sdsdfsdf",$post,600,400);
//$lastgrid=$db->sql_nextid(); //ostatni numer dodanego rekordu
//$num=$db->sql_affectedrows(); //ile wukonanych np.update lub delete
//print_r($_POST);
//ini_set("memory_limit","80M");
if ($config['sadmindebug']==true){
ini_set('display_errors', 1);
error_reporting(E_ALL ^ E_NOTICE);
}else {
error_reporting(0);
ini_set('display_errors', 0);
}
session_start();
// PHP5 with register_long_arrays off?
if (@phpversion() >= '5.0.0' && (!@ini_get('register_long_arrays') || @ini_get('register_long_arrays') == '0' || strtolower(@ini_get('register_long_arrays')) == 'off'))
{
$HTTP_POST_VARS = $_POST;
$HTTP_GET_VARS = $_GET;
$HTTP_SERVER_VARS = $_SERVER;
$HTTP_COOKIE_VARS = $_COOKIE;
$HTTP_ENV_VARS = $_ENV;
$HTTP_POST_FILES = $_FILES;
// _SESSION is the only superglobal which is conditionally set
if (isset($_SESSION))
{
$HTTP_SESSION_VARS = $_SESSION;
}
}
global $mod,$dz,$op;
//echo basename(dirname(__FILE__));
//print_r($_POST);
require_once("include/function.php");
$op=getpost('op');
$dz=getpost('dz');
$mod=getpost('mod');
//echo "=========================".getpost('dz');exit;
//echo "=========================".getpost('op');
// if ($_GET[ss] AND $_GET[ss]<>session_id() AND ($_GET[op]=="popup" OR $_GET[op]=="spopup")) {
// session_id($_GET[ss]);
// }
require_once("GWPE.php");
//---cache start 1/2
if ($GO_CONFIG->chache_page_php_on){
include_once ('classes/gwpe.class.CACHE.inc');
$file_cache=new cache();
$file_cache->start_cache();
}
//---cahce end 1/2
//echo "--".$GO_CONFIG->ticket_check();
//if ($GO_CONFIG->rewrite_on){
// $GO_CONFIG->gwpe_rewrite->parseURL();
// $GO_CONFIG->gwpe_rewrite->setRelative('relativeslash'); //relativeslash is variable name
// $GO_CONFIG->gwpe_rewrite->setParts('dz','ss','pg');
//print_r($_GET);exit;
//$_GET['pg']=$pg;
//$_GET['ss']=$ss;
// echo 'result query string ';
// echo 'pg = ' . $pg . ' ';
// echo 'ss = '.$ss . ' ';
// echo 'id = '.$id . ' ';
//}
//global $dyn_title,$dyn_page_title, $dyn_keywords,$dyn_desc;
//-------------------------header rewrite start
if ($GO_CONFIG->rewrite_on AND !$GO_CONFIG->ismoderator){
// get_urlencode();//dla polskich znakow w mod_rewrite
ob_start();
//$dyn_title $dyn_keywords $dyn_desc
if ($GO_CONFIG->dyntitle_on){
// $dyn_title=$GO_CONFIG->dz_title_tag;
// $dyn_keywords=$GO_CONFIG->dz_keywords;
// $dyn_desc=$GO_CONFIG->dz_description;
$dyn_page_title="";
$dyn_page_keywords="";
$dyn_page_desc="";
$dyn_title="";
$dyn_keywords="";
$dyn_desc="";
$dyn_tags_page ="";
}
//echo "ddd";
include_once("classes/gwpe.class.rewrite.inc");
}
//-------------------------header rewrite end
require_once("classes/gwpe.class.API.inc");//API
global $API;
$API=new gwpe_api();
$GO_CONFIG->main_page_mod="";
//print_r($GO_CONFIG);exit;
//global $API;
//echo $GO_CONFIG->startdzial."==".$GO_CONFIG->startdz."==".$GO_CONFIG->startdzialdomain;
//echo $GO_CONFIG->accesip."--".checkaccesip("global");
//----------acces views
if ($GO_CONFIG->accesip AND !checkaccesip("global")){
echo error(_ACCESDENID);
exit;
}
//---------acces views end
if ($GO_CONFIG->external_tpl_type=="DRUPAL"){//=====================================================if DRUPAL
include_once("theme_EXT/function_drupal.php");
}else if ($GO_CONFIG->external_tpl_type=="JOOMLA"){ //===============================================================if JOOMLA
include_once("theme_EXT/function_joomla.php");
}else if ($GO_CONFIG->external_tpl_type=="MAMBO"){ //=====================================================================if MAMBO
define('_VALID_MOS',"1");
include_once("theme_EXT/function_mambo.php");
}else if ($GO_CONFIG->external_tpl_type=="WPRESS"){ //=====================================================================if WORD PRESS
include_once("theme_EXT/function_wpress.php");
}else if ($GO_CONFIG->external_tpl_type=="HTML"){ //=====================================================================if HTML
define('_VALID_MOS',"1");
include_once("theme_EXT/function_html.php");
}
//--------------------send mail form form start
//form typu POST
//form name=PRZED MALPA + malpa + input name="domain"
//input name="type" ==== typ przedrostka dla zmiennych
if ($_POST['action']=="semail"){
if ($_POST['ss'] == $GO_CONFIG->get_sesid() AND $GO_CONFIG->mailemail){
if ($_POST['type']=="email"){
$content=""._FROM.": ".$_POST['mail_name']." [".$_POST['mail_sender']."] ".$_POST['mail_content'];
$reciver=$GO_CONFIG->mailemail;
}else{
$content=""._POOL.":";
foreach ($_POST as $param => $value){
if (strpos($param, $_POST['type']) === false){
}else{
// echo $param."==".$value." ";
$content .= "[$param]: ".$value." ";
}
}
// if ($_POST[form]) $reciver = str_replace("!","",$_POST[form])."@".$GO_CONFIG->maildomain;
if ($_POST['owner']) $reciver = str_replace("!","",$_POST['owner'])."@".$_POST['domain'];
else $reciver = $GO_CONFIG->mailemail;
// print_r($_POST); exit;
}
sendmailer($reciver,$GO_CONFIG->mailtitle,$content,1,'iso-8859-2');
// sendmailer("biuro@grafnet.pl",$GO_CONFIG->mailtitle,$content,1,'iso-8859-2');
//print_r($_POST);exit;
//echo $_POST[form]."---".$reciver;exit;
$ret="";
// if ($_POST[pgret]) redirect(str_decode($_POST[pgret]));
if ($_POST['pgret']) $ret .= "&pg=".$_POST['pgret'];
if ($_POST['dz']) $ret .= "&dz=".$_POST['dz'];
else $ret .= "&dz=".getpost(dz);
