PATH:
home
/
lab2454c
/
keebchat.com
/
apps
/
native
/
ajax
/
cpanel
<?php # @*************************************************************************@ # @ @author Mansur Altamirov (Mansur_TL) @ # @ @author_url 1: https://www.instagram.com/mansur_tl @ # @ @author_url 2: http://codecanyon.net/user/mansur_tl @ # @ @author_email: highexpresstore@gmail.com @ # @*************************************************************************@ # @ ColibriSM - The Ultimate Modern Social Media Sharing Platform @ # @ Copyright (c) 21.03.2020 ColibriSM. All rights reserved. @ # @*************************************************************************@ include("core/database.php"); if (empty($cl['is_admin'])) { $data['status'] = 400; $data['error'] = 'Invalid access token'; } else if ($action == 'save_settings') { $data['status'] = 400; $data['err_field'] = null; $raw_configs = $db->get(T_CONFIGS); $raw_configs = ((cl_queryset($raw_configs)) ? $raw_configs : array()); if ($raw_configs) { require_once(cl_full_path("core/apps/cpanel/settings/app_ctrl.php")); foreach ($raw_configs as $config_data) { if (isset($_POST[$config_data['name']])) { if (in_array($config_data['name'], array("google_ad_horiz", "google_ad_vert", "google_analytics"))) { $conf_new_val = htmlspecialchars($_POST[$config_data['name']]); } else { $conf_new_val = cl_text_secure($_POST[$config_data['name']]); } if ($config_data['regex']) { if (preg_match($config_data['regex'], $conf_new_val)) { cl_admin_save_config($config_data['name'], $conf_new_val); } else { $field_label = $config_data['title']; $data['message'] = cl_strf('Invalid value of field: %s', $field_label); $data['err_field'] = $config_data['name']; break; } } else { cl_admin_save_config($config_data['name'], $conf_new_val); } } } if (empty($data['err_field'])) { $data['status'] = 200; } } } else if ($action == 'save_about') { $data['status'] = 400; $data['err_field'] = null; $raw_configs = $db->get(T_ABOUTS); $raw_configs = ((cl_queryset($raw_configs)) ? $raw_configs : array()); if ($raw_configs) { foreach ($raw_configs as $config_data) { // var_dump($_POST['about_us']); // var_dump($config_data['value']); // var_dump($config_data['name']); if (isset($_POST['about_us']) && $_POST['about_us'] !== $config_data['value']) { $conf_new_val = $_POST['about_us']; $conf_new_val = addslashes($conf_new_val); mysqli_query($connection, "UPDATE cl_abouts SET value='$conf_new_val' WHERE id=1"); $data['err_field'] = []; } else { $data['message'] = cl_translate('Nothing to save'); $data['err_field'] = []; } } if (empty($data['err_field'])) { $data['status'] = 200; } } } else if ($action == 'save_faq') { $data['status'] = 400; $data['err_field'] = null; $raw_configs = $db->get(T_ABOUTS); $raw_configs = ((cl_queryset($raw_configs)) ? $raw_configs : array()); if ($raw_configs) { foreach ($raw_configs as $config_data) { // var_dump($_POST['faq']); // var_dump($config_data['faq']); if (isset($_POST['faq']) && $_POST['faq'] !== $config_data['faq']) { $conf_new_val = $_POST['faq']; $conf_new_val = addslashes($conf_new_val); mysqli_query($connection, "UPDATE cl_abouts SET faq='$conf_new_val' WHERE id=1"); $data['err_field'] = []; } else { $data['message'] = cl_translate('Nothing to save'); $data['err_field'] = []; } } if (empty($data['err_field'])) { $data['status'] = 200; } } } else if ($action == 'save_terms') { $data['status'] = 400; $data['err_field'] = null; $raw_configs = $db->get(T_ABOUTS); $raw_configs = ((cl_queryset($raw_configs)) ? $raw_configs : array()); if ($raw_configs) { foreach ($raw_configs as $config_data) { // var_dump($_POST['terms']); // var_dump($config_data['terms']); if (isset($_POST['terms']) && $_POST['terms'] !