Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $page = $_GET['page'];
- $do = $_GET['do'];
- $todo = $_GET['todo'];
- //sponsor
- $s = $_GET['s'];
- //stupen
- $st = $_GET['st'];
- //sponsor
- $u = $_GET['u'];
- $email = $_POST['email'];
- $password = $_POST['password'];
- $name = $_POST['name'];
- $message = $_POST['message'];
- $surname = $_POST['surname'];
- $username = $_POST['username'];
- $passrepeat = $_POST['passrepeat'];
- $sponsor = $_POST['sponsor'];
- $skype = $_POST['skype'];
- $perfectmoney = $_POST['perfectmoney'];
- $payeer = $_POST['payeer'];
- $advcash = $_POST['advcash'];
- $bitcoin = $_POST['bitcoin'];
- $status = $_POST['status'];
- $uac = $_GET['uac'];
- $nowis = time();
- if ($do == 'login') {
- //id name email username password
- $querylogin = "SELECT * FROM `users`";
- $datalogin = mysql_query($querylogin);
- while ($rowlogin = mysql_fetch_array($datalogin)) {
- $usercheck_id = $rowlogin['id'];
- $usercheck_mail = $rowlogin['email'];
- $usercheck_pass = $rowlogin['password'];
- $usercheck_name = $rowlogin['name'];
- $usercheck_username = $rowlogin['username'];
- if ($usercheck_username == $username) {
- if ($usercheck_pass == $password) {
- $_SESSION['user'] = $usercheck_id;
- $inmsg = 'Привет ' . $usercheck_name . '!';
- $page = 'cabinet';
- } else {
- $err_msg = 'Неправильные пароль или аккаунт!';
- }
- } else {
- $err_msg = 'Неправильные пароль или аккаунт!';
- }
- }
- }
- //activate an account
- if ($do == 'activate') {
- $qupb = " UPDATE `users` SET `status` = 'active' WHERE `users`.`id` = '$uac'";
- mysql_query($qupb) or die("Error: Can't insert data! " . mysql_error());
- $reg_msg = "Ваш аккаунт активирован, спасибо!";
- }
- //admin details
- $userin = $_SESSION['user'];
- if ($do == 'logout') {
- unset($_SESSION['user']);
- session_unset();
- session_destroy();
- $