📄 admin-basic.php
字号:
<?php /* ------------------------- */
$OMNILOG = 1;
include("_include-config.php");
if(! check_login()) {
header("Location: login.php");
exit;
}
mysql_query("UPDATE `[users]` SET `online`=NOW() WHERE `login`='{$data->login}'");
/* ------------------------- */ ?>
<html>
<head>
<title>[( Elite Avengers )]</title>
<link rel="stylesheet" type="text/css" href="css-v1.css">
</head>
<body>
<table width=100%>
<?php /* ------------------------- */
if($_GET['p'] == "donate" && $data->level > 50) {
print " <tr><td class=\"subTitle\"><b>Admin - Donate</b></td></tr>\n";
if(isset($_POST['to'])) {
if(preg_match('/^[0-9]+$/',$_POST['amount'])) {
if($member = mysql_fetch_object(mysql_query("SELECT `login` FROM `[users]` WHERE `login`='{$_POST['to']}'"))) {
mysql_query("UPDATE `[users]` SET `bank`=`bank`+{$_POST['amount']} WHERE `login`='{$member->login}'");
mysql_query("UPDATE `[users]` SET `clicks`=`clicks`+{$_POST['clicks']} WHERE `login`='{$member->login}'");
mysql_query("UPDATE `[users]` SET `attack`=`attack`+{$_POST['attack']} WHERE `login`='{$member->login}'");
mysql_query("UPDATE `[users]` SET `defence`=`defence`+{$_POST['defence']} WHERE `login`='{$member->login}'");
mysql_query("INSERT INTO `[logs]`(`time`,`IP`,`login`,`person`,`code`,`area`) values(NOW(),'{$_SERVER['REMOTE_ADDR']}','** Elite Avengers **','{$member->login}',{$_POST['amount']},'donate')");
$amount = number_format($_POST['amount']);
if($_POST['amount'] > 0 && $_POST['clicks'] == 0 && $_POST['attack'] == 0 && $_POST['defence'] == 0)
print " <tr><td class=\"mainTxt\">You donated \${$amount} to {$member->login}.</td></tr>\n";
else
print " <tr><td class=\"mainTxt\">You donated \${$_POST['amount']}, {$_POST['clicks']} clicks, {$_POST['attack']} attack and {$_POST['defence']} defence power to to {$member->login}.</td></tr>\n";
}
}
}
print <<<ENDHTML
<tr><td class="mainTxt" align="center">
<form method="post"><table>
<tr><td width=100>To:</td> <td><input type="text" name="to" value="{$_REQUEST['to']}"></td></tr>
<tr><td width=100>Amount:</td> <td><input type="text" name="amount" value="0"></td></tr>
<tr><td width=100>Clicks:</td> <td><input type="text" name="clicks" value="0"></></td></tr>
<tr><td width=100>Attack:</td> <td><input type="text" name="attack" value="0"></></td></tr>
<tr><td width=100>Defence:</td> <td><input type="text" name="defence" value="0"></></td></tr>
<tr><td></td> <td align="right"><input type="submit" value="Donate" style="width: 75px;"></td></tr>
</table></form>
</td></tr>
ENDHTML;
}
else if($_GET['p'] == "del" && $data->level > 50) {
$dbres = mysql_query("SELECT `login`,`level` FROM `[users]` WHERE `login`='{$_GET['x']}'");
if($x = mysql_fetch_object($dbres)) {
if($x->level > 100)
print " <tr><td class=\"subTitle\"><b>Delete user</b></td></tr>\n <tr><td class=\"mainTxt\">Je kan een admin niet verwijderen</td></tr>\n";
else if(isset($_POST['delete']) && $data->level > 50) {
mysql_query("DELETE FROM `[users]` WHERE `login`='{$x->login}'");
mysql_query("DELETE FROM `[temp]` WHERE `login`='{$x->login}'");
mysql_query("DELETE FROM `[logs]` WHERE `login`='{$x->login}' AND `area`='hqIP'");