== $config_data['terms']) { $conf_new_val = $_POST['terms']; $conf_new_val = addslashes($conf_new_val); mysqli_query($connection, "UPDATE cl_abouts SET terms='$conf_new_val' WHERE id=1"); $data['err_field'] = []; } else { $data['message'] = cl_translate('Nothing to save'); $data['err_field'] = []; } } if (empty($data['err_field'])) { $data['status'] = 200; } } } else if ($action == 'save_privacy') { $data['status'] = 400; $data['err_field'] = null; $raw_configs = $db->get(T_ABOUTS); $raw_configs = ((cl_queryset($raw_configs)) ? $raw_configs : array()); if ($raw_configs) { foreach ($raw_configs as $config_data) { // var_dump($_POST['privacy']); // var_dump($config_data['privacy']); if (isset($_POST['privacy']) && $_POST['privacy'] !== $config_data['privacy']) { $conf_new_val = $_POST['privacy']; $conf_new_val = addslashes($conf_new_val); mysqli_query($connection, "UPDATE cl_abouts SET privacy='$conf_new_val' WHERE id=1"); $data['err_field'] = []; } else { $data['message'] = cl_translate('Nothing to save'); $data['err_field'] = []; } } if (empty($data['err_field'])) { $data['status'] = 200; } } } else if ($action == 'save_cookie') { $data['status'] = 400; $data['err_field'] = null; $raw_configs = $db->get(T_ABOUTS); $raw_configs = ((cl_queryset($raw_configs)) ? $raw_configs : array()); if ($raw_configs) { foreach ($raw_configs as $config_data) { // var_dump($_POST['privacy']); // var_dump($config_data['privacy']); if (isset($_POST['cookie']) && $_POST['cookie'] !== $config_data['cookie']) { $conf_new_val = $_POST['cookie']; $conf_new_val = addslashes($conf_new_val); mysqli_query($connection, "UPDATE cl_abouts SET cookie='$conf_new_val' WHERE id=1"); $data['err_field'] = []; } else { $data['message'] = cl_translate('Nothing to save'); $data['err_field'] = []; } } if (empty($data['err_field'])) { $data['status'] = 200; } } } else if ($action == 'save_site_logo') { if (not_empty($_FILES['logo']) && not_empty($_FILES['logo']['tmp_name'])) { $imgFile = $_FILES['logo']['name']; $tmp_dir = $_FILES['logo']['tmp_name']; $imgSize = $_FILES['logo']['size']; $results = mysqli_query($connection, "select * from cl_configs WHERE name='site_logo'"); if($imgFile) { $upload_dir = 'themes/default/'; // upload directory $imgExt = strtolower(pathinfo($imgFile,PATHINFO_EXTENSION)); // get image extension $valid_extensions = array('jpeg', 'jpg', 'png', 'gif'); // valid extensions $userpic = rand(1000,1000000).".".$imgExt; if(in_array($imgExt, $valid_extensions)) { if($imgSize < 2000000) { while($row = mysqli_fetch_array( $results )) { unlink($upload_dir.$row['value']); } move_uploaded_file($tmp_dir,$upload_dir.$userpic); } else { $errMSG = "Sorry, your file is too large it should be less then 2MB"; } } else { $errMSG = "Sorry, only JPG, JPEG, PNG & GIF files are allowed."; } } else { // if no image selected the old image remain as it is. $userpic = $row['value']; // old image from database } if(!isset($errMSG)) { mysqli_query($connection, "UPDATE cl_configs SET value='$userpic' WHERE name='site_logo'"); $data['status'] = 200; } else{ $data['err_code'] = "invalid_req_data"; $data['status'] = 400; } } } else if ($action == 'get_users') { require_once(cl_full_path("core/apps/cpanel/users/app_ctrl.php")); $filter_data = fetch_or_get($_POST['filter'], array()); $offset_to = fetch_or_get($_POST['dir'], 'none'); $offset_lt = ((is_posnum($_POST['offset_lt'])) ? intval($_POST['offset_lt']) : 0); $offset_gt = ((is_posnum($_POST['offset_gt'])) ? intval($_POST['offset_gt']) : 0); $users = array(); $data['status'] = 404; $data['err_code'] = 0; $html_arr = array(); if ($offset_to == 'up' && $offset_lt) { $users = cl_admin_get_users(array( 'limit' => 7, 'offset' => $offset_lt, 'offset_to' => 'gt', 'order' => 'ASC', 'filter' => $filter_data )); $users = array_reverse($users); } else if($offset_to == 'down' && $offset_gt) { $users = cl_admin_get_users(array( 'limit' => 7, 'offset' => $offset_gt, 'offset_to' => 'lt', 'order' => 'DESC', 'filter' => $filter_data )); } if (not_empty($users)) { foreach ($users as $cl['li']) { array_push($html_arr, cl_template('cpanel/assets/users/includes/list_item')); } $data['status'] = 200; $data['html'] = implode('', $html_arr); } } else if ($action == 'search_users') { require_once(cl_full_path("core/apps/cpanel/users/app_ctrl.php")); $filter_data = fetch_or_get($_POST['filter'], array()); $data['err_code'] = 0; $html_arr = array(); $users = cl_admin_get_users(array( 'limit' => 7, 'filter' => $filter_data )); if (not_empty($users)) { foreach ($users as $cl['li']) { array_push($html_arr, cl_template('cpanel/assets/users/includes/list_item')); } $data['status'] = 200; $data['html'] = implode('', $html_arr); } else{ $data['status'] = 404; $data['html'] = cl_template('cpanel/assets/users/includes/filter404'); } } else if ($action == 'get_posts') { require_once(cl_full_path("core/apps/cpanel/posts/app_ctrl.php")); $offset_to = fetch_or_get($_GET['dir'], 'none'); $offset_lt = ((is_posnum($_GET['offset_lt'])) ? intval($_GET['offset_lt']) : 0); $offset_gt = ((is_posnum($_GET['offset_gt'])) ? intval($_GET['offset_gt']) : 0); $posts = array(); $data['status'] = 404; $data['err_code'] = 0; $html_arr = array(); if ($offset_to == 'up' && $offset_lt) { $posts = cl_admin_get_posts(array( 'limit' => 10, 'offset' => $offset_lt, 'offset_to' => 'gt', 'order' => 'ASC' )); $posts = array_reverse($posts); } else if($offset_to == 'down' && $offset_gt) { $posts = cl_admin_get_posts(array( 'limit' => 10, 'offset' => $offset_gt, 'offset_to' => 'lt', 'order' => 'DESC' )); } if (not_empty($posts)) { foreach ($posts as $cl['li']) { array_push($html_arr, cl_template('cpanel/assets/publications/includes/list_item')); } $data['status'] = 200; $data['html'] = implode('', $html_arr); } } else if($action == 'delete_user') { $data['status'] = 404; $data['err_code'] = 0; $user_id = fetch_or_get($_POST['id'], 0); if (is_posnum($user_id)) { $data['status'] = 200; $data['status_code'] = (cl_delete_user_data($user_id) == true) ? 1 : 0; } } else if($action == 'toggle_user_status') { $data['status'] = 404; $data['err_code'] = 0; $user_id = fetch_or_get($_POST['id'], 0); if (is_posnum($user_id)) { $udata = cl_raw_user_data($user_id); if (not_empty($udata)) { $data['status'] = 200; $data['message'] = "Your changes has been successfully saved!"; $status = (($udata['active'] == '1') ? '2' : '1' ); cl_update_user_data($user_id, array( 'active' => $status )); if ($status == '2') { cl_signout_user_by_id($user_id); } } } } else if($action == 'toggle_user_type') { $data['status'] = 404; $data['err_code'] = 0; $user_id = fetch_or_get($_POST['id'], 0); if (is_posnum($user_id)) { $udata = cl_raw_user_data($user_id); if (not_empty($udata)) { $data['status'] = 200; $data['message'] = "Your changes has been successfully saved!"; $user_type = (($udata['admin'] == '1') ? '0' : '1' ); cl_update_user_data($user_id, array( 'admin' => $user_type )); } } } else if($action == 'delete_post') { $data['err_code'] = 0; $data['status'] = 400; $post_id = fetch_or_get($_POST['id'], 0); if (is_posnum($post_id)) { $post_data = cl_raw_post_data($post_id); if (not_empty($post_data)) { $post_owner = cl_raw_user_data($post_data['user_id']); if (not_empty($post_owner)) { if ($post_data['target'] == 'publication') { $posts_total = ($post_owner['posts'] -= 