| \n"; $playa.= " | \n"; $playa.= " $lag_username\n"; $playa.= " | \n"; $playa.= "
| \n"; $playa.= " | \n"; $playa.= " $lag_pass\n"; $playa.= " | \n"; $playa.= "
| \n"; $playa.= " | \n"; $playa.= " $lag_cofirm_pass\n"; $playa.= " | \n"; $playa.= "
| \n"; $playa.= " | \n"; $playa.= " $lag_email\n"; $playa.= " | \n"; $playa.= "
| \n"; $playa.= " | \n"; $playa.= " $lag_confirm_email\n"; $playa.= " | \n"; $playa.= "
| \n"; $playa.= " | \n"; $playa.= " $lag_country\n"; $playa.= " | \n"; $playa.= "
| \n"; $playa.= " | \n"; $playa.= " $lag_gender\n"; $playa.= " | \n"; $playa.= "
| $lag_ques_forget_pass | \n"; $playa.= "\n"; $playa.= " $lag_aman_ques\n"; $playa.= " | \n"; $playa.= "
| \n"; $playa.= " | \n"; $playa.= " $lag_answer\n"; $playa.= " | \n"; $playa.= "
| \n"; $playa.= " | $lag_another_info | \n"; $playa.= "
| $no1 + $no2 = | \n"; $playa.= "\n"; $playa.= " $lag_enter_code\n"; $playa.= " | \n"; $playa.= "
| \n"; $playa.= " $lag_enter_code\n"; $playa.= " | \n"; $playa.= "|
| \n"; $playa.= " | \n"; $playa.= "
$lag_error_reg
";
do_html_2("$lag_reg_new_member",$playa);
}
}
else
{
do_html_1($lag_reg_new_member);
$playa.= " $lag_closed_reg
";
do_html_2("$lag_reg_new_member",$playa);
}
}
if($action==doadd)
{
$name= filler($_REQUEST['name']);
$pass= filler($_REQUEST['pass']);
$confpass=addslashes ($_REQUEST['confpass']);
$email= addslashes ($_REQUEST['email']);
$confemail= ($_REQUEST['confemail']);
$country= filler($_REQUEST['loc']);
$gender= filler($_REQUEST['gender']);
$ques= filler($_REQUEST['ques']);
$answ= filler($_REQUEST['answ']);
$info= filler($_REQUEST['info']);
$passme = $pass;
$sql = mysqli_query($con, "select * from user WHERE name='$name' || email='$email'");
while($row=mysqli_fetch_row($sql))
{
$namesql=$row[1];
$emailsql=$row[3];
}
if($name==''){die ($lag_required);}
if($name==$namesql){die ($lag_used_name);}
if($email==$emailsql){die ($lag_used_email);}
if($email!=$confemail){die ($lag_sure_match_email);}
if($pass!=$confpass){die ($lag_sure_match_pass);}
$capquery =mysqli_query($con, " SELECT * FROM setextra WHERE id = 2 LIMIT 1 ");
while($cap_qrow = mysqli_fetch_row($capquery)){
$cap_type = $cap_qrow[2];
}
if(!$cap_type || empty($cap_type) || $cap_type==null || $cap_type=="")
{
$cap_type = 2;
}
if($cap_type == 3)
{
}
elseif($cap_type == 1)
{
if(($_POST['sum']!=$_POST['no1']+$_POST['no2'])|| $_POST['sum']=="")
die($lag_error_code);
}
else
{
if(md5($_POST['code']) != $_SESSION['key'])
die($lag_error_code);
}
$date = gmdate("D F d Y h:i:s");
$time = strtotime($date);
$pass=md5($pass);
mysql_db_query($dbname,"INSERT INTO user (id,name,pass,email,comm,gruop,country,gender,info,ques,answ,regdate,lastvisit,newvisit) VALUES ('','$name','$pass','$email','','','$country','$gender','$info','$ques','$answ','$time','$time','$time')");
$w=mysqli_query($con, "select * from setting where id='1'");
while($row=mysqli_fetch_row($w))
{
$webmaster_email=$row[8];
$siteurl=$row[7];
$titlee=$row[3];
}