redirect("mod.php?".$ret);
}else echo error(_ERROR);
}
//--------------------send mail form form end
//---------------------------both off left and right
if (getpost('ofb')=="1" OR getpost('olr')=="1" OR getpost('orl')=="1"){
$_GET['off_left']="off";
$_GET['off_right']="off";
}
if (getpost('offl')=="off" OR getpost('offl')=="0"){
$_GET['off_left']="off";
}
if (getpost('offr')=="off" OR getpost('offr')=="0"){
$_GET['off_right']="off";
}
//---------------dig url
if ($_GET['digurl']){
$_GET['mod']="Dig";
$_GET['off_right']="off";
//---------------------------dig add url
}else if (getpost('action')=="dfa"){
$_GET['off_left']="off";
$_GET['off_right']="off";
echo "add new...TODO";
//---------------------------dig toolbar login
}else if (getpost('action')=="dfl" OR getpost('action')=="dflinfoupdate.xml" OR getpost('action')=="dflinfo/version.txt" OR getpost('action')=="dflget"){
//logg('','gp');
include_once("include/function_DigToolbarLogin.php");
exit;
//---------------------------java vote dig
}else if (getpost('action')=="dr"){
//echo "alert('".is_user()."');";exit;
if (is_user()){
include_once("include/function_javaDIGrate.php");
exit;
}else echo "window.location='mod.php?dz=".getpost('dz')."&action=login';\n";
exit;
//---------------------------DIG top frame for below
}else if (getpost('action')=="dfrt"){
//echo "========".getpost(rfd);exit;
echo DIGmaketopframe(getpost('url'),getpost('ret'),str_decode(getpost('rfd')),getpost('sub'));
exit;
//---------------------------DIG open page in frame
}else if (getpost('action')=="dfr"){
if (getpost('ret')) $retx=str_decode(getpost('ret'));
else $retx="";
$ret="mod.php?dz=".getpost('dz');
if (getpost('mod')) $ret .="&mod=".getpost('mod');
if (getpost('did')) $ret .="&did=".getpost('did');
if (getpost('startp')) $ret .="&startp=".getpost('startp');
if ($retx) $ret .=$retx;
$ret=str_code($ret);
//echo getpost(did);exit;
// if (getpost(url)) echo makeframepage(str_code("mod.php?action=dfrt&rfd=".str_code(getpost(did))."&ret=".$ret."&url=".getpost(url)),getpost(url),1);
if (getpost('url')) echo makeframepage(str_code("mod.php?action=dfrt&rfd=".str_code(getpost('did2'))."&sub=".getpost('sub')."&ret=".$ret."&url=".getpost('url')),getpost('url'),1);
else redirect("mod.php");
exit;
}
//---------------show users gallsery XML
if (getpost(action)=="shgall"){
if ($_POST['ac']=="a" AND $_GET['ac']=="x1"){
if ($_POST['mu'] AND $_POST['mp'] AND $_POST['mg']>0 AND $_POST['mg'] AND $_POST['xmc'] AND $_POST['xuc'] AND $_POST['xg'] AND $_POST['xp']<>"" ){
// $sql = "SELECT id_am,id_owner FROM ".$GO_CONFIG->dbprefix."GalleryU_Albums WHERE id_am='".addslashes($_POST[xg])."' AND kay='".addslashes($_POST[mg])."' AND pass='".addslashes($_POST[mp])."' AND id_owner='".addslashes($_POST[mu])."' limit 1";
$sql = "SELECT id_am,id_owner FROM ".$GO_CONFIG->dbprefix."GalleryU_Albums WHERE id_am='".addslashes($_POST['xg'])."' AND pass='".addslashes($_POST['mp'])."' AND id_owner='".addslashes($_POST['mu'])."' limit 1";
//logg($sql);
$result = $db->sql_query($sql);
$rows=$db->sql_fetchrow($result);
if ($rows['id_am']>0){
$protect=$rows['id_owner']*$rows['id_am']*14*date(m);
$protect=md5($protect);
echo "&acceptt=1&u=".$rows['id_owner']."&g=".$rows['id_am']."&pr=".$protect;
}else echo "&u=0&g=0";
}else echo "&u=0&g=0";
//logg('','gp');
}else if ($_GET['ac']=="u" AND $_POST['Filename'] AND $_POST['Upload']=="Submit Query" AND $_FILES['Filedata']['tmp_name'] AND $_GET['pr']){
$protect=$_GET['mainu']*$_GET['maing']*14*date(m);
$protect=md5($protect);
if ($_GET['mainu']>0 AND $_GET['maing']>0 AND $_GET['pr']==$protect){
include_once("include/function_usersgallery.php");
//logg('','gp');
uploadusrImage($_FILES['Filedata']['tmp_name'],$_POST['Filename'],$_GET['mainu'],$_GET['maing'],$_GET['xp'],$_GET['xmc'],$_GET['xuc']);
}
}else if (getpost(spr)){
$sql = "SELECT id_am,id_owner FROM ".$GO_CONFIG->dbprefix."GalleryU_Albums WHERE kay='".addslashes($_GET['kay'])."' AND pass='".addslashes($_GET['pas'])."' limit 1";
$result = $db->sql_query($sql);
$rows=$db->sql_fetchrow($result);
if ($rows['id_am']>0){
echo "&acces=accesok&al=".$rows['id_owner'];
}
}else if ($_GET['ac']=="c1"){//lista katalogow
include_once("include/function_usersgallery.php");
echo users_categoryXML(getpost(kay),getpost(pas),getpost(ali));
}else{//galeria
include_once("include/function_usersgallery.php");
echo users_galleryXML(getpost(kay),getpost(pas),getpost(ali));
}
exit;
//---------------------------show online users
}else if (getpost(action)=="online"){
echo users_online('FLASH');
exit;
//---------------------------java to div rate
}else if (getpost(action)=="jda"){
include_once("include/function_javadivads.php");
exit;
//---------------------------java to div rate
}else if (getpost(action)=="jdr"){
include_once("include/function_javadivrate.php");
exit;
//---------------------------java to div pool
}else if (getpost(action)=="jd"){
include_once("include/function_javadiv.php");
exit;
}
//---------------------------java to div
//----------------------------synchro strat
if ($_GET['action']=="sync"){
if ($_GET['w']=="pg"){
include_once("include/function_xml.php");
// echo export2XML($name,$whot,$lastid='',$encoding='iso-8859-2');
echo export2XML_pages("Pages","pg");
exit;
}else if ($_GET['w']=="art"){
