<?
session_start();
//--------------------------
// user definable variables:
//--------------------------
// maximum number of seconds user can remain idle without having to re-login:
// use a value of zero for no timeout
$max_session_time = 0;
// type of alert to give on incorrect password:
// eg:
// $alert = "joe@foo.com";- sends email to joe@foo.com
// $alert = "blah";- appends to file named 'blah'
// $alert = "";- no alerts
$alert = "./.ht_badlogins";
// acceptable passwords:
$cmp_pass = Array();
$cmp_pass[] = md5("admin");
$cmp_pass[] = md5("admin2");
// add as many as you like
// maximum number of bad logins before user locked out
// use a value of zero for no hammering protection
$max_attempts = 3;
//-----------------------------
// end user definable variables
//-----------------------------
// save session expiry time for later comparision
$session_expires = $_SESSION['mpass_session_expires'];
// have to do this otherwise max_attempts is actually one less than what you specify.
$max_attempts++;
if(!empty($_POST['mpass_pass']))
{
// store md5'ed password
$_SESSION['mpass_pass'] = md5($_POST['mpass_pass']);
}
if(empty($_SESSION['mpass_attempts']))
{
$_SESSION['mpass_attempts'] = 0;
}
// if the session has expired, or the password is incorrect, show login page:
if(($max_session_time>0 && !empty($session_expires) && mktime()>$session_expires) || empty($_SESSION['mpass_pass']) || !in_array($_SESSION['mpass_pass'],$cmp_pass))
{
if(!empty($alert) && !in_array($_SESSION['mpass_pass'],$cmp_pass))
{
// user has submitted incorrect password
// generate alert:
$_SESSION['mpass_attempts']++;
$alert_str = $_SERVER['REMOTE_ADDR']." entered ".htmlspecialchars($_POST['mpass_pass'])." on page ".$_SERVER['PHP_SELF']." on ".date("l dS of F Y h:i:s A")."\r\n";
if(stristr($alert,"@")!==false)
{
// email alert
@mail($alert,"Bad Login on ".$_SERVER['PHP_SELF'],$alert_str,"From: ".$alert);
} else {
// textfile alert
$handle = @fopen($alert,'a');
if($handle)
{
fwrite($handle,$alert_str);
fclose($handle);
}
}
}
// if hammering protection is enabled, lock user out if they've reached the maximum
if($max_attempts>1 && $_SESSION['mpass_attempts']>=$max_attempts)
{
exit("Too many login failures.");
}
// clear session expiry time
$_SESSION['mpass_session_expires'] = "";
?>
<html>
<head>
<title>Enter Password</title>
</head>
<body>
<form action="<?=$_SERVER['REQUEST_URI']?>" method="post">
<h4>Password Protected</h4>
<input type="password" name="mpass_pass"><br/>
<input type="submit" value="login">
</form>
</body>
</html>
<?
// and exit
exit();
}
// if they've got this far, they've entered the correct password:
// reset attempts
$_SESSION['mpass_attempts'] = 0;
// update session expiry time
$_SESSION['mpass_session_expires'] = mktime()+$max_session_time;
// end password protection code
?>
<?php
include("head.php");
$sta = getstatusname($uid);
if(!isstatus10(getuid_sid($sid)))
{
echo "<div><br/>Doh!<br/></div>";
echo "<p align=\"center\">";
echo "You are not an $status10<br/>";
echo "<br/>";
echo getfoot($sid,$folder);
exit();
}
addonline(getuid_sid($sid),"Main Page","");
if($action=="general")
{
echo "<div><br/>General Settings<br/></div>";
$xtm = $_POST["sesp"];
$fmsg = $_POST["fmsg"];
$areg = $_POST["areg"];
$pmaf = $_POST["pmaf"];
$fvw = $_POST["fvw"];
$val = $_POST["val"];
$att = $_POST["att"];
if($areg=="d")
{
$arv = 0;
}else{
$arv = 1;
}
echo "<p align=\"center\">";
$res = mysql_query("UPDATE ibwf_settings SET value='".$fmsg."' WHERE name='4ummsg'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Forum Message updated successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Updating Forum message<br/>";
}
$res = mysql_query("UPDATE ibwf_settings SET value='".$xtm."' WHERE name='sesexp'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Session Period updated successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Updating Session Period<br/>";
}
$res = mysql_query("UPDATE ibwf_settings SET value='".$pmaf."' WHERE name='pmaf'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>PM antiflood is $pmaf seconds<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Updating PM antiflood value<br/>";
}
$res = mysql_query("UPDATE ibwf_settings SET value='".$arv."' WHERE name='reg'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Registration updated successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Updating Registration<br/>";
}
$res = mysql_query("UPDATE ibwf_settings SET value='".$fvw."' WHERE name='fview'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Forums View updated successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Updating Forums View<br/>";
}
$res = mysql_query("UPDATE ibwf_settings SET value='".$val."' WHERE name='validation'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Validation Updated Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Updating Validation<br/>";
}
$atc = mysql_query("UPDATE ibwf_settings SET value='".$att."' WHERE name='attachment'");
if($atc)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Attachments Updated Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Updating Attachments<br/>";
}
echo "<br/>";
echo "<a href=\"admincp.php?action=general\">";
echo "Edit general settings</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////Add moderating
else if($action=="addfmod")
{
$mid = $_POST["mid"];
$fid = $_POST["fid"];
echo "<div><br/>Add Forum Moderator<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("INSERT INTO ibwf_modr SET name='".$mid."', forum='".$fid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Moderating Privileges Added<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=manmods\">";
echo "Manage Moderators</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////////////////
else if($action=="delclub")
{
$clid = $_GET["clid"];
echo "<div><br/>Delete Club<br/></div>";
echo "<p align=\"center\">";
$res = deleteClub($clid);
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Club Deleted<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////////////////////
else if($action=="gccp")
{
$clid = $_GET["clid"];
$plss = $_POST["plss"];
echo "<div><br/>Club Gold<br/></div>";
echo "<p align=\"center\">";
$nop = mysql_fetch_array(mysql_query("SELECT plusses FROM ibwf_clubs WHERE id='".$clid."'"));
$newpl = $nop[0] + $plss;
$res = mysql_query("UPDATE ibwf_clubs SET plusses='".$newpl."' WHERE id='".$clid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Club Gold Updated<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////////
else if($action=="delfmod")
{
echo "<div><br/>Delete Forum Mod<br/></div>";
$mid = $_POST["mid"];
$fid = $_POST["fid"];
echo "<p align=\"center\">";
$res = mysql_query("DELETE FROM ibwf_modr WHERE name='".$mid."' AND forum='".$fid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Moderating Privileges Deleted<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=manmods\">";
echo "Manage Moderators</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////////
