Файл: mafija/admin.php
Строк: 496
<?php
echo "<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">";
echo "<html xmlns="http://www.w3.org/1999/xhtml" xml:lang="en" lang="en">";
echo "<head>";
echo "<link rel="stylesheet" type="text/css" href="style.css" />";
echo "<meta http-equiv="content-type" content="text/html; charset=utf-8"/>";
echo "<title>©MAFIA</title>";
echo "</head>";
echo "<body class="body">";
echo "<div class="empty">";
include "mysql.php";
include "nustatymai.php";
include "user_check.php";
mysql_query ( "UPDATE online SET vieta = 'admin CP' WHERE nick = '$nn'" );
if (!arModas($nn) && !arAdminas($nn)) {
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
Tu neturti reikiamo statuso<br/>
----------<br/>
<a href="on.php?$u">Atgal</a><br/>
</div><div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div></div>
</body>
</html>";mysql_close($db);
die();
}
if ($id == "") {
if (arModas($nn) || arAdminas($nn)) {
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
<b>Admin CP</b><br/>
----------</div>
<div class="meniu2c">
<b>Moderatoriaus meniu:</b><br/>
<a href="admin.php?id=ban&$u">Baninti</a><br/>
<a href="bals.php?id=keisti&$u">Keisti balsavima</a><br/>
<a href="admin.php?id=vikt_valyti&$u">Valyti viktorina</a><br/>
<a href="admin.php?id=valyti&$u">Valyti chata</a><br/>";}
if (strtolower ( $nn ) == "blade" or "trex") {
echo "<br/><b>Admin meniu:</b><br/>
<a href="admin.php?id=naujiena&$u">Rasyti naujiena</a><br/>
<a href="admin.php?id=deletenick&$u">Trinti žaidėją</a><br/>
<a href="admin.php?id=pervesti_krd&$u">Prideti kreditu</a><br/>
<a href="admin.php?id=pinigai&$u">Prideti pinigu</a><br/>
<a href="admin.php?id=modas&$u">Moderatoriu skyrimas</a><br/>";
}
echo "
</div>
<div class="meniu4c">
----------<br/>
<a href="on.php?$u">Atgal</a><br/></div>
</div><div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>";
}
if ($id == "ban") {
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<form method="post" action="admin.php?$u&id=baninti">
<div class="meniu4c">
<br/>
Vartotojas:<br/>
<input name="nick" type="text" maxlength="25"/><br/>
Priežastis:<br/>
<input name="kodel" type="text" maxlength="160"/><br/>
Kiek laiko (sekundemis):<br/>
<input name="kiek" type="text" maxlength="12"/><br/>
<input type="submit" title="ban" value="Baninti"/><br/>
<br/>
----------<br/>
<a href="admin.php?$u">Atgal</a><br/></div>
</form>
</div><div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>";
}
if ($id == "baninti") {
{
if (empty ( $_POST ['nick'] ) || empty ( $_POST ['kodel'] )) {
echo "Neįvesti duomenys.</body></html>";mysql_close($db);
exit ();
}
$arr = mysql_fetch_row ( mysql_query ( "SELECT `nick` FROM `usersxx` WHERE `nick` LIKE '$nn'" ) );
if (! $arr [0]) {
echo "Tokio žaidėjo nėra.</body></html>";mysql_close($db);
exit ();
} else {
mysql_query ( "INSERT INTO `banai` (nick, laikas, kodel, kas) VALUES ('" . $_POST ['nick'] . "', '" . time () . "'+'" . $_POST ['kiek'] . "'-3600,'" . addslashes ( htmlspecialchars ( $_POST ['kodel'] ) ) . "', '$nn')" );
$fp_sk = fopen ( "komentarai.txt", "r" );
$bytes_sk = 999999;
$buffer_sk = fread ( $fp_sk, $bytes_sk );
fclose ( $fp_sk );
$k_laikas = date ( 'H:i' );
$a = "sys| $nn uzbanino " . $_POST ['nick'] . " " . $_POST ['kiek'] . "s. Priezastis: " . $_POST ['kodel'] . "|$k_laikas";
$fp_post = fopen ( "komentarai/$buffer_sk.txt", "w" );
fputs ( $fp_post, $a );
fclose ( $fp_post );
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/><b>"
. $_POST ['nick'] .
