PC World 2005 April

home *** CD-ROM | disk | FTP | other *** search

/ PC World 2005 April / PCWorld_2005-04_cd.bin / akce / web / unitednuke / unitednuke.exe / html / modules.php < prev next >

Wrap

PHP Script | 2004-08-26 | 3.5 KB | 99 lines

<?php /************************************************************************/ /* PHP-NUKE: Advanced Content Management System */ /* ============================================ */ /* */ /* Copyright (c) 2002 by Francisco Burzi */ /* http://phpnuke.org */ /* */ /* This program is free software. You can redistribute it and/or modify */ /* it under the terms of the GNU General Public License as published by */ /* the Free Software Foundation; either version 2 of the License. */ /************************************************************************/ require_once("mainfile.php"); $module = 1; $name = trim($name); if (isset($name)) { if (eregi("http\:\/\/", $name)) { die("Hi and Bye"); } $modstring = strtolower($_SERVER['QUERY_STRING']); if (stripos_clone($modstring,"&user=") AND ($name=="Private_Messages" || $name=="Forums" || $name=="Members_List")) header("Location: index.php"); global $nukeuser, $db, $prefix; $nukeuser = base64_decode($user); $nukeuser = addslashes($nukeuser); $row = $db->sql_fetchrow($db->sql_query("SELECT active, view FROM ".$prefix."_modules WHERE title='$name'")); $mod_active = intval($row['active']); $view = intval($row['view']); if (($mod_active == 1) OR ($mod_active == 0 AND is_admin($admin))) { if (!isset($mop)) { $mop="modload"; } if (!isset($file)) { $file="index"; } if (ereg("\.\.",$name) || ereg("\.\.",$file) || ereg("\.\.",$mop)) { echo "You are so cool..."; } else { $ThemeSel = get_theme(); if (file_exists("themes/$ThemeSel/modules/$name/".$file.".php")) { $modpath = "themes/$ThemeSel/"; } else { $modpath = ""; } if ($view == 0) { $modpath .= "modules/$name/".$file.".php"; if (file_exists($modpath)) { include($modpath); } else { die ("Sorry, such file doesn't exist..."); } } else if ($view == 1 AND is_user($user) || is_admin($admin)) { $modpath .= "modules/$name/".$file.".php"; if (file_exists($modpath)) { include($modpath); } else { die ("Sorry, such file doesn't exist..."); } } elseif ($view == 1 AND !is_user($user) || !is_admin($admin)) { $pagetitle = "- "._ACCESSDENIED.""; include("header.php"); title("$sitename: "._ACCESSDENIED.""); OpenTable(); echo "<center>"._RESTRICTEDAREA." " .""._MODULEUSERS."" .""._GOBACK.""; CloseTable(); include("footer.php"); die(); } else if ($view == 2 AND is_admin($admin)) { $modpath .= "modules/$name/".$file.".php"; if (file_exists($modpath)) { include($modpath); } else { die ("Sorry, such file doesn't exist..."); } } elseif ($view == 2 AND !is_admin($admin)) { $pagetitle = "- "._ACCESSDENIED.""; include("header.php"); title("$sitename: "._ACCESSDENIED.""); OpenTable(); echo "<center>"._RESTRICTEDAREA." " .""._MODULESADMINS."" .""._GOBACK.""; CloseTable(); include("footer.php"); die(); } } } else { include("header.php"); OpenTable(); echo "<center>"._MODULENOTACTIVE." " .""._GOBACK."</center>"; CloseTable(); include("footer.php"); } } else { die ("Sorry, you can't access this file directly..."); } ?>