else if($action=="addcat")
{
$fcname = $_POST["fcname"];
$fcpos = $_POST["fcpos"];
echo "<div><br/>Add Category<br/></div>";
echo "<p align=\"center\">";
echo $fcname;
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_fcats SET name='".$fcname."', position='".$fcpos."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Forum Category added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Forum Category";
}
echo "<br/><br/><a href=\"admincp.php?action=fcats\">";
echo "Forum Categories</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////
else if($action=="addfrm")
{
$frname = $_POST["frname"];
$frpos = $_POST["frpos"];
$fcid = $_POST["fcid"];
echo "<div><br/>Add Forum<br/></div>";
echo "<p align=\"center\">";
echo $frname;
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_forums SET name='".$frname."', position='".$frpos."', cid='".$fcid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Forum added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Forum ";
}
echo "<br/><br/><a href=\"admincp.php?action=forums\">";
echo "Forums</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////
else if($action=="addsml")
{
$smlcde = $_POST["smlcde"];
$smlsrc = $_POST["smlsrc"];
$hide = $_POST["hide"];
echo "<div><br/>Add Smiley<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_smilies SET scode='".$smlcde."', imgsrc='/smilies/".$smlsrc.".gif', hidden='".$hide."'");
if($res)
{
echo "<img src=\"/smilies$folder/$smlsrc.gif\" alt=\"$smlcde\"/><br/><br/>";
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Smilie added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Smilie ";
}
echo "<br/><br/><a href=\"admincp.php?action=addsml\">";
echo "Add Another Smilie</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////
else if($action=="addavt")
{
$avtsrc = $_POST["avtsrc"];
echo "<div><br/>Add Avatar<br/></div>";
echo "<p align=\"center\">";
echo "Source: ".$avtsrc;
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_avatars SET avlink='".$avtsrc."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Avatar added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Avatar ";
}
echo "<br/><br/><a href=\"admincp.php?action=addavt\">";
echo "Add Another Avatar</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////
else if($action=="addjdg")
{
$who = $_GET["who"];
$whonick = getnick_uid($who);
echo "<div><br/>Give $whonick's Judge Status<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_judges SET uid='".$who."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Judge added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Judge ";
}
echo "<br/><br/><a href=\"admincp.php?action=chuinfo\">";
echo "Users Info</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////////
else if($action=="deljdg")
{
$who = $_GET["who"];
$whonick = getnick_uid($who);
echo "<div><br/>Remove $whonick's Judge Status<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_judges WHERE uid='".$who."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Judge deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error deleting Judge ";
}
echo "<br/><br/><a href=\"admincp.php?action=chuinfo\">";
echo "Users Info</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////
else if($action=="delsm")
{
$smid = $_GET["smid"];
echo "<div><br/>Delete Smiley<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_smilies WHERE id='".$smid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Smilie deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error deleting smilie ";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////////////////
else if($action=="addrss")
{
$rssnm = $_POST["rssnm"];
$rsslnk = $_POST["rsslnk"];
$rssimg = $_POST["rssimg"];
$rssdsc = $_POST["rssdsc"];
$fid = $_POST["fid"];
echo "<div><br/>Add RSS<br/></div>";
echo "<p align=\"center\">";
echo $rssnm;
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_rss SET title='".$rssnm."', link='".$rsslnk."', imgsrc='".$rssimg."', dscr='".$rssdsc."', fid='".$fid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Source added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding RSS Source";
}
echo "<br/><br/><a href=\"admincp.php?action=manrss\">";
echo "Manage RSS</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////////////////////////
else if($action=="addchr")
{
$chrnm = $_POST["chrnm"];
$chrage = $_POST["chrage"];
$chrpst = $_POST["chrpst"];
$chrprm = $_POST["chrprm"];
$chrcns = $_POST["chrcns"];
$chrfun = $_POST["chrfun"];
echo "<div><br/>Add Chat Room<br/></div>";
echo "<p align=\"center\">";
echo $chrnm;
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_rooms SET name='".$chrnm."', static='1', pass='', mage='".$chrage."', chposts='".$chrpst."', perms='".$chrprm."', censord='".$chrcns."' , freaky='".$chrfun."'");
echo mysql_error();
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Chatroom added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Chat room";
}
echo "<br/><br/><a href=\"admincp.php?action=chrooms\">";
echo "Chatrooms</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////
else if($action=="edtrss")
{
$rssnm = $_POST["rssnm"];
$rsslnk = $_POST["rsslnk"];
$rssimg = $_POST["rssimg"];
$rssdsc = $_POST["rssdsc"];
$fid = $_POST["fid"];
$rssid = $_POST["rssid"];
echo "<div><br/>Edit RSS<br/></div>";
echo "<p align=\"center\">";
echo $rssnm;
echo "<br/>";
$res = mysql_query("UPDATE ibwf_rss SET title='".$rssnm."', link='".$rsslnk."', imgsrc='".$rssimg."', dscr='".$rssdsc."', fid='".$fid."' WHERE id='".$rssid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Source updated successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error updating RSS Source";
}
echo "<br/><br/><a href=\"admincp.php?action=manrss\">";
echo "Manage RSS</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////
else if($action=="addperm")
{
$fid = $_POST["fid"];
$gid = $_POST["gid"];
echo "<div><br/>Add Permition<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_acc SET fid='".$fid."', gid='".$gid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Permission added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding permission ";
}
echo "<br/><br/><a href=\"admincp.php?action=addperm\">";
echo "Add Permission</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////////Update profile
else if($action=="uprof")
{
$who = $_GET["who"];
$unick = $_POST["unick"];
$perm = $_POST["perm"];
$modx = $_POST["modx"];
$vip = $_POST["vip"];
$noob = $_POST["noob"];
$savat = $_POST["savat"];
$semail = $_POST["semail"];
$status = $_POST["status"];
$usite = $_POST["usite"];
$ubday = $_POST["ubday"];
$uloc = $_POST["uloc"];
$usig = $_POST["usig"];
$usex = $_POST["usex"];
$flag = $_POST["flag"];
$hide = $_POST["hide"];
echo "<div><br/>$unick's Profile<br/></div>";
echo "<p align=\"center\">";
$onk = mysql_fetch_array(mysql_query("SELECT name FROM ibwf_users WHERE id='".$who."'"));
$exs = mysql_fetch_array(mysql_query("SELECT COUNT(*) FROM ibwf_users WHERE name='".$unick."'"));
if($onk[0]!=$unick)
{
