View file index.php

Buy Cheapest Web Domains
File size: 16.4Kb 
<?php
/********************************
* Mobile Blog v3.2 beta Script  *
* Fully modified by er.o        *
* http://errorisme.com          *
* Copyright (c) 2010            *
* Original Script created by    *
* Huteri Manza                  *
* http://huteri.net             *
********************************/

session_start();
require("header.php");

if(isset($_GET['blog']) && isset($_GET['editsave']))
{
if(!isset($_SESSION['user']))
{
$_SESSION['errorlogin']='You must be logged in to access this page.';
header('location:'.$ur['blog_dir'].'?login&forward='.urlencode($_SERVER['REQUEST_URI']));
die();
}
$_POST['title']=trim($_POST['title']);
$_POST['bloglink']=trim($_POST['bloglink']);
$_POST['text']=trim($_POST['text']);
$_POST['commentonoff']=trim($_POST['commentonoff']);
edit_save($_POST,$ur);
}

elseif(isset($_GET['blog']) && isset($_GET['delete']))
{
if(!isset($_SESSION['user']))
{
$_SESSION['errorlogin']='You must be logged in to access this page.';
header('location:'.$ur['blog_dir'].'?login&forward='.urlencode($_SERVER['REQUEST_URI']));
die();
}

if($_GET['delete']=='yes') 
{
$_GET['blog']=trim($_GET['blog']);
blog_delete($_GET['blog'],$ur);
}
else
{
$ur['title']="Confirm to Delete | ".$ur['blog_name'];
$ur['meta_robots']="noindex,nofollow";
pageheader($ur);
echo '<div class="text">Are you sure to delete <b>'.blogtitle(bloglink(($_GET['blog']))).'</b>?<br>
<a href="'.$ur['blog_dir'].blogpermalink($_GET['blog']).'"><b>Cancel</b></a> | <a href="'.$ur['blog_dir'].'?blog='.$_GET['blog'].'&delete=yes"><b>Yes</b></a>
</div>
';
}
}

elseif(isset($_GET['blog']) && isset($_GET['edit']))
{
if(!isset($_SESSION['user']))
{
$_SESSION['errorlogin']='You must be logged in to access this page.';
header('location:'.$ur['blog_dir'].'?login&forward='.urlencode($_SERVER['REQUEST_URI']));
die();
}
$_GET['blog']=trim($_GET['blog']);
form_edit($_GET['blog'], $ur);
}

elseif(isset($_GET['blog']) && isset($_GET['comment']))
{
if(!isset($_SESSION['user']))
{
$_SESSION['errorlogin']='You must be logged in to access this page.';
header('location:'.$ur['blog_dir'].'?login&forward='.urlencode($_SERVER['REQUEST_URI']));
die();
}
$_GET['blog']=trim($_GET['blog']);
$_GET['comment']=trim($_GET['comment']);
if($_GET['comment']=='enable') 
{
mysql_query("update blog set blogcmtonoff='1' where id='{$_GET['blog']}'") or die(mysql_error());
$_SESSION['statusmsg']='<font class="saved">Post comment was successfully enabled.</font>';
header('Location:'.$ur['blog_dir'].blogpermalink($_GET['blog']));
die();
}
if($_GET['comment']=='disable') 
{
mysql_query("update blog set blogcmtonoff='0' where id='{$_GET['blog']}'") or die(mysql_error());
$_SESSION['statusmsg']='<font class="saved">Post comment was successfully disabled.</font>';
header('Location:'.$ur['blog_dir'].blogpermalink($_GET['blog']));
die();
}
}