1); $posts_total = ((is_posnum($posts_total)) ? $posts_total : 0); cl_update_user_data($post_data['user_id'], array( 'posts' => $posts_total )); $db = $db->where('publication_id', $post_id); $qr = $db->delete(T_POSTS); } else { cl_update_thread_replys($post_data['thread_id'], 'minus'); } cl_recursive_delete_post($post_id); $data['status'] = 200; } } } } else if($action =='create_backup') { require_once(cl_full_path("core/apps/cpanel/backups/app_ctrl.php")); require_once(cl_full_path("core/apps/cpanel/settings/app_ctrl.php")); $data['err_code'] = 'failed_to_create_backup'; $data['status'] = 500; $new_backup = cl_admin_create_backup(); if ($new_backup) { $time = time(); $data['status'] = 200; $data['err_code'] = 0; $data['last_backup'] = date('d F, Y - h:m', $time); cl_admin_save_config('last_backup', $time); } } else if ($action == 'get_account_verifications') { require_once(cl_full_path("core/apps/cpanel/account_verification/app_ctrl.php")); $offset_to = fetch_or_get($_GET['dir'], 'none'); $offset_lt = ((is_posnum($_GET['offset_lt'])) ? intval($_GET['offset_lt']) : 0); $offset_gt = ((is_posnum($_GET['offset_gt'])) ? intval($_GET['offset_gt']) : 0); $data['status'] = 404; $data['err_code'] = 0; $html_arr = array(); if ($offset_to == 'up' && $offset_lt) { $requests = cl_admin_get_verification_requests(array( 'limit' => 7, 'offset' => $offset_lt, 'offset_to' => 'gt', 'order' => 'ASC' )); $requests = array_reverse($requests); } else if($offset_to == 'down' && $offset_gt) { $requests = cl_admin_get_verification_requests(array( 'limit' => 7, 'offset' => $offset_gt, 'offset_to' => 'lt', 'order' => 'DESC' )); } if (not_empty($requests)) { foreach ($requests as $cl['li']) { array_push($html_arr, cl_template('cpanel/assets/account_verification/includes/list_item')); } $data['status'] = 200; $data['html'] = implode('', $html_arr); } } else if ($action == 'get_verifreq_data') { require_once(cl_full_path("core/apps/cpanel/account_verification/app_ctrl.php")); $request_id = fetch_or_get($_GET['id'], 'none'); $data['status'] = 404; $data['err_code'] = 0; $cl['req_data'] = cl_admin_get_verification_request_data($request_id); if (not_empty($cl['req_data'])) { $data['status'] = 200; $data['html'] = cl_template('cpanel/assets/account_verification/modals/popup_ticket'); } } else if ($action == 'delete_verifreq_data') { $request_id = fetch_or_get($_GET['id'], 'none'); $data['status'] = 404; $data['err_code'] = 0; $db = $db->where('id', $request_id); $req_data = $db->getOne(T_VERIFICATIONS); if (cl_queryset($req_data)) { $data['status'] = 200; $db = $db->where('id', $request_id); $qr = $db->delete(T_VERIFICATIONS); cl_delete_media($req_data['video_message']); cl_update_user_data($req_data['user_id'], array( 'verified' => '0' )); } else { $data['status'] = 400; $data['message'] = "An error occurred while processing your request. Please try again later."; } } else if ($action == 'verify_user_account') { $request_id = fetch_or_get($_GET['id'], 'none'); $data['status'] = 404; $data['err_code'] = 0; $db = $db->where('id', $request_id); $req_data = $db->getOne(T_VERIFICATIONS); if (cl_queryset($req_data)) { $data['status'] = 200; $data['message'] = "Account has been verified successfully!"; $db = $db->where('id', $request_id); $qr = $db->delete(T_VERIFICATIONS); cl_delete_media($req_data['video_message']); cl_update_user_data($req_data['user_id'], array( 'verified' => '1' )); cl_notify_user(array( 'subject' => 'verified', 'user_id' => $req_data['user_id'], 'entry_id' => 0 )); } else { $data['status'] = 400; $data['message'] = "An error occurred while processing your request. Please try again later."; } } else if($action == "update_sitemap") { $data['status'] = 404; $data['err_code'] = 0; $data['errors'] = array(); if (is_writable('sitemap') != true) { $data['err_code'] = "permission_denied"; $data['message'] = "The sitemaps storage folder does not exists or not writable!"; } else if(is_writable('sitemap/sitemap-index.xml') != true) { $data['err_code'] = "permission_denied"; $data['message'] = "The sitemap-index.xml does not exists or not writable!"; } else if(is_writable('sitemap/maps') != true) { $data['err_code'] = "permission_denied"; $data['message'] = "The sitemap/maps forder does not exists or not writable!"; } else { require_once(cl_full_path("core/apps/cpanel/sitemap/app_ctrl.php")); $old_maps = glob('sitemap/maps/*.xml'); $old_maps = ((is_array($old_maps) && not_empty($old_maps)) ? $old_maps : array()); $maps = 0; $posts = cl_admin_get_publication_indexes(); $users = cl_admin_get_user_indexes(); if (not_empty($old_maps)) { foreach($old_maps as $old_site_map){ try { @unlink($old_site_map); } catch (Exception $e) { /* pass */ } } } if (not_empty($posts)) { $posts = array_chunk($posts, 1000); foreach ($posts as $cl['sitemap_entries']) { $map_url = cl_strf("sitemap/maps/sitemap-%d.xml", $maps); $map_code = cl_sitemap('temps/sitemap'); $map_code = trim($map_code); $map_code = str_replace("{%xml_version%}", '<?xml version="1.0" encoding="UTF-8"?>', $map_code); $exe_code = file_put_contents($map_url, $map_code); if ($exe_code) { $maps += 1; } else { $data['errors'][] = array( 'file_index' => $maps, 'file_path' => $map_url, 'message' => "Failed to save sitemap file." ); } } } if (not_empty($users)) { $users = array_chunk($users, 1000); foreach ($users as $cl['sitemap_entries']) { $map_url = cl_strf("sitemap/maps/sitemap-%d.xml", $maps); $map_code = cl_sitemap('temps/sitemap'); $map_code = trim($map_code); $map_code = str_replace("{%xml_version%}", '<?xml version="1.0" encoding="UTF-8"?>', $map_code); $exe_code = file_put_contents($map_url, $map_code); if ($exe_code) { $maps += 1; } else { $data['errors'][] = array( 'file_index' => $maps, 'file_path' => $map_url, 'message' => "Failed to save sitemap file." ); } } } if($maps > 0) { $cl['map_indexes'] = $maps; $sitemap_index = cl_sitemap('temps/index'); $sitemap_index = trim($sitemap_index); $sitemap_index = str_replace("{%xml_version%}", '<?xml version="1.0" encoding="UTF-8"?>', $sitemap_index); $exe_code = file_put_contents('sitemap/sitemap-index.xml', $sitemap_index); if ($exe_code) { $data['status'] = 200; $data['last_sitemap'] = date('d F, Y - h:m'); $db = $db->where('name', 'sitemap_update'); $qr = $db->update(T_CONFIGS, array( 'value' => time() )); } else { $data['errors'][] = array( 'file_index' => $maps, 'file_path' => $map_url, 'message' => "Failed to save sitemap file." ); } } } } else if ($action == 'get_account_reports') { require_once(cl_full_path("core/apps/cpanel/account_reports/app_ctrl.php")); $offset_to = fetch_or_get($_GET['dir'], 'none'); $offset_lt = ((is_posnum($_GET['offset_lt'])) ? intval($_GET['offset_lt']) : 0); $offset_gt = ((is_posnum($_GET['offset_gt'])) ? intval($_GET['offset_gt']) : 0); $data['status'] = 404; $data['err_code'] = 0; $html_arr = array(); if ($offset_to == 'up' && $offset_lt) { $reports = cl_admin_get_profile_reports(array( 'limit' => 7, 'offset' => $offset_lt, 'offset_to' => 'gt', 'order' => 'ASC' )); $reports = array_reverse($reports); } else if($offset_to == 'down' && $offset_gt) { $reports = cl_admin_get_profile_reports(array( 'limit' => 7, 'offset' => $offset_gt, 'offset_to' => 'lt', 'order' => 'DESC' )); } if (not_empty($reports)) { foreach ($reports as $cl['li']) { array_push($html_arr, cl_template('cpanel/assets/account_reports/includes/list_item')); } $data['status'] = 