if($exs[0]>0)
{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>New nickname already exist, choose another one<br/>";
}else
{
$res = mysql_query("UPDATE ibwf_users SET avatar='".$savat."', email='".$semail."', status='".$status."', site='".$usite."', birthday='".$ubday."', location='".$uloc."', signature='".$usig."', sex='".$usex."', name='".$unick."', flag='".$flag."', hidemyperm='".$perm."', modx='".$modx."', vip='".$vip."', noob='".$noob."', hide='".$hide."' WHERE id='".$who."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>$unick's profile was updated successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error updating $unick's profile<br/>";
}
}
}else
{
$res = mysql_query("UPDATE ibwf_users SET avatar='".$savat."', email='".$semail."', status='".$status."', site='".$usite."', birthday='".$ubday."', location='".$uloc."', signature='".$usig."', sex='".$usex."', name='".$unick."', flag='".$flag."', hidemyperm='".$perm."', modx='".$modx."', vip='".$vip."', noob='".$noob."', hide='".$hide."' WHERE id='".$who."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>$unick's profile was updated successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error updating $unick's profile<br/>";
}
}
echo "<br/><a href=\"admincp.php?action=chuinfo\">";
echo "Users Info</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////user password
else if($action=="upwd")
{
$npwd = $_POST["npwd"];
$who = $_GET["who"];
$whonick = getnick_uid($who);
echo "<div><br/>$whonick's Password<br/></div>";
echo "<p align=\"center\">";
if((strlen($npwd)<4) || (strlen($npwd)>15)){
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Password should be between 4 and 15 letters only<br/>";
}else{
$pwd = md5($npwd);
$res = mysql_query("UPDATE ibwf_users SET pass='".$pwd."' WHERE id='".$who."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>Password was updated successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error updating password<br/>";
}
}
echo "<br/><a href=\"admincp.php?action=chuinfo\">";
echo "Users Info</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////add group
else if($action=="addgrp")
{
$ugname = $_POST["ugname"];
$ugaa = $_POST["ugaa"];
$allus = $_POST["allus"];
$mage = $_POST["mage"];
$mpst = $_POST["mpst"];
$mpls = $_POST["mpls"];
echo "<div><br/>Add User Group<br/></div>";
echo "<p align=\"center\">";
echo $ugname;
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_groups SET name='".$ugname."', autoass='".$ugaa."', userst='".$allus."', mage='".$mage."', posts='".$mpst."', plusses='".$mpls."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>User group added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding User group";
}
echo "<br/><br/><a href=\"admincp.php?action=ugroups\">";
echo "UGroups</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////////
else if($action=="edtfrm")
{
$fid = $_POST["fid"];
$frname = $_POST["frname"];
$frpos = $_POST["frpos"];
$fcid = $_POST["fcid"];
echo "<div><br/>Edit Forum<br/></div>";
echo "<p align=\"center\">";
echo $frname;
echo "<br/>";
$res = mysql_query("UPDATE ibwf_forums SET name='".$frname."', position='".$frpos."', cid='".$fcid."' WHERE id='".$fid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Forum updated successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error updating Forum ";
}
echo "<br/><br/><a href=\"admincp.php?action=forums\">";
echo "Forums</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////////////
else if($action=="edtcat")
{
$fcid = $_POST["fcid"];
$fcname = $_POST["fcname"];
$fcpos = $_POST["fcpos"];
echo "<div><br/>Edit Category<br/></div>";
echo "<p align=\"center\">";
echo $fcname;
echo "<br/>";
$res = mysql_query("UPDATE ibwf_fcats SET name='".$fcname."', position='".$fcpos."' WHERE id='".$fcid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Forum Category updated successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error updating Forum Category";
}
echo "<br/><br/><a href=\"admincp.php?action=fcats\">";
echo "Forum Categories</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////////////
else if($action=="delfrm")
{
$fid = $_POST["fid"];
echo "<div><br/>Delete Forum<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_forums WHERE id='".$fid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Forum deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error deleting Forum ";
}
echo "<br/><br/><a href=\"admincp.php?action=forums\">";
echo "Forums</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////
else if($action=="delpms")
{
echo "<div><br/>Delete Old PM's<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_private WHERE reported!='1' AND starred='0' AND unread='0' AND fid='0'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>All PMS except starred, reported, and unread were deleted";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error!";
}
echo "<br/><br/><a href=\"admincp.php?action=clrdta\">";
echo "Clear Data</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////
else if($action=="clrmlog")
{
echo "<div><br/>Clear Mod Log<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_mlog");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>ModLog Cleared Successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error!";
}
echo "<br/><br/><a href=\"admincp.php?action=clrdta\">";
echo "Clear Data</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////
else if($action=="delsht")
{
echo "<div><br/>Delete Old Shouts<br/></div>";
echo "<p align=\"center\">";
$altm = time()-(5*24*60*60);
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_shouts WHERE shtime<'".$altm."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Shouts Older Than 5 days were deleted";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error!";
}
echo "<br/><br/><a href=\"admincp.php?action=clrdta\">";
echo "Clear Data</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////delete attachments
else if($action=="delatt")
{
echo "<div><br/>Delete Old Attachments<br/></div>";
echo "<p align=\"center\">";
$altm = time()-(5*24*60*60);
echo "<br/>";
$dir = "inbox/hidemyass/";
$mydir = opendir($dir);
while(false !== ($file = readdir($mydir))) {
if($file != "." && $file != "..") {
chmod($dir.$file, 0777);
if(is_dir($dir.$file)) {
chdir('.');
destroy($dir.$file.'/');
rmdir($dir.$file) or DIE("couldn't delete $dir$file<br/>");
}
else
unlink($dir.$file) or DIE("couldn't delete $dir$file<br/>");
}
}
closedir($mydir);
$res = mysql_query("DELETE FROM download_inbox");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Attachments Deleted!";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error!";
}
echo "<br/><br/><a href=\"admincp.php?action=clrdta\">";
echo "Clear Data</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////
else if($action=="delcookies")
{
echo "<div><br/>Delete Old Cookies<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$old = getcwd();
chdir(proxy);
$res = rmdir('cookies');
$res .= mkdir('cookies');
chdir($old);