elseif(isset($_GET['login']))
{
if(isset($_POST['username']) && isset($_POST['password']))
{
$_POST['username']=trim(addslashes($_POST['username']));
$_POST['password']=trim(addslashes($_POST['password']));
setcookie("login", stripslashes($_POST['username']), time()+604800);
$g=mysql_query("select password from user where name='{$_POST['username']}' and password='{$_POST['password']}' and id='1'") or die("!".mysql_error());
if(mysql_num_rows($g)!=0)
{
$_SESSION['user']=$_POST['username'];
if(empty($_POST['forward'])) $_POST['forward']=$ur['blog_dir'];
header('Location:'.$_POST['forward']);
die();
}
else
{
$_SESSION['loginerror']='Username and password do not match.';
if(!empty($_POST['forward'])) $_POST['forward']='&forward='.$_POST['forward'];
header('Location:?login'.$_POST['forward']);
die();
}
}
else
{
echo '<html><head>
<title>Administrator Login</title>
<link rel="stylesheet" type="text/css" href="'.$ur['blog_dir'].'style.css" media="handheld,all">
</head>
<body class="body">
<div style="margin: auto; max-width:220px">
<div class="blog">
<div class="heading1">Administrator Login</div>
<div class="bl_box">';
if(isset($_SESSION['loginerror']))
{
echo '<font color="red">Error: '.$_SESSION['loginerror'].'</font>';
unset($_SESSION['loginerror']);
}
echo '<form action="?login" method="POST">
<input type="hidden" name="forward" value="'.$_GET['forward'].'">
<table border=0>
<tr><td>Username</td><td>:</td><td><input type="text" name="username" value="'.stripslashes($_COOKIE['login']).'"></td></tr>
<tr><td>Password</td><td>:</td><td><input type="password" name="password"></td></tr>
<tr><td></td><td></td><td><input type="submit" value="login"></td></tr>
</table>
</form>
</div>
<div class="bl_box">
<center>'.$ur['powered'].'</center>
</div></div>
</body>
</html>';
die();
}
}

elseif(isset($_GET['delnot']))
{
if(!isset($_SESSION['user']))
{
$_SESSION['errorlogin']='You must be logged in to access this page.';
header('location:'.$ur['blog_dir'].'?login&forward='.urlencode($_SERVER['REQUEST_URI']));
die();
}
$hut=mysql_query("select title from blog where id='{$_GET['delnot']}'") or die(mysql_error());
$show=mysql_fetch_row($hut);
$showl=str_replace($ur['idx_updatenot'], "", $show[0]);
mysql_query("update blog set title='$showl' where id='{$_GET['delnot']}'") or die(mysql_error());
header('Location:'.$_SERVER['HTTP_REFERER']);
die();
}

elseif(isset($_GET['logout']))
{
session_destroy();
header('Location:'.$_SERVER['HTTP_REFERER']);
die();
}

elseif(isset($_GET['blog']))
{
header('Location:'.$ur['blog_dir'].blogpermalink($_GET['blog']));
die();
}

elseif(isset($_GET['cat']))
{
header('Location:'.$ur['blog_dir'].catpermalink($_GET['cat']));
die();
}

elseif(isset($_GET['post']) && isset($_GET['category']))
{
post($_POST,$id,$ur,$_GET['post'],$_GET['category']);
}

elseif(isset($_GET['category']))
{
$p=$_GET['p'];
if($p > 1) $hal="Page #$p ";
$ur['title']=catname(catlinkid($_GET['category'])).' Category '.$hal.'| '.$ur['blog_name'];
$ur['meta_robots']="all,index,follow";
pageheader($ur);
$show=$ur['blogperpage'];
$cid=catlinkid($_GET['category']);
$count=mysql_query("select count(*) from blog where cat_id='$cid'") or die(mysql_error());
$total=mysql_fetch_row($count);
if($total[0]=="0")
{
echo '<div class="blog">
<div class="heading1"><h1>Zero Result</h1></div>
<div class="bl_box">No blog posted under this category.</br>
<a href="'.$ur['blog_dir'].'"><b>Home</b></a></div></div>';
}
else
{
$pg=ceil($total[0]/$show);
if($p>$pg && $p!=1) $p=$pg;
if($p<1) $p=1;
$j=($p-1) * $show;
$a=mysql_query("select id, title, bloglink, text, cat_id, date_format(time, '%d %b %Y') as 'time', date_format(uptime, '%d %b %Y') as 'uptime', uptime as 'timeorder', hit,hittoday, user_id from blog where cat_id='$cid' order by timeorder desc limit $j, $show") or die(mysql_error());
while($b=mysql_fetch_array($a))
{
bloglist($ur,$b);
}
$sc=$ur['linkperpage'];
$st=floor($p/$sc)*$sc;
$en=$st+$sc;
$g=$st;
echo '<div class="paging">';
if($g<"2") print("");
else
if($g>"0"){if($g-1 > "1") {$page="/".($g-1);}
print("<a href=\"{$ur['blog_dir']}category/{$_GET['category']}$page\">[&laquo;]</a> ");}
else
print(" ");

