Home Explore Help
Register Sign In
NSHkD
/
Gazelle
forked from Oppaitime/Gazelle
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Oppaitime's version of Gazelle
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
55 Commits
1 Branch
Tree: 592dc5dc47
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '592dc5dc47'
${ noResults }
Gazelle/sections/tools/index.php

index.php 15KB
History Raw

123456789101112131415161718192021222324252627282930313233343536373839404142434445464748495051525354555657585960616263646566676869707172737475767778798081828384858687888990919293949596979899100101102103104105106107108109110111112113114115116117118119120121122123124125126127128129130131132133134135136137138139140141142143144145146147148149150151152153154155156157158159160161162163164165166167168169170171172173174175176177178179180181182183184185186187188189190191192193194195196197198199200201202203204205206207208209210211212213214215216217218219220221222223224225226227228229230231232233234235236237238239240241242243244245246247248249250251252253254255256257258259260261262263264265266267268269270271272273274275276277278279280281282283284285286287288289290291292293294295296297298299300301302303304305306307308309310311312313314315316317318319320321322323324325326327328329330331332333334335336337338339340341342343344345346347348349350351352353354355356357358359360361362363364365366367368369370371372373374375376377378379380381382383384385386387388389390391392393394395396397398399400401402403404405406407408409410411412413414415416417418419420421422423424425426427428429430431432433434435436437438439440441442443444445446447448449450451452453454455456457458459460461462463464465466467468469470471472473474475476477478479480481482483484485486487488489490491492493494495496497498499500501502503504505 
  1. <?

  2. /*****************************************************************

  3.   Tools switch center

  4. 

  5.   This page acts as a switch for the tools pages.

  6. 

  7.  *****************************************************************/

  8. 

  9. if (isset($argv[1])) {

  10.   $_REQUEST['action'] = $argv[1];

  11. } else {

  12.   if (empty($_REQUEST['action']) || ($_REQUEST['action'] != 'public_sandbox' && $_REQUEST['action'] != 'ocelot')) {

  13.     enforce_login();

  14.   }

  15. }

  16. 

  17. if (!isset($_REQUEST['action'])) {

  18.   include(SERVER_ROOT.'/sections/tools/tools.php');

  19.   die();

  20. }

  21. 

  22. if (substr($_REQUEST['action'], 0, 7) == 'sandbox' && !isset($argv[1])) {

  23.   if (!check_perms('site_debug')) {

  24.     error(403);

  25.   }

  26. }

  27. 

  28. if (substr($_REQUEST['action'], 0, 12) == 'update_geoip' && !isset($argv[1])) {

  29.   if (!check_perms('site_debug')) {

  30.     error(403);

  31.   }

  32. }

  33. 

  34. if (substr($_REQUEST['action'],0,16) == 'rerender_gallery' && !isset($argv[1])) {

  35.   if (!check_perms('site_debug')) {

  36.     error(403);

  37.   }

  38. }

  39. 

  40. include(SERVER_ROOT.'/classes/validate.class.php');

  41. $Val = new VALIDATE;

  42. 

  43. include(SERVER_ROOT.'/classes/feed.class.php');

  44. $Feed = new FEED;

  45. 

  46. switch ($_REQUEST['action']) {

  47.   case 'phpinfo':

  48.     if (!check_perms('site_debug')) {

  49.       error(403);

  50.     }

  51.     phpinfo();

  52.     break;

  53.   //Services

  54.   case 'get_host':

  55.     include(SERVER_ROOT.'/sections/tools/services/get_host.php');

  56.     break;

  57.   case 'get_cc':

  58.     include(SERVER_ROOT.'/sections/tools/services/get_cc.php');

  59.     break;

  60.   //Managers

  61.   case 'forum':

  62.     include(SERVER_ROOT.'/sections/tools/managers/forum_list.php');

  63.     break;

  64. 

  65.   case 'forum_alter':

  66.     include(SERVER_ROOT.'/sections/tools/managers/forum_alter.php');

  67.     break;

  68. 

  69.   case 'whitelist':

  70.     include(SERVER_ROOT.'/sections/tools/managers/whitelist_list.php');

  71.     break;

  72. 

  73.   case 'whitelist_alter':

  74.     include(SERVER_ROOT.'/sections/tools/managers/whitelist_alter.php');

  75.     break;

  76. 

  77.   case 'enable_requests':

  78.     include(SERVER_ROOT.'/sections/tools/managers/enable_requests.php');

  79.     break;

  80. 

  81.   case 'delete_email':

  82.     include(SERVER_ROOT.'/sections/tools/managers/email_delete_requests.php');

  83.     break;

  84. 