$headers .= "From:$titlee<$webmaster_email>\r\n";
$headers .= "X-Mailer: PHP/".phpversion()."\n";
$headers .= "MIME-Version: 1.0\n";
$headers .= "Content-Type: text/plain; charset=\"windows-1256\"\r\n";
$subject = " $lag_welcome_new_member $titlee \n";
$message = "\r\n
$lag_welcome_new_member_message1 \r\n
$lag_welcome_new_member_message2 $titlee \r\n
$lag_welcome_new_member_message3 \r\n
name = {$name} \r\n
password= {$passme} \r\n
$siteurl \r\n
($lag_not_must_reply )";
@mail($email, $subject, $message, $headers);
//end email
$playa.= "$lag_forgetpass"; do_html_2("$lag_login",$playa); } if($action==dologin) { $name= $_REQUEST['name']; $pass= md5($_REQUEST['pass']); $sql = mysqli_query($con, "select * from user WHERE name='$name' and pass='$pass'"); while ($row=mysqli_fetch_row($sql)){$id=$row[0];$group=$row[5];$name=$row[1];$newvisit=$row[13];} if ($id){ $_SESSION['iduser'] = $id; if($group==1 || $group==2 ) { $_SESSION['admin'] = $name; $_SESSION['group'] = $group; } $iduser=$_SESSION['iduser']; mysqli_query($con, " UPDATE `user` SET `lastvisit` = '$newvisit' WHERE id='$iduser'"); $redirsql=mysqli_query($con, "select * from user where id='$iduser'"); while($redirr=mysqli_fetch_row($redirsql)) { if( $redirr[7]=='' || $redirr[9]=='' ) { $playa.= "
$lag_redirect_index"; echo""; } } do_html_1($lag_login); do_html_2("$lag_login",$playa); } else { die("
".$lag_error_login."
"); } } if($action==forgetpass) { do_html_1($lag_retrieved_pass); $playa.=""; do_html_2("$lag_retrieved_pass",$playa); } if($action==doforgetpass) { $name= $_REQUEST['name']; $ques= $_REQUEST['ques']; $answ= $_REQUEST['answ']; if($name=='' || $_POST['code']=='' || $ques=='' || $answ=='' ){die ($lag_required);} $capquery =mysqli_query($con, " SELECT * FROM setextra WHERE id = 2 LIMIT 1 "); while($cap_qrow = mysqli_fetch_row($capquery)){ $cap_type = $cap_qrow[2]; } if(!$cap_type || empty($cap_type) || $cap_type==null || $cap_type=="") { $cap_type = 2; } if($cap_type == 3) { } elseif($cap_type == 1) { if(($_POST['sum']!=$_POST['no1']+$_POST['no2'])|| $_POST['sum']=="") die($lag_error_code); } else { if(md5($_POST['code']) != $_SESSION['key']) die($lag_error_code); } $sql = mysqli_query($con, "select * from user WHERE name='$name' and ques='$ques' and answ='$answ'"); $row=mysqli_fetch_row($sql); if ($row){ $_SESSION['iduser']=$row[0]; $playa.= "$lag_redirect_edit"; echo""; do_html_1($lag_retrieved_pass); do_html_2("$lag_retrieved_pass",$playa); } else{die ($lag_error_data);} } if($action==reqinfo) { if($_SESSION['iduser']){ $iduser=$_SESSION['iduser']; $sruy=mysqli_query($con, "select * from user where id='$iduser'"); while($rury=mysqli_fetch_row($sruy)) { $gend=$rury[7]; $quesss=$rury[9]; } if($gend!='' && $quesss!='') { exit; } do_html_1($lag_edit_data); $playa.="
$lag_request_info
"; $playa.=""; do_html_2("$lag_edit_data",$playa); } else { exit; } } if($action==doreqinfo) { $iduser=$_SESSION['iduser']; $gender= filler($_REQUEST['gender']); $ques= filler($_REQUEST['ques']); $answ= filler($_REQUEST['answ']); $capquery =mysqli_query($con, " SELECT * FROM setextra WHERE id = 2 LIMIT 1 "); while($cap_qrow = mysqli_fetch_row($capquery)){ $cap_type = $cap_qrow[2]; } if(!$cap_type || empty($cap_type) || $cap_type==null || $cap_type=="") { $cap_type = 2; } if($cap_type == 3) { } elseif($cap_type == 1) { if(($_POST['sum']!=$_POST['no1']+$_POST['no2'])|| $_POST['sum']=="") die($lag_error_code); } else { if(md5($_POST['code']) != $_SESSION['key']) die($lag_error_code); } mysqli_query($con, " UPDATE `user` SET `gender` = '$gender' , `ques` = '$ques' , `answ` = '$answ' WHERE id='$iduser'"); $playa.= "
$lag_error_session
";
do_html_2("$lag_edit_data",$playa);
}
}
if($action==doedit)
{
$iduser=$_SESSION['iduser'];
$npass= filler($_REQUEST['npass']);
$confnpass= filler($_REQUEST['confnpass']);
$nemail= filler($_REQUEST['nemail']);
$country= filler($_REQUEST['loc']);
$info= filler($_REQUEST['info']);
$sql = mysqli_query($con, "select * from user WHERE id='$iduser'");
while($row=mysqli_fetch_row($sql))
{
$emailsql=$row[3];
$passwsql=$row[2];
$countrysql=$row[6];
}
if ($npass!='' || $confnpass!=''){
if($npass!=$confnpass){die ($lag_sure_match_pass);}}
$capquery =mysqli_query($con, " SELECT * FROM setextra WHERE id = 2 LIMIT 1 ");
while($cap_qrow = mysqli_fetch_row($capquery)){
$cap_type = $cap_qrow[2];
}
if(!$cap_type || empty($cap_type) || $cap_type==null || $cap_type=="")
{
$cap_type = 2;
}
if($cap_type == 3)
{
}
elseif($cap_type == 1)
{
if(($_POST['sum']!=$_POST['no1']+$_POST['no2'])|| $_POST['sum']=="")
die($lag_error_code);
}
else
{
if(md5($_POST['code']) != $_SESSION['key'])
die($lag_error_code);
}
if ($nemail==''){$nemail=$emailsql;}
if ($country=='none'){$country=$countrysql;}
if ($npass==''){$pass=$passwsql;}else{$pass=md5($npass);}
mysqli_query($con, " UPDATE `user` SET `pass` = '$pass' , `email` = '$nemail' , `country` = '$country' , `info` = '$info' WHERE id='$iduser'");
$playa.= "";
if($group==0){$playa.= "- $lag_named : $lag_member";}
if($group==1){$playa.= "- $lag_named : $lag_belong_manager";}
$playa.= "
- $lag_no_membership : $iduser"; $playa.= "
- $lag_thename : $name"; $sqlco=mysqli_query($con, "select * from countries where code='$codet'"); while($rowco=mysqli_fetch_row($sqlco)) {$country=$rowco[1];} $playa.= "
- $lag_country : $country"; if($gender=="m"){$gender="$lag_male";}elseif($gender=="f"){$gender="$lag_female";} $playa.= "
- $lag_gender : $gender"; if ($info){$playa.= "
- $lag_another_info : $info"; } if ( $regdate==''){}else{$playa.= "
- $lag_reg_date : $regdate";} if ( $lastvisit==''){}else{$playa.= "
- $lag_lastvisit_date : $lastvisit
";}
$playa.= "- $lag_no_membership : $iduser"; $playa.= "
- $lag_thename : $name"; $sqlco=mysqli_query($con, "select * from countries where code='$codet'"); while($rowco=mysqli_fetch_row($sqlco)) {$country=$rowco[1];} $playa.= "
- $lag_country : $country"; if($gender=="m"){$gender="$lag_male";}elseif($gender=="f"){$gender="$lag_female";} $playa.= "