for($g;($g<$en);$g++)
	{
if($g=="1" && $g!=$p)
	{
print("<a href=\"{$ur['blog_dir']}category/{$_GET['category']}\">$g</a> ");
	}
elseif($g=="1" && $g==$p)
	{
print("[<b>".$g."</b>] ");
	}
elseif($g==$p)
	{
print(" [<b>".$g."</b>] ");
	}
elseif($g<=$pg)
	{
if($g>"1")
print("<a href=\"{$ur['blog_dir']}category/{$_GET['category']}/".$g."\">".$g."</a> ");
	}
else
	{
print(" ");
	}
	}
if($g<=$pg)
print("<a href=\"{$ur['blog_dir']}category/{$_GET['category']}/".$g."\">[&raquo;]</a>");
else
print("");
echo '</div>
';
quicknav($ur);
}
}
elseif(isset($_GET['search']))
{
search_result($_GET['search'],$ur);
}

elseif(isset($_GET['recentcomment']))
{
$ur['title']="Recent Comments | ".$ur['blog_name'];
$ur['meta_robots']="noindex,nofollow";
pageheader($ur);
echo '<div class="blog">
<div class="heading1"><h1>Recent Comments</h1></div>
<div class="bl_box">';
$ri=mysql_query("select id, name, message, date_format(time, '%d %b %Y %H:%i') as 'time', blog_id, url, ip, browser from comment order by id desc limit 15");
while($dho=mysql_fetch_array($ri))
{
commentlist($ur,$dho);
}
echo '<a href="'.$ur['blog_dir'].'">Home</a></div></div>';
}

elseif(isset($_GET['sitemap']))
{
$ur['title']="Sitemap | ".$ur['blog_name'];
$ur['meta_robots']="all,index,follow";
pageheader($ur);
echo '<div class="blog">
<div class="heading1"><h1>Sitemap</h1></div>
<div class="text">';
$huteri=mysql_query("select * from kategori order by catlink") or die(mysql_error());
$huterim=mysql_query("select count(id) from blog") or die(mysql_error());
$c=mysql_fetch_row($huterim);
while($manza=mysql_fetch_row($huteri))
{
echo '<b><a href="'.$ur['blog_dir'].'category/'.$manza[2].'">'.$manza[1].' Category</a></b> ['.jmlpercat($manza[0]).' Posts]<br>
<ul class="listsitemap">';
$cid=catlinkid($manza[2]);
$a=mysql_query("select id, title, bloglink, text, cat_id, date_format(time, '%d %b %y') as 'time', date_format(uptime, '%d %b %Y') as 'uptime', uptime as 'timeorder', hit, hittoday, user_id from blog where cat_id='$cid' order by timeorder desc") or die(mysql_error());
while($b=mysql_fetch_array($a))
{
echo '<li><a href="'.$ur['blog_dir'].blogpermalink($b['id']).'">'.$b['title'].'</a></li>
';
}
echo '</ul>
';
}
echo '</div></div>
';
}

elseif(isset($_GET['whos']))
{
$ur['title']="Who is Online | ".$ur['blog_name'];
$ur['meta_robots']="noindex,nofollow";
pageheader($ur);
echo '<div class="blog">
<div class="heading1"><h1>Who is Online</h1></div>
<div class="text">';
$arr=mysql_query("select * from user_online order by user_ip") or die(mysql_error());
while($ero=mysql_fetch_array($arr))
{
$location=$ero['user_location'];
$ero['user_browser']=strip_tags($ero['user_browser']);
if($ero['user_location']=="/") $ero['user_location']="Home";
echo '<div class="quoted">'.$ero['user_ip'].'<br>
'.$ero['user_browser'].'<br>
on <a href="'.$ero['user_location'].'">'.$ero['user_location'].'</a></div>';
}
echo '</div></div>
';
}

elseif(isset($_GET['about']))
{
$ur['title']="About | ".$ur['blog_name'];
$ur['meta_robots']="all,index,follow";
pageheader($ur);
echo '<div class="blog">
<div class="heading1"><h1>About</h1></div>
<div class="text">
'.bbcodes(smiley($ur,$ur['about']));
if(isset($_SESSION['user'])) echo '<br>
<a href=admin.php?about><small>[Edit]</small></a>';
echo '</div></div>
';
}