include_once("include/function_xml.php");
echo export2XML_arts("News","art",$_GET['tp']);
exit;
}else if ($_GET['w']=="cal"){
include_once("include/function_xml.php");
echo export2XML_calendar("Calendar","cal");
exit;
}
}
//----------------------------synchro end
//--------------------sudo start
if ($_GET[action]=="sudo"){
if (is_sadmin()){
if ($_GET[suemuser] AND $_GET[suuser]){
$sql = "SELECT * FROM ".$GO_CONFIG->dbprefix."users WHERE email='".addslashes($_GET['suemuser'])."' AND user='".addslashes($_GET['suuser'])."' limit 1";
$result = $db->sql_query($sql);
$row=$db->sql_fetchrow($result);
if ($row['id']>0){
$_SESSION["autorizecode"]=$GO_CONFIG->keysecure;
$_POST['execsudo']=$GO_CONFIG->keysecure;
echo "LOGINAS: ".$row[user];
//echo $GO_CONFIG->keysecure."==".$_SESSION[autorizecode];
// session_unregister();
$_POST['action']="login";
$_GET['action']="login";
$_POST['fautorizecode_pic']=$GO_CONFIG->keysecure;
$_GET['fautorizecode_pic']=$GO_CONFIG->keysecure;
$_POST['fpasswd']=stripslashes($row['passwd']);
$_GET['fpasswd']=stripslashes($row['passwd']);
$_POST['fuser']=stripslashes($row['user']);
$_GET['fuser']=stripslashes($row['user']);
$op="";
$_POST['op']="";
$_GET['op']="";
}else echo error();
}else echo error();
}else redirect("mod.php?dz=".getpost(dz));
}
//--------------------sudo end
//echo RewriteUrl($_SERVER[REQUEST_URI]);
//-----------------------------------------------------------------
//------------------------------------------------pre page start
//-----------------------------------------------------------------
//if (is_adminmod($_GET["pid"])){
//echo "a|".getpost(dz);
//echo "=======".is_admindzial($dz,1);
if (is_admindzial($dz,1)){
//echo "adsas";
//echo "b";exit;
//--------------------------kolejnosc stron start
if ($_GET["action"]=="movepgright" AND $_GET["kid"] AND $_GET["pid"] AND $_GET["sid"] AND is_moderator($dz)){
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET id_column=(id_column+1), kolejnosc='0' WHERE id_column<'3' AND id_dzial='".addslashes($dz)."' AND id='".addslashes($_GET["pid"])."' AND id_sekcja='".addslashes($_GET["sid"])."' limit 1";
$db->sql_query($sql);
//echo "
".$sql;
//----
$tmp_kol=$_GET["kid"]+1;
$sql = "SELECT id,kolejnosc FROM ".$GO_CONFIG->dbprefix."pages WHERE id_dzial='".addslashes($dz)."' AND id_column='".addslashes($tmp_kol)."' AND id_sekcja='".addslashes($_GET["sid"])."' ORDER BY kolejnosc";
$result = $db->sql_query($sql);
$q=0;
while($row=$db->sql_fetchrow($result)){
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET kolejnosc='$q' WHERE id='$row[id]' limit 1 ";
$db->sql_query($sql);
$q++;
}
redirect("?dz=".getpost('dz'));
//----
}else if ($_GET["action"]=="movepgleft" AND $_GET["kid"] AND $_GET["pid"] AND $_GET["sid"] AND is_moderator($dz)){
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET id_column=(id_column-1), kolejnosc='0' WHERE id_column>'1' AND id_dzial='".addslashes($dz)."' AND id='".addslashes($_GET["pid"])."' AND id_sekcja='".addslashes($_GET["sid"])."' limit 1";
$db->sql_query($sql);
//----
$tmp_kol=$_GET["kid"]-1;
$sql = "SELECT id,kolejnosc FROM ".$GO_CONFIG->dbprefix."pages WHERE id_dzial='".addslashes($dz)."' AND id_column='".addslashes($tmp_kol)."' AND id_sekcja='".addslashes($_GET["sid"])."' ORDER BY kolejnosc";
$result = $db->sql_query($sql);
$q=0;
while($row=$db->sql_fetchrow($result)){
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET kolejnosc='$q' WHERE id='$row[id]' limit 1 ";
$db->sql_query($sql);
$q++;
}
redirect("?dz=".getpost('dz'));
//----
}else if ($_GET["action"]=="movepgup" AND $_GET["kid"] AND $_GET["pid"] AND $_GET["sid"] AND is_moderator($dz)){
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET kolejnosc=kolejnosc-2 WHERE id_dzial='".addslashes($dz)."' AND id_column='".addslashes($_GET["kid"])."' AND id_sekcja='".addslashes($_GET["sid"])."' AND id='".addslashes($_GET["pid"])."' limit 1";
$db->sql_query($sql);
//echo "
".$sql." ";
//----
$sql = "SELECT id,kolejnosc FROM ".$GO_CONFIG->dbprefix."pages WHERE id_dzial='".addslashes($dz)."' AND id_column='".addslashes($_GET["kid"])."' AND id_sekcja='".addslashes($_GET["sid"])."' ORDER BY kolejnosc";
$result = $db->sql_query($sql);
$q=0;
while($row=$db->sql_fetchrow($result)){
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET kolejnosc='$q' WHERE id='$row[id]' limit 1 ";
$db->sql_query($sql);
$q++;
//echo $sql." ";
}
redirect("?dz=".getpost('dz'));
//----
}else if ($_GET["action"]=="movepgdown" AND $_GET["kid"] AND $_GET["pid"] AND $_GET["sid"] AND is_moderator($dz)){
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET kolejnosc=kolejnosc+2 WHERE id_dzial='".addslashes($dz)."' AND id_column='".addslashes($_GET["kid"])."' AND id_sekcja='".addslashes($_GET["sid"])."' AND id='".addslashes($_GET["pid"])."' limit 1";
$db->sql_query($sql);
//----
$sql = "SELECT id,kolejnosc FROM ".$GO_CONFIG->dbprefix."pages WHERE id_dzial='".addslashes($dz)."' AND id_column='".addslashes($_GET["kid"])."' AND id_sekcja='".addslashes($_GET["sid"])."' ORDER BY kolejnosc";
$result = $db->sql_query($sql);
$q=0;
while($row=$db->sql_fetchrow($result)){
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET kolejnosc='$q' WHERE id='$row[id]' limit 1 ";
$db->sql_query($sql);
$q++;
}
//----
redirect("?dz=".getpost('dz'));
}