  85.   case 'ajax_take_enable_request':

  86.     if (FEATURE_EMAIL_REENABLE) {

  87.       include(SERVER_ROOT.'/sections/tools/managers/ajax_take_enable_request.php');

  88.     } else {

  89.       // Prevent post requests to the ajax page

  90.       header("Location: tools.php");

  91.       die();

  92.     }

  93.     break;

  94. 

  95.   case 'login_watch':

  96.     include(SERVER_ROOT.'/sections/tools/managers/login_watch.php');

  97.     break;

  98. 

  99.   case 'email_blacklist':

  100.     include(SERVER_ROOT.'/sections/tools/managers/email_blacklist.php');

  101.     break;

  102. 

  103.   case 'email_blacklist_alter':

  104.     include(SERVER_ROOT.'/sections/tools/managers/email_blacklist_alter.php');

  105.     break;

  106. 

  107.   case 'email_blacklist_search':

  108.     include(SERVER_ROOT.'/sections/tools/managers/email_blacklist_search.php');

  109.     break;

  110. 

  111.   case 'dnu':

  112.     include(SERVER_ROOT.'/sections/tools/managers/dnu_list.php');

  113.     break;

  114. 

  115.   case 'dnu_alter':

  116.     include(SERVER_ROOT.'/sections/tools/managers/dnu_alter.php');

  117.     break;

  118. 

  119.   case 'editnews':

  120.   case 'news':

  121.     include(SERVER_ROOT.'/sections/tools/managers/news.php');

  122.     break;

  123. 

  124.   case 'edit_tags':

  125.     include(SERVER_ROOT.'/sections/tools/misc/tags.php');

  126.     break;

  127. 

  128.   case 'takeeditnews':

  129.     if (!check_perms('admin_manage_news')) {

  130.       error(403);

  131.     }

  132.     if (is_number($_POST['newsid'])) {

  133.       $DB->query("

  134.         UPDATE news

  135.         SET Title = '".db_string($_POST['title'])."',

  136.           Body = '".db_string($_POST['body'])."'

  137.         WHERE ID = '".db_string($_POST['newsid'])."'");

  138.       $Cache->delete_value('news');

  139.       $Cache->delete_value('feed_news');

  140.     }

  141.     header('Location: index.php');

  142.     break;

  143. 

  144.   case 'deletenews':

  145.     if (!check_perms('admin_manage_news')) {

  146.       error(403);

  147.     }

  148.     if (is_number($_GET['id'])) {

  149.       authorize();

  150.       $DB->query("

  151.         DELETE FROM news

  152.         WHERE ID = '".db_string($_GET['id'])."'");

  153.       $Cache->delete_value('news');

  154.       $Cache->delete_value('feed_news');

  155. 

  156.       // Deleting latest news

  157.       $LatestNews = $Cache->get_value('news_latest_id');

  158.       if ($LatestNews !== false && $LatestNews == $_GET['id']) {

  159.         $Cache->delete_value('news_latest_id');

  160.         $Cache->delete_value('news_latest_title');

  161.       }

  162.     }

  163.     header('Location: index.php');

  164.     break;

  165. 

  166.   case 'takenewnews':

  167.     if (!check_perms('admin_manage_news')) {

  168.       error(403);

  169.     }

  170. 

  171.     $DB->query("

  172.       INSERT INTO news (UserID, Title, Body, Time)

  173.       VALUES ('$LoggedUser[ID]', '".db_string($_POST['title'])."', '".db_string($_POST['body'])."', '".sqltime()."')");

  174.     $Cache->delete_value('news_latest_id');

  175.     $Cache->delete_value('news_latest_title');

  176.     $Cache->delete_value('news');

  177. 

  178.     NotificationsManager::send_push(NotificationsManager::get_push_enabled_users(), $_POST['title'], $_POST['body'], site_url() . 'index.php', NotificationsManager::NEWS);

  179. 

  180.     header('Location: index.php');

  181.     break;

  182. 

  183.   case 'tokens':

  184.     include(SERVER_ROOT.'/sections/tools/managers/tokens.php');

  185.     break;

  186.   case 'multiple_freeleech':

  187.     include(SERVER_ROOT.'/sections/tools/managers/multiple_freeleech.php');

  188.     break;

  189.   case 'ocelot':

  190.     include(SERVER_ROOT.'/sections/tools/managers/ocelot.php');

  191.     break;

  192.   case 'ocelot_info':

  193.     include(SERVER_ROOT.'/sections/tools/data/ocelot_info.php');

  194.     break;

  195.   case 'official_tags':

  196.     include(SERVER_ROOT.'/sections/tools/managers/official_tags.php');

  197.     break;

  198.   case 'freeleech':

  199.     include(SERVER_ROOT.'/sections/tools/managers/sitewide_freeleech.php');

  200.     break;

  201. 

