Файл: vsime.com/bans/inc/act_add.php
Строк: 184
<?
if ($count_arr_bans < 1)access_denied();
$ank = profile(intval($_GET['id']));
if ($ank['id'] == 0) {
$title .= ' - Ошибка!';
ex_head();
$error[] = 'Пользователь не найден';
show_errors();
ex_foot();
}
if (!isset($_GET['type']) || !in_array($_GET['type'], $config['array_type_bans'])) {
$title .= ' - Ошибка!';
ex_head();
$error[] = 'Раздел не найден.';
show_errors();
ex_foot();
}
if ($ank['level'] >= $user['level']) {
$title .= ' - Ошибка!';
ex_head();
$error[] = 'Вы не можете забанить даного пользователя.';
show_errors();
ex_foot();
}
$ban_type_get = my_esc($_GET['type']);
$title .= ' - Забанить '.$ank['nick'];
ex_head();
if (isset($_POST['submited']))
{
if (hsc(@$_POST['mdp'])==$mdp)
{
$time_ban = $_POST['time_ban'];
if ($ban_type_get == 'block' && isset($moderate_site))
{
if (in_array($time_ban,array(0, 3600, 10800, 86400, 432000, 'forever')))$time_ban = $time_ban; else $time_ban = 0;
}
elseif (isset($moderate_site))
{
if (in_array($time_ban,array(0, 3600, 10800, 86400, 432000)))$time_ban = $time_ban; else $time_ban = 0;
}
else
{
if (in_array($time_ban,array(0, 3600, 10800, 86400)))$time_ban = $time_ban; else $time_ban = 0;
}
if ($time_ban == 'forever')
{
$forever=1;
}
else $time_ban = $time + $time_ban;
$msg = $_POST['msg'];
if (strlen2(trim($msg))<1)$error[] = "Введите комментарий";
if (strlen2($msg)>512)$error[] = "Комментарий должен быть не больше 512-ти символов";
$reason = intval($_POST['reason']);
if (isset($moderate_site))
{
if (in_array($reason, array(1, 2, 3, 4, 5, 6, 7, 8)))$reason = $reason; else $reason = 1;
} else {
if (in_array($reason, array(1, 2, 3, 4, 5, 6, 7)))$reason = $reason; else $reason = 1;
}
if (!isset($error))
{
if ($ban_type_get == 'block')$perc_rat = ($ank['akt_rating']/100)*25; else $perc_rat = ($ank['akt_rating']/100)*10;
mysqli_query($dbi, "INSERT INTO `users_ban` SET `id_comm` = '0', `id_user` = '$ank[id]', `id_ank` = '$user[id]'".(isset($forever)?", `forever` = '1'":", `time_ban` = '$time_ban'").", `time` = '$time', `msg` = '".my_esc($msg)."', `reason` = '$reason', `type` = '$ban_type_get', `akt_rating` = '$perc_rat'");
$msg = "У Вас новое нарушение! [url=$config[http_site]/bans/?id=$ank[id]]Просмотреть[/url]";
mysqli_query($dbi, "UPDATE `user` SET `akt_rating_f` = '".($ank['akt_rating_f'] - $perc_rat)."' WHERE `id` = '$ank[id]'");
write_mail(0, $ank['id'], $msg);
header("Location: ?id=$ank[id]");
exit();
}
} else hacked_by_Killer();
}
show_errors();
echo "<form method='post' class='multi'>n";
echo "<div class='list'>n";
echo "Пользователь: n";
echo profile_icon($ank['id']).profile_nick($ank['id'], 1).profile_medal($ank['id']);
echo "</div>n";
echo "<div class='list'>n";
echo "Раздел: ".array_search($ban_type_get, $config['array_type_bans'])."<br />n";
echo "</div>n";
echo "<div class='list'>n";
echo "Бан на:n";
echo "<select name='time_ban'><br />n";
echo "<option value='0'>Предупреждение</option>n";
echo "<option value='3600'>1</option>n";
echo "<option value='10800'>3</option>n";
echo "<option value='86400'>24</option>n";
if (isset($moderate_site))
{
echo "<option value='432000'>120</option>n";
}
if ($ban_type_get == 'block' && isset($moderate_site))echo "<option value='forever'>Навсегда</option>";
echo "</select><br />n";
echo "</div>n";
echo "<div class='list'>n";
echo "Причина:<br />n";
echo "<input type='radio' name='reason' id='reason_1' value='1' checked='checked'> <label for='reason_1'>Грубость и оскорбления</label><br />n";
echo "<input type='radio' name='reason' id='reason_2' value='2'> <label for='reason_2'>Нецензурная лексика</label><br/>n";
echo "<input type='radio' name='reason' id='reason_3' value='3'> <label for='reason_3'>Реклама</label><br/>n";
echo "<input type='radio' name='reason' id='reason_4' value='4'> <label for='reason_4'>Пропаганда ненависти</label><br/>n";
echo "<input type='radio' name='reason' id='reason_5' value='5'> <label for='reason_5'>Флуд</label><br/>";
echo "<input type='radio' name='reason' id='reason_7' value='7'> <label for='reason_7'>СПАМ, реклама</label><br/>n";
if (isset($moderate_site))
{
echo "<input type='radio' name='reason' id='reason_8' value='8'> <label for='reason_8'>Системное нарушение</label><br/>n";
}
echo "<input type='radio' name='reason' id='reason_6' value='6'> <label for='reason_6'>Иное</label><br/>n";
echo "</div>n";
input_bbs();
echo "<div class='list'>n";
echo "Комментарий:<br/>n";
echo "<textarea name='msg' id='textarea' rows='3' cols='17' style='width:95%'></textarea>n";
echo "</div>n";
echo "<div class='list'>n";
echo "<input type='hidden' name='mdp' value='$mdp'>n";
echo "<input type='submit' name='submited' value='Забанить'/><br/>n";
echo "</div>n";
echo "</form>n";
echo "<div class='foot'>n";
echo image_back()." <a href='?id=$ank[id]'>Назад</a>n";
echo"</div>n";
ex_foot();
?>