Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- @mysql_connect('localhost', 'root', 'Hillary99') or die('MYSQL ERROR: SERVER CONNECT');
- @mysql_select_db('projects') or die('MYSQL_ERROR: DATABASE SELECT');
- $a = $_GET['a'];
- if (($a == 'a' || $a == '') && !$_SESSION['user']) header('Location: login');
- if ($a == 'i') {
- $i = @mysql_real_escape_string($_GET['i']);
- $n = number_format(get_downloads($i));
- if ($_GET['f'] == 't') die($n);
- $i = imagecreate(strlen($n) * 9 + 1, 13);
- $b = imagecolorallocate($i, 255, 255, 255);
- $t = imagecolorallocate($i, 0, 0, 0);
- imagestring($i, 5, 1, 0, $n, $t);
- header('Content-type: image/png');
- imagepng($i);
- imagedestroy($i);
- die();
- } else if ($a == 'd') {
- $i = $_GET['i'];
- if (!isset($i)) die('ERROR: NO ID');
- $q = 'SELECT url FROM ancp WHERE id = ' . $i;
- $u = ($r = @mysql_fetch_array(@mysql_query($q))) ? $r[0] : '';
- if ($u == '') die('ERROR: NO URL FOUND');
- else if (is404($u)) die('ERROR: URL RESOLVED TO 404');
- if (!@mysql_unbuffered_query('SELECT 1 FROM ancd WHERE p = \'' . $_SERVER['REMOTE_ADDR'] . '\'')) {
- @mysql_unbuffered_query('UPDATE ancp SET downlods = downloads + 1 WHERE id = ' . $i);
- @mysql_unbuffered_query('INSERT INTO ancd (pid, ip) VALUES (' . $i . ', \'' . $_SERVER['REMOTE_ADDR'] . '\')');
- }
- header('Location: ' . $u);
- } else {
- if ($_POST['submit'] == 'Add Program') {
- $_POST = @array_map('mysql_real_escape_string', $_POST);
- $n = $_POST['n'];
- $l = $_POST['l'];
- $u = $_POST['u'];
- $d = $_POST['d'];
- $p0 = $_POST['p0'];
- $p1 = $_POST['p1'];
- if (strlen($n) > 2) {
- if ($u && !is404($u)) {
- if ($p0 == $p1) {
- $q = 'INSERT INTO ancp (name, login, password, url, description) VALUES (\'' . $n . '\', \'' . $l . '\', \'' . md5($p0) . '\', \'' . $u . '\', \'' . $d . '\')';
- @mysql_query($q) or die(mysql_error());
- } else $error = 'The passwords did not match.';
- } else $error = 'Invalid URL provided.';
- } else $error = 'Your program name must be more than three characters long.';
- } else if ($_POST['submit'] == 'Login') {
- $_POST = @array_map('mysql_real_escape_string', $_POST);
- $u = $_POST['u'];
- $p = $_POST['p'];
- if ($u) {
- if ($p) {
- $q = 'SELECT id FROM ancu WHERE username = \'' . $u . '\' AND password = \'' . md5($p) . '\'';
- if (!@mysql_unbuffered_query($q)) $error = 'Invalid username or password';
- else {
- $_SESSION['user'] = $u;
- header('Location: settings');
- }
- } else $error = 'No password provided';
- } else $error = 'No username provided';
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement