File size: 4.78Kb
<?php
if (!defined('SECURED'))
{
die("Unknown Error!");
}
if($level<1)
{
echo' You have sufficient privileges to access this section!';
footer();
exit;
}
$id=intval($_GET['id']);
title('MPanel');
div('MPanel','b');
switch($_GET['act'])
{
case 'del': //Deleting a file
list($file_name,$file_cat,$file_author,$file_scr,$file_jad)=mysql_fetch_array(mysql_query("select filename,cat,author,screen,jad from files where id='".$id."';"));
list($author_id)=explode('|',$file_author);
div("<b>Deleting a file</b>",'a');
if(mysql_affected_rows()!=0)
{
mysql_query("delete from files where id='".$id."';");
mysql_query("delete from comments where fid='".$id."';");
mysql_query("update `users` set `upl_files` = `upl_files` - 1, `upl_files_size` = `upl_files_size` - ".filesize($file_name)." where `id`='$author_id';");
unlink($file_name);
@unlink($file_scr);
@unlink($file_jad);
echo 'File '.basename($file_name).' been successfully deleted!<br/>';
echo'« <a href="'.$_SERVER['PHP_SELF'].'?mode=cat&id='.$file_cat.'&'.SID.'">Back to category</a><br/>';
} else
{
echo 'File does not exist!<br/>';
}
break;
case 'del_all': //Delete all files of a nick
list($dblogin)=mysql_fetch_array(mysql_query("select login from users where id='".$id."';"));
div("<b>Delete all files</b>",'a');
if(isset($_GET['go']))
{
if(mysql_affected_rows()!=0)
{
$q=mysql_query("select id,filename,screen,jad from files where author='$id|$dblogin';");
while($file=mysql_fetch_array($q))
{
mysql_query("delete from comments where fid='".$file['id']."';");
unlink($file['filename']);
@unlink($file['screen']);
@unlink($file['jad']);
}
mysql_query("delete from files where author='$id|$dblogin';");
mysql_query("update `users` set `upl_files` = '0', `upl_files_size` = '0' where `id`='$id';");
echo 'All user files <b>'.$dblogin.'</b> been successfully deleted!<br/>';
echo'« <a href="'.$_SERVER['PHP_SELF'].'?mode=user&id='.$id.'&'.SID.'">Back</a><br/>';
} else
{
echo 'User does not exist!<br/>';
}
} else
{
$num_items=mysql_result(mysql_query("select count(id) from files where author='$id|$dblogin';"),0);
echo'Are you sure you want to delete all files('.$num_items.') Users <b>'.$dblogin.'</b>?<br/>';
echo'<a href="'.$_SERVER['PHP_SELF'].'?mode=mpanel&id='.$id.'&act='.$_GET['act'].'&go&'.SID.'">Yes</a>|';
echo'<a href="'.$_SERVER['PHP_SELF'].'?mode=user&id='.$id.'&'.SID.'">No</a><br/>';
}
break;
case 'user_del': //Removing nick
list($dblogin)=mysql_fetch_array(mysql_query("select login from users where id='".$id."';"));
div("<b>Removing Users</b>",'a');
if(isset($_GET['go']))
{
if(mysql_affected_rows()!=0)
{
mysql_query("delete from comments where author='$id|$dblogin';");
mysql_query("delete from users where id='$id';");
echo '???????????? <b>'.$dblogin.'</b> been successfully deleted!<br/>';
echo'« <a href="'.$_SERVER['PHP_SELF'].'?'.SID.'">Back</a><br/>';
} else
{
echo 'User does not exist!<br/>';
}
} else
{
echo'Are you sure you want to delete user <b>'.$dblogin.'</b>?(its files are removed, for this use function)<br/>';
echo'<a href="'.$_SERVER['PHP_SELF'].'?mode=mpanel&id='.$id.'&act='.$_GET['act'].'&go&'.SID.'">Yes</a>|';
echo'<a href="'.$_SERVER['PHP_SELF'].'?mode=user&id='.$id.'&'.SID.'">No</a><br/>';
}
break;
case 'viewabuses': //View of complaints files
div("<b>Complaints files</b>",'a');
include'includes/func_pages.php';
$base_url=$_SERVER['PHP_SELF']."?mode=mpanel&act=viewabuses";
$num_items=mysql_result(mysql_query("select count(id) from files where abuse>0;"),0);
$pages = ceil($num_items/$config['files_on_page']);
if(!empty($_REQUEST['page']))
{
$page = intval($_REQUEST['page']);
if($page<=0) $page=1;
if($page>=$pages) $page=$pages;
} else
{
$page = 1;
}
$start = $page * $config['files_on_page'] - $config['files_on_page'];
$max=$start + $config['files_on_page'];
if($max>$num_items) $max=$num_items;
$total_files = $start + 1;
if($num_items==0) $total_files=0;
echo '<b>Complaints '.$total_files.'-'.$max.' of '.$num_items.'</b><br/>';
echo $separator;
$q=mysql_query("select * from files where abuse>0 order by abuse desc limit $start,".$config['files_on_page'].";");
while($file=mysql_fetch_array($q))
{
echo '• <a href="'.$_SERVER['PHP_SELF'].'?mode=file&id='.$file['id'].'&'.SID.'">'.basename($file['filename']).'</a> ('.$file['abuse'].' ?????/'.$file['downloads'].' downloads)<br/>';
echo '» '.$file['desc'].'<br/>';
}
echo pages($base_url, $pages, $page);
break;
default:
echo'Nitsche is interesting not!';
break;
}
echo $separator;
echo $goback;
?>