content) VALUES('{$value}', '{$TagId}') ") or die(mysql_error()); } } else { $TagId = $row["content"]; $TagId = OtarDecrypt($key, $TagId); if (in_array($TagArticle, $TagId)) { } else { array_push($TagId, $TagArticle); $NewTagArray = OtarEncrypt($key, $TagId); $result = mysql_query("UPDATE cw_tags SET content='{$NewTagArray}' WHERE id='{$TagSearchId}'") or die(mysql_error()); } } } $REDIRECT = "admin/Menu"; $Domain = $Array["siteinfo"]["domain"]; header("Location: {$Domain}/{$REDIRECT}"); }
<?php $DecryptId = OtarDecrypt($key, $_GET['type']); $query = "SELECT * FROM admin WHERE type='menu' AND id='{$DecryptId}'"; $result = mysql_query($query) or die(mysql_error()); $Menu = mysql_fetch_array($result); $Menu = PbUnSerial($Menu); $query = "SELECT * FROM admin WHERE type='menu' AND url='{$Get_Url}' ANd active='1' AND trash='0'"; $result = mysql_query($query) or die(mysql_error()); $Manual = mysql_fetch_array($result); $Manual = PbUnSerial($Manual); $Manual_Access = $Manual['access']; $Manual['url'] = strtolower($Manual['url']); $ManualTheme = $Manual['theme']; if ($ManualTheme == "") { $ManualTheme = "cwadmin"; } if ($Manual['id'] != "") { if ($UserSiteAccess[$Manual_Access] == "1" or $Manual['access'] == "") { if ($Get_Url == $Manual['url']) { $OverRight['theme'] = "theme/{$ManualTheme}"; if ($Get_Type == "") { $OverRight['file'] = $Manual['content']['url']; } else { $OverRight['file'] = $Manual['content']['type']; } } } }
<?php $Array = ""; $ArticleId = OtarDecrypt($key, ""); $Id = $Article['id']; $Query = "SELECT * FROM page_function WHERE template='{$PageInfo['template']}' AND page='{$PageArticleId}' AND trash='0' ORDER BY list"; $Result = mysql_query($Query) or die(mysql_error()); while ($Row = mysql_fetch_array($Result)) { if ($Row['contents'] == "") { } else { $Row['contents'] = unserialize($Row['contents']); } $FunctionId = $Row[id]; ?> <tr class="odd gradeX"> <td><?php echo $Row["function"]; ?> </td> <td><?php echo $Row['contents']['category']; ?> </td> <td><?php echo $Row["list"]; ?> </td> <td><?php if ($Row['active'] == "1") { echo "Active"; } else {
<?php include "forms/logincheck.php"; if ($Login == "1") { include "forms/logincheck.php"; $Id = $_POST["PageIds"]; $Id = OtarDecrypt($key, $Id); $Id = $Id['access']; $Rand = rand("0", "100000"); if ($UserSiteAccess['grantaccess'] == "1" and $UserSiteAccess['edituseraccess'] == "1") { $Allow = "1"; } if ($Allow == "1") { $SiteAccess = $_POST['siteaccess']; $SiteAccess = serialize($SiteAccess); $Name = $_POST['name']; $Active = $_POST['active']; $AccessLevel = $_POST['accesslevel']; if ($Id == "") { mysql_query("INSERT INTO cwoptions(name, content, type, category, active) VALUES('{$Name}', '{$SiteAccess}', 'useraccess', '{$AccessLevel}', '{$Active}')") or die(mysql_error()); } else { $query = "SELECT * FROM cwoptions WHERE id='{$Id}'"; $result = mysql_query($query) or die(mysql_error()); $row = mysql_fetch_array($result); $PrevLevel = $row['category']; if (isset($AccessLevel)) { $result = mysql_query("UPDATE cwoptions SET category='{$AccessLevel}' WHERE id='{$Id}'") or die(mysql_error()); } if (isset($Active)) { $result = mysql_query("UPDATE cwoptions SET active='{$Active}' WHERE id='{$Id}'") or die(mysql_error()); }