  202.   case 'tag_aliases':

  203.     include(SERVER_ROOT.'/sections/tools/managers/tag_aliases.php');

  204.     break;

  205.   case 'label_aliases':

  206.     include(SERVER_ROOT.'/sections/tools/managers/label_aliases.php');

  207.     break;

  208.   case 'change_log':

  209.     include(SERVER_ROOT.'/sections/tools/managers/change_log.php');

  210.     break;

  211.   case 'global_notification':

  212.     include(SERVER_ROOT.'/sections/tools/managers/global_notification.php');

  213.     break;

  214.   case 'take_global_notification':

  215.     include(SERVER_ROOT.'/sections/tools/managers/take_global_notification.php');

  216.     break;

  217.   case 'permissions':

  218.     if (!check_perms('admin_manage_permissions')) {

  219.       error(403);

  220.     }

  221. 

  222.     if (!empty($_REQUEST['id'])) {

  223.       $Val->SetFields('name', true, 'string', 'You did not enter a valid name for this permission set.');

  224.       $Val->SetFields('level', true, 'number', 'You did not enter a valid level for this permission set.');

  225.       $Val->SetFields('maxcollages', true, 'number', 'You did not enter a valid number of personal collages.');

  226.       //$Val->SetFields('test', true, 'number', 'You did not enter a valid level for this permission set.');

  227. 

  228.       if (is_numeric($_REQUEST['id'])) {

  229.         $DB->query("

  230.           SELECT p.ID, p.Name, p.Abbreviation, p.Level, p.Secondary, p.PermittedForums, p.Values, p.DisplayStaff, COUNT(u.ID)

  231.           FROM permissions AS p

  232.             LEFT JOIN users_main AS u ON u.PermissionID = p.ID

  233.           WHERE p.ID = '".db_string($_REQUEST['id'])."'

  234.           GROUP BY p.ID");

  235.         list($ID, $Name, $Abbreviation, $Level, $Secondary, $Forums, $Values, $DisplayStaff, $UserCount) = $DB->next_record(MYSQLI_NUM, array(6));

  236. 

  237.         if ($Level > $LoggedUser['EffectiveClass'] || (isset($_REQUEST['level']) && $_REQUEST['level'] > $LoggedUser['EffectiveClass'])) {

  238.           error(403);

  239.         }

  240. 

  241.         $Values = unserialize($Values);

  242.       }

  243. 

  244.       if (!empty($_POST['submit'])) {

  245.         $Err = $Val->ValidateForm($_POST);

  246. 

  247.         if (!is_numeric($_REQUEST['id'])) {

  248.           $DB->query("

  249.             SELECT ID

  250.             FROM permissions

  251.             WHERE Level = '".db_string($_REQUEST['level'])."'");

  252.           list($DupeCheck)=$DB->next_record();

  253. 

  254.           if ($DupeCheck) {

  255.             $Err = 'There is already a permission class with that level.';

  256.           }

  257.         }

  258. 

  259.         $Values = array();

  260.         foreach ($_REQUEST as $Key => $Perms) {

  261.           if (substr($Key, 0, 5) == 'perm_') {

  262.             $Values[substr($Key, 5)] = (int)$Perms;

  263.           }

  264.         }

  265. 

  266.         $Name = $_REQUEST['name'];

  267.         $Level = $_REQUEST['level'];

  268.         $Abbreviation = $_REQUEST['abbreviation'];

  269.         $Secondary = empty($_REQUEST['secondary']) ? 0 : 1;

  270.         $Forums = $_REQUEST['forums'];

  271.         $DisplayStaff = isset($_REQUEST['displaystaff']) ? $_REQUEST['displaystaff']: 0;

  272.         $Values['MaxCollages'] = $_REQUEST['maxcollages'];

  273. 

