ť "._ADMADD."

\n"; echo "\n" ."\n" ."\n" ."\n" ."\n" ."\n"; $sql = "SELECT * FROM ".SN_TABLE_ADMINS." WHERE 1"; $result = $db->sql_query($sql); while ($row = $db->sql_fetchrow($result)) { if ($row['access'] == 'full') { $st = _FULLACCESS; } else if ($row['access'] == 'super') { $st = ""._GODADMIN.""; } else { $st = _LIMITACCESS; } echo "\n\n"; echo "\n"; echo "\n"; echo "\n"; } } echo "

"._ADMLOGIN."	"._ADMSTATUS."	"._ADMIP."	"._ADMTIME."	"._ADNMUNCTION."
$row[login]	$st	".(($row['last_ip'] == '') ? 'N/A' : $row['last_ip'])."	".(($row['last_login'] == '') ? 'N/A' : formatdate ('d.m.Y',$row['last_login']))."	\n"; echo ""._EDITADMIN.""; if ($row['access'] != "super") { echo " \| "._DELITADMIN."

\n"; include('footer.php'); } function add () { global $conf, $db; include ('header.php'); echo "ť "._ADMHOME."

\n"; echo "

\n" ."\n" ."\n"; echo "\n"; echo "\n" ."\n" ."\n" ."\n" ."\n" ."\n"; echo "\n" ."\n" ."\n"; echo "\n" ."\n" ."\n"; echo "\n" ."\n" ."\n" ."

"._ADMADD."

"._ADMLOGIN."

"._ADMEMAIL."

"._ADMPASSWORD."

"._ADMPASSWORD2."

"._ADMACCESS."

\n" ."\n"; $moddir = opendir ("modules"); while (false !== ($func = readdir ($moddir))) { if ((ereg (".php", $func)) AND ($func != 'admins.php') AND ($func != 'setting.php') AND ($func != "index.php")) { $func = explode(".", $func); $modlist[] = $func[0]; } } closedir ($moddir); // echo "\n"; for ($i=0; $i\n" ."\n"; } // echo "\n"; echo "\n" ."\n" ."

$modlist[$i]
"._FULLACCESS."

\n" ."\n" ."\n" ."\n" ."

\n" ."*"._ADMNOTE1."
\n" ."*"._ADMNOTE2."
\n

"; include ('footer.php'); } function add_save () { global $conf, $db; if (!isset ($_POST['enter'])) { header ('Location: admin.php?go=admins'); exit; } $login = (isset ($_POST['admin_login'])) ? stripslashes (trim(strip_tags ($_POST['admin_login']))) : '' ; $email = (isset ($_POST['admin_email'])) ? stripslashes (trim(strip_tags ($_POST['admin_email']))) : '' ; $password echo "\n"; for ($i=0; $i$modlist[$i]\n" ."\n"; } // echo "\n"; echo ""._FULLACCESS."\n" ."\n" ."\n" ."\n" ."\n" ."\n" ."\n" ."\n" ."
\n" ."*"._ADMNOTE1."
\n" ."*"._ADMNOTE2."
\n"; include ('footer.php'); } function add_save () { global $conf, $db; if (!isset ($_POST['enter'])) { header ('Location: admin.php?go=admins'); exit; } $login = (isset ($_POST['admin_login'])) ? stripslashes (trim(strip_tags ($_POST['admin_login']))) : '' ; $email = (isset ($_POST['admin_email'])) ? stripslashes (trim(strip_tags ($_POST['admin_email']))) : '' ; $password]."|"; } } $code_password = md5 ($password); $sql = "INSERT INTO ".SN_TABLE_ADMINS." (admin_id, login, password, email, access) VALUES (NULL, '$login', '$code_password', '$email', '$access')"; $result = $db->sql_query ($sql); if ($result) { $subject = _ACCESSDATA; $msg = ""._YOURADMIN." ".$conf['site_name']." !\n\n"; $msg .= ""._REMEMBERDATA."\n"; $msg .= ""._ADMLOGIN.": $login\n"; $msg .= ""._ADMPASSWORD.": $password\n\n"; $msg .= ""._YOURFAINTH."\n"._ADMINSITE." ".$conf['site_name']."\n".$conf['site_url'].""; $to = $email; $mailheaders = "Content-Type: text/plain; charset="._CHARSET."\n"; $mailheaders .= "From: ".$conf['site_name']." <".$conf['admin_mail'].">\n"; $send_mail = mail ($to, $subject, $msg, $mailheaders); header ('Location: admin.php?go=admins&in=good'); exit; } header ('Location: admin.php?go=admins'); exit; } function delit () { global $conf, $db; $id = (isset ($_GET['id'])) ? intval($_GET['id']) : '' ; if (($id == '') || ($id == 0)) { header ('Location: admin.php?go=admins'); exit; } $sql = "SELECT admin_id, login FROM ".SN_TABLE_ADMINS." WHERE admin_id = '$id'"; $result = $db->sql_query ($sql); $row = $db->sql_fetchrow ($result); if ($row['admin_id'] != $id) { header ('Location: admin.php?go=admins'); exit; } if (isset ($_POST['cancel'])) { Header ('Location: admin.php?go=admins'); exit; } if (isset ($_POST['enter'])) { $sql = "DELETE FROM ".SN_TABLE_ADMINS." WHERE admin_id ='$id'"; $result = $db->sql_query ($sql); Header ('Location: admin.php?go=admins'); exit; } include ('header.php'); echo 'ť '._ADMHOME.' '; echo "

