function cs_pictures_upload($file, $mod, $fid, $ajaxclean = 1) { if (!empty($_POST['del_picture'])) { cs_pictures_delete($_POST['del_picture']); } if (empty($file['tmp_name'])) { return true; } settype($fid, 'integer'); $types_allowed = array('image/jpeg', 'image/png', 'image/pjpeg', 'image/x-png'); if (!in_array($file['type'], $types_allowed)) { return false; } $exts = array('image/jpeg' => 'jpg', 'image/png' => 'png', 'image/pjpeg' => 'jpg', 'image/x-png' => 'png'); $ext = $exts[$file['type']]; $where = "pictures_fid = '" . $fid . "' AND pictures_mod = '" . $mod . "'"; $already = cs_sql_select(__FILE__, 'pictures', 'pictures_id', $where); $pictures_id = $already['pictures_id']; if (empty($already)) { $vars = array(); $vars['pictures_mod'] = $mod; $vars['pictures_fid'] = $fid; cs_sql_insert(__FILE__, 'pictures', array_keys($vars), array_values($vars)); $pictures_id = cs_sql_insertid(__FILE__); } if (!cs_upload('pictures', 'picture-' . $pictures_id . '.' . $ext, $file['tmp_name'], $ajaxclean)) { cs_sql_delete(__FILE__, 'pictures', $pictures_id); return false; } $cells = array('pictures_file'); $content = array('picture-' . $pictures_id . '.' . $ext); cs_sql_update(__FILE__, 'pictures', $cells, $content, $pictures_id); return true; }
function cs_captchacheck($input, $mini = 0) { if (!extension_loaded('gd')) { return true; } $ip = cs_getip(); $timeout = cs_time() - 900; $string = empty($mini) ? cs_sql_escape($input) : 'mini_' . cs_sql_escape($input); $cond = 'captcha_ip = \'' . cs_sql_escape($ip) . '\' AND '; $cond .= 'captcha_time > \'' . $timeout . '\' AND '; $cond .= 'captcha_string = \'' . $string . '\''; $hash_db = cs_sql_select(__FILE__, 'captcha', 'captcha_id', $cond); if (empty($hash_db)) { return false; } cs_sql_delete(__FILE__, 'captcha', $hash_db['captcha_id']); return true; }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('quotes'); $cs_get = cs_get('id'); $cs_post = cs_post('id'); $quotes_id = empty($cs_get['id']) ? $cs_post['id'] : $cs_get['id']; if (isset($cs_post['agree'])) { cs_sql_delete(__FILE__, 'quotes', $quotes_id); $query = 'DELETE FROM {pre}_comments WHERE comments_mod = \'quotes\' AND comments_fid = ' . $quotes_id; cs_sql_query(__FILE__, $query); cs_redirect($cs_lang['del_true'], 'quotes'); } if (isset($cs_post['cancel'])) { cs_redirect($cs_lang['del_false'], 'quotes'); } $quote = cs_sql_select(__FILE__, 'quotes', 'quotes_headline', 'quotes_id = ' . $quotes_id, 0, 0, 1); if (!empty($quote)) { $data = array(); $data['head']['mod'] = $cs_lang['mod_name']; $data['head']['action'] = $cs_lang['remove']; $data['quotes']['id'] = $quotes_id; $data['head']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_name'], $quote['quotes_headline']); $data['lang']['confirm'] = $cs_lang['confirm']; $data['lang']['cancel'] = $cs_lang['cancel']; echo cs_subtemplate(__FILE__, $data, 'quotes', 'remove'); } else { cs_redirect('', 'quotes'); }
$users_nick = cs_sql_escape($_POST['users_nick']); $users_id = cs_sql_select(__FILE__, 'users', 'users_id', "users_nick = '{$users_nick}'", 0, 0, 1); if ($users_id > 0) { $insertion = array('medals_id' => $medals_id, 'users_id' => $users_id['users_id'], 'medalsuser_date' => cs_time()); cs_sql_insert(__FILE__, 'medalsuser', array_keys($insertion), array_values($insertion)); cs_redirect($cs_lang['create_done'], 'medals', 'user', 'where=' . $medals_id); } else { cs_redirect($cs_lang['user_not_found'], 'medals', 'user', 'where=' . $medals_id); } } } else { $medals_id = $_GET['where']; } if (isset($_GET['delete'])) { $medalsuser_id = cs_sql_escape($_GET['delete']); cs_sql_delete(__FILE__, 'medalsuser', $medalsuser_id); cs_redirect($cs_lang['del_true'], 'medals', 'user', 'where=' . $medals_id); } $start = empty($_GET['start']) ? 0 : $_GET['start']; $cs_sort[1] = 'md.medalsuser_date DESC'; $cs_sort[2] = 'md.medalsuser_date ASC'; $cs_sort[3] = 'usr.users_nick DESC'; $cs_sort[4] = 'usr.users_nick ASC'; $sort = empty($_GET['sort']) ? 1 : $_GET['sort']; $order = $cs_sort[$sort]; $tables = 'medalsuser md LEFT JOIN {pre}_users usr ON usr.users_id = md.users_id'; $cells = 'usr.users_nick AS users_nick, md.users_id AS users_id, usr.users_active AS users_active, usr.users_delete AS users_delete, '; $cells .= 'md.medals_id AS medals_id, md.medalsuser_date AS medalsuser_date, md.medalsuser_id AS medalsuser_id'; $where = 'medals_id = ' . $medals_id . ''; $data['medals_user'] = array(); $data['medals_user'] = cs_sql_select(__FILE__, $tables, $cells, $where, $order, $start, $account['users_limit']);