200; $data['html'] = implode('', $html_arr); } } else if ($action == 'get_account_report_data') { require_once(cl_full_path("core/apps/cpanel/account_reports/app_ctrl.php")); $report_id = fetch_or_get($_GET['id'], 'none'); $data['status'] = 404; $data['err_code'] = 0; $cl['rep_data'] = cl_admin_get_account_report_data($report_id); if (not_empty($cl['rep_data'])) { $data['status'] = 200; $data['is_seen'] = $cl['rep_data']['seen']; $data['html'] = cl_template('cpanel/assets/account_reports/modals/popup_ticket'); } } else if($action == 'delete_account_report_data') { $report_id = fetch_or_get($_GET['id'], 'none'); $data['status'] = 404; $data['err_code'] = 0; if (is_posnum($report_id)) { require_once(cl_full_path("core/apps/cpanel/account_reports/app_ctrl.php")); $db = $db->where('id', $report_id); $qr = $db->delete(T_PROF_REPORTS); $data['status'] = 200; $data['total'] = cl_admin_get_total_profile_reports();; } } else if ($action == 'get_affiliate_payouts') { require_once(cl_full_path("core/apps/cpanel/affiliate_payouts/app_ctrl.php")); $offset_to = fetch_or_get($_GET['dir'], 'none'); $offset_lt = ((is_posnum($_GET['offset_lt'])) ? intval($_GET['offset_lt']) : 0); $offset_gt = ((is_posnum($_GET['offset_gt'])) ? intval($_GET['offset_gt']) : 0); $data['status'] = 404; $data['err_code'] = 0; $html_arr = array(); if ($offset_to == 'up' && $offset_lt) { $requests = cl_get_affiliate_payouts(array( 'limit' => 7, 'offset' => $offset_lt, 'offset_to' => 'gt', 'order' => 'ASC' )); $requests = array_reverse($requests); } else if($offset_to == 'down' && $offset_gt) { $requests = cl_get_affiliate_payouts(array( 'limit' => 7, 'offset' => $offset_gt, 'offset_to' => 'lt', 'order' => 'DESC' )); } if (not_empty($requests)) { foreach ($requests as $cl['li']) { array_push($html_arr, cl_template('cpanel/assets/affiliate_payouts/includes/list_item')); } $data['status'] = 200; $data['html'] = implode('', $html_arr); } } else if ($action == 'delete_affiliate_payout') { $request_id = fetch_or_get($_POST['id'], 'none'); $data['status'] = 400; $data['err_code'] = 0; if (is_posnum($request_id)) { $data['status'] = 200; $db = $db->where('id', $request_id); $qr = $db->delete(T_AFF_PAYOUTS); } } else if ($action == 'update_affiliate_payout_status') { $request_id = fetch_or_get($_POST['id'], 'none'); $data['status'] = 400; $data['err_code'] = 0; if (is_posnum($request_id)) { $data['status'] = 200; $db = $db->where('id', $request_id); $qr = $db->update(T_AFF_PAYOUTS, array('status' => 'paid')); } } else if ($action == 'get_user_ads') { require_once(cl_full_path("core/apps/cpanel/ads/app_ctrl.php")); $offset_to = fetch_or_get($_GET['dir'], 'none'); $offset_lt = ((is_posnum($_GET['offset_lt'])) ? intval($_GET['offset_lt']) : 0); $offset_gt = ((is_posnum($_GET['offset_gt'])) ? intval($_GET['offset_gt']) : 0); $data['status'] = 404; $data['err_code'] = 0; $html_arr = array(); if ($offset_to == 'up' && $offset_lt) { $user_ads = cl_admin_get_user_ads(array( 'limit' => 10, 'offset' => $offset_lt, 'offset_to' => 'gt', 'order' => 'ASC' )); $user_ads = array_reverse($user_ads); } else if($offset_to == 'down' && $offset_gt) { $user_ads = cl_admin_get_user_ads(array( 'limit' => 10, 'offset' => $offset_gt, 'offset_to' => 'lt', 'order' => 'DESC' )); } if (not_empty($user_ads)) { foreach ($user_ads as $cl['li']) { array_push($html_arr, cl_template('cpanel/assets/manage_ads/includes/list_item')); } $data['status'] = 200; $data['html'] = implode('', $html_arr); } } else if($action == 'delete_user_ad') { $data['err_code'] = 0; $data['status'] = 400; $ad_id = fetch_or_get($_POST['id'], false); $ad_data = cl_raw_ad_data($ad_id); if (not_empty($ad_data)) { cl_delete_media($ad_data['cover']); cl_db_delete_item(T_ADS, array("id" => $ad_id)); $data['status'] = 200; } } else if($action == 'approve_user_ad') { $data['err_code'] = 0; $data['status'] = 400; $ad_id = fetch_or_get($_POST['id'], false); $ad_data = cl_raw_ad_data($ad_id); if (not_empty($ad_data)) { $data['status'] = 200; cl_update_ad_data($ad_id, array( "approved" => "Y" )); cl_notify_user(array( 'subject' => 'ad_approval', 'user_id' => $ad_data["user_id"], 'entry_id' => $ad_data["id"] )); } } else if($action == 'delete_old_swifts') { require_once(cl_full_path("core/apps/cpanel/swifts/app_ctrl.php")); cl_admin_delete_user_old_swifts(); $data['status'] = 200; } else if($action == 'activate_theme') { $data['err_code'] = 0; $data['status'] = 400; $theme_name = fetch_or_get($_POST['theme_name'], false); if (not_empty($theme_name) && is_string($theme_name)) { require_once(cl_full_path("core/apps/cpanel/settings/app_ctrl.php")); cl_admin_save_config("theme", $theme_name); $data['status'] = 200; } } else if ($action == 'get_post_reports') { require_once(cl_full_path("core/apps/cpanel/post_reports/app_ctrl.php")); $offset_to = fetch_or_get($_GET['dir'], 'none'); $offset_lt = ((is_posnum($_GET['offset_lt'])) ? intval($_GET['offset_lt']) : 0); $offset_gt = ((is_posnum($_GET['offset_gt'])) ? intval($_GET['offset_gt']) : 0); $data['status'] = 404; $data['err_code'] = 0; $html_arr = array(); if ($offset_to == 'up' && $offset_lt) { $reports = cl_admin_get_post_reports(array( 'limit' => 7, 'offset' => $offset_lt, 'offset_to' => 'gt', 'order' => 'ASC' )); $reports = array_reverse($reports); } else if($offset_to == 'down' && $offset_gt) { $reports = cl_admin_get_post_reports(array( 'limit' => 7, 'offset' => $offset_gt, 'offset_to' => 'lt', 'order' => 'DESC' )); } if (not_empty($reports)) { foreach ($reports as $cl['li']) { array_push($html_arr, cl_template('cpanel/assets/post_reports/includes/list_item')); } $data['status'] = 200; $data['html'] = implode('', $html_arr); } } else if ($action == 'get_post_report_data') { require_once(cl_full_path("core/apps/cpanel/post_reports/app_ctrl.php")); $report_id = fetch_or_get($_GET['id'], 'none'); $data['status'] = 404; $data['err_code'] = 0; $cl['rep_data'] = cl_admin_get_post_report_data($report_id); if (not_empty($cl['rep_data'])) { $data['status'] = 200; $data['is_seen'] = $cl['rep_data']['seen']; $data['html'] = cl_template('cpanel/assets/post_reports/modals/popup_ticket'); } } else if($action == 'delete_post_report_data') { $report_id = fetch_or_get($_GET['id'], 'none'); $data['status'] = 404; $data['err_code'] = 0; if (is_posnum($report_id)) { require_once(cl_full_path("core/apps/cpanel/post_reports/app_ctrl.php")); cl_db_delete_item(T_PUB_REPORTS, array( 'id' => $report_id )); $data['status'] = 200; $data['total'] = cl_admin_get_total_post_reports();; } } else if($action == 'as3_api_contest') { try { $cl['config']['as3_storage'] = 'on'; $cl['config']['as3_onup_delete'] = 'no'; $test_aws3_upload = cl_upload2s3(cl_full_path("upload/default/as3-do-not-delete.png")); if ($test_aws3_upload == true) { $data['status'] = 200; $data['message'] = 'Connection test was successful!'; } else { $data['status'] = 500; $data['message'] = "Error found while processing your request. Please try again later!"; } } catch (Exception $e) { $data['status'] = 400; $data['message'] = $e->getMessage(); } } else if($action == "delete_spam_accounts") { $data['status'] = 200; $data['err_code'] = 0; $db = $db->where("time", (time() - 604800), "<"); $qr = $db->delete(T_ACC_VALIDS); }
[-] demo.php
[edit]
[+]
..
[-] content.php
[edit]