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>All Cookies Are Deleted";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Check Cookie Folder!";
}
echo "<br/><br/><a href=\"admincp.php?action=clrdta\">";
echo "Clear Data</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////clear ALl
else if($action=="clearall")
{
echo "<div><br/>Clear All<br/></div>";
echo "<p align=\"center\">";
$altm = time()-(5*24*60*60);
echo "<br/>";
$dir = "inbox/hidemyass/";
$mydir = opendir($dir);
while(false !== ($file = readdir($mydir))) {
if($file != "." && $file != "..") {
chmod($dir.$file, 0777);
if(is_dir($dir.$file)) {
chdir('.');
destroy($dir.$file.'/');
rmdir($dir.$file) or DIE("couldn't delete $dir$file<br/>");
}
else
unlink($dir.$file) or DIE("couldn't delete $dir$file<br/>");
}
}
closedir($mydir);
$res = mysql_query("DELETE FROM download_inbox");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Attachments Deleted!";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error!";
}
$old = getcwd();
chdir(proxy);
$res = rmdir('cookies');
$res .= mkdir('cookies');
chdir($old);
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>All Cookies Are Deleted";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Check Cookie Folder!";
}
$res = mysql_query("DELETE FROM ibwf_shouts WHERE shtime<'".$altm."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Shouts Older Than 5 days were deleted";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error!";
}
$res = mysql_query("DELETE FROM ibwf_mlog");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>ModLog Cleared Successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error!";
}
$res = mysql_query("DELETE FROM ibwf_private WHERE reported!='1' AND starred='0' AND unread='0' AND fid='0'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>All PMS except starred, reported, and unread were deleted";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error!";
}
echo "<br/><br/><a href=\"admincp.php?action=clrdta\">";
echo "Clear Data</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////
else if($action=="delgrp")
{
$ugid = $_POST["ugid"];
echo "<div><br/>Delete UGroup<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_groups WHERE id='".$ugid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>UGroup deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error deleting UGroup";
}
echo "<br/><br/><a href=\"admincp.php?action=ugroups\">";
echo "UGroups</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////
else if($action=="delrss")
{
$rssid = $_POST["rssid"];
echo "<div><br/>Delete RSS<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_rss WHERE id='".$rssid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Source deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error";
}
echo "<br/><br/><a href=\"admincp.php?action=manrss\">";
echo "Manage RSS</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////////////////
else if($action=="delchr")
{
$chrid = $_POST["chrid"];
echo "<div><br/>Delete Chat Room<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_rooms WHERE id='".$chrid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Room deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error";
}
echo "<br/><br/><a href=\"admincp.php?action=chrooms\">";
echo "Chatrooms</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////
else if($action=="delu")
{
$who = $_GET["who"];
$unick = getnick_uid($who);
echo "<div><br/>Delete $unick<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_buddies WHERE tid='".$who."' OR uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_gbook WHERE gbowner='".$who."' OR gbsigner='".$who."'");
$res = mysql_query("DELETE FROM ibwf_ignore WHERE name='".$who."' OR target='".$who."'");
$res = mysql_query("DELETE FROM ibwf_mangr WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_modr WHERE name='".$who."'");
$res = mysql_query("DELETE FROM ibwf_penalties WHERE uid='".$who."' OR exid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_posts WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_private WHERE byuid='".$who."' OR touid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_shouts WHERE shouter='".$who."'");
$res = mysql_query("DELETE FROM ibwf_topics WHERE authorid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_brate WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_games WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_presults WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_vault WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_blogs WHERE bowner='".$who."'");
$res = mysql_query("DELETE FROM ibwf_chat WHERE chatter='".$who."'");
$res = mysql_query("DELETE FROM ibwf_chat WHERE who='".$who."'");
$res = mysql_query("DELETE FROM ibwf_chonline WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_online WHERE userid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_ses WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_xinfo WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM inbox_folders WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_bookmarks WHERE uid='".$who."'");
deleteMClubs($who);
$res = mysql_query("DELETE FROM ibwf_users WHERE id='".$who."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>User deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error deleting UGroup";
}
echo "<br/><br/><a href=\"admincp.php?action=chuinfo\">";
echo "User info</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////Delete users posts
else if($action=="delxp")
{
$who = $_GET["who"];
$unick = getnick_uid($who);
echo "<div><br/>Delete $unick's Posts<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_posts WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_topics WHERE authorid='".$who."'");
if($res)
{
mysql_query("UPDATE _users SET plusses='0' where id='".$who."'");
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>User Posts deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error deleting UPosts";
}
echo "<br/><br/><a href=\"admincp.php?action=chuinfo\">";
echo "User info</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////
else if($action=="delcat")
{
echo "<div><br/>Delete Category<br/></div>";
$fcid = $_POST["fcid"];
echo "<p align=\"center\">";
echo $fcname;
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_fcats WHERE id='".$fcid."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Forum Category deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error deleting Forum Category";
}
echo "<br/><br/><a href=\"admincp.php?action=fcats\">";
echo "Forum Categories</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////
else if($action=="addphoto")
{
$user = $_POST["user"];
echo "<div><br/>$user's Photo<br/></div>";
$imglink = $_POST["imglink"];
$sex = $_POST["sex"];
$uid = getuid_nick($user);
echo "<p align=\"center\">";
$res = mysql_query("INSERT INTO ibwf_gallery SET uid='".$uid."', imglink='".$imglink."', sex='".$sex."'");
if($res)
{