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('medals'); $cs_get = cs_get('id,confirm,'); if (isset($_GET['confirm'])) { cs_sql_delete(__FILE__, 'medalsuser', $cs_get['id'], 'medals_id'); cs_sql_delete(__FILE__, 'medals', $cs_get['id']); cs_redirect($cs_lang['del_true'], 'medals', 'manage'); } $medal = cs_sql_select(__FILE__, 'medals', 'medals_name', "medals_id = '" . $cs_get['id'] . "'"); if (!empty($medal)) { $data = array(); $medals_name = cs_secure($medal['medals_name']); $data['medals']['message'] = sprintf($cs_lang['rly_remove'], $medals_name); $data['medals']['url_confirm'] = cs_url('medals', 'remove', 'id=' . $cs_get['id'] . '&confirm'); echo cs_subtemplate(__FILE__, $data, 'medals', 'remove'); } else { cs_redirect('', 'medals'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('fightus'); $cs_get = cs_get('id,agree,cancel'); if (isset($cs_get['agree'])) { cs_sql_delete(__FILE__, 'fightus', $cs_get['id']); cs_cache_delete('count_fightus'); cs_redirect($cs_lang['fight_del_true'], 'fightus'); } if (isset($cs_get['cancel'])) { cs_redirect($cs_lang['del_false'], 'fightus'); } $fightus = cs_sql_select(__FILE__, 'fightus', 'fightus_nick', 'fightus_id = ' . $cs_get['id'], 0, 0, 1); if (!empty($fightus)) { $data = array(); $data['head']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_name'], $fightus['fightus_nick']); $data['url']['agree'] = cs_url('fightus', 'remove', 'id=' . $cs_get['id'] . '&agree'); $data['url']['cancel'] = cs_url('fightus', 'remove', 'id=' . $cs_get['id'] . '&cancel'); echo cs_subtemplate(__FILE__, $data, 'fightus', 'remove'); } else { cs_redirect('', 'fightus'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('boardmods'); $cs_get = cs_get('id'); $cs_post = cs_post('id'); $boardmodid = empty($cs_get['id']) ? $cs_post['id'] : $cs_get['id']; if (isset($cs_post['agree'])) { cs_sql_delete(__FILE__, 'boardmods', $boardmodid); cs_redirect($cs_lang['del_true'], 'boardmods'); } if (isset($cs_post['cancel'])) { cs_redirect($cs_lang['del_false'], 'boardmods'); } $tables = 'boardmods bmo INNER JOIN {pre}_users usr ON usr.users_id = bmo.users_id'; $where = 'bmo.boardmods_id = ' . $boardmodid; $boardmod = cs_sql_select(__FILE__, $tables, 'usr.users_nick', $where, 0, 0, 1); if (!empty($boardmod)) { $data = array(); $data['head']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_remove'], $boardmod['users_nick']); $data['boardmod']['id'] = $boardmodid; echo cs_subtemplate(__FILE__, $data, 'boardmods', 'remove'); } else { cs_redirect('', 'boardmods'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('replays'); $cs_get = cs_get('id'); if (isset($cs_get['agree'])) { $replays = cs_sql_select(__FILE__, 'replays', 'replays_mirror_urls', "replays_id = '" . $cs_get['id'] . "'"); $replays_string = $replays['replays_mirror_urls']; $replays_pics = empty($replays_string) ? array() : explode("\n", $replays_string); foreach ($replays_pics as $pics) { cs_unlink('replays', $pics); } cs_sql_delete(__FILE__, 'replays', $cs_get['id']); cs_redirect($cs_lang['del_true'], 'replays'); } if (isset($cs_get['cancel'])) { cs_redirect($cs_lang['del_false'], 'replays'); } $replay = cs_sql_select(__FILE__, 'replays', 'replays_id', 'replays_id = ' . $cs_get['id'], 0, 0, 1); if (!empty($replay)) { $data = array(); $data['head']['topline'] = sprintf($cs_lang['del_rly'], $cs_get['id']); $data['replays']['content'] = cs_link($cs_lang['confirm'], 'replays', 'remove', 'id=' . $cs_get['id'] . '&agree'); $data['replays']['content'] .= ' - '; $data['replays']['content'] .= cs_link($cs_lang['cancel'], 'replays', 'remove', 'id=' . $cs_get['id'] . '&cancel'); echo cs_subtemplate(__FILE__, $data, 'replays', 'remove'); } else { cs_redirect('', 'replays'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('boardranks'); $cs_get = cs_get('id,agree,cancel'); $boardranks_id = empty($cs_get['id']) ? 0 : $cs_get['id']; if (isset($cs_get['agree'])) { cs_sql_delete(__FILE__, 'boardranks', $boardranks_id); cs_redirect($cs_lang['del_true'], 'boardranks'); } if (isset($cs_get['cancel'])) { cs_redirect($cs_lang['del_false'], 'boardranks'); } $boardrank = cs_sql_select(__FILE__, 'boardranks', 'boardranks_name', 'boardranks_id = ' . $boardranks_id, 0, 0, 1); if (!empty($boardrank)) { $data = array(); $data['head']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_remove'], $boardrank['boardranks_name']); $data['url']['agree'] = cs_url('boardranks', 'remove', 'id=' . $boardranks_id . '&agree'); $data['url']['cancel'] = cs_url('boardranks', 'remove', 'id=' . $boardranks_id . '&cancel'); echo cs_subtemplate(__FILE__, $data, 'boardranks', 'remove'); } else { cs_redirect('', 'boardranks'); }