  274.         if (!$Err) {

  275.           if (!is_numeric($_REQUEST['id'])) {

  276.             $DB->query("

  277.               INSERT INTO permissions (Level, Name, Abbreviation, Secondary, PermittedForums, `Values`, DisplayStaff)

  278.               VALUES ('".db_string($Level)."',

  279.                   '".db_string($Name)."',

  280.                   '".db_string($Abbreviation)."',

  281.                   $Secondary,

  282.                   '".db_string($Forums)."',

  283.                   '".db_string(serialize($Values))."',

  284.                   '".db_string($DisplayStaff)."')");

  285.           } else {

  286.             $DB->query("

  287.               UPDATE permissions

  288.               SET Level = '".db_string($Level)."',

  289.                 Name = '".db_string($Name)."',

  290.                 Abbreviation = '".db_string($Abbreviation)."',

  291.                 Secondary = $Secondary,

  292.                 PermittedForums = '".db_string($Forums)."',

  293.                 `Values` = '".db_string(serialize($Values))."',

  294.                 DisplayStaff = '".db_string($DisplayStaff)."'

  295.               WHERE ID = '".db_string($_REQUEST['id'])."'");

  296.             $Cache->delete_value('perm_'.$_REQUEST['id']);

  297.             if ($Secondary) {

  298.               $DB->query("

  299.                 SELECT DISTINCT UserID

  300.                 FROM users_levels

  301.                 WHERE PermissionID = ".db_string($_REQUEST['id']));

  302.               while (list($UserID) = $DB->next_record()) {

  303.                 $Cache->delete_value("user_info_heavy_$UserID");

  304.               }

  305.             }

  306.           }

  307.           $Cache->delete_value('classes');

  308.         } else {

  309.           error($Err);

  310.         }

  311.       }

  312. 

  313.       include(SERVER_ROOT.'/sections/tools/managers/permissions_alter.php');

  314. 

  315.     } else {

  316.       if (!empty($_REQUEST['removeid'])) {

  317.         $DB->query("

  318.           DELETE FROM permissions

  319.           WHERE ID = '".db_string($_REQUEST['removeid'])."'");

  320.         $DB->query("

  321.           SELECT UserID

  322.           FROM users_levels

  323.           WHERE PermissionID = '".db_string($_REQUEST['removeid'])."'");

  324.         while (list($UserID) = $DB->next_record()) {

  325.           $Cache->delete_value("user_info_$UserID");

  326.           $Cache->delete_value("user_info_heavy_$UserID");

  327.         }

  328.         $DB->query("

  329.           DELETE FROM users_levels

  330.           WHERE PermissionID = '".db_string($_REQUEST['removeid'])."'");

  331.         $DB->query("

  332.           SELECT ID

  333.           FROM users_main

  334.           WHERE PermissionID = '".db_string($_REQUEST['removeid'])."'");

  335.         while (list($UserID) = $DB->next_record()) {

  336.           $Cache->delete_value("user_info_$UserID");

  337.           $Cache->delete_value("user_info_heavy_$UserID");

  338.         }

  339.         $DB->query("

  340.           UPDATE users_main

  341.           SET PermissionID = '".USER."'

  342.           WHERE PermissionID = '".db_string($_REQUEST['removeid'])."'");

  343. 

  344.         $Cache->delete_value('classes');

  345.       }

  346. 

  347.       include(SERVER_ROOT.'/sections/tools/managers/permissions_list.php');

  348.     }

  349. 

  350.     break;

  351. 

  352.   case 'ip_ban':

  353.     //TODO: Clean up DB table ip_bans.

  354.     include(SERVER_ROOT.'/sections/tools/managers/bans.php');

  355.     break;

  356.   case 'quick_ban':

  357.     include(SERVER_ROOT.'/sections/tools/misc/quick_ban.php');

  358.     break;

  359.   //Data

  360.   case 'registration_log':

  361.     include(SERVER_ROOT.'/sections/tools/data/registration_log.php');

  362.     break;

  363. 

  364.   case 'donation_log':

  365.     include(SERVER_ROOT.'/sections/tools/finances/donation_log.php');

  366.     break;

  367. 

  368.   case 'bitcoin_unproc':

  369.     include(SERVER_ROOT.'/sections/tools/finances/bitcoin_unproc.php');

  370.     break;

  371. 

  372.   case 'bitcoin_balance':

  373.     include(SERVER_ROOT.'/sections/tools/finances/bitcoin_balance.php');

  374.     break;

  375. 

  376.   case 'donor_rewards':

  377.     include(SERVER_ROOT.'/sections/tools/finances/donor_rewards.php');

  378.     break;

  379.   case 'upscale_pool':

  380.     include(SERVER_ROOT.'/sections/tools/data/upscale_pool.php');

  381.     break;

  382. 

  383.   case 'invite_pool':

  384.     include(SERVER_ROOT.'/sections/tools/data/invite_pool.php');

  385.     break;

  386. 