"</b> užbanintas<br/>
----------<br/>
<a href="admin.php?$u">Atgal</a><br/></div>
</div><div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>";
}
}
}
if ($id == "valyti") {
function clear_dir($dir)
{
if ($handle = opendir ( $dir )) {
while ( false !== ($file = readdir ( $handle )) ) {
if ($file != "." && $file != "..") {
unlink ( $dir . '/' . $file );
}
}
closedir ( $handle );
}
}
clear_dir ( 'komentarai' );
$k_laikas = date ( 'H:i' );
$fp_post = fopen ( "komentarai/1.txt", "w" );
fputs ( $fp_post, "sys|$nn isvale chata.|$k_laikas" );
fclose ( $fp_post );
$fp_valyti = fopen ( "komentarai.txt", "w+" );
fwrite ( $fp_valyti, "1" );
fclose ( $fp_valyti );
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
Chatas išvalytas sekmingai.<br/>
----------<br/>
<a href="admin.php?$u">Atgal</a><br/></div>
</div><div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>";
}
if ($id == "vikt_valyti") {
function clear_dir($dir)
{
if ($handle = opendir ( $dir )) {
while ( false !== ($file = readdir ( $handle )) ) {
if ($file != "." && $file != "..") {
unlink ( $dir . '/' . $file );
}
}
closedir ( $handle );
}
}
clear_dir ( 'vikte' );
$kiek_laikas = date ( 'H:i' );
$fp_post = fopen ( "vikte/1.txt", "w" );
fputs ( $fp_post, "sys|$nn isvale viktorina.|$kiek_laikas" );
fclose ( $fp_post );
$fp_valyti = fopen ( "txt/zinutes2.txt", "w+" );
fwrite ( $fp_valyti, "sys|$nn isvale viktorina.n" );
fclose ( $fp_valyti );
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
Viktorina išvalyta sekmingai.<br/>
----------<br/>
<a href="admin.php?$u">Atgal</a><br/></div>
</div><div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>";
}
if ($id == "pervesti_krd" && arAdminas($nn)) {
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<form action="admin.php?$u&id=pervesti_krd2" method="post">
<div class="meniu4c">
<br/>
<b>Kam duoti kreditu?</b><br/>
<input name="kam_kreditu" type="text" title="Kam?"/><br/>
<b>Kiek duoti?</b><br/>
<input name="kiek_kreditu" type="text" maxlength="20" title="Kiek?"/><br/>
+ ar -<br/>
<select name="ka">
<option value="plius">Plius</option>
<option value="minus">Minus</option>
</select><br/>
<input type="submit" value="Pervesti"/>
<br/>
$lin<br/>
<a href="admin.php?$u">Atgal</a>
</div></form>
<div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div></div>";
}
if ($id == "pervesti_krd2" && arAdminas($nn)) {
$kam_kreditu = ereg_replace("[^A-Za-z0-9_]", "", $_POST['kam_kreditu']);
$kiek_kreditu = ereg_replace("[^0-9]", "", $_POST['kiek_kreditu']);
$ka = ereg_replace("[^A-Za-z0-9_]", "", $_POST['ka']);
$baad = '';
if (!file_exists("usersxx/$nn.txt"))
{
$baad = "Sis zaidejas neuzregistruotas!";
}
if ($kam_kreditu == "")
{
$baad = "Nenurodei kam suteikti kreditu!";
}
if ($kiek_kreditu == "")
{
$baad = "Nenurodei kiek suteikti kreditu!";
}
if (!file_exists("kredai/$kam_kreditu.txt")){ $kreditu = 0; } else { $kreditu = file_get_contents("kredai/$kam_kreditu.txt");
}
if ($baad == ""){
if($ka == "plius"){
mysql_query("UPDATE usersxx SET kreditai = kreditai + $kiek_kreditu WHERE nick = '$kam_kreditu'");
}
if($ka == "minus"){
mysql_query("UPDATE usersxx SET kreditu = kreditu - $kiek_kreditu WHERE nick = '$kam_kreditu'");
}
$bll = fopen("kredai/$kam_kreditu.txt","w");
fwrite($bll,"$kreditu");
fclose($bll);
$baad = "Sekmingai davei kreditu!";
}
echo"