$values = array_values($cs_cups); cs_sql_insert(__FILE__, 'cupmatches', $cells, $values); } /* autoclose the matches */ cs_cups_autoclose($id); } cs_redirect($cs_lang['started_successfully'], 'cups', 'manage'); } else { $id = (int) $_GET['id']; $cupsel = cs_sql_select(__FILE__, 'cups', 'cups_teams, cups_system', 'cups_id = ' . $id); if ($cupsel['cups_system'] == CS_CUPS_TYPE_TEAMS) { // remove squads automatically which doesn't exist anymore in the database $del = cs_sql_select(__FILE__, 'cupsquads cq LEFT JOIN {pre}_squads sq ON cq.squads_id = sq.squads_id', 'cq.squads_id', 'sq.squads_id IS NULL AND cups_id = ' . $id, 0, 0, 0); if (!empty($del)) { foreach ($del as $del_id) { cs_sql_delete(__FILE__, 'cupsquads', $del_id['squads_id'], 'squads_id'); } } } $squads_count = cs_sql_count(__FILE__, 'cupsquads', 'cupsquads_checkedin = 1 AND cups_id = ' . $id); if ($cupsel['cups_teams'] / 2 >= $squads_count) { $bin = decbin($squads_count); if (substr_count($bin, '1') != 1) { // Get the smallest potency of 2 bigger then the team count $new = '1'; for ($x = 0; $x < strlen($bin); $x++) { $new .= '0'; } settype($new, 'integer'); $new = bindec($new); } else {
$cs_lang = cs_translate('categories'); $cs_get = cs_get('id,agree,cancel'); $categories_id = empty($cs_get['id']) ? 0 : $cs_get['id']; $data = array(); $data['if']['allow_agree'] = TRUE; $select = 'categories_picture, categories_mod'; $where = "categories_id = '" . $categories_id . "'"; $cs_category = cs_sql_select(__FILE__, 'categories', $select, $where, 0, 0, 1); if (empty($cs_category)) { cs_redirect('', 'categories'); } if (isset($cs_get['agree'])) { if (!empty($cs_category['categories_picture'])) { cs_unlink('categories', $cs_category['categories_picture']); } cs_sql_delete(__FILE__, 'categories', $categories_id); cs_redirect($cs_lang['del_true'], 'categories', 'manage', 'where=' . $cs_category['categories_mod']); } if (isset($cs_get['cancel'])) { cs_redirect($cs_lang['del_false'], 'categories', 'manage', 'where=' . $cs_category['categories_mod']); } $count_use = cs_sql_count(__FILE__, $cs_category['categories_mod'], $where); if (empty($count_use)) { $categorie = cs_sql_select(__FILE__, 'categories', 'categories_name', 'categories_id = ' . $categories_id, 0, 0, 1); if (!empty($categorie)) { $data['head']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_remove'], $categorie['categories_name']); $data['url']['agree'] = cs_url('categories', 'remove', 'id=' . $categories_id . '&agree'); } else { cs_redirect('', 'categories'); } } else {
$cs_lang = cs_translate('gbook'); $cs_post = cs_post('id'); $cs_get = cs_get('id'); $gbook_id = empty($cs_get['id']) ? $cs_post['id'] : $cs_get['id']; $from = empty($cs_get['from']) ? $cs_post['from'] : $cs_get['from']; $from = cs_secure($from, 0, 0, 0, 0, 0); if ($from == 'users') { $selid = cs_sql_select(__FILE__, 'gbook', 'gbook_users_id', "gbook_id = '" . $gbook_id . "'", 0, 0); $action = 'users'; $more = 'id=' . $selid['gbook_users_id']; } else { $action = $from; $more = ''; } if (isset($cs_post['submit'])) { cs_sql_delete(__FILE__, 'gbook', $gbook_id); cs_redirect($cs_lang['del_true'], 'gbook', $action, $more); } if (isset($cs_post['cancel'])) { cs_redirect($cs_lang['del_false'], 'gbook', $action, $more); } $gbook = cs_sql_select(__FILE__, 'gbook', 'gbook_nick', 'gbook_id = ' . $gbook_id, 0, 0, 1); if (!empty($gbook)) { $data = array(); $data['head']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_remove'], $gbook['gbook_nick']); $data['hidden']['from'] = $from; $data['hidden']['id'] = $gbook_id; echo cs_subtemplate(__FILE__, $data, 'gbook', 'remove'); } else { cs_redirect('', 'gbook'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('games'); $cs_get = cs_get('id,agree,cancel'); if (isset($cs_get['agree'])) { cs_sql_delete(__FILE__, 'games', $cs_get['id']); if (file_exists('uploads/games/' . $cs_get['id'] . '.gif')) { cs_unlink('games', $cs_get['id'] . '.gif'); } cs_redirect($cs_lang['del_true'], 'games'); } if (isset($cs_get['cancel'])) { cs_redirect($cs_lang['del_false'], 'games'); } $game = cs_sql_select(__FILE__, 'games', 'games_name', 'games_id = ' . $cs_get['id'], 0, 0, 1); if (!empty($game)) { $data = array(); $data['lang']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_remove'], $game['games_name']); $data['lang']['content'] = cs_link($cs_lang['confirm'], 'games', 'remove', 'id=' . $cs_get['id'] . '&agree'); $data['lang']['content'] .