\n"; echo ''; echo "

\n"; include ('footer.php'); } function edit () { global $conf, $db; $id = (isset ($_GET['id'])) ? intval ($_GET['id']) : '' ; if (($id == '') || ($id == 0)) { header ('Location: admin.php?go=admins'); exit; } $sql = "SELECT * FROM ".SN_TABLE_ADMINS." WHERE admin_id = '$id'"; $result = $db->sql_query ($sql); $row = $db->sql_fetchrow ($result); if ($row['admin_id'] != $id) { header ('Location: admin.php?go=admins'); exit; } include ('header.php'); echo "ť "._ADMHOME."
\n"; echo "

\n" ."\n" ."\n" ."\n" ."\n" ."\n" ."\n" ."\n" ."\n"; echo "\n" ."\n" ."\n"; echo "\n" ."\n" ."\n"; echo "\n" ."\n"; } else { echo ""._FULLACCESS."" ."\n" ."\n" ."\n"; } echo "\n" ."

"._ADMINEDIT."

"._ADMLOGIN."

"._ADMEMAIL."

"._ADMPASSWORD."

"._ADMPASSWORD2."

"._ADMACCESS."

\n"; if ($row['access'] != 'super') { echo "\n"; $moddir = opendir ("modules"); while (false !== ($func = readdir ($moddir))) { if ((ereg (".php", $func)) AND ($func != 'admins.php') AND ($func != 'setting.php') AND ($func != "index.php")) { $func = explode(".", $func); $modlist[] = $func[0]; } } closedir ($moddir); $access_mod = explode('|', $row['access']); for ($i=0; $i\n" ."\n"; } echo "\n"; echo "\n" ."

$modlist[$i]
"._FULLACCESS."

\n" ."\n" ."\n" ."\n" ." \n" ." \n" ."\n" ."

\n" ."*"._ADMNOTE1."

'._ATTENTION.'
'._GOODCONFIRM.'
'; echo '