//--------------------------kolejnosc stron end
//--------------------------kolejnosc dzialow strat
if ($_GET['action']=="movedz" AND is_admin()){
if (!$_GET['dzcfgpz']) $_GET['dzcfgpz']=0;
if ($_GET['op']=="moveupdz"){
$sql = "SELECT id_dzial,dz_kolejnosc FROM ".$GO_CONFIG->dbprefix."dzialy WHERE id2='".addslashes($_GET['dzcfgpz'])."' ORDER BY dz_kolejnosc";
$result = $db->sql_query($sql);
$dzall=array();
while($row=$db->sql_fetchrow($result)){
$dzall[0][]=$row['id_dzial'];
$dzall[1][]=$row['dz_kolejnosc'];
}
for ($i=0;$idbprefix."dzialy SET dz_kolejnosc='".$dzall[1][$i]."' WHERE id_dzial='".$dzall[0][$i]."' limit 1 ";
$db->sql_query($sql);
}
}else if ($_GET[op]=="movedowndz"){
$sql = "SELECT id_dzial,dz_kolejnosc FROM ".$GO_CONFIG->dbprefix."dzialy WHERE id2='".addslashes($_GET['dzcfgpz'])."' ORDER BY dz_kolejnosc";
$result = $db->sql_query($sql);
$dzall=array();
while($row=$db->sql_fetchrow($result)){
$dzall[0][]=$row['id_dzial'];
$dzall[1][]=$row['dz_kolejnosc'];
}
for ($i=0;$idbprefix."dzialy SET dz_kolejnosc='".$dzall[1][$i]."' WHERE id_dzial='".$dzall[0][$i]."' limit 1 ";
$db->sql_query($sql);
}
}
//exit;
// if ($_GET[retop]) redirect("mod.php?dz=".getpost(dz)."&op=".$_GET[retop]."&ss=".$GO_CONFIG->get_sesid());
if ($_GET['retop']) redirect("mod.php?dz=".getpost(dz)."&op=".$_GET['retop']."&ss=".$GO_CONFIG->get_sesid());
}
//--------------------------kolejnosc dzialow end
//--------------------------active/deactive page start
if ($_GET["action"]=="pgon" AND $_GET["pid"] AND is_admindzial(getpost('dz'))){
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET active='1' WHERE id='".addslashes($_GET["pid"])."' limit 1";
$db->sql_query($sql);
//echo $sql;exit;
if (getpost('lpg')) redirect("mod.php?dz=".getpost('dz')."&op=".$_GET[retop]."&pg=".getpost('lpg')."&ss=".$GO_CONFIG->get_sesid());
else if ($_GET["action2"]=="listpg" ) redirect("mod.php?action=listpg&dz=".getpost('dz')."&wh=pg&order=".getpost('order')."&snpg=".getpost('snpg')."&query=".getpost('query')."&op=".getpost('op')."&frm=".getpost('frm')."&ple=".getpost('ple')."&ple=".getpost('mainid')."&ss=".$GO_CONFIG->get_sesid());
else redirect("mod.php?dz=".getpost('dz')."&op=".$_GET['retop']."&ss=".$GO_CONFIG->get_sesid());
}else if ($_GET["action"]=="pgoff" AND $_GET["pid"] AND is_admindzial(getpost('dz'))){
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET active='0' WHERE id='".addslashes($_GET["pid"])."' limit 1";
//echo $sql;exit;
$db->sql_query($sql);
if (getpost('lpg')) redirect("mod.php?dz=".getpost('dz')."&op=".$_GET['retop']."&pg=".getpost('lpg')."&ss=".$GO_CONFIG->get_sesid());
else if ($_GET["action2"]=="listpg" ) redirect("mod.php?action=listpg&dz=".getpost('dz')."&wh=pg&order=".getpost('order')."&snpg=".getpost('snpg')."&query=".getpost('query')."&op=".getpost('op')."&frm=".getpost('frm')."&ple=".getpost('ple')."&ple=".getpost('mainid')."&ss=".$GO_CONFIG->get_sesid());
else redirect("mod.php?dz=".getpost('dz')."&op=".$_GET['retop']."&ss=".$GO_CONFIG->get_sesid());
}
//--------------------------active/deactive page end
//--------------------------deletepage start
if ($_GET["action"]=="delpage" AND $_GET["pid"] AND is_moderator()){
$sql="DELETE FROM ".$GO_CONFIG->dbprefix."pages WHERE id='".addslashes($_GET["pid"])."' limit 1";
$db->sql_query($sql);
//---page tree start
$sql="SELECT tto_page FROM ".$GO_CONFIG->dbprefix."pages_tree WHERE tid_page='".addslashes($_GET["pid"])."' LIMIT 1";
$result=$db->sql_query($sql);
$row=$db->sql_fetchrow($result);
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages_tree SET tto_page='".addslashes($row['tto_page'])."' WHERE tto_page='".addslashes($_GET["pid"])."' ";
$db->sql_query($sql);
$sql="DELETE FROM ".$GO_CONFIG->dbprefix."pages_tree WHERE tid_page='".addslashes($_GET["pid"])."' LIMIT 1";
$db->sql_query($sql);
//---page tree end
// mod.php?action=listpg&dz=1&wh=pg&pid=0&ss=ee41fc5b09ace99832c83722608d03a2&order=&snpg=15&query=&op=&frm=&ple=&mainid=
redirect("mod.php?action=listpg&dz=".getpost('dz')."&wh=pg&order=".getpost('order')."&snpg=".getpost('snpg')."&query=".getpost('query')."&op=".getpost('op')."&frm=".getpost('frm')."&ple=".getpost('ple')."&ple=".getpost('mainid')."&ss=".$GO_CONFIG->get_sesid());
}
//--------------------------deletepage end
//--------------------------delete dzial start
//if ($_GET["op"]=="dzonoff" AND is_adminmod($_GET["dz"],"",$_GET["dz"])){
if ($_GET["op"]=="setting" AND $_GET["dzcfg"]>0 AND ($_GET["dzcfg"]<>$GO_CONFIG->startdz) AND $_GET['action']=="deletedz"){
//echo "TODO update page";
$sql="SELECT dz.* FROM ".$GO_CONFIG->dbprefix."dzialy dz, ".$GO_CONFIG->dbprefix."perm pem, ".$GO_CONFIG->dbprefix."users_group gr WHERE
(
(
(
dz.id_dzial='".addslashes($_GET["dzcfg"])."' AND dz.id_dzial =pem.id_dzial AND pem.types='d' AND pem.id_group=gr.id_group AND pem.write='1' AND gr.id_user='".addslashes(conf(id_user))."'
)
) OR (
(dz.id_dzial='".addslashes($_GET["dzcfg"])."') AND (gr.id_user='".addslashes(conf(id_user))."') AND (gr.id_group='4')
)
)
limit 1
";
$result = $db->sql_query($sql);
$max=$db->sql_numrows($result);
if ($max) {
//delete dzial
$sql="DELETE FROM ".$GO_CONFIG->dbprefix."dzialy WHERE id_dzial='".addslashes($_GET['dzcfg'])."' limit 1";
$db->sql_query($sql);
//-----------------sprzatanie po tym dziale co byl...