= ' - '; $data['lang']['content'] .= cs_link($cs_lang['cancel'], 'games', 'remove', 'id=' . $cs_get['id'] . '&cancel'); echo cs_subtemplate(__FILE__, $data, 'games', 'remove'); } else { cs_redirect('', 'games'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('faq'); $cs_get = cs_get('id'); $cs_post = cs_post('id'); $faq_id = empty($cs_get['id']) ? $cs_post['id'] : $cs_get['id']; if (isset($cs_post['agree'])) { cs_sql_delete(__FILE__, 'faq', $faq_id); cs_redirect($cs_lang['del_true'], 'faq'); } if (isset($cs_post['cancel'])) { cs_redirect($cs_lang['del_false'], 'faq'); } $faq = cs_sql_select(__FILE__, 'faq', 'faq_question', 'faq_id = ' . $faq_id, 0, 0, 1); if (!empty($faq)) { $data['lang']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_name'], $faq['faq_question']); $data['action']['form'] = cs_url('faq', 'remove'); $data['faq']['id'] = $faq_id; echo cs_subtemplate(__FILE__, $data, 'faq', 'remove'); } else { cs_redirect('', 'faq'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('abcode'); $cs_get = cs_get('id'); $cs_post = cs_post('id'); $abcode_id = empty($cs_get['id']) ? $cs_post['id'] : $cs_get['id']; if (isset($cs_post['agree'])) { $where = 'abcode_id = ' . $abcode_id; $getpic = cs_sql_select(__FILE__, 'abcode', 'abcode_file', $where); if (!empty($getpic['abcode_file'])) { cs_unlink('abcode', $getpic['abcode_file']); } cs_sql_delete(__FILE__, 'abcode', $abcode_id); cs_cache_delete('abcode_smileys'); cs_cache_delete('abcode_content'); cs_redirect($cs_lang['del_true'], 'abcode'); } if (isset($cs_post['cancel'])) { cs_redirect($cs_lang['del_false'], 'abcode'); } $abcode = cs_sql_select(__FILE__, 'abcode', 'abcode_func, abcode_pattern', 'abcode_id = ' . $abcode_id, 0, 0, 1); if (!empty($abcode)) { $data['lang']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_name'], $abcode['abcode_pattern']); $data['action']['form'] = cs_url('abcode', 'remove'); $data['abcode']['id'] = $abcode_id; echo cs_subtemplate(__FILE__, $data, 'abcode', 'remove'); } else { cs_redirect('', 'abcode'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('events'); $events_form = 1; $eventguests_id = $_REQUEST['id']; settype($eventguests_id, 'integer'); $cols = 'events_id, users_id, eventguests_status'; $cs_events = cs_sql_select(__FILE__, 'eventguests', $cols, "eventguests_id = '" . $eventguests_id . "'"); $events_id = empty($cs_events['events_id']) ? 0 : $cs_events['events_id']; $users_id = empty($cs_events['users_id']) ? 0 : $cs_events['users_id']; if (isset($_GET['agree'])) { $events_form = 0; cs_sql_delete(__FILE__, 'eventguests', $eventguests_id); # email notification for eventguest interactions if (!empty($users_id)) { $columns = 'events_time, events_name, events_id'; $where = "events_id = '" . $events_id . "'"; $event = cs_sql_select(__FILE__, 'events', $columns, $where); $user = cs_sql_select(__FILE__, 'users', 'users_id, users_email', "users_id = '" . $users_id . "'"); $subject = $cs_lang['evg_mail_subject'] . ': ' . $event['events_name']; $message = $cs_lang['evg_mail_reasons'] . $cs_lang['evg_mail_deletes'] . "\n\n"; $message .= $cs_lang['event'] . ': ' . $event['events_name'] . "\n"; $message .= $cs_lang['date'] . ': ' . cs_date('unix', $event['events_time'], 1) . "\n"; $message .= $cs_lang['status'] . ': ' . $cs_lang['status_' . $cs_events['eventguests_status']] . "\n\n"; $message .= $cs_lang['evg_mail_weblink'] . "\n"; $message .= $cs_main['php_self']['website'] . cs_url('events', 'view', 'id=' . $event['events_id']); cs_mail($user['users_email'], $subject, $message); } cs_redirect($cs_lang['del_true'], 'events', 'guests', 'id=' . $events_id);