\n"; include ('footer.php'); } function save_edit() { global $conf, $db; if (isset ($_POST['send'])) { header ('Location: admin.php?go=admins&in=send_passw'); exit; } if (!isset ($_POST['enter'])) { header ('Location: admin.php?go=admins'); exit; } $id = (isset ($_POST['id'])) ? intval($_POST['id']) : '' ; $email = (isset ($_POST['admin_email'])) ? stripslashes (trim(strip_tags ($_POST['admin_email']))) : '' ; $password = (isset ($_POST['admin_passwd1'])) ? strip_tags (stripslashes ($_POST['admin_passwd1'])) : '' ; $password2 = (isset ($_POST['admin_passwd2'])) ? strip_tags (stripslashes ($_POST['admin_passwd2'])) : '' ; $full_access = (isset ($_POST['full_access'])) ? intval ($_POST['full_access']) : '0' ; $access_mod = (isset ($_POST['access_mod'])) ? $_POST['access_mod'] : '' ; if (($id == '') || ($id == 0) || ($email == '') || ($password != $password2) || (($full_access == '0') && ($access_mod == ''))) { header ('Location: admin.php?go=admins'); exit; } $sql = "SELECT * FROM ".SN_TABLE_ADMINS." WHERE admin_id = '$id'"; $result = $db->sql_query ($sql); $row = $db->sql_fetchrow ($result); if ($row['admin_id'] != $id) { header ('Location: admin.php?go=admins'); exit; } if ($row['access'] != 'super') { $moddir = opendir ("modules"); while (false !== ($func = readdir ($moddir))) { if ((ereg (".php", $func)) AND ($func != 'admins.php') AND ($func != 'setting.php') AND ($func != "index.php")) { $func = explode(".", $func); $modlist[$func[0]] = 'yes'; } } closedir ($moddir); if ($full_access == '1') { $access = 'full'; } else { $access = ''; for ($i=0; $i"; if (!isset ($modlist[$access_mod[$i]])) { header ('Location: admin.php?go=admins'); exit; } $access .= "".$access_mod[$i]."|"; } } } elseif (($full_access == 'NONE') AND ($access_mod == 'NONE')) { $access = 'super'; } else { header ('Location: admin.php?go=admins'); exit; } $code_password = ($password == '') ? $row['password'] : md5 ($password); $sql = "UPDATE ".SN_TABLE_ADMINS." SET password = '$code_password', email = '$email', access = '$access' WHERE admin_id='$id'"; $result = $db->sql_query ($sql); /* if ($result) { $subject = _ACCESSDATA; $msg = ""._YOURADMIN." ".$conf['site_name']." !\n\n"; $msg .= ""._REMEMBERDATA."\n"; $msg .= ""._ADMLOGIN.": $login\n"; $msg .= ""._ADMPASSWORD.": $password\n\n"; $msg .= ""._YOURFAINTH."\n"._ADMINSITE." ".$conf['site_name']."\n".$conf['site_url'].""; $to = $email; $mailheaders = "Content-Type: text/plain; charset="._CHARSET."\n"; $mailheaders .= "From: ".$conf['site_name']." <".$conf['admin_mail'].">\n"; $send_mail = mail ($to, $subject, $msg, $mailheaders); header('Location: admin.php?go=admins&in=good'); exit; } */ header ('Location: admin.php?go=admins'); exit; } function send_passw () { global $conf, $db; $id = intval ($_GET['id']); $sql = "SELECT * FROM ".SN_TABLE_ADMINS." WHERE admin_id = '$id'"; $result = $db->sql_query ($sql); $row = $db->sql_fetchrow ($result); $password = createpassword (); $code_password = md5 ($password); $save_db = $db->sql_query ("UPDATE ".SN_TABLE_ADMINS." SET password = '$code_password' WHERE admin_id='$id'"); if($save_db) { $subject = _NEWPASSWORD; $msg = ""._YOURISADMIN." ".$conf['site_name']." !\n\n"; $msg .= ""._REMEMBERDATA."\n"; $msg .= ""._ADMLOGIN.": $row[login]\n"; $msg .= ""._ADMPASSWORD.": $password\n\n"; $msg .= ""._YOURFAINTH."\n"._ADMINSITE." ".$conf['site_name']."\n".$conf['site_url'].""; $to = $row['email']; $mailheaders = "Content-Type: text/plain; charset="._CHARSET."\n"; $mailheaders .= "From: ".$conf['site_name']." <".$conf['admin_mail'].">\n"; $send_mail = mail ($to, $subject, $msg, $mailheaders); header ('Location: admin.php?go=admins&in=good'); exit; } header ('Location: admin.php?go=admins'); exit; } function good () { include ('header.php'); echo 'ť '._ADMHOME.' '; echo "

\n"; echo ''; include ('footer.php'); } switch($in) { case "good": good (); break; case "send_passw": send_passw (); break; case "save_edit": save_edit (); break; case "edit": edit (); break; case "delit": delit (); break; case "add": add (); break; case "add_save": add_save (); break; default: main_admin (); break; } ?> = (isset ($_POST['admin_passwd1'])) ? strip_tags (stripslashes ($_POST['admin_passwd1'])) : '' ; $password2 = (isset ($_POST['admin_passwd2'])) ? strip_tags (stripslashes ($_POST['admin_passwd2'])) : '' ; $full_access = (isset ($_POST['full_access'])) ? intval ($_POST['full_access']) : '0' ; $access_mod = (isset ($_POST['access_mod'])) ? $_POST['access_mod'] : '' ; if (($login == '') || ($email == '') || ($password == '') || ($password != $password2) || (($full_access == '0') && ($access_mod == ''))) { header ('Location: admin.php?go=admins'); exit; } $sql = "SELECT * FROM ".SN_TABLE_ADMINS." WHERE login = '$login'"; $result = $db->sql_query ($sql); $row = $db->sql_fetchrow ($result); if ($row) { header ('Location: admin.php?go=admins'); exit; } $moddir = opendir ("modules"); while (false !== ($func = readdir ($moddir))) { if ((ereg (".php", $func)) AND ($func != 'admins.php') AND ($func != 'setting.php') AND ($func != "index.php")) { $func = explode(".", $func); $modlist[$func[0]] = 'yes'; } } closedir ($moddir); if ($full_access == '1') { $access = 'full'; } else { $access = ""; for($i=0; $i"; if (!isset ($modlist[$access_mod[$i]])) { header ('Location: admin.php?go=admins'); exit; } $access .= "".$access_mod[$i]."|"; } } $code_password = md5 ($password); $sql = "INSERT INTO ".SN_TABLE_ADMINS." (admin_id, login, password, email, access) VALUES (NULL, '$login', '$code_password', '$email', '$access')"; $result = $db->sql_query ($sql); if ($result) { $subject = _ACCESSDATA; $msg = ""._YOURADMIN." ".$conf['site_name']." !\n\n"; $msg .= ""._REMEMBERDATA."\n"; $msg .= ""._ADMLOGIN.": $login\n"; $msg .= ""._ADMPASSWORD.": $password\n\n"; $msg .= ""._YOURFAINTH."\n"._ADMINSITE." ".$conf['site_name']."\n".$conf['site_url'].""; $to = $email; $mailheaders = "Content-Type: text/plain; charset="._CHARSET."\n"; $mailheaders .= "From: ".$conf['site_name']." <".$conf['admin_mail'].">\n"; $send_mail = mail ($to, $subject, $msg, $mailheaders); header ('Location: admin.php?go=admins&in=good'); exit; } header ('Location: admin.php?go=admins'); exit; } function delit () { global $conf, $db; $id = (isset ($_GET['id'])) ? intval($_GET['id']) : '' ; if (($id == '') || ($id == 0)) { header ('Location: admin.php?go=admins'); exit; } $sql = "SELECT admin_id, login FROM ".SN_TABLE_ADMINS." WHERE admin_id = '$id'"; $result = $db->sql_query ($sql); $row = $db->sql_fetchrow ($result); if ($row['admin_id'] != $id) { header ('Location: admin.php?go=admins'); exit; } if (isset ($_POST['cancel'])) { Header ('Location: admin.php?go=admins'); exit; } if (isset ($_POST['enter'])) { $sql = "DELETE FROM ".SN_TABLE_ADMINS." WHERE admin_id ='$id'"; $result = $db->sql_query ($sql); Header ('Location: admin.php?go=admins'); exit; } include ('header.php'); echo 'ť '._ADMHOME.' '; echo "

\n"; echo '