//upate page
$sql="UPDATE ".$GO_CONFIG->dbprefix."pages SET id_dzial='0', id_sekcja='0', id_column='0' WHERE id_dzial='".addslashes($_GET['dzcfg'])."' ";
$db->sql_query($sql);
//upadte perm
$sql="DELETE FROM ".$GO_CONFIG->dbprefix."perm WHERE id_dzial='".addslashes($_GET['dzcfg'])."' ";
$db->sql_query($sql);
//stat
$sql="DELETE FROM ".$GO_CONFIG->dbprefix."stat_dzialy WHERE id_dzial='".addslashes($_GET['dzcfg'])."' ";
$db->sql_query($sql);
//domains
$sql="UPDATE ".$GO_CONFIG->dbprefix."domain SET id_dzial='".$GO_CONFIG->startpage."' WHERE id_dzial='".addslashes($_GET['dzcfg'])."' ";
$db->sql_query($sql);
//banners
$sql="UPDATE ".$GO_CONFIG->dbprefix."banners SET id_dzial='".$GO_CONFIG->startpage."' WHERE id_dzial='".addslashes($_GET['dzcfg'])."' ";
$db->sql_query($sql);
}//if perm ok for write
// if ($_GET[retop]) redirect("mod.php?dz=".getpost(dz)."&ss=".$GO_CONFIG->get_sesid()."&op=".$_GET[retop]);
if ($_GET['retop']) redirect("mod.php?dz=".getpost(dz)."&ss=".$GO_CONFIG->get_sesid()."&op=".$_GET['retop']);
}//if op
//--------------------------delete dzial end
//--------------------------onoff dzial start
//if ($_GET["op"]=="dzonoff" AND is_adminmod($_GET["dz"],"",$_GET["dz"])){
if ($_GET["op"]=="dzonoff" AND $_GET["dz"]>0 AND ($_GET["dz"]<>$GO_CONFIG->startdz)){
//-----------spr perm
$sql="SELECT dz.* FROM ".$GO_CONFIG->dbprefix."dzialy dz, ".$GO_CONFIG->dbprefix."perm pem, ".$GO_CONFIG->dbprefix."users_group gr WHERE
(
(
(
dz.id_dzial='".addslashes($_GET["dz"])."' AND dz.id_dzial =pem.id_dzial AND pem.types='d' AND pem.id_group=gr.id_group AND pem.write='1' AND gr.id_user='".addslashes(conf(id_user))."'
)
) OR (
(dz.id_dzial='".addslashes($_GET["dz"])."' AND dz.gid_owner=gr.id_group AND gr.id_user='".addslashes(conf(id_user))."')
) OR (
(dz.id_dzial='".addslashes($_GET["dz"])."') AND (gr.id_user='".addslashes(conf(id_user))."') AND (gr.id_group='4')
)
)
limit 1
";
//echo $sql;exit;
$result = $db->sql_query($sql);
$max=$db->sql_numrows($result);
if ($max) {
//-----------spr perm ok
$sql="SELECT * FROM ".$GO_CONFIG->dbprefix."dzialy WHERE id_dzial='".addslashes($_GET["dz"])."' limit 1";
$result = $db->sql_query($sql);
$row=$db->sql_fetchrow($result);
if ($row['dz_active']) {
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_active ='0' WHERE id_dzial='$row[id_dzial]' limit 1";
$GO_CONFIG->dz_active=0;
}else{
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_active ='1' WHERE id_dzial='$row[id_dzial]' limit 1";
$GO_CONFIG->dz_active=1;
}
$db->sql_query($sql);
// if ($_GET[retop]) redirect("mod.php?dz=".getpost(dz)."&ss=".$GO_CONFIG->get_sesid()."&op=".$_GET[retop]);
}//if perm ok
if ($_GET['retop']) redirect("mod.php?dz=".getpost(dz)."&ss=".$GO_CONFIG->get_sesid()."&op=".$_GET['retop']);
else redirect("mod.php?dz=".getpost(dz)."&ss=".$GO_CONFIG->get_sesid());
//echo "
".$sql;
}//if op
//--------------------------onoff dzial end
//--------------------------onoff top start
if ($_GET["op"]=="toponoff" AND $_GET["dz"] ){
$sql="SELECT * FROM ".$GO_CONFIG->dbprefix."dzialy WHERE id_dzial='".addslashes($_GET["dz"])."' limit 1";
$result = $db->sql_query($sql);
$row=$db->sql_fetchrow($result);
if ($row['dz_stop']) {
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_stop ='0' WHERE id_dzial='$row[id_dzial]' limit 1";
$GO_CONFIG->dz_stop=0;
}else{
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_stop ='1' WHERE id_dzial='$row[id_dzial]' limit 1";
$GO_CONFIG->dz_stop=1;
}
$db->sql_query($sql);
//--------------------------onoff top end
}else if ($_GET["op"]=="mtoponoff" AND $_GET["dz"] ){
//--------------------------onoff menutop start
$sql="SELECT * FROM ".$GO_CONFIG->dbprefix."dzialy WHERE id_dzial='".addslashes($_GET["dz"])."' limit 1";
$result = $db->sql_query($sql);
$row=$db->sql_fetchrow($result);
if ($row['dz_smenu']) {
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_smenu ='0' WHERE id_dzial='".$row['id_dzial']."' limit 1";
$GO_CONFIG->dz_smenu=0;
}else{
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_smenu ='1' WHERE id_dzial='".$row['id_dzial']."' limit 1";
$GO_CONFIG->dz_smenu=1;
}
$db->sql_query($sql);
//--------------------------onoff menutop end
}else if ($_GET["op"]=="bottomonoff" AND $_GET["dz"] ){
//--------------------------onoff top start
$sql="SELECT * FROM ".$GO_CONFIG->dbprefix."dzialy WHERE id_dzial='".addslashes($_GET["dz"])."' limit 1";
$result = $db->sql_query($sql);
$row=$db->sql_fetchrow($result);
if ($row[dz_sbottom]) {
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_sbottom ='0' WHERE id_dzial='".$row['id_dzial']."' limit 1";
$GO_CONFIG->dz_sbottom=0;
}else{
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_sbottom ='1' WHERE id_dzial='".$row['id_dzial']."' limit 1";
$GO_CONFIG->dz_sbottom=1;
}
$db->sql_query($sql);
//--------------------------onoff top end
}else if ($_GET['action']=="btoponoff" AND $_GET["op"]=="btoponoff" AND $_GET["dz"] ){
//--------------------------onoff bannertop start
$sql="SELECT * FROM ".$GO_CONFIG->dbprefix."dzialy WHERE id_dzial='".addslashes($_GET["dz"])."' limit 1";
$result = $db->sql_query($sql);
$row=$db->sql_fetchrow($result);
if ($row['dz_stop_banner']) {
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_stop_banner ='0' WHERE id_dzial='".$row['id_dzial']."' limit 1";