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('links'); $cs_get = cs_get('id,agree,cancel'); $links_id = empty($cs_get['id']) ? 0 : $cs_get['id']; if (isset($cs_get['agree'])) { $banner = cs_sql_select(__FILE__, 'links', 'links_banner', "links_id = '" . $links_id . "'"); if (!empty($banner['links_banner'])) { cs_unlink('links', $banner['links_banner']); } cs_sql_delete(__FILE__, 'links', $links_id); cs_redirect($cs_lang['del_true'], 'links'); } if (isset($cs_get['cancel'])) { cs_redirect($cs_lang['del_false'], 'links'); } $links = cs_sql_select(__FILE__, 'links', 'links_name', 'links_id = ' . $links_id, 0, 0, 1); if (!empty($links)) { $data = array(); $data['head']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_name'], $links['links_name']); $data['url']['agree'] = cs_url('links', 'remove', 'id=' . $links_id . '&agree'); $data['url']['cancel'] = cs_url('links', 'remove', 'id=' . $links_id . '&cancel'); echo cs_subtemplate(__FILE__, $data, 'links', 'remove'); } else { cs_redirect('', 'links'); }
$comments_edits_now = explode('/', $cs_thread['comments_edit']); } else { $comments_edits_now[3] = 0; } $new_count = 1 + $comments_edits_now[3]; $comments_edit = $account['users_id'] . '/' . $account['users_nick'] . '/' . cs_time() . '/' . $new_count; $com_cells = array('comments_text', 'comments_edit'); $com_save = array($cs_comments['comments_text'], $comments_edit); cs_sql_update(__FILE__, 'comments', $com_cells, $com_save, $comments_id); for ($run = 0; $run < $run_loop_files; $run++) { if ($cs_boardfiles[$run]['boardfiles_del'] == 1) { $ext = substr($cs_boardfiles[$run]['boardfiles_name'], strlen($cs_boardfiles[$run]['boardfiles_name']) + 1 - strlen(strrchr($cs_boardfiles[$run]['boardfiles_name'], '.'))); $del_file_x = $cs_boardfiles[$run]['boardfiles_id'] . '.' . $ext; cs_unlink('board', $del_file_x, 'files'); $sql_id = $cs_boardfiles[$run]['boardfiles_id']; cs_sql_delete(__FILE__, 'boardfiles', $sql_id); } if ($cs_boardfiles[$run]['boardfiles_id'] == '') { $files_cells = array('users_id', 'threads_id', 'comments_id', 'boardfiles_time', 'boardfiles_name'); $files_save = array($cs_boardfiles[$run]['users_id'], $cs_thread['threads_id'], $comments_id, cs_time(), $cs_boardfiles[$run]['boardfiles_name']); cs_sql_insert(__FILE__, 'boardfiles', $files_cells, $files_save); $files_select_new_id = cs_sql_insertid(__FILE__); $ext = substr($cs_boardfiles[$run]['boardfiles_name'], strlen($cs_boardfiles[$run]['boardfiles_name']) + 1 - strlen(strrchr($cs_boardfiles[$run]['boardfiles_name'], '.'))); $path = $cs_main['def_path'] . '/uploads/board/files/'; $target = $path . $file_upload_name[$run]; $target2 = $path . $files_select_new_id . '.' . $ext; $fileHand = fopen($target, 'r'); fclose($fileHand); rename($target, $target2); } }
$cs_sort[2] = 'usr.users_nick ASC'; $cs_sort[3] = 'mem.members_task DESC'; $cs_sort[4] = 'mem.members_task ASC'; $sort = empty($_REQUEST['sort']) ? 2 : $_REQUEST['sort']; $order = $cs_sort[$sort]; if (!empty($_GET['del_id'])) { $del_id = $_GET['del_id']; settype($del_id, 'integer'); $target = cs_sql_select(__FILE__, 'members', 'squads_id', "members_id = '" . $del_id . "'"); $squads_id = $target['squads_id']; $is_admin = "members_admin > 0 AND squads_id ='" . $squads_id . "' AND users_id ='" . $account['users_id'] . "'"; $allow = cs_sql_count(__FILE__, 'members', $is_admin); if (empty($allow)) { $msg = $cs_lang['del_failed']; } else { cs_sql_delete(__FILE__, 'members', $del_id); $msg = $cs_lang['del_done']; } } $data['lang']['mod_name'] = $cs_lang[$op_members['label']]; $data['url']['form'] = cs_url('members', 'center'); $data['lang']['team'] = $cs_lang[$op_squads['label']]; $where = "mem.users_id = '" . $account['users_id'] . "' AND mem.members_admin > 0"; $select = 'sqd.squads_name AS squads_name, sqd.squads_id AS squads_id'; $from = 'members mem INNER JOIN {pre}_squads sqd ON mem.squads_id = sqd.squads_id'; $sqd_data = cs_sql_select(__FILE__, $from, $select, $where, 'sqd.squads_name', 0, 0); $sqd_loop = count($sqd_data); for ($run = 0; $run < $sqd_loop; $run++) { $data['squad'][$run]['selected'] = $sqd_data[$run]['squads_id'] == $squads_id ? ' selected="selected"' : ''; $data['squad'][$run]['id'] = $sqd_data[$run]['squads_id']; $data['squad'][$run]['name'] = cs_secure($sqd_data[$run]['squads_name']);