<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
$baad<br/>
$lin<br/>
<a href="admin.php?$u">Atgal</a><br/>
<a href="on.php?$u&id=">I pradzia</a><br/>
<div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>
</div>
</div>";
}
if ($id == "pinigai" && arAdminas($nn))
{
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
<b>Pinigu davimas</b><br/>
$lin<br/>
<form action="admin.php?$u&id=duodu_pinigu" method="post">
Kam duodu:<br/>
<input name="kam_pinigu" type="text" maxlength="50" title="Kam" value=""/><br/>
Kiek duodu:<br/>
<input name="kiek_pinigu" type="text" format="*N" maxlength="10" title="Kiek" value=""/><br/>
+ ar -<br/>
<select name="ka">
<option value="plius">Plius</option>
<option value="minus">Minus</option>
</select><br/>
<input type="submit" value="Pervesti"/>
<postfield name="kam_pinigu" value="$(kam_pinigu)"/>
<postfield name="kiek_pinigu" value="$(kiek_pinigu)"/>
<postfield name="ka" value="$(ka)"/><br/>
$lin<br/>
<a href="admin.php?$u&id=">Atgal</a><br/>
<a href="on.php?$u&id=">I pradzia</a><br/></small>
<div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>
</div>
</div>";
}
if ($id == "duodu_pinigu" && arAdminas($nn))
{
$kam_pinigu = ereg_replace("[^A-Za-z0-9_]", "", $_POST['kam_pinigu']);
$kiek_pinigu = ereg_replace("[^0-9]", "", $_POST['kiek_pinigu']);
$ka = ereg_replace("[^A-Za-z0-9_]", "", $_POST['ka']);
$baad = "";
if (!file_exists("usersxx/$kam_pinigu.txt"))
{
$baad = "Sis zaidejas neuzregistruotas!";
}
if ($kam_pinigu == "")
{
$baad = "Nenurodei kam suteikti pinigu!";
}
if ($kiek_pinigu == "")
{
$baad = "Nenurodei kiek suteikti pinigu!";
}
if ($baad == ""){
if($ka == "plius"){
mysql_query("UPDATE usersxx SET pinigai = pinigai + $kiek_pinigu WHERE nick = '$kam_pinigu'");
}
if($ka == "minus"){
mysql_query("UPDATE usersxx SET pinigai = pinigai - $kiek_pinigu WHERE nick = '$kam_pinigu'");
}
$baad = "Sekmingai davei pinigu!";
}
echo"
<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
$baad<br/>
$lin<br/>
<a href="admin.php?$u&id=pinigai">Atgal</a><br/>
<a href="on.php?$u&id=">I pradzia</a><br/>
<div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>
</div>
</div>";
}
if ($id == "modas" && arAdminas($nn)) {
echo " <br/><div class="line"></div><div class="meniu3c">WAP MAFIA 3</div><div class="line"></div>";
echo "<div class="meniu4c"> <br/>Modo skyrimas<br/>$lin<br/>";
echo "<form action="admin.php?$u&id=modaspost" method="post"><div><b>Nikas:</b><br/><input type="text" name="nick" style="margin-bottom:5px;" /><br/><input type="submit" value="Duoti" name="vykdyk" /> <input type="submit" value="Atimti" name="vykdyk" /></div></form>";
echo "$lin<br/><a href="admin.php?$u">Atgal</a><br/><a href="on.php?$u">I pradzia</a><br/></div>";
echo "<div class="line"></div><div class="meniu3c">© Ezzo.In, 2009.</div><div class="line"></div></div>";
}
if ($id == "modaspost" && arAdminas($nn)) {
$nikas = strtolower(preg_replace('/[^0-9A-Za-z]/', '', @$_POST['nick']));
$vykdyk = @$_POST['vykdyk'];
$message = 'Atlikta sekmingai.';
if ($nikas == '' || mysql_result(mysql_query("SELECT COUNT(*) FROM `usersxx` WHERE `nick` = '{$nikas}' LIMIT 1"),0) == 0) {
$message = 'Tuscias niko laukas arba toks vartotojas neegzistuoja.';
} else {
if ($vykdyk == 'Duoti') {
if(is_writable('mods')) {
$fh = fopen('mods/'.$nikas.'.mod', 'w');
fclose($fh);
} else {