$GO_CONFIG->dz_stop_banner=0;
}else{
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_stop_banner ='1' WHERE id_dzial='".$row['id_dzial']."' limit 1";
$GO_CONFIG->dz_stop_banner=1;
}
$db->sql_query($sql);
//--------------------------onoff bannertop end
}else if ($_GET['action']=="bbottomonoff" AND $_GET["op"]=="bbottomonoff" AND $_GET["dz"] ){
//--------------------------onoff bannerbottom start
$sql="SELECT * FROM ".$GO_CONFIG->dbprefix."dzialy WHERE id_dzial='".addslashes($_GET["dz"])."' limit 1";
$result = $db->sql_query($sql);
$row=$db->sql_fetchrow($result);
if ($row['dz_sbottom_banner']) {
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_sbottom_banner ='0' WHERE id_dzial='".$row['id_dzial']."' limit 1";
$GO_CONFIG->dz_sbottom_banner=0;
}else{
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_sbottom_banner ='1' WHERE id_dzial='".$row['id_dzial']."' limit 1";
$GO_CONFIG->dz_sbottom_banner=1;
}
$db->sql_query($sql);
//--------------------------onoff bannerbottom end
}else if ($_GET["op"]=="topdelete" AND $_GET["dz"] AND $_GET["pid"]>0){
//--------------------------delete top start
$sql="DELETE FROM ".$GO_CONFIG->dbprefix."pages WHERE id='".addslashes($_GET["pid"])."' AND is_specialpg='t' limit 1";
$db->sql_query($sql);
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_top_idpage='' WHERE id_dzial='".addslashes($_GET['dz'])."' limit 1";
$db->sql_query($sql);
$add="";
if (getpost(pg)) $add .= "&pg=".getpost(pg);
redirect("mod.php?dz=".$_GET['dz'].$add);
//--------------------------delete top end
}else if ($_GET["op"]=="mtopdelete" AND $_GET["dz"] AND $_GET["pid"]>0){
//--------------------------delete mtop start
$sql="DELETE FROM ".$GO_CONFIG->dbprefix."pages WHERE id='".addslashes($_GET["pid"])."' AND is_specialpg='m' limit 1";
//echo $sql;exit;
$db->sql_query($sql);
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_mtop_idpage='' WHERE id_dzial='".addslashes($_GET['dz'])."' limit 1";
$db->sql_query($sql);
$add="";
if (getpost(pg)) $add .= "&pg=".getpost(pg);
redirect("mod.php?dz=".$_GET['dz'].$add);
//--------------------------delete mtop end
}else if ($_GET["op"]=="bottomdelete" AND $_GET["dz"] AND $_GET["pid"]>0){
//--------------------------delete bottom start
$sql="DELETE FROM ".$GO_CONFIG->dbprefix."pages WHERE id='".addslashes($_GET["pid"])."' AND is_specialpg='b' limit 1";
$db->sql_query($sql);
$sql="UPDATE ".$GO_CONFIG->dbprefix."dzialy SET dz_bottom_idpage ='' WHERE id_dzial='".addslashes($_GET['dz'])."' limit 1";
$db->sql_query($sql);
$add="";
if (getpost(pg)) $add .= "&pg=".getpost(pg);
redirect("mod.php?dz=".$_GET['dz'].$add);
//--------------------------delete bottom end
}
}//if is_adminmod()is_admindzial(
//-----------------------------------------------------------------------------------------------
//---------------------------------------------------------------------------------------op
//-----------------------------------------------------------------------------------------------
//-----------------------------------------------------------------
//------------------------------------------------pre page end
//-----------------------------------------------------------------
if ($GO_CONFIG->support_phpnuke){
require_once("include/mainfile.php");
}
//-----------------------------banner click & show
if ($_GET['action']=="shbanner" OR $_GET['click']){
if ($_GET['op']=="click" OR $_POST['ops']=="click" OR $_GET['click']){
if ($_GET['mid'] OR $_GET['click']){
if (!$_GET['mid']) $_GET['mid']=$_GET['click'];
list($url,$id)=split("\|",str_decode($_GET['mid']));
//echo str_decode($_GET[mid]);exit;
if ($id>0){
$sql = "UPDATE ".$GO_CONFIG->dbprefix."banners SET clicks=clicks+1 WHERE id='".addslashes($id)."' limit 1 ";
$db->sql_query($sql);
redirect("http://".$url);
}else echo error(_ERROR);
}else echo error(_ERROR);
}else{
//echo "===".$_GET['what']."-".$_GET['name']."-";
require_once("include/function_bannrs.php");
echo bannerrotate($_GET['what'],$_GET['name'],$_GET['clickTag']);
}
//}else if ($_GET[action]=="logout" OR ($_GET[ss] AND $_GET[ss]<>session_id() AND $_GET[op]<>"popup" AND $_GET[op]<>"spopup")){
}else if ($_GET['action']=="logout" OR ($_GET['ss'] AND $_GET['ss']<>session_id() )){
//echo "=fsdf====".getpost(ss)."==".session_id();exit;
//-------------------------------for toolbar start
setcookie ("DIGSID", "");
setcookie ("DIGKAY", "");
setcookie ("save_sess", "");
// session_id();
// session_start ();
// if ($_COOKIE['fbs_' . $app_id]
if ($_SESSION['fb_login_app_id']){
// setcookie("fbs_" . $app_id, '', time()-3600, "/", ".otozakupy.pl");
setcookie("fbs_" . $_SESSION['fb_login_app_id'], '', time()-3600, "/", ".".str_replace("www.","",strtolower($_SERVER["SERVER_NAME"])));
//echo $_SERVER["SERVER_NAME"];
//echo "dsfdsF";exit;
?>
}//if sesion fb app_id
session_unset ();
session_destroy ();
//-------------------------------for toolbar end
$_SESSION['autorizecode']="0";
$_SESSION['id_user']="";
$_SESSION['gid_user']="";
$_SESSION['user']="";
$_SESSION['email']="";
$_SESSION['imie']="";
$_SESSION['nazwisko']="";
$_SESSION['eage']="";
$_SESSION['user_language']="";
$_SESSION['user_avantar']='';
$_SESSION['user_play']='';
$_SESSION['is_login']="";
$GO_CONFIG->isuser="";
unset($_SESSION);
session_destroy ();
?>