elseif(isset($_GET['smiley']))
{
$ur['title']="Smiley List | ".$ur['blog_name'];
$ur['meta_robots']="noindex,nofollow";
pageheader($ur);
echo '<div class="blog">
<div class="heading1"><h1>Smiley List</h1></div>
<div class="text">';
$emo=array(":@","8-)",":p","B-)",":'(","^o)",":s",":)",":*",":x","8-|",":(",":o",":$",":#","|-)",":-|",":D",";)","(dies)","%)","(err)",":~","%)","&)",":-=",":\\",":{",":}","(dog)","(callme)","(headphones)","(love)","(hug)","(beautiful)","(bum)","(devil)","(poo)","(reaper)","(scream)","(vamp)","(vomit)","(kiss)","(confused)","(drool)","(holdinghands)","(buzz)","(kick)","(ok)","(punch)","(thumbsup)","(thumbsdown)");
echo '<table border=0 cellspacing="0">';
for($i=0; $i<52; $i++)
{
echo '<tr><td>'.smiley($ur,$emo[$i]).' &nbsp;&raquo;&nbsp;</td><td>'.$emo[$i].'</td></tr>
';
}
echo '</table></div></div>
';
}

elseif(isset($_GET['bbcode']))
{
$ur['title']="BB Code List | ".$ur['blog_name'];
$ur['meta_robots']="noindex,nofollow";
pageheader($ur);
echo '<div class="blog">
<div class="heading1"><h1>BB Code List</h1></div>
<div class="text">
<table border=0 cellspacing="0">
<tr><td>
<tr><td>Bold </td><td>[b]'.bbcodes("[b]Bold Text[/b]").'[/b]</td></tr>
<tr><td>Italic </td><td>[i]'.bbcodes("[i]Italic Text[/i]").'[/i]</td></tr>
<tr><td>Underlined </td><td>[u]'.bbcodes("[u]Underlined Text[/u]").'[/u]</td></tr>
<tr><td>Blink </td><td>[blink]'.bbcodes("[blink]Blinked Text[/blink]").'[/blink]</tr>
<tr><td>Striketrough </td><td>[s]'.bbcodes("[s]Striketrough Text[/s]").'[/s]</td></tr>
<tr><td>Center </td><td><center>[center]Center Aligned Text[/center]</center></td></tr>
<tr><td>Color </td><td>[color=green]'.bbcodes("[color=green]Color Text[/color]").'[/color]<br>
[color=red]'.bbcodes("[color=red]Color Text[/color]").'[/color]<br>
[color=#3399FF]'.bbcodes("[color=#3399FF]Color Text[/color]").'[/color]<br>or<br>
[red]'.bbcodes("[red]Color Text[/red]").'[/red]<br>
[yellow]'.bbcodes("[yellow]Color Text[/yellow]").'[/yellow]<br>
[blue]'.bbcodes("[blue]Color Text[/blue]").'[/blue]</td></tr>
<tr><td>URL </td><td>[url=http://www.errorisme.com]Errorisme Blog[/url]<br>
'.bbcodes("[url=http://www.errorisme.com]Errorisme Blog[/url]").'</td></tr>
<tr><td>IMG </td><td>[img]http://www.errorisme.com/images/errorisme-backlink.png[/img]<br>
'.bbcodes("[img]http://www.errorisme.com/images/errorisme-backlink.png[/img]").'</td></tr>
<tr><td>Line Break </td><td>[br] or [br/]</td></tr>
<tr><td>Quote </td><td>[quote]Quoted Text[/quote]<br>
'.bbcodes("[quote]Quoted Text[/quote]").'<br>
[quote=errorisme]Quoted Text[/quote]<br>
'.bbcodes("[quote=errorisme]Quoted Text[/quote]").'</td></tr>
<tr><td>Textarea<br>Admin Only </td><td>[textarea]&lt;!--Text Area Content--&gt;[/textarea]<br>
'.bbcodes("[textarea]<!--Text Area Content-->[/textarea]").'</td></tr>
<tr><td>Code<br>Admin Only </td><td>[code]&lt;a href=&quot;http://www.errorisme.com&quot;&gt;Errorisme Corp.&lt;/a&gt;[/code]<br>
'.bbcodes("[code]<a href=\"http://www.errorisme.com\">Errorisme Corp.</a>[/code]").'</td></tr>
</table>
</div></div>
';
}