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>User Photo Added<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error<br/>";
}
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////here//////////////////////////
////////////////////////////////add scramble
else if($action=="addscramble"){
$word = $_POST["word"];
echo "<div><br/>Add Scramble Word<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO scramble SET word='".$word."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Scramble Word added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Scramble Word ";
}
echo "<br/><br/><a href=\"admincp.php?action=addscramble\">";
echo "Add Another Scramble Word?</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////////
else if($action=="addani"){
$smlcde = $_POST["smlcde"];
$smlsrc = $_POST["smlsrc"];
echo "<div><br/>Add Animation<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_animations SET scode='".$smlcde."', imgsrc='".$smlsrc."', hidden='0'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Animation added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Animation ";
}
echo "<br/><br/><a href=\"admincp.php?action=addani\">";
echo "Add Another Animation</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////spam block
else if($action=="addspam"){
$smlcde = $_POST["smlcde"];
$smlsrc = $_POST["smlsrc"];
echo "<div><br/>Add Spam Block<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_spam SET scode='".$smlcde."', imgsrc='".$smlsrc."', hidden='0'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Spam Block added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Spam Block ";
}
echo "<br/><br/><a href=\"admincp.php?action=addspam\">";
echo "Add Another Spam Block</a><br/>";
echo "<a href=\"lists.php?action=spam\">Spam Block List</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////
else if($action=="delani"){
$smid = $_GET["smid"];
echo "<div><br/>Delete Animation<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_animations WHERE id='".$smid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Animation deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error deleting Animation ";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////delete spam block
else if($action=="delspam"){
$smid = $_GET["smid"];
echo "<div><br/>Delete Spam Block<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_spam WHERE id='".$smid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Spam Block deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error deleting Spam Block ";
}
echo "<br/><a href=\"lists.php?action=spam\">Spam Block List</a><br/>";
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////////Update points
else if($action=="upoints"){
$who = $_GET["who"];
$lpr = $_POST["lpr"];
$gold = $_POST["gold"];
$plusses = $_POST["plusses"];
$gplus = $_POST["gplus"];
$battlep = $_POST["battlep"];
$unick = getnick_uid($who);
echo "<div><br/>$unick's Points<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("UPDATE ibwf_users SET lastpnreas='".$lpr."', gold='".$gold."', plusses='".$plusses."', gplus='".$gplus."', battlep='".$battlep."' WHERE id='".$who."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>$unick's points was updated successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error updating $unick's points<br/>";
}
echo "<br/><a href=\"admincp.php?action=chuinfo\">";
echo "Users Info</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////
else if($action=="boot")
{
$who = $_GET["who"];
$user = getnick_uid($who);
echo "<div><br/>Boot $user<br/></div>";
echo "<p align=\"center\">";
$uid = getuid_sid($sid);
$perm = mysql_fetch_array(mysql_query("SELECT hidemyperm FROM ibwf_users WHERE id='".$uid."'"));
$trgtperm = mysql_fetch_array(mysql_query("SELECT hidemyperm FROM ibwf_users WHERE name='".$user."'"));
if($trgtperm>$perm){
echo "<b><img src=\"../images$folder/notok.gif\" alt=\"x\"/><br/>Error!!!<br/>Permission Denied...</b><br/>";
echo "<br/>U Cannot Boot $user<br/>";
}else{
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_ses WHERE uid='".$who."'");
$res = mysql_query("DELETE FROM ibwf_online WHERE userid='".$who."'");
if($res)
{
mysql_query("INSERT INTO ibwf_mlog SET action='boot', details='<b>".getnick_uid(getuid_sid($sid))."</b> booted $user', actdt='".time()."'");
echo "<img src=\"../images$folder/ok.gif\" alt=\"O\"/>$user Booted successfully";
}else{
echo "<img src=\"../images$folder/notok.gif\" alt=\"X\"/>Error booting $user";
}
echo "<br/><br/><a href=\"index.php?action=viewuser&who=$who\">$user's Profile</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta Tools</a><br/>";
}
echo getfoot($sid,$folder);
exit();
}
////////////////////////add Quiz room
else if($action=="addquizroom"){
$chrnm = $_POST["chrnm"];
$chrage = $_POST["chrage"];
$chrpst = $_POST["chrpst"];
$chrprm = $_POST["chrprm"];
$chrcns = $_POST["chrcns"];
$chrfun = $_POST["chrfun"];
echo "<div><br/>Add Games Room<br/></div>";
echo "<p align=\"center\">";
echo $chrnm;
echo "<br/>";
$res = mysql_query("INSERT INTO quiz_rooms SET name='".$chrnm."', static='1', pass='', mage='".$chrage."', chposts='".$chrpst."', perms='".$chrprm."', censord='".$chrcns."' , freaky='".$chrfun."'");
echo mysql_error();
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Chatroom added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Chatroom";
}
echo "<br/><br/><a href=\"admincp.php?action=quizrooms\">";
echo "Quizrooms</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////delete quiz room
else if($action=="delquizroom"){
$chrid = $_POST["chrid"];
echo "<div><br/>Delete Games Rooms<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM quiz_rooms WHERE id='".$chrid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Quiz Room deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Database Error";
}
echo "<br/><br/><a href=\"admincp.php?action=quizrooms\">";
echo "Quizrooms</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////quiz words
else if($action=="addquiz"){
$question = $_POST["question"];
$answer = $_POST["answer"];
$points = $_POST["points"];
$qnick = getnick_sid($sid);
echo "<div><br/>Add Quiz Question<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO quiz SET question='".$question."', answer='".$answer."', points='".$points."', who='".$qnick."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Quiz Question added successfully";
$quid = mysql_fetch_array(mysql_query("SELECT id FROM ibwf_users WHERE name='".$qnick."'"));
$ugpl = mysql_fetch_array(mysql_query("SELECT gplus FROM ibwf_users WHERE id='".$quid[0]."'"));
$ugpl = $ugpl[0] + 2;
mysql_query("UPDATE ibwf_users SET gplus='".$ugpl."' WHERE id='".$quid[0]."'");
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Quiz Question ";
}
echo "<br/><br/><a href=\"admincp.php?action=addquiz\">";
echo "Add Another Quiz Question?</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////////Edit Quiz
else if($action=="editquiz"){
$smid = $_GET["smid"];
$question = $_POST["question"];
$answer = $_POST["answer"];
