[Summary view] [Print] [Text view]

   1  <?php
   2  /*=======================================================================
   3   Nuke-Evolution Basic: Enhanced PHP-Nuke Web Portal System
   4   =======================================================================*/
   5  
   6  /************************************************************************/
   7  /* PHP-NUKE: Advanced Content Management System                         */
   8  /* ============================================                         */
   9  /*                                                                      */
  10  /* Copyright (c) 2002 by Francisco Burzi                                */
  11  /* http://phpnuke.org                                                   */
  12  /*                                                                      */
  13  /* This program is free software. You can redistribute it and/or modify */
  14  /* it under the terms of the GNU General Public License as published by */
  15  /* the Free Software Foundation; either version 2 of the License.       */
  16  /*                                                                      */
  17  /************************************************************************/
  18  /* Additional security checking code 2003 by chatserv                   */
  19  /* http://www.nukefixes.com -- http://www.nukeresources.com             */
  20  /************************************************************************/
  21  
  22  /*****[CHANGES]**********************************************************
  23  -=[Base]=-
  24        Nuke Patched                             v3.1.0       06/26/2005
  25        Evolution Functions                      v1.5.0       12/16/2005
  26  -=[Other]=-
  27        Referers Fix                             v1.0.0       06/07/2005
  28  -=[Mod]=-
  29        Lock Modules                             v1.0.0       08/04/2005
  30        Banner Ads                               v1.0.0       12/15/2005
  31        Advanced Security Code Control           v1.0.0       12/17/2005
  32   ************************************************************************/
  33  
  34  define('HOME_FILE', true);
  35  define('MODULE_FILE', true);
  36  $_SERVER['PHP_SELF'] = 'modules.php';
  37  
  38  require_once(dirname(__FILE__).'/mainfile.php');
  39  
  40  /*--ARCADE MOD--*/
  41  
  42  global $prefix, $db, $admin_file, $httpref, $httprefmax;
  43  
  44  /*****[BEGIN]******************************************
  45   [ Mod:    Banner Ads                          v1.0.0 ]
  46   [ Mod:    Advanced Security Code Control      v1.0.0 ]
  47   ******************************************************/
  48  if (isset($_GET['op'])) {
  49      if($_GET['op'] == 'ad_click' && isset($_GET['bid'])) {
  50          $bid = intval($_GET['bid']);
  51          list($clickurl) = $db->sql_ufetchrow("SELECT `clickurl` FROM `".$prefix."_banner` WHERE `bid`='$bid'", SQL_NUM);
  52          if(!is_admin()) {
  53             $db->sql_query("UPDATE `".$prefix."_banner` SET `clicks`=clicks+1 WHERE `bid`='$bid'");
  54          }
  55          redirect($clickurl);
  56      } elseif($_GET['op'] == 'gfx') {
  57          include_once(NUKE_INCLUDE_DIR.'gfxchk.php');
  58      } else {
  59          exit('Illegal Operation');
  60      }
  61  }
  62  /*****[END]********************************************
  63   [ Mod:    Banner Ads                          v1.0.0 ]
  64   [ Mod:    Advanced Security Code Control      v1.0.0 ]
  65   ******************************************************/
  66  
  67  if (isset($_GET['url']) && is_admin()) {
  68      redirect($_GET['url']);
  69  }
  70  
  71  $module_name = main_module();
  72  /*****[BEGIN]******************************************
  73   [ Mod:     Lock Modules                       v1.0.0 ]
  74   ******************************************************/
  75  global $lock_modules;
  76  if(($lock_modules && $module_name != 'Your_Account') && !is_admin() && !is_user()) {
  77      include(NUKE_MODULES_DIR.'Your_Account/index.php');
  78  }
  79  /*****[END]********************************************
  80   [ Mod:     Lock Modules                       v1.0.0 ]
  81   ******************************************************/
  82  
  83  $mop = (!isset($mop)) ? 'modload' : trim($mop);
  84  $mod_file = (!isset($mod_file)) ? 'index' : trim($mod_file);
  85  $file = (isset($_REQUEST['file'])) ? trim($_REQUEST['file']) : 'index';
  86  if (!isset($modpath)) { $modpath = ''; }
  87  
  88  if (stristr($file,"..") || stristr($mod_file,"..") || stristr($mop,"..")) {
  89  /*****[BEGIN]******************************************
  90   [ Base:     Evolution Functions               v1.5.0 ]
  91   ******************************************************/
  92      log_write('error', 'Inappropriate module path was used', 'Hack Attempt');
  93  /*****[END]********************************************
  94   [ Base:     Evolution Functions               v1.5.0 ]
  95   ******************************************************/
  96      die("You are so cool...");
  97  } else {
  98      $module = $db->sql_ufetchrow('SELECT `blocks` FROM `'.$prefix.'_modules` WHERE `title`="'.$module_name.'"');
  99      $modpath = NUKE_MODULES_DIR.$module_name."/$file.php";
 100      if (file_exists($modpath)) {
 101          $showblocks = $module['blocks'];
 102          unset($module, $error);
 103          require($modpath);
 104      } else {
 105          DisplayError((is_admin()) ? "<strong>"._HOMEPROBLEM."</strong><br /><br />[ <a href=\"".$admin_file.".php?op=modules\">"._ADDAHOME."</a> ]" : _HOMEPROBLEMUSER);
 106      }
 107  }
 108  
 109  ?>