if($clan = mysql_fetch_object(mysql_query("SELECT `name` FROM `[clans]` WHERE `owner`='{$x->login}'"))) {
mysql_query("DELETE FROM `[clans]` WHERE `name`='{$clan->name}'");
mysql_query("UPDATE `[users]` SET `clan`='',`clanlevel`=0 WHERE `clan`='{$clan->name}'");
}
print " <tr><td class=\"subTitle\"><b>Delete user</b></td></tr>\n <tr><td class=\"mainTxt\">{$x->login} is verwijderd</td></tr>\n<script language=\"javascript\">setTimeout('window.close()',500)</script>";
}
else {
print <<<ENDHTML
<tr><td class="subTitle"><b>Delete user</b></td></tr>
<tr><td class="mainTxt" align="center">
<form method="post" action="admin.php?p=del&x={$x->login}">
Are you sure you want to delete <b>{$x->login}</b>?<br><br>
<input type="submit" name="delete" value="Yes" style="width: 100px;">
<input type="button" name="cancel" value="No" style="width: 100px;" onClick="window.close()">
</form>
</td></tr>
ENDHTML;
}
}
}
else if($_GET['p'] == "reset" && $data->level >= 50) {
$dbres = mysql_query("SELECT `id`,`login`,`pass`,`level`,`IP`,`email`,`type`,`clan`,`clanlevel`,`activated`,`blocklist` FROM `[users]` WHERE `login`='{$_GET['x']}'");
if($x = mysql_fetch_object($dbres)) {
if(isset($_POST['reset'])) {
mysql_query("DELETE FROM `[users]` WHERE `login`='{$x->login}'");
mysql_query("DELETE FROM `[temp]` WHERE `login`='{$x->login}'");
mysql_query("DELETE FROM `[logs]` WHERE `login`='{$x->login}' AND `area`='hqIP'");
mysql_query("INSERT INTO `[users]`(`id`,`signup`,`login`,`pass`,`level`,`IP`,`email`,`type`,`clan`,`clanlevel`,`blocklist`,`activated`) values('{$x->id}',NOW(),'{$x->login}','{$x->pass}','{$x->level}','{$x->IP}','{$x->email}','{$x->type}','{$x->clan}','{$x->clanlevel}','{$x->blocklist}',1)");
print " <tr><td class=\"subTitle\"><b>Reset user</b></td></tr>\n <tr><td class=\"mainTxt\">{$x->login} has been reset</td></tr>\n<script language=\"javascript\">setTimeout('window.close()',500)</script>";
}
else {
print <<<ENDHTML
<tr><td class="subTitle"><b>Reset user</b></td></tr>
<tr><td class="mainTxt" align="center">
<form method="post" action="admin.php?p=reset&x={$x->login}">
Are you sure you want to reset <b>{$x->login}</b>?<br><br>
<input type="submit" name="reset" value="Yes" style="width: 100px;">
<input type="button" name="cancel" value="No" style="width: 100px;" onClick="window.close()">
</form>
</td></tr>
ENDHTML;
}
}
}
else if($_GET['p'] == "massareset" && $_SERVER['REMOTE_ADDR'] == "80.100.101.202") {
$dbres = mysql_query("SELECT `id`,`login`,`pass`,`level`,`IP`,`email`,`type`,`clan`,`clanlevel`,`activated`,`blocklist` FROM `[users]` WHERE `level`<'100'");
while($x = mysql_fetch_object($dbres)) {
mysql_query("DELETE FROM `[users]` WHERE `login`='{$x->login}'");
mysql_query("DELETE FROM `[temp]` WHERE `login`='{$x->login}'");
mysql_query("DELETE FROM `[logs]` WHERE `login`='{$x->login}' AND `area`='hqIP'");
mysql_query("INSERT INTO `[users]`(`id`,`signup`,`login`,`pass`,`level`,`IP`,`email`,`type`,`blocklist`,`activated`) values('{$x->id}',NOW(),'{$x->login}','{$x->pass}','{$x->level}','{$x->IP}','{$x->email}','{$x->type}','{$x->blocklist}',1)");
}
}
/* ------------------------- */ ?>
</table>
</body>
</html>⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -