$hide = array('outter_template_source', 'outter_template_source_time', 'outter_template_cache', 'outter_template_cache_time', 'mail_type', 'mail_from', 'smtp_username', 'smtp_password', 'smtp_host', 'sendmail_path'); // remove hidden fields. $getconfig = $config->config; foreach ($hide as $item) { unset($getconfig[$item]); } $required = array_keys($getconfig); $text = new text($_POST, $required); $text->validate(); // dealing with input? if (!empty($_POST)) { if ($text->is_missing_required) { $baddata = true; } if (!$baddata) { $text->makeClean('slash_if_needed'); $clean = $text->clean; $oldconfig = $config->config; $diff = array(); foreach ($clean as $key => $val) { if ($oldconfig[$key] != $val) { $diff[$key] = $val; } } if (empty($diff)) { $ets->page_body .= $l['acp-nochange']; } else { $q = ""; foreach ($diff as $key => $val) { $db->query("UPDATE " . db_config . " SET value='" . $val . "' WHERE name='" . $key . "' LIMIT 1;"); }
* B A N U S E R * ======================================= */ if (!defined('IN_NLB3')) { echo 'NLB3 Denies Direct Access'; exit; } $baddata = false; $problems = array(); $ets->page_body = ''; $ets_outter->main_title = $config->get('site_name') . ": " . $l['title-admincp']; $ets_outter->page_title = $l['title-banuser']; $USESKIN = skin_basic; $text = new text($_POST, array('name', 'reason', 'until')); $text->validate(); $text->makeClean('trim', 'slash_if_needed'); if (!empty($_POST)) { if ($text->is_missing_required) { $baddata = true; } else { $c = $text->clean; // get userid $user_data = $db->getArray('SELECT user_id, ip FROM ' . db_users . ' WHERE username="******";'); if ($db->getRowCount() == 0) { $baddata = true; $problems[] = $l['acp-ban-err-user']; } else { // time okay? $until = strtotime($c['until']); if ($until == -1) { $baddata = true;
<?php /** * ======================================= * E D I T S M I L E * ======================================= */ if (!defined('IN_NLB3')) { echo 'NLB3 Denies Direct Access'; exit; } $text = new text($_POST, array('smile_id', 'image', 'code', 'desc'), array("delete")); $text->validate(); if ($text->is_missing_required) { jsRedirect("admincp.php?action=smiles"); die; } $text->makeClean("slash_if_needed"); $c = $text->clean; // delete or update? if (empty($c['delete'])) { $db->query("UPDATE `" . db_smiles . "`\r\n\tSET `code` = '" . $c['code'] . "', \r\n\t`image` = '" . $c['image'] . "', \r\n\t`desc` = '" . $c['desc'] . "' \r\n\tWHERE `smile_id` = " . $c['smile_id'] . "\r\n\tLIMIT 1;"); } else { $db->query("DELETE FROM " . db_smiles . "\r\n\tWHERE `smile_id` = " . $c['smile_id'] . "\r\n\tLIMIT 1;"); } // done here, back to manager... jsRedirect("admincp.php?action=smiles");