else
{
$p=$_GET['p'];
if($p > 1) {$hal="Page #$p | ";}
$ur['title']=$hal.$ur['blog_name'];
$ur['meta_robots']="all,index,follow";
pageheader($ur);
echo $ur['announcement'];
$show=$ur['blogperpage'];
$count=mysql_query("select count(*) from blog") or die(mysql_error());
$total=mysql_fetch_row($count);
$pg=ceil($total[0]/$show);
if($p>$pg && $p!=1)
$p=$pg;
if($p<1)
$p=1;
$j=($p-1) * $show;
if(!$ur['mobile'] && !$_GET['p'])
{
	$j=$j + 1;
$show=$show-1;
$one=mysql_query("select id, title, bloglink, text,  date_format(time, '%d %b %Y %H:%i') as 'time', date_format(uptime, '%d %b %Y') as 'uptime', uptime as 'timeorder', time as 'timecek', uptime as 'uptimecek', cat_id, hit, hittoday, user_id, blogcmtonoff from blog order by timeorder desc limit 0, 1") or die(mysql_error());
$manza=mysql_fetch_array($one);
$cat=catname($manza['cat_id']);
$manza['text']=str_replace("[more]","",$manza['text']);
if($ur['bbcodeonoff']=="1")$manza['text']=bbcodes($manza['text']);
if($ur['smileyonoff']=="1") $manza['text']=smiley($ur,$manza['text']);
echo '<div class="blog">
<div class="bl_title"><b><a href="'.$ur['blog_dir'].blogpermalink($manza['id']).'">'.$manza['title'].'</a></b>
';
if(isset($_SESSION['user']))
{
echo ' <small><a href="'.$ur['blog_dir'].'?blog='.$manza['id'].'&edit">[Edit]</a></small>';
$check=strpos($manza['title'], $ur['idx_updatenot']);
if($check!==false) echo ' | <a href="'.$ur['blog_dir'].'?delnot='.$manza['id'].'"><small>[Del Notify]</small></a>';
}
echo '</div>
<div class="bl_box">
'.$manza['uptime'].' under <a href="'.$ur['blog_dir'].'category/'.catlink($manza['cat_id']).'">'.$cat.'</a> by '.username($manza['user_id']).'</div>
<div class="bl_box">
'.stripslashes(nl2br($manza['text'])).'
</div>
<div class="bl_box">
<a href="'.$ur['blog_dir'].blogpermalink($manza['id']).'#comment">';
if(jmlkomen($manza['id'])==0) echo 'No Comment';
else echo jmlkomen($manza['id']).' Comments';
echo '</a>
</div></div>';

}
$a=mysql_query("select id, bloglink, title, text, cat_id, date_format(time, '%d %b %Y') as 'time', date_format(uptime, '%d %b %Y') as 'uptime', uptime as 'timeorder', hit, hittoday, user_id from blog order by timeorder desc limit $j, $show") or die(mysql_error());
while($b=mysql_fetch_array($a))
{
bloglist($ur,$b);
}
/***start of paging***/
echo '<div class="paging">';
$sc=$ur['linkperpage'];;
$st=floor($p/$sc)*$sc;
$en=$st+$sc;
$g=$st;
if($g<"2") print("");
else
if($g>"0") {if($g-1 > "1") $page='page/'.($g-1).'/';
print('<a href="'.$ur['blog_dir'].$page.'">[&laquo;]</a> ');}
else
print(" ");

for($g;($g<$en);$g++)
	{
if($g=="1" && $g!=$p) print('<a href="'.$ur['blog_dir'].'">'.$g.'</a> ');
elseif($g=="1" && $g==$p) print(' [<b>'.$g.'</b>] ');
elseif($g==$p) print(' [<b>'.$g.'</b>] ');
elseif($g<=$pg)
	{
if($g>"1") print('<a href="'.$ur['blog_dir'].'page/'.$g.'/">'.$g.'</a> ');
	}
else print(" ");
	}

if($g<=$pg) print('<a href="'.$ur['blog_dir'].'page/'.$g.'/">[&raquo;]</a>');
echo '</div>
';
/***end of paging***/
quicknav($ur);
}

require("footer.php");
?>