'; echo = (isset ($_POST['admin_passwd1'])) ? strip_tags (stripslashes ($_POST['admin_passwd1'])) : '' ; $password2 = (isset ($_POST['admin_passwd2'])) ? strip_tags (stripslashes ($_POST['admin_passwd2'])) : '' ; $full_access = (isset ($_POST['full_access'])) ? intval ($_POST['full_access']) : '0' ; $access_mod = (isset ($_POST['access_mod'])) ? $_POST['access_mod'] : '' ; if (($login == '') || ($email == '') || ($password == '') || ($password != $password2) || (($full_access == '0') && ($access_mod == ''))) { header ('Location: admin.php?go=admins'); exit; } $sql = "SELECT * FROM ".SN_TABLE_ADMINS." WHERE login = '$login'"; $result = $db->sql_query ($sql); $row = $db->sql_fetchrow ($result); if ($row) { header ('Location: admin.php?go=admins'); exit; } $moddir = opendir ("modules"); while (false !== ($func = readdir ($moddir))) { if ((ereg (".php", $func)) AND ($func != 'admins.php') AND ($func != 'setting.php') AND ($func != "index.php")) { $func = explode(".", $func); $modlist[$func[0]] = 'yes'; } } closedir ($moddir); if ($full_access == '1') { $access = 'full'; } else { $access = ""; for($i=0; $i"; if (!isset ($modlist[$access_mod[$i]])) { header ('Location: admin.php?go=admins'); exit; } $access .= "".$access_mod[$i]."|"; } } $code_password = md5 ($password); $sql = "INSERT INTO ".SN_TABLE_ADMINS." (admin_id, login, password, email, access) VALUES (NULL, '$login', '$code_password', '$email', '$access')"; $result = $db->sql_query ($sql); if ($result) { $subject = _ACCESSDATA; $msg = ""._YOURADMIN." ".$conf['site_name']." !\n\n"; $msg .= ""._REMEMBERDATA."\n"; $msg .= ""._ADMLOGIN.": $login\n"; $msg .= ""._ADMPASSWORD.": $password\n\n"; $msg .= ""._YOURFAINTH."\n"._ADMINSITE." ".$conf['site_name']."\n".$conf['site_url'].""; $to = $email; $mailheaders = "Content-Type: text/plain; charset="._CHARSET."\n"; $mailheaders .= "From: ".$conf['site_name']." <".$conf['admin_mail'].">\n"; $send_mail = mail ($to, $subject, $msg, $mailheaders); header ('Location: admin.php?go=admins&in=good'); exit; } header ('Location: admin.php?go=admins'); exit; } function delit () { global $conf, $db; $id = (isset ($_GET['id'])) ? intval($_GET['id']) : '' ; if (($id == '') || ($id == 0)) { header ('Location: admin.php?go=admins'); exit; } $sql = "SELECT admin_id, login FROM ".SN_TABLE_ADMINS." WHERE admin_id = '$id'"; $result = $db->sql_query ($sql); $row = $db->sql_fetchrow ($result); if ($row['admin_id'] != $id) { header ('Location: admin.php?go=admins'); exit; } if (isset ($_POST['cancel'])) { Header ('Location: admin.php?go=admins'); exit; } if (isset ($_POST['enter'])) { $sql = "DELETE FROM ".SN_TABLE_ADMINS." WHERE admin_id ='$id'"; $result = $db->sql_query ($sql); Header ('Location: admin.php?go=admins'); exit; } include ('header.php'); echo 'ť '._ADMHOME.' '; echo "

\n"; echo '

'; echo ''; echo ''; echo '

'._ATTENTION.'
'.sprintf (_ATTDELIT,$row['login']).'
'; echo '

'; echo "

\n"; include ('footer.php'); } function edit () { global $conf, $db; $id = (isset ($_GET['id'])) ? intval ($_GET['id']) : '' ; if (($id == '') || ($id == 0)) { header ('Location: admin.php?go=admins'); exit; } $sql = "SELECT * FROM ".SN_TABLE_ADMINS." WHERE admin_id = '$id'"; $result = $db->sql_query ($sql); $row = $db->sql_fetchrow ($result); if ($row['admin_id'] != $id) { header ('Location: admin.php?go=admins'); exit; } include ('header.php'); echo "ť "._ADMHOME."
\n"; echo "