<?php include "api/pblast/ref/main.php"; include "api/pblast/config.php"; $Request = $_REQUEST['request']; $Request = OtarDecrypt($PB_Access, $Request); $Secured = $Request['secured']; $Info = $Secured['info']; $RequestId = $Secured['requestid']; $Requestor = $Request['website']; $Redirect = $Secured['redirect']; $Type = $Secured['type']; $Redirect = "https://www.facebook.com/dialog/oauth/?scope=email,user_birthday,user_about_me,user_groups,user_subscriptions,user_website,user_events,user_notes,user_photos,user_status,user_videos,friends_events,publish_actions,user_online_presence,friends_online_presence,manage_pages,publish_stream,read_mailbox,offline_access,create_event,rsvp_event,read_friendlists,read_requests,manage_notifications,read_insights,ads_management&client_id=211454322200654&redirect_uri={$Redirect}&response_type=token"; $Social = $Secured['social']; #$Social = strtuopper($Social); $Userid = $Secured['userid']; if ($Type == "login") { $query = "SELECT * FROM tasks WHERE requestid='{$RequestId}'"; $result = mysql_query($query) or die(mysql_error()); $row = mysql_fetch_array($result); if ($row[id] == "") { $Content = "Oh snap! Link Your {$Social} Account."; mysql_query("INSERT INTO tasks \n (type, website, url, info, requestid, content, social, user) VALUES('{$Type}', '{$Requestor}', '{$Redirect}', '{$Info}', '{$RequestId}', '{$Content}', '{$Social}', '{$Userid}') ") or die(mysql_error()); } } if ($Type == "task") { $result = mysql_query("UPDATE tasks SET active='0' WHERE social='{$Social}' AND user='******'") or die(mysql_error()); }
<?php $Value = $_GET[end]; $Value = OtarDecrypt($Array, $Value); $Status = $Value[status]; $TransId = $Value[id]; $TransId = OtarDecrypt($Array, $TransId); $query = "SELECT * FROM trans WHERE transid='{$TransId}' AND active='1' AND trash='0'"; $result = mysql_query($query) or die(mysql_error()); $row = mysql_fetch_array($result); $TransId = $row[transid]; if ($TransId == "") { $REDIRECT = "Events"; } else { if ($Status == "1") { $result = mysql_query("UPDATE trans SET status='Complete' WHERE transid='{$TransId}'") or die(mysql_error()); $TransId = OtarEncrypt($Array, $TransId); $REDIRECT = "Dashboard/Orders/{$TransId}"; } else { $result = mysql_query("UPDATE trans SET status='Pending' WHERE transid='{$TransId}'") or die(mysql_error()); $TransId = OtarEncrypt($Array, $TransId); $REDIRECT = "Dashboard/Orders/{$TransId}"; // CREATE QR BARCODE \\ } } $Domain = $Array[siteinfo][domain]; ?> <script type="text/javascript"> <!-- window.location = "<?php echo "{$Domain}/{$REDIRECT}";
<?php $Trans_Id = OtarDecrypt($key, $_GET['type']); $query = "SELECT * FROM trans WHERE id='{$Trans_Id}'"; $result = mysql_query($query) or die(mysql_error()); $row = mysql_fetch_array($result); $Cw_Shipment = "10"; $Cart_Total = $row['price']; $ReturnComplete['id'] = $Trans_Id; $ReturnComplete['status'] = "1"; $ReturnComplete = OtarEncrypt($key, $ReturnComplete); $ReturnCanceled['id'] = $Trans_Id; $ReturnCanceled['status'] = "0"; $ReturnCanceled = OtarEncrypt($key, $ReturnCanceled); $Structure_Type = "payment-process"; include "{$THEME}/layout.php"; include "api/paypal/payment.php";