$points = $_POST["points"];
echo "<div><br/>Edit Quiz<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("UPDATE quiz SET question='".$question."', answer='".$answer."', points='".$points."' WHERE id='".$smid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>Question Edited successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error Editing Question<br/>";
}
echo "<br/><a href=\"lists.php?action=quiz\">";
echo "Quiz Questions</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////////Edit Scramble
else if($action=="editscramble"){
$smid = $_GET["smid"];
$word = $_POST["word"];
echo "<div><br/>Edit Scramble<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("UPDATE scramble SET word='".$word."' WHERE id='".$smid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>Scramble Word Edited successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error Editing Scramble Word<br/>";
}
echo "<br/><a href=\"lists.php?action=scramble\">";
echo "Scramble words</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////////
else if($action=="addnews"){
$news = $_POST["news"];
$title = $_POST["title"];
$date = "".date("D d M y ")."";
echo "<div><br/>Add News<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_news SET news='".$news."', date='".$date."', scode='".$title."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>News added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding News ";
}
echo "<br/><br/><a href=\"admincp.php?action=addnews\">";
echo "Add More News</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////
else if($action=="delnews"){
$newsid = $_GET["newsid"];
echo "<div><br/>Delete News<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_news WHERE id='".$newsid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>News deleted successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error deleting News ";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////////Edit News
else if($action=="editnews"){
$newsid = $_GET["newsid"];
$title = $_POST["title"];
$news = $_POST["news"];
$date = $_POST["date"];
echo "<div><br/>Edit News<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("UPDATE ibwf_news SET scode='".$title."', news='".$news."', date='".$date."' WHERE id='".$newsid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>News Edited successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error Editing News<br/>";
}
echo "<br/><a href=\"lists2.php?action=news\">";
echo "News</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////front page link
else if($action=="front"){
$title = $_POST["title"];
$link = $_POST["link"];
echo "<div><br/>Front Page Link<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO front SET title='".$title."', link='".$link."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Link added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Link";
}
echo "<br/><br/><a href=\"admincp.php?action=front\">";
echo "Add Another Link?</a><br/>";
echo "<a href=\"lists2.php?action=front\">";
echo "Front Page Links</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////////Edit Front Page Link
else if($action=="editfront"){
$lid = $_GET["lid"];
$title = $_POST["title"];
$link = $_POST["link"];
echo "<div><br/>Edit Front Page Link<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("UPDATE front SET title='".$title."', link='".$link."' WHERE id='".$lid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>Link Edited successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error Editing Link<br/>";
}
echo "<br/><a href=\"lists2.php?action=front\">";
echo "front page links</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////ban browser
else if($action=="idiots"){
$browser = $_POST["browser"];
echo "<div><br/>Ban Browser<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_idiots SET browser='".$browser."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>$browser Banned Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Banning Browser<br/>";
}
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////ban browser 2
else if($action=="idiots2"){
$who = $_GET["who"];
$browser = mysql_fetch_array(mysql_query("SELECT browserm FROM ibwf_users WHERE id='".$who."'"));
echo "<div><br/>Ban Browser<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_idiots SET browser='".$browser[0]."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>$browser[0] Banned Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Banning Browser<br/>";
}
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////
else if($action=="delbrowser"){
$bid = $_GET["bid"];
echo "<div><br/>Un-Ban Browser<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_idiots WHERE id='".$bid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Browser Unbanned Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Unbanning Browser<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////Add Flag
else if($action=="addflag"){
$ip1 = $_POST["ip1"];
$ip2 = $_POST["ip2"];
$country = $_POST["country"];
$isp = $_POST["isp"];
echo "<div><br/>Add Flag<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO netwrk SET subone='".$ip1."', subtwo='".$ip2."', country='".$country."', isp='".$isp."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Flag added successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error adding Flag";
}
echo "<br/><br/><a href=\"admincp.php?action=front\">";
echo "Add Another Link?</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////
else if($action=="deloldpm"){
$who = $_GET["who"];
$pmid = $_GET["pmid"];
echo "<div><br/>Delete PM<br/></div>";
echo "<p align=\"center\">";
echo $fcname;
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_private WHERE id='".$pmid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>PM Deleted Successfully";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Deleting Pm";
}
echo "<br/><br/><a href=\"lists2.php?action=inb&who=$who\">";
echo "Back to PMs</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////add blocked site//////////////////////////
else if($action=="addsite")
{
echo "<div><br/>That Will Stop The Idiots! lol<br/></div>";
echo "<p align=\"center\">";
$site = $_POST["site"];
$res = mysql_query("INSERT INTO ibwf_blockedsite SET site='".$site."'");
if($res)
{
echo mysql_error();
echo "<img src=\"../images$folder/ok.gif\" alt=\"O\"/>Site $site Added Successfully to Blocked List<br/>";
}else{
echo "<img src=\"../images$folder/notok.gif\" alt=\"X\"/>Error Adding Site<br/>";
}
echo "<br/>";
echo "<a href=\"admincp.php?action=blocksites\">Blocked Sites List</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////delete blocked site//////////////////////////
else if($action=="delsite")
{
echo "<div><br/>Delete Blocked Site<br/></div>";
echo "<p align=\"center\">";
$id=$_GET["id"];
$sitena = mysql_query("SELECT site FROM ibwf_blockedsite WHERE id='".$id."'");
$site = mysql_fetch_array($sitena);
$site=$site[0];
$res = mysql_query("DELETE FROM ibwf_blockedsite WHERE id='".$id."'");