//------------------------------------------------------------------------------------------------------end toolbar
//------------------------------------------------------------------------------------------------------for toolbar
// if ($_GET[ret]) redirect($_GET[ret]);
// else if ($_GET[retp]) redirect(str_decode($_GET[retp]));
// else if (getpost(dz)) redirect("mod.php?dz=".getpost(dz));
// else redirect("index.php");
exit;
//----------------redirect na ssh jak adres: ...mod.php?ssh=user
}else if ($_GET['ssh']){
$urlret="https://".$GO_CONFIG->baseurl;
redirect($urlret."/mod.php?action=login&user=".$_GET['ssh']);
exit;
//---------------show protect image code-captcha
}else if (getpost(op)=="gfx"){
require_once ('classes/gwpe.class.captcha.php');
$server = new gwpe_captcha($newauthcode);
if($_REQUEST[session_name()]){
$_SESSION['autorizecode']=$server->getKeyString();
}
// gfx2xx($_SESSION[autorizecode]);
exit;
//---------------show protect image code-captcha OLD trudna
}else if (getpost(op)=="gfx2"){
// session_id(getpost(ss));
// session_start();
$newauthcode=makeID(5);
$_SESSION['autorizecode']=$newauthcode;
require_once ('classes/class.captcha_x.php');
$server = &new captcha_x ();
// $server->handle_request ($newauthcode);
$server->handle_request ($_SESSION['autorizecode']);
// gfx2xx($_SESSION[autorizecode]);
exit;
//--------------download file
}else if (getpost(op)=="getfile" AND getpost(img)){
if ($GO_CONFIG->get_sesid()==getpost(ss)){
$img=str_decode(str_replace("#","=",getpost(img)));
if (substr($img,-1)=="\\") $img=substr($img,0,-1);
//echo $img;exit;
if (getpost(def)==1){
file_show("./image/".str_replace(".php",".jpg",$img));
}else{
img_show(str_replace(".php",".jpg",$img));
}
}else echo error();
exit;
die();
//--------------print module
}else if (getpost(op)=="prnmod" AND getpost(mid)<>""){
echo PrintPage(getpost(mid),'mod');
//--------------print page
}else if (getpost('op')=="prnpg" AND getpost('pid')>0){
echo PrintPage(getpost('pid'),'pg');
//--------------print page to PDF
}else if (getpost('op')=="prn2pdf" AND getpost('pid')>0){
echo PrintPage2PDF(getpost('pid'),'pg');
// echo PrintPagePDF(getpost('pid'),'pg');
//--------------print page to email
}else if (getpost('op')=="prn2email" AND getpost('pid')>0){
echo PrintPage2email(getpost('pid'),'pg');
// echo PrintPagePDF(getpost('pid'),'pg');
//--------------print article
}else if (getpost(op)=="prnart" AND getpost(art)>0){
echo PrintPage(getpost(art),'art');
//--------------print shop product cart
//}else if (getpost(op)=="prncsp" AND getpost('csid')>0){
// $content="TODO SHOP...";
// echo PrintPage(getpost('csid'),'cshop',$content);
//--------------show image
}else if (getpost(op)=="showimg" AND getpost(img)){
//mod.php?op=showimg&img=aW1nPXY1LmpwZyZ0bXA9Ylc5a2RXeGxjeTlPWlhkekwyZGhiR3hsY25sZmFXMWhaMlZ6THpFdiZpbXQ9anBn
//mg=v5.jpg&tmp=bW9kdWxlcy9OZXdzL2dhbGxlcnlfaW1hZ2VzLzEv&imt=jpg
//echo str_decode("bW9kdWxlcy9OZXdzL2dhbGxlcnlfaW1hZ2VzLzEv");exit;
//modules/News/gallery_images/1/
// $img=str_decode(getpost(img));
$img=str_decode(str_replace("#","=",getpost('img')));
list($img,$path,$imgtype,$thumb)=split("&",$img);
list($xx,$img)=split("mg=",$img);
list($xx,$path)=split("mp=",$path);
list($xx,$imgtype)=split("imt=",$imgtype);
$path=str_decode($path);
//echo $path;exit;
if ($imgtype=="img"){
$nazwa_pliku=str_replace("..","x",$img);
}else if ($imgtype){
$name=str_replace("..","x",$img);
$imgtype=str_replace("..","x",$imgtype);
if ($thumb=="thb=1") $nazwa_pliku = $path."thumb_".$name.".".$imgtype;
else $nazwa_pliku = $path.$name.".".$imgtype;
}else{
$name=$img."_1.jpg";
$nazwa_pliku = $path.$name;
}
//echo $nazwa_pliku;exit;
img_show($nazwa_pliku);
exit;
die();
//--------------show swf
}else if (getpost(op)=="showswf" AND getpost(img)){
$img=str_decode(str_replace("#","=",getpost(img)));
list($img,$path,$imgtype)=split("&",$img);
list($xx,$img)=split("mg=",$img);
list($xx,$path)=split("mp=",$path);
list($xx,$imgtype)=split("imt=",$imgtype);
$pathde=str_decode($path);
if ($imgtype=="swf" AND $path){
$nazwa_pliku=str_replace("..","x",$img);
$nazwa_pliku = $pathde.$nazwa_pliku.".swf";
}else{
$nazwa_pliku = "xxx";
}
// img_show($nazwa_pliku."?ss=".$GO_CONFIG->get_sesid());
// img_show($nazwa_pliku);
//echo $nazwa_pliku;exit;
file_show_swf($nazwa_pliku);
exit;
die();
//--------------show exe
}else if (getpost(op)=="getexe" AND getpost(img)){
$img=str_decode(str_replace("#","=",getpost(img)));
list($img,$path,$imgtype)=split("&",$img);
list($xx,$img)=split("mg=",$img);
list($xx,$path)=split("mp=",$path);
list($xx,$imgtype)=split("imt=",$imgtype);
$pathde=str_decode($path);
if ($imgtype=="exe" AND $path){
$nazwa_pliku=str_replace("..","x",$img);
$nazwa_pliku = $pathde.$nazwa_pliku.".exe";
}else{
$nazwa_pliku = "xxx";
}
// img_show($nazwa_pliku."?ss=".$GO_CONFIG->get_sesid());
// img_show($nazwa_pliku);
file_show($nazwa_pliku);
exit;
die();
//--------------show tmp file tmp_gwpe
}else if (getpost(op)=="getft" AND getpost(img)){
$img=str_decode(str_replace("#","=",getpost(img)));
list($img,$path,$imgtype)=split("&",$img);
list($xx,$img)=split("mg=",$img);
list($xx,$path)=split("mp=",$path);
list($xx,$imgtype)=split("imt=",$imgtype);
$pathde=str_decode($path);
if ($imgtype=="bin" AND $pathde=="tmp"){
$pathde="tmp_gwpe/";
$nazwa_pliku=str_replace("..","x",$img);