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('ranks'); $cs_get = cs_get('id,agree,cancel'); if (isset($cs_get['agree'])) { cs_sql_delete(__FILE__, 'ranks', $cs_get['id']); cs_redirect($cs_lang['del_true'], 'ranks'); } if (isset($cs_get['cancel'])) { cs_redirect($cs_lang['del_false'], 'ranks'); } $rank = cs_sql_select(__FILE__, 'ranks', 'ranks_name', 'ranks_id = ' . $cs_get['id'], 0, 0, 1); if (!empty($rank)) { $data = array(); $data['head']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_remove'], $rank['ranks_name']); $data['url']['agree'] = cs_url('ranks', 'remove', 'id=' . $cs_get['id'] . '&agree'); $data['url']['cancel'] = cs_url('ranks', 'remove', 'id=' . $cs_get['id'] . '&cancel'); echo cs_subtemplate(__FILE__, $data, 'ranks', 'remove'); } else { cs_redirect('', 'ranks'); }
$query = "DELETE FROM {pre}_comments WHERE comments_mod='board' AND "; $query .= "comments_fid=" . (int) $thread_id; cs_sql_query(__FILE__, $query); $query = "DELETE FROM {pre}_abonements WHERE threads_id=" . (int) $thread_id; cs_sql_query(__FILE__, $query); $query = "DELETE FROM {pre}_boardfiles WHERE threads_id=" . (int) $thread_id; cs_sql_query(__FILE__, $query); $query = "DELETE FROM {pre}_boardvotes WHERE threads_id=" . (int) $thread_id; cs_sql_query(__FILE__, $query); $query = "DELETE FROM {pre}_voted WHERE voted_mod='board' AND "; $query .= "voted_fid=" . (int) $thread_id; cs_sql_query(__FILE__, $query); // Delete Ghostlinks $query = "DELETE FROM {pre}_threads WHERE threads_ghost_thread = " . (int) $thread_id; cs_sql_query(__FILE__, $query); # Update board entry to get correct threads and comments count include_once 'mods/board/repair.php'; cs_board_threads($cs_thread['board_id']); cs_board_comments($cs_thread['board_id']); # Remove attached boardreports if there are any cs_sql_delete(__FILE__, 'boardreport', $thread_id, 'threads_id'); cs_cache_delete('count_boardreport'); cs_redirect($cs_lang['del_true'], 'board', 'listcat', 'where=' . $cs_thread['board_id']); } if (isset($_POST['cancel'])) { cs_redirect($cs_lang['del_false'], 'board', 'thread', 'where=' . $thread_id); } else { $data['head']['body'] = sprintf($cs_lang['del_thread_rly'], cs_secure($cs_thread['threads_headline'])); $data['thread']['id'] = $thread_id; echo cs_subtemplate(__FILE__, $data, 'board', 'thread_remove'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('shoutbox'); $cs_get = cs_get('id'); if (isset($cs_get['confirm'])) { cs_sql_delete(__FILE__, 'shoutbox', $cs_get['id']); cs_redirect($cs_lang['del_true'], 'shoutbox'); } if (isset($cs_get['cancel'])) { cs_redirect($cs_lang['del_false'], 'shoutbox'); } $shoutbox = cs_sql_select(__FILE__, 'shoutbox', 'shoutbox_name', 'shoutbox_id = ' . $cs_get['id'], 0, 0, 1); if (!empty($shoutbox)) { $data = array(); $data['content']['head'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_name'], $shoutbox['shoutbox_name']); $data['content']['bottom'] = cs_link($cs_lang['confirm'], 'shoutbox', 'remove', 'id=' . $cs_get['id'] . '&confirm'); $data['content']['bottom'] .= ' - '; $data['content']['bottom'] .= cs_link($cs_lang['cancel'], 'shoutbox', 'remove', 'id=' . $cs_get['id'] . '&cancel'); echo cs_subtemplate(__FILE__, $data, 'shoutbox', 'remove'); } else { cs_redirect('', 'shoutbox'); }
$msg = $cs_lang['not_own']; } else { $where = "clans_id = '" . $clans_id . "'"; $getpic = cs_sql_select(__FILE__, 'clans', 'clans_picture', $where); if (!empty($getpic['clans_picture'])) { cs_unlink('clans', $getpic['clans_picture']); } $where = "clans_id = '" . $clans_id . "'"; $cs_squads = cs_sql_select(__FILE__, 'squads', 'squads_id', $where, 0, 0, 0); if (is_array($cs_squads)) { foreach ($cs_squads as $key => $squads_id) { cs_sql_delete(__FILE__, 'members', $squads_id, 'squads_id'); } } cs_sql_delete(__FILE__, 'squads', $clans_id, 'clans_id'); cs_sql_delete(__FILE__, 'clans', $clans_id); $msg = sprintf($cs_lang['del_true_clan'], $cs_lang[$op_clans['label']]); } cs_redirect($msg, 'clans', $center); } if (isset($_GET['cancel']) or $clans_id == 1) { $clans_form = 0; cs_redirect($cs_lang['del_false'], 'clans', $center); } if (!empty($clans_form)) { $clan = cs_sql_select(__FILE__, 'clans', 'clans_name', 'clans_id = ' . $clans_id, 0, 0, 1); if (!empty($clan)) { $data['lang']['mod_name'] = $cs_lang[$op_clans['label']]; $data['lang']['body'] = sprintf($cs_lang['remove_entry'], $data['lang']['mod_name'], $clan['clans_name']); $data['lang']['content'] = cs_link($cs_lang['confirm'], 'clans', 'remove', 'id=' . $clans_id . '&agree'); $data['lang']['content'] .= ' - ';