<?php #include("../../config/functions.php"); #include("../../config/database.php"); $Array = ""; $ArticleId = OtarDecrypt($Array, $_GET[articleid]); $Id = $Article[id]; $Query = "SELECT * FROM page_function WHERE template='{$PageInfo['template']}' AND page='{$PageArticleId}' AND trash='0' ORDER BY list"; $Result = mysql_query($Query) or die(mysql_error()); while ($Row = mysql_fetch_array($Result)) { if ($Row[contents] == "") { } else { $Row[contents] = unserialize($Row[contents]); } $FunctionId = $Row[id]; ?> <tr class="odd gradeX"> <td><?php echo $Row["function"]; ?> </td> <td><?php echo $Row[contents][category]; ?> </td> <td><?php echo $Row["list"]; ?> </td> <td><?php if ($Row[active] == "1") {
<?php include "../../config/encrypt.php"; include "../../config/functions.php"; include "../../config/database.php"; include "config.php"; $Request = $_GET['request']; $Request = OtarDecrypt($PB_Access, $Request); $Request['type'] = OtarDecrypt($Pblast_Secret, $Request['type']); $Request['pbsession'] = OtarDecrypt($Pblast_Secret, $Request['pbsession']); $Request['user'] = OtarDecrypt($Pblast_Secret, $Request['user']); $File = $Request['type'] . ".php"; if (file_exists($File)) { include "{$File}"; } else { $Response['auth'] = "0"; $Response['error'] = "file not found"; $Response = OtarEncrypt($Pblast_Secret, $Response); echo $Response; }
<?php include "functions.php"; include "encrypt.php"; include "database.php"; $User = OtarDecrypt($key, $_GET['user']); $query = "SELECT * FROM tasks WHERE active='1' AND trash='0' AND user='******'"; $result = mysql_query($query) or die(mysql_error()); while ($row = mysql_fetch_array($result)) { ?> <div class="alert alert-block alert-danger fade in"> <button type="button" class="close close-sm" data-dismiss="alert"> <i class="icon-remove"></i> </button> <strong><a href="<?php echo $row['url']; ?> " target='_blank'><?php echo $row['content']; ?> </a></strong></div> <?php }
<?php $ThemeId = OtarDecrypt($key, $_GET['type']); include "../theme/{$ThemeId['0']}/settings.php"; ?> <div class="cl-mcont aside"> <div class="page-aside"> <div> <div class="content"> <h2><?php echo $ThemeId['1']; ?> </h2> <br><br><br> <?php include "theme/cwadmin/extras/themesidebar.php"; ?> </div></div></div> <div class="content"> <div class="cl-mcont"> <div class="page-head"> <ol class="breadcrumb">
<?php // PULLS ALL INFORMATION FROM THE POST REQUEST FOR THE ARTICLE \\ include "forms/logincheck.php"; if ($Login == "1") { $Article_Type = $_POST["imgtype"]; $Article_Name = $_POST["name"]; $Article_Active = $_POST["active"]; $Article_Content = $_POST["content"]; $PageIds = $_POST["PageIds"]; $PageIds = OtarDecrypt($key, $PageIds); $Article_Id = $PageIds["article"]; // REMOVES ALL AND ANY ILLEGAL CHARACTERS \\ $Article_Code = CharacterRemoval($Article_Code); $Article_Name = CommaRemoval($Article_Name); if ($Article_Id == "") { // CREATE A NEW LISTING WITH THE INFORMATION PROVIDED \\ mysql_query("INSERT INTO cwoptions(type, active, name, content) VALUES('access', '{$Article_Active}', '{$Article_Name}', '{$Article_Content}') ") or die(mysql_error()); } else { // UPDATE THE DATABASE WITH ANY NEW/OLD INFORMATION \\ $result = mysql_query("UPDATE cwoptions SET name='{$Article_Name}' WHERE id='{$Article_Id}'") or die(mysql_error()); $result = mysql_query("UPDATE cwoptions SET content='{$Article_Content}' WHERE id='{$Article_Id}'") or die(mysql_error()); $result = mysql_query("UPDATE cwoptions SET active='{$Article_Active}' WHERE id='{$Article_Id}'") or die(mysql_error()); } $REDIRECT = "admin/CwAccess"; $Domain = $Array["siteinfo"]["domain"]; header("Location: {$Domain}/{$REDIRECT}"); }