  387.   case 'torrent_stats':

  388.     include(SERVER_ROOT.'/sections/tools/data/torrent_stats.php');

  389.     break;

  390. 

  391.   case 'user_flow':

  392.     include(SERVER_ROOT.'/sections/tools/data/user_flow.php');

  393.     break;

  394. 

  395.   case 'economic_stats':

  396.     include(SERVER_ROOT.'/sections/tools/data/economic_stats.php');

  397.     break;

  398. 

  399.   case 'service_stats':

  400.     include(SERVER_ROOT.'/sections/tools/development/service_stats.php');

  401.     break;

  402. 

  403.   case 'database_specifics':

  404.     include(SERVER_ROOT.'/sections/tools/data/database_specifics.php');

  405.     break;

  406. 

  407.   case 'special_users':

  408.     include(SERVER_ROOT.'/sections/tools/data/special_users.php');

  409.     break;

  410. 

  411.   case 'browser_support':

  412.     include(SERVER_ROOT.'/sections/tools/data/browser_support.php');

  413.     break;

  414.   //END Data

  415. 

  416.   //Misc

  417.   case 'update_geoip':

  418.     include(SERVER_ROOT.'/sections/tools/development/update_geoip.php');

  419.     break;

  420. 

  421.   case 'dupe_ips':

  422.     include(SERVER_ROOT.'/sections/tools/misc/dupe_ip.php');

  423.     break;

  424. 

  425.   case 'clear_cache':

  426.     include(SERVER_ROOT.'/sections/tools/development/clear_cache.php');

  427.     break;

  428. 

  429.   case 'create_user':

  430.     include(SERVER_ROOT.'/sections/tools/misc/create_user.php');

  431.     break;

  432. 

  433.   case 'manipulate_tree':

  434.     include(SERVER_ROOT.'/sections/tools/misc/manipulate_tree.php');

  435.     break;

  436. 

  437.   case 'misc_values':

  438.     include(SERVER_ROOT.'/sections/tools/development/misc_values.php');

  439.     break;

  440. 

  441.   case 'recommendations':

  442.     include(SERVER_ROOT.'/sections/tools/misc/recommendations.php');

  443.     break;

  444. 

  445.   case 'analysis':

  446.     include(SERVER_ROOT.'/sections/tools/misc/analysis.php');

  447.     break;

  448. 

  449.   case 'database_key':

  450.     include(SERVER_ROOT.'/sections/tools/misc/database_key.php');

  451.     break;

  452. 

  453.   case 'process_info':

  454.     include(SERVER_ROOT.'/sections/tools/development/process_info.php');

  455.     break;

  456. 

  457.   case 'rerender_gallery':

  458.     include(SERVER_ROOT.'/sections/tools/development/rerender_gallery.php');

  459.     break;

  460. 

  461.   case 'sandbox1':

  462.     include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox1.php');

  463.     break;

  464. 

  465.   case 'sandbox2':

  466.     include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox2.php');

  467.     break;

  468. 

  469.   case 'sandbox3':

  470.     include(SERVER_ROOT.'/sections/tools/sandboxes/sandbox3.php');

  471.     break;

  472. 

  473.   case 'public_sandbox':

  474.     include(SERVER_ROOT.'/sections/tools/sandboxes/public_sandbox.php');

  475.     break;

  476. 

  477.   case 'mod_sandbox':

  478.     if (check_perms('users_mod')) {

  479.       include(SERVER_ROOT.'/sections/tools/sandboxes/mod_sandbox.php');

  480.     } else {

  481.       error(403);

  482.     }

  483.     break;

  484.   case 'bbcode_sandbox':

  485.     include(SERVER_ROOT.'/sections/tools/sandboxes/bbcode_sandbox.php');

  486.     break;

  487.   case 'calendar':

  488.     include(SERVER_ROOT.'/sections/tools/managers/calendar.php');

  489.     break;

  490.   case 'get_calendar_event':

  491.     include(SERVER_ROOT.'/sections/tools/managers/ajax_get_calendar_event.php');

  492.     break;

  493.   case 'take_calendar_event':

  494.     include(SERVER_ROOT.'/sections/tools/managers/ajax_take_calendar_event.php');

  495.     break;

  496.   case 'mass_pm':

  497.     include(SERVER_ROOT.'/sections/tools/managers/mass_pm.php');

  498.     break;

  499.   case 'take_mass_pm':

  500.     include(SERVER_ROOT.'/sections/tools/managers/take_mass_pm.php');

  501.     break;

  502.   default:

  503.     include(SERVER_ROOT.'/sections/tools/tools.php');

  504. }

  505. ?>