if($res)
{
echo "<img src=\"../images$folder/ok.gif\" alt=\"O\"/>Site $site Removed Successfully from Blocked List<br/>";
}else{
echo "<img src=\"../images$folder/notok.gif\" alt=\"X\"/>Error Removing $site <br/>";
}
echo "<br/>";
echo "<a href=\"admincp.php?action=blocksites\">Blocked Sites List</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////ban ip
else if($action=="idiotsip"){
$ipadd = $_POST["ipadd"];
echo "<div><br/>Ban IP<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_idiotsip SET ipadd='".$ipadd."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>$ipadd Banned Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Banning $ipadd<br/>";
}
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////ban browser 2
else if($action=="idiotsip2"){
$who = $_GET["who"];
$ipadd = mysql_fetch_array(mysql_query("SELECT ipadd FROM ibwf_users WHERE id='".$who."'"));
echo "<div><br/>Ban IP<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_idiotsip SET ipadd='".$ipadd[0]."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>$ipadd[0] Banned Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Banning $ipadd[0]<br/>";
}
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////
else if($action=="delip"){
$ipid = $_GET["ipid"];
echo "<div><br/>Un-Ban IP<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_idiotsip WHERE id='".$ipid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>IP Unbanned Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Unbanning IPr<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////ban network info
else if($action=="idiotsinfo"){
$who = $_GET["who"];
$info = mysql_fetch_array(mysql_query("SELECT tel FROM ibwf_users WHERE id='".$who."'"));
echo "<div><br/>Ban Network Info<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_idiotsinfo SET info='".$info[0]."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>$ipadd[0] Banned Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Banning $info[0]<br/>";
}
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////
else if($action=="delinfo"){
$ipid = $_GET["ipid"];
echo "<div><br/>Un-Ban Network Info<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_idiotsinfo WHERE id='".$ipid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Network Info Unbanned Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Unbanning Network Info<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////Add theme
else if($action=="addpict"){
$name = $_POST["name"];
$folder = $_POST["folder"];
$hide = $_POST["hide"];
echo "<div><br/>Add Theme<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_folders SET name='".$name."', folder='".$folder."', hide='".$hide."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Theme Added Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Adding Thmee<br/>";
}
echo "<a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////
else if($action=="editpict"){
$name = $_POST["name"];
$folder = $_POST["folder"];
$hide = $_POST["hide"];
$fid = $_POST["fid"];
echo "<div><br/>Edit Theme<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("UPDATE ibwf_folders SET name='".$name."', folder='".$folder."', hide='".$hide."' WHERE id='".$fid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>Theme Edited successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error Editing Theme<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////
else if($action=="addfaqs"){
$question = $_POST["question"];
$answer = $_POST["answer"];
echo "<div><br/>Add Faqs<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO ibwf_faqs SET question='".$question."', answer='".$answer."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>Faq Added Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error Adding Faq<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////Delete Faq
else if($action=="delfaqs"){
$faqid = $_GET["faqid"];
echo "<div><br/>Delete Faq<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("DELETE FROM ibwf_faqs WHERE id='".$faqid."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"O\"/>Faq Deleted Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"X\"/>Error Deleting Faq<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////delete external link
else if($action=="delexlink")
{
echo "<div><br/>Delete External Link<br/></div>";
echo "<p align=\"center\">";
$lid=$_GET["lid"];
$res = mysql_query("DELETE FROM external_links WHERE id='".$lid."'");
if($res)
{
echo "<img src=\"../images$folder/ok.gif\" alt=\"O\"/>Link Deleted Successfully<br/>";
}else{
echo "<img src=\"../images$folder/notok.gif\" alt=\"X\"/>Error Deleting Link<br/>";
}
echo "<br/>";
echo "<a href=\"lists2.php?action=exlinks\">External Links List</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////fonts
else if($action=="fonts"){
$name = $_POST["name"];
$extra = $_POST["extra"];
echo "<head>";
echo "<title>wapirate</title>";
echo "<link rel=\"stylesheet\" type=\"text/css\" href=\"themes$bgi.php?sid=$sid\">";
echo "</head>";
echo "<body>";
echo "<div><br/>Theme Fonts<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO theme_fonts SET font='".$name."', extra='".$extra."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>Font Added Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error Adding Font<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////delete font
else if($action=="delfont")
{
echo "<div><br/>Delete Font<br/></div>";
echo "<p align=\"center\">";
$fid=$_POST["fid"];
$res = mysql_query("DELETE FROM theme_fonts WHERE id='".$fid."'");
if($res)
{
echo "<img src=\"../images$folder/ok.gif\" alt=\"O\"/>Font Deleted Successfully<br/>";
}else{
echo "<img src=\"../images$folder/notok.gif\" alt=\"X\"/>Error Deleting Font<br/>";
}
echo "<br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////background image
else if($action=="bgi"){
$name = $_POST["name"];
$url = $_POST["url"];
echo "<div><br/>Theme Background Images<br/></div>";
echo "<p align=\"center\">";
echo "<br/>";
$res = mysql_query("INSERT INTO background_images SET name='".$name."', url='".$url."'");
if($res){
echo "<img src=\"images$folder/ok.gif\" alt=\"o\"/>Image Added Successfully<br/>";
}else{
echo "<img src=\"images$folder/notok.gif\" alt=\"x\"/>Error Adding Image<br/>";
}
echo "<br/><br/><a href=\"admincp.php?action=admincp\"><img src=\"images$folder/admn.gif\" alt=\"*\"/>";
echo "$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////delete backgrund image
else if($action=="delbgi")
{
echo "<div><br/>Delete Font<br/></div>";
echo "<p align=\"center\">";
$bgid=$_POST["bgid"];
$res = mysql_query("DELETE FROM background_images WHERE id='".$bgid."'");
if($res)
{
echo "<img src=\"../images$folder/ok.gif\" alt=\"O\"/>Image Deleted Successfully<br/>";
}else{
echo "<img src=\"../images$folder/notok.gif\" alt=\"X\"/>Error Deleting Image<br/>";
}
echo "<br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////////bump
else if($action=="bump")
{
$tid = $_GET["tid"];
$fid = getfid($tid);