- $lag_gender : $gender"; if ($info){$playa.= "
- $lag_another_info : $info"; } if ( $regdate==''){}else{$playa.= "
- $lag_reg_date : $regdate";} if ( $lastvisit==''){}else{$playa.= "
- $lag_lastvisit_date : $lastvisit
"; $sqlnb = mysqli_query($con, "select * from fav WHERE iduser='$iduser'"); $iff=mysqli_num_rows($sqlnb); $ws=mysqli_query($con, "select * from upload where iduser='$iduser'"); $iup=mysqli_num_rows($ws); $playa.= "
"; $wmmq=mysqli_query($con, "select * from setting where id='4'"); while($rowmq=mysqli_fetch_row($wmmq)) { $mlfatyq=$rowmq[4]; } if($mlfatyq==1) { $playa.= "
"; } do_html_2("$lag_personal_file_for $name",$playa); } else { do_html_1($lag_personal_file); $playa.= "
$lag_error_session
";
do_html_2("$lag_personal_file",$playa);
}
}
if($action==logout)
{
session_destroy();
$playa.= "$lag_redirect_index"; echo""; do_html_1($lag_logout); do_html_2("$lag_logout",$playa); } if($action==myfav) { $iduser=$_SESSION['iduser']; if($_SESSION['iduser']){ ?>"; $playa.= "
| $lag_name_mdah | "; $playa.= "$lag_specific_cat | "; $playa.= "$lag_common_cat | "; $playa.= ""; $playa.= " |
| $nameplay | "; $playa.= "$namecatid | "; $playa.= "$namectid | "; $playa.= ""; $playa.= " |
$lag_error_session
";
do_html_2("$lag_myfav",$playa);
}
}
if($action==delfav)
{
$iduser=$_SESSION['iduser'];
$idfav=explode("|", implode("|", $_POST['idfav']));
foreach ( $idfav as $idfav)
{
mysqli_query($con, " DELETE FROM fav WHERE id='$idfav'");
}
$playa.= "م | ";
$playa.= " $lag_file_photo | "; $playa.= "$lag_file_name | ";
$playa.= " $lag_type | ";
$playa.= " $lag_show | ";
$playa.= " $lag_link2 | ";
$playa.= " "; $playa.= " |
$num | ";
$num++;
if (eregi('^[[:print:]]+\.[rar]+$',$upurl)){$type="rar";}
elseif (eregi('^[[:print:]]+\.[zip]+$',$upurl)){$type="zip";}
elseif (eregi('^[[:print:]]+\.[rm]+$',$upurl)){$type="rm";}
elseif (eregi('^[[:print:]]+\.[wav]+$',$upurl)){$type="wav";}
elseif (eregi('^[[:print:]]+\.[mp3]+$',$upurl)){$type="mp3";}
elseif (eregi('^[[:print:]]+\.[swf]+$',$upurl)){$type="swf";}
elseif (eregi('^[[:print:]]+\.[gif]+$',$upurl)){$type="gif";}
elseif (eregi('^[[:print:]]+\.[jpg]+$',$upurl)){$type="jpg";}
else{$type="other";}
$playa.= " ![](\"images/$type.png\") | ";
$playa.= " $upname | "; $ext = substr(strrchr($upurl, '.'), 1); $ext=strtoupper($ext); $playa.= "$ext | ";
if($ext=='MP3' || $ext=='WAV' || $ext=='RM'){$canplay="$canplay | ";
$playa.= " $lag_download_file | "; $playa.= ""; $playa.= " |
![](\"images/tick-circle.png\" "\\"$lag_click_play_file\\"")
- $lag_note_delete
";
do_html_1($lag_mlfaty);
do_html_2("$lag_mlfaty",$playa);
}
else{
do_html_1($lag_mlfaty);
$playa.= " $lag_error_session
";
do_html_2("$lag_mlfaty",$playa);
}
}
if ($action==delfiles)
{
$iduser=$_SESSION['iduser'];
$idup=explode("|", implode("|", $_POST['idup']));
foreach ( $idup as $idup)
{
mysqli_query($con, " DELETE FROM upload WHERE id='$idup'");
}
$playa.= "