$message = 'Moderatoriu direktorijoje negalima rasyti(neteisingas chmodas).';
}
} else {
if(file_exists('mods/'.$nikas.'.mod')) {
unlink('mods/'.$nikas.'.mod');
} else {
$message = 'Tokas moderatorius neegzizstuoja.';
}
}
}
echo " <br/><div class="line"></div><div class="meniu3c">WAP MAFIA 3</div><div class="line"></div>";
echo "<div class="meniu4c"> <br/>";
echo $message, '<br/>';
echo "$lin<br/><a href="admin.php?$u">Atgal</a><br/><a href="on.php?$u">I pradzia</a><br/></div>";
echo "<div class="line"></div><div class="meniu3c">© MAFIA, 2009.</div><div class="line"></div></div>";
}
if ($id == "naujiena") {
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
<b>Rasyti naujiena</b><br/>
----------<br/>
<form method="post" action="admin.php?$u&id=naujiena2">";
echo "Trumpai apie naujiena:<br/>";
echo "<input name="trumpai" maxlength="500" type="text"/><br/>";
echo "Naujiena:<br/>";
echo "<input name="naujiena" maxlength="500" type="text"/><br/>";
echo "Kas parase sia naujiena:<br/>";
echo "<select name="kas">";
echo "<option value="blade">blade</option>";
echo "<option value="trex">trex</option>";
echo "</select><br/>";
echo "<input type="submit" title="dtghj" value="Ideti"/><br/>
----------<br/>
<a href="admin.php?$u">[<] Atgal</a><br/>
<a href="on.php?$u">[<] Pradinis</a>
<div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>
</div>
</div>";
}
if ($id == "naujiena2") {
$trumpai = $_POST['trumpai'];
$naujiena = $_POST['naujiena'];
$kas = $_POST['kas'];
$kas = str_replace("&","&",$kas);
$dades = date("[m/d]-[H:i]");
$query = "INSERT INTO naujienos (nick, date, trumpai, naujiena) VALUES('$kas','$dades','$trumpai','$naujiena')";
$result = mysql_query($query) or die("klaida1");
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
<b>Rasyti naujiena</b><br/>
----------<br/>";
echo "Naujiena įdeta.<br/>";
echo "----------<br/>
<a href="admin.php?$u">[<] Atgal</a><br/>
<a href="on.php?$u">[<] Pradinis</a>
<div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>
</div>";
}
if ($id == "deletenick") {
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
<form method="post" action="admin.php?$u&id=deletenick2">
Nickas:<br/>
<input name="post" maxlength="20" type="text"/><br/>
<input type="submit" title="dtghj" value="Trinti"/><br/>
</form>
<br/>
$lin<br/>
<a href="admin.php?$u">Atgal</a><br/>
<a href="on.php?$u&id=">I pradzia</a><br/>
<div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>
</div>
</div>";
}
if ($id == "deletenick2") {
$post = $_POST['post'];
$result = mysql_query("SELECT nick FROM usersxx where nick='$post' limit 1");
$row = mysql_fetch_array($result);
$usersxx_verify = $row["nick"];
if($usersxx_verify == $post)
{$ids2 = $row["nick"];}
$raktas = uniqid("a");
$raktas = substr($raktas, 0, 8);
$querys = "delete FROM usersxx where nick='$ids2' limit 1";
mysql_query($querys) or die(mysql_error());
echo "<div class="meniu4c">
<br/></div>
<div class="line"></div>
<div class="meniu3c">WAP MAFIA 3</div>
<div class="line"></div>
<div class="meniu4c">
<br/>
Nickas $post buvo sėkmingai ištrintas.<br/>
<br/>
$lin<br/>
<a href="admin.php?$u&id=deletenick">Atgal</a><br/>
<a href="on.php?$u&id=">I pradzia</a><br/>
<div class="line"></div>
<div class="meniu3c">© MAFIA, 2009.</div>
<div class="line"></div>
</div>
</div>";
}
mysql_close($db);
echo "</body></html>";
?>