$cs_lang = cs_translate('comments'); $cs_get = cs_get('id,agree,cancel'); $cols = 'comments_mod, comments_text, comments_id, comments_fid, users_id'; $cs_com = cs_sql_select(__FILE__, 'comments', $cols, 'comments_id = ' . $cs_get['id'], 0, 0); $usid = (int) $cs_com['users_id']; # mass deletion of comments effects board metadata include 'mods/board/repair.php'; if (isset($cs_get['cancel'])) { cs_redirect($cs_lang['del_false'], 'comments', 'manage', 'where=' . $cs_com['comments_mod']); } elseif (isset($cs_get['agree'])) { cs_sql_delete(__FILE__, 'comments', $cs_get['id']); if ($cs_com['comments_mod'] == 'board') { cs_repair_board($cs_com['comments_fid']); } cs_redirect($cs_lang['del_true'], 'comments', 'manage', 'where=' . $cs_com['comments_mod']); } elseif (isset($cs_get['del_all'])) { cs_sql_delete(__FILE__, 'comments', $usid, 'users_id'); cs_repair_board(); cs_redirect($cs_lang['del_true'], 'comments', 'manage', 'where=' . $cs_com['comments_mod']); } if (!empty($cs_com)) { $data = array(); $data['head']['body'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_remove'], $cs_com['comments_id']); $data['head']['com'] = cs_secure($cs_com['comments_text']); $data['url']['agree'] = cs_url('comments', 'remove', 'id=' . $cs_get['id'] . '&agree'); $data['url']['cancel'] = cs_url('comments', 'remove', 'id=' . $cs_get['id'] . '&cancel'); $data['url']['del_all'] = cs_url('comments', 'remove', 'id=' . $cs_get['id'] . '&del_all'); echo cs_subtemplate(__FILE__, $data, 'comments', 'remove'); } else { cs_redirect($cs_lang['del_false'], 'comments', 'manage', 'where=' . $cs_com['comments_mod']); }
cs_sql_delete(__FILE__, 'abonements', $thread_id, 'threads_id'); $files_select = 'boardfiles_id, threads_id, boardfiles_name'; $files_where = 'threads_id = ' . $thread_id; $files_id = cs_sql_select(__FILE__, 'boardfiles', $files_select, $files_where, 0, 0, 0); $files_loop = count($files_id); for ($run2 = 0; $run2 < $files_loop; $run2++) { $file = $files_id[$run2]['boardfiles_name']; $extension = strlen(strrchr($file, ".")); $name = strlen($file); $ext = substr($file, $name - $extension + 1, $name); echo 'uploads/board/files/' . $files_id[$run2]['boardfiles_id'] . '.' . $ext . cs_html_br(1); cs_unlink('board', $files_id[$run2]['boardfiles_id'] . '.' . $ext, 'files'); } // $query = 'DELETE FROM {pre}_boardfiles WHERE threads_id= ' . $thread_id; // cs_sql_query(__FILE__,$query); cs_sql_delete(__FILE__, 'boardfiles', $thread_id, 'threads_id'); } } else { $cs_board_id = $cs_board['board_id']; // $query = "UPDATE {pre}_threads SET board_id='$cs_board_id' "; // $query .= "WHERE board_id = '$board_id'"; // cs_sql_query(__FILE__,$query); cs_sql_update(__FILE__, 'threads', array('board_id'), array($cs_board_id), 0, 'board_id = ' . $board_id); # Update board entry to get correct threads and comments count include_once 'mods/board/repair.php'; cs_board_threads($cs_board_id); cs_board_last($cs_board_id); cs_board_comments($cs_board_id); } cs_redirect($cs_lang['del_true'], 'board'); }
cs_sql_delete(__FILE__, 'comments', $comments_id); $update_last = cs_sql_select(__FILE__, 'comments', '*', "comments_fid = '" . $com_fid . "'", 'comments_time DESC', 0, 1); $cells = array('threads_last_time', 'threads_last_user'); if (empty($update_last['comments_time'])) { $saves = array((int) $cs_thread['threads_time'], (int) $cs_thread['users_id']); } else { $saves = array((int) $update_last['comments_time'], (int) $update_last['users_id']); } cs_sql_update(__FILE__, 'threads', $cells, $saves, $com_fid); # Update board entry to get correct threads and comments count include_once 'mods/board/repair.php'; cs_board_comments($cs_thread['board_id']); cs_board_last($cs_thread['board_id']); cs_threads_comments($com_fid); # Remove attached boardreport if there is one cs_sql_delete(__FILE__, 'boardreport', $comments_id, 'comments_id'); cs_cache_delete('count_boardreport'); $more = 'where=' . $com_fid . '&start=' . $start; cs_redirect($cs_lang['del_true'], 'board', 'thread', $more); } if (isset($_POST['cancel'])) { $options_board = cs_sql_option(__FILE__, 'board'); $where = "comments_fid = \"" . $com_fid . "\" AND comments_mod = 'board' AND comments_id <= \"" . $comments_id . "\""; $comnr = cs_sql_count(__FILE__, 'comments', $where); if ($options_board['sort'] == 'ASC') { $start = $comnr - $comnr % $account['users_limit']; } else { $where = "comments_fid = \"" . $com_fid . "\" AND comments_mod = 'board' AND comments_id > \"" . $comments_id . "\""; $after = cs_sql_count(__FILE__, 'comments', $where); $start = $after - $after % $account['users_limit']; }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('wars'); $cs_get = cs_get('id'); $data = array(); $rounds_id = empty($cs_get['id']) ? 