$nazwa_pliku = $pathde.$nazwa_pliku.".bin";
}else if ($imgtype=="bin" AND $pathde=="tmpi"){//archive sql
$pathde="include/tmp/";
$nazwa_pliku=str_replace("..","x",$img);
$nazwa_pliku = $pathde.$nazwa_pliku.".bin";
}else if ($imgtype=="zip" AND $pathde=="tmp"){
$pathde="tmp_gwpe/";
$nazwa_pliku=str_replace("..","x",$img);
$nazwa_pliku = $pathde.$nazwa_pliku.".zip";
}else if ($imgtype=="exe" AND $path){
$nazwa_pliku=str_replace("..","x",$img);
$nazwa_pliku = $pathde.$nazwa_pliku.".exe";
}else{
$nazwa_pliku = "xxx";
}
file_show($nazwa_pliku);
exit;
die();
}else{
//===========================================================================================================================MAIN
//---------------------------------------dla edytora
if (is_moderator()){
if ($GO_CONFIG->editor==1){
//aron!!! wylaczylem bo chyba jest wczesniej !!!! aron!!!==============================================================================================
// include_once $spaw_root.'spaw_control.class.php';
//=======================================================================================
// require_once 'edit/adm_makeimgtree.php';
//----//v2.5
include("edit/fckeditor.php");//v2.5
//print_r($_SESSION);
//-----//v.3.1
// include_once("edit/ckeditor.php");
// include_once("edit/ckfinder/ckfinder.php");//v.3.1 - upload file
//$ckeditor = new CKEditor();
//$ckeditor->basePath = '/ckeditor/';
//$ckfinder = new CKFinder();
//$ckfinder->BasePath = '/ckfinder/'; // Note: BasePath property in CKFinder class starts with capital letter
//$ckfinder->SetupCKEditorObject($ckeditor);
//$ckeditor->editor('CKEditor1');
}
}
//--------------------------------------end dla edytora
//require_once("config/config.php");
if (!$dz) $dz=$GO_CONFIG->startdz;
//echo "
====".$GO_LANGUAGE->curent_language();
ob_start();
if ($_POST["op"]=="setting" AND $_POST["dz_save"] AND is_admindzial($_POST['dz'],1)){
$is_addik=$GO_CONFIG->save_dzial_setting($_POST[dzcfg],$_POST[master]);
if ($is_addik AND $_POST['dzcfg']=="0" AND $_POST['master']>0){
// $_GET['dzcfg']=$_POST['master'];
redirect("mod.php?dz=".$_POST['master']);
}
}else if ($_POST["op"]=="setting" AND $_POST["dz_grab"] AND is_admindzial($_POST['dz'],1)){
$GO_CONFIG->save_dzial_setting_grab($_POST['grab_id'],$_POST['grab_format'],$_POST['grab_loyout'],$_POST['grab_toppage'],$_POST['grab_bottompage']);
//--------------------------mTPLe
}else if ($_POST["op"]=="setting" AND $_POST["dz_loadmtpl"] AND is_admindzial($_POST['dz'],1)){//zmien na mTPLa
$GO_CONFIG->save_dzial_setting_loadmtpl($_POST['mtpl_tpl']);
}else if ($_POST["op"]=="setting" AND $_POST["dz_uploadmtpl"] AND is_admindzial($_POST['dz'],1)){//wczytaj nowego mTPLa z pliku
$GO_CONFIG->save_dzial_setting_uploadtpl($_FILES['new_mtpl']['name']);
}else if ($_POST["op"]=="setting" AND $_POST["dz_savemtpl"] AND is_admindzial($_POST['dz'],1)){//zapisz sekcje bierzaca A jako mTPLa
$GO_CONFIG->save_dzial_setting_savetpl($_POST['name_mtpl']);
}else if ($_POST["op"]=="setting" AND $_POST["dz_gettpl"] AND is_admindzial($_POST['dz'],1)){//get ziped mTpl
$GO_CONFIG->save_dzial_setting_gettpl($_POST['mtpl_tpl']);
}else if ($_POST["op"]=="setting" AND $_POST["dz_deletetpl"] AND is_admindzial($_POST['dz'],1)){//delete mTPL
$GO_CONFIG->save_dzial_setting_deletetpl($_POST['mtpl_tpl']);
//--------------------------TPLe
}else if ($_POST['action']=="edit" AND $_POST['dz_gettpl'] AND $_POST['f_mod_tpl']){//get ziped tpl
if ($_POST['ss']==$GO_CONFIG->get_sesid()){
$GO_CONFIG->get_ziped_tpl($_POST['f_mod_tpl']);
redirect("mod.php?action=edit&dz=".getpost(dz)."&pid=".getpost(savepid)."&wh=".getpost(wh)."&lmod=&lpg=&ss=".getpost(ss));
}else echo error(_NOACCES);
}else if ($_POST['action']=="edit" AND $_POST['dz_deletetpl'] AND $_POST['f_mod_tpl']){//delete tpl
if ($_POST['ss']==$GO_CONFIG->get_sesid()){
$erx=$GO_CONFIG->delete_tpl($_POST['f_mod_tpl']);
if ($erx=="1") redirect("mod.php?action=edit&dz=".getpost(dz)."&pid=".getpost(savepid)."&wh=".getpost(wh)."&sm=".$_POST['sm']."&lmod=&lpg=&ss=".getpost(ss));
else exit;
}else echo error(_NOACCES);
}else if ($_POST['action']=="edit" AND $_POST[dz_uploadmtpl] AND $_FILES['new_mtpl']['name']){//upload new tpl
if ($_POST['ss']==$GO_CONFIG->get_sesid()){
$erx=$GO_CONFIG->load_new_tpl($_FILES['new_mtpl']['name']);
if ($erx=="1") redirect("mod.php?action=edit&dz=".getpost(dz)."&pid=".getpost(savepid)."&wh=".getpost(wh)."&sm=".$_POST['sm']."&lmod=&lpg=&ss=".getpost(ss));
else exit;
}else echo error(_NOACCES);
// echo "==";exit;
}else if ($_POST["op"]=="system" AND $_POST["dz_save"] AND is_admindzial($_POST['dz'],1)){
$GO_CONFIG->save_system_setting($_POST['dz']);
}
$GO_CONFIG->main_page_mod_config= ob_get_contents(); // store buffer in $contents
ob_end_clean(); // delete output buffer and stop buffering
if (!$GO_CONFIG->external_tpl){
echo $GO_CONFIG->main_page_mod_config;
}
if (!getpost('head0')==1) require_once("stopki/header.php");
//---------------------------------------------------------------------------------dzial ty;lko dla zalogowanych
if ($_GET['forwhologin']==1){
// if ($GO_CONFIG->external_tpl OR getpost('forwhologin')==1){
// ob_start();
// }
//if ((!getpost('forwhologin') AND $GO_CONFIG->for_who=="l" AND !is_user()) OR $_GET['forwhologin']==1){
// $_GET['tdz'];
echo "