$fname = getfname($fid);
$crdate = time();
echo "<div><br/>Bump Topic<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("UPDATE ibwf_topics SET lastpost='".$crdate."' WHERE id='".$tid."'");
if($res)
{
echo "<img src=\"../images/ok.gif\" alt=\"o\"/>Topic Bumped Successfully<br/>";
}else{
echo "<img src=\"../images/notok.gif\" alt=\"x\"/>Database Error!<br/>";
}
echo "<br/><br/><a href=\"index.php?action=viewtpc&tid=$tid&go=last\">View Topic</a>";
echo "<br/><br/><a href=\"index.php?action=viewfrm&fid=$fid\">$fname</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////topic background
else if($action=="topicbg")
{
$tid = $_GET["tid"];
$tbg = $_POST["tbg"];
echo "<div><br/>Topic Background<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("UPDATE ibwf_topics SET background='".$tbg."' WHERE id='".$tid."'");
if($res)
{
echo "<img src=\"../images/ok.gif\" alt=\"o\"/>Background Updated Successfully<br/>";
}else{
echo "<img src=\"../images/notok.gif\" alt=\"x\"/>Database Error!<br/>";
}
echo "<br/><br/><a href=\"index.php?action=viewtpc&tid=$tid&page=1\">Back to Topic</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta Tools</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////topic pic
else if($action=="topicpic")
{
$tid = $_GET["tid"];
$tpic = $_POST["tpic"];
echo "<div><br/>Topic Pic<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("UPDATE ibwf_topics SET pic='".$tpic."' WHERE id='".$tid."'");
if($res)
{
echo "<img src=\"../images/ok.gif\" alt=\"o\"/>Pic Updated Successfully<br/>";
}else{
echo "<img src=\"../images/notok.gif\" alt=\"x\"/>Database Error!<br/>";
}
echo "<br/><br/><a href=\"index.php?action=viewtpc&tid=$tid&page=1\">Back to Topic</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta Tools</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////Staff Points
else if($action=="addpoints")
{
$who = $_GET["who"];
$unick = getnick_uid($who);
echo "<div><br/>$unick`s Staff Points<br/></div>";
echo "<p align=\"center\">";
$res = setstaff($who);
if($res)
{
echo "<img src=\"../images/ok.gif\" alt=\"o\"/>$unick`s Points Updated Successfully<br/>";
}else{
echo "<img src=\"../images/notok.gif\" alt=\"x\"/>Database Error!<br/>";
}
echo "<br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////delete font
else if($action=="delstaff")
{
echo "<div><br/>Delete Staff Points<br/></div>";
echo "<p align=\"center\">";
$who=$_GET["who"];
$res = mysql_query("DELETE FROM ibwf_staff WHERE uid='".$who."'");
if($res)
{
echo "<img src=\"../images$folder/ok.gif\" alt=\"O\"/>Staff Points Deleted Successfully<br/>";
}else{
echo "<img src=\"../images$folder/notok.gif\" alt=\"X\"/>Error Deleting Points<br/>";
}
echo "<br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
////////////////////////////////////////////////////
else if($action=="undelp")
{
$pid = $_GET["pid"];
$old = mysql_fetch_array(mysql_query("SELECT oldtid FROM ibwf_posts WHERE id='".$pid."'"));
$tid = gettid_pid($pid);
$fid = getfid_tid($tid);
echo "<div><br/>UnDelete Post<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("UPDATE ibwf_posts SET oldtid='0', tid='".$old[0]."' WHERE id='".$pid."'");
if($res){
echo "<img src=\"images/ok.gif\" alt=\"O\"/>Post Message Un-Deleted";
}else{
echo "<img src=\"images/notok.gif\" alt=\"X\"/>Database Error";
}
echo "<br/><br/><a href=\"index.php?action=viewtpc&tid=$old[0]&page=1000\">";
echo "View Topic</a><br/>";
$fname = getfname($fid);
echo "<a href=\"index.php?action=viewfrm&fid=$fid\">";
echo "$fname</a><br/>";
echo getfoot($sid,$folder);
exit();
}
///////////////////////////////////unDelete topic
if($action=="undelt")
{
$tid = $_GET["tid"];
$fid = getfid_tid($tid);
$old = mysql_fetch_array(mysql_query("SELECT oldfid FROM ibwf_topics WHERE id='".$tid."'"));
echo "<div><br/>Delete Topic<br/></div>";
echo "<p align=\"center\">";
$tname=gettname($tid);
$res = mysql_query("UPDATE ibwf_topics SET oldfid='0', fid='".$old[0]."' WHERE id='".$tid."'");
if($res){
echo "<img src=\"images/ok.gif\" alt=\"O\"/>Topic Un-Deleted";
}else{
echo "<img src=\"images/notok.gif\" alt=\"X\"/>Database Error";
}
echo "<br/><br/>";
$fname = getfname($old[0]);
echo "<a href=\"index.php?action=viewfrm&fid=$old[0]\">";
echo "$fname</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////add monster
else if($action=="addmonster")
{
$name = $_POST["monstername"];
$skill = $_POST["skillpts"];
$kill = $_POST["killpts"];
$gold = $_POST["goldpts"];
echo "<div><br/>Add Monster<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("INSERT into km_monsters SET name='".$name."', skill='".$skill."', pointsifkilled='".$kill."', goldworth='".$gold."'");
if($res)
{
echo "<img src=\"../images/ok.gif\" alt=\"o\"/>Monster Added Successfully<br/>";
}else{
echo "<img src=\"../images/notok.gif\" alt=\"x\"/>Database Error!<br/>";
}
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta Tools</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////delete monster
else if($action=="delmonster")
{
echo "<div><br/>Delete Monster<br/></div>";
echo "<p align=\"center\">";
$mid = $_GET["mid"];
$res = mysql_query("DELETE FROM km_monsters WHERE ID='".$mid."'");
if($res)
{
echo "<img src=\"../images$folder/ok.gif\" alt=\"O\"/>Monster Deleted Successfully<br/>";
}else{
echo "<img src=\"../images$folder/notok.gif\" alt=\"X\"/>Error Deleting Monster<br/>";
}
echo "<br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////add fake user
else if($action=="addfakeu")
{
$uid = $_POST["uid"];
echo "<div><br/>Add Fake User<br/></div>";
echo "<p align=\"center\">";
$res = mysql_query("INSERT into fake_users SET uid='".$uid."'");
if($res)
{
echo "<img src=\"../images/ok.gif\" alt=\"o\"/>Fake User Added Successfully<br/>";
}else{
echo "<img src=\"../images/notok.gif\" alt=\"x\"/>Database Error!<br/>";
}
echo "<br/><a href=\"admincp.php?action=fakeusers\">Fake Users</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta Tools</a><br/>";
echo getfoot($sid,$folder);
exit();
}
/////////////////////////delete Fake User
else if($action=="delfakeu")
{
echo "<div><br/>Delete Fake User<br/></div>";
echo "<p align=\"center\">";
$uid = $_GET["uid"];
$res = mysql_query("DELETE FROM fake_users WHERE uid='".$uid."'");
if($res)
{
echo "<img src=\"../images$folder/ok.gif\" alt=\"O\"/>Fake User Deleted Successfully<br/>";
}else{
echo "<img src=\"../images$folder/notok.gif\" alt=\"X\"/>Error Deleting Monster<br/>";
}
echo "<br/><a href=\"admincp.php?action=fakeusers\">Fake Users</a><br/>";
echo "<a href=\"admincp.php?action=admincp\"><img src=\"../images$folder/admn.gif\" alt=\"\"/>$sta CP</a><br/>";
echo getfoot($sid,$folder);
exit();
}
//////////////////////////////////////////////
else{
echo "<div><br/>Doh!<br/></div>";
echo "<p align=\"center\">";
echo "I don't know how you got in here, but there's nothing to show<br/><br/>";
mysql_query("INSERT INTO ibwf_mlog SET action='hacks', details='<b>".getnick_uid(getuid_sid($sid))."</b> Attempted To Hack Adminproc', actdt='".time()."'");
echo getfoot($sid,$folder);
exit();
}
?>