0 : $cs_get['id']; $cs_rounds = cs_sql_select(__FILE__, 'rounds', 'wars_id', "rounds_id = '" . $rounds_id . "'"); if (isset($_GET['agree'])) { cs_sql_delete(__FILE__, 'rounds', $rounds_id); cs_redirect($cs_lang['del_true'], 'wars', 'rounds', 'id=' . $cs_rounds['wars_id']); } if (isset($_GET['cancel'])) { cs_redirect($cs_lang['del_false'], 'wars', 'rounds', 'id=' . $cs_rounds['wars_id']); } else { $data['head']['body'] = sprintf($cs_lang['really_delete'], $rounds_id); $data['url']['agree'] = cs_url('wars', 'roundsremove', 'id=' . $rounds_id . '&agree'); $data['url']['cancel'] = cs_url('wars', 'roundsremove', 'id=' . $rounds_id . '&cancel'); echo cs_subtemplate(__FILE__, $data, 'wars', 'remove'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('board'); $report_id = $_GET['id']; if (isset($_GET['agree'])) { cs_sql_delete(__FILE__, 'boardreport', $report_id); cs_cache_delete('count_boardreport'); cs_redirect($cs_lang['del_true'], 'board', 'reportlist'); } elseif (isset($_GET['cancel'])) { cs_redirect($cs_lang['del_false'], 'board', 'reportlist'); } else { $data['head']['topline'] = sprintf($cs_lang['remove_rly'], $report_id); $data['boardreport']['content'] = cs_link($cs_lang['confirm'], 'board', 'reportdel', 'id=' . $report_id . '&agree'); $data['boardreport']['content'] .= ' - '; $data['boardreport']['content'] .= cs_link($cs_lang['cancel'], 'board', 'reportdel', 'id=' . $report_id . '&cancel'); } echo cs_subtemplate(__FILE__, $data, 'board', 'reportdel');
$users_id = empty($cs_get['id']) ? 0 : $cs_get['id']; $nick_temp = cs_sql_select(__FILE__, 'users', 'users_nick', 'users_id = ' . $users_id); if (isset($_GET['agree'])) { $nick = $nick_temp['users_nick']; $chars = 'abcdefghijklmnopqrstuvwxyz0123456789'; $chars_count = strlen($chars) - 1; $mail = ''; $given = 1; while (!empty($given)) { for ($i = 0; $i < 40; $i++) { $rand = rand(0, $chars_count); $mail .= $chars[$rand]; } $given = cs_sql_count(__FILE__, 'users', "users_email = '" . $mail . "'"); } $array_data = array('access_id' => 0, 'users_nick' => $nick, 'users_pwd' => '', 'users_name' => '', 'users_surname' => '', 'users_sex' => '', 'users_age' => '', 'users_height' => 0, 'users_lang' => '', 'users_country' => "fam", 'users_postalcode' => '', 'users_place' => '', 'users_adress' => '', 'users_icq' => 0, 'users_jabber' => '', 'users_skype' => '', 'users_email' => $mail, 'users_url' => '', 'users_phone' => '', 'users_mobile' => '', 'users_laston' => 0, 'users_picture' => '', 'users_avatar' => '', 'users_signature' => '', 'users_info' => '', 'users_regkey' => '', 'users_register' => 0, 'users_delete' => 1); $array_keys = array_keys($array_data); $array_values = array_values($array_data); cs_sql_update(__FILE__, 'users', $array_keys, $array_values, $users_id); cs_sql_delete(__FILE__, 'members', $users_id, 'users_id'); cs_cache_clear(); cs_redirect($cs_lang['del_true'], 'users'); } if (isset($_GET['cancel'])) { cs_redirect($cs_lang['del_false'], 'users'); } else { $data['head']['body'] = sprintf($cs_lang['rly_rmv_user'], $nick_temp['users_nick']); $data['url']['agree'] = cs_url('users', 'remove', 'id=' . $users_id . '&agree'); $data['url']['cancel'] = cs_url('users', 'remove', 'id=' . $users_id . '&cancel'); echo cs_subtemplate(__FILE__, $data, 'users', 'remove'); }
<?php // ClanSphere 2010 - www.clansphere.net // $Id$ $cs_lang = cs_translate('awards'); $cs_get = cs_get('id,agree,cancel'); $awards_id = $cs_get['id']; if (isset($cs_get['agree'])) { cs_sql_delete(__FILE__, 'awards', $cs_get['id']); cs_redirect($cs_lang['del_true'], 'awards'); } if (isset($cs_get['cancel'])) { cs_redirect($cs_lang['del_false'], 'awards'); } $award = cs_sql_select(__FILE__, 'awards', 'awards_event', 'awards_id = ' . $cs_get['id'], 0, 0, 1); if (!empty($award)) { $data['head']['topline'] = sprintf($cs_lang['remove_entry'], $cs_lang['mod_remove'], $award['awards_event']); $data['awards']['content'] = cs_link($cs_lang['confirm'], 'awards', 'remove', 'id=' . $cs_get['id'] . '&agree'); $data['awards']['content'] .= ' - '; $data['awards']['content'] .= cs_link($cs_lang['cancel'], 'awards', 'remove', 'id=' . $cs_get['id'] . '&cancel'); echo cs_subtemplate(__FILE__, $data, 'awards', 'remove'); } else { cs_redirect('', 'awards'); }