home *** CD-ROM | disk | FTP | other *** search
- <?php
-
- /************************************************************************/
- /* PHP-NUKE: Advanced Content Management System */
- /* ============================================ */
- /* */
- /* Copyright (c) 2002 by Francisco Burzi */
- /* http://phpnuke.org */
- /* */
- /* This program is free software. You can redistribute it and/or modify */
- /* it under the terms of the GNU General Public License as published by */
- /* the Free Software Foundation; either version 2 of the License. */
- /************************************************************************/
- require_once("mainfile.php");
- $module = 1;
-
- $name = trim($name);
- if (isset($name)) {
- if (eregi("http\:\/\/", $name)) {
- die("Hi and Bye");
- }
- $modstring = strtolower($_SERVER['QUERY_STRING']);
- if (stripos_clone($modstring,"&user=") AND ($name=="Private_Messages" || $name=="Forums" || $name=="Members_List")) header("Location: index.php");
- global $nukeuser, $db, $prefix;
- $nukeuser = base64_decode($user);
- $nukeuser = addslashes($nukeuser);
- $row = $db->sql_fetchrow($db->sql_query("SELECT active, view FROM ".$prefix."_modules WHERE title='$name'"));
- $mod_active = intval($row['active']);
- $view = intval($row['view']);
- if (($mod_active == 1) OR ($mod_active == 0 AND is_admin($admin))) {
- if (!isset($mop)) { $mop="modload"; }
- if (!isset($file)) { $file="index"; }
- if (ereg("\.\.",$name) || ereg("\.\.",$file) || ereg("\.\.",$mop)) {
- echo "You are so cool...";
- } else {
- $ThemeSel = get_theme();
- if (file_exists("themes/$ThemeSel/modules/$name/".$file.".php")) {
- $modpath = "themes/$ThemeSel/";
- } else {
- $modpath = "";
- }
- if ($view == 0) {
- $modpath .= "modules/$name/".$file.".php";
- if (file_exists($modpath)) {
- include($modpath);
- } else {
- die ("Sorry, such file doesn't exist...");
- }
- } else if ($view == 1 AND is_user($user) || is_admin($admin)) {
- $modpath .= "modules/$name/".$file.".php";
- if (file_exists($modpath)) {
- include($modpath);
- } else {
- die ("Sorry, such file doesn't exist...");
- }
- } elseif ($view == 1 AND !is_user($user) || !is_admin($admin)) {
- $pagetitle = "- "._ACCESSDENIED."";
- include("header.php");
- title("$sitename: "._ACCESSDENIED."");
- OpenTable();
- echo "<center><b>"._RESTRICTEDAREA."</b><br><br>"
- .""._MODULEUSERS.""
- .""._GOBACK."";
- CloseTable();
- include("footer.php");
- die();
- } else if ($view == 2 AND is_admin($admin)) {
- $modpath .= "modules/$name/".$file.".php";
- if (file_exists($modpath)) {
- include($modpath);
- } else {
- die ("Sorry, such file doesn't exist...");
- }
- } elseif ($view == 2 AND !is_admin($admin)) {
- $pagetitle = "- "._ACCESSDENIED."";
- include("header.php");
- title("$sitename: "._ACCESSDENIED."");
- OpenTable();
- echo "<center><b>"._RESTRICTEDAREA."</b><br><br>"
- .""._MODULESADMINS.""
- .""._GOBACK."";
- CloseTable();
- include("footer.php");
- die();
- }
- }
- } else {
- include("header.php");
- OpenTable();
- echo "<center>"._MODULENOTACTIVE."<br><br>"
- .""._GOBACK."</center>";
- CloseTable();
- include("footer.php");
- }
- } else {
- die ("Sorry, you can't access this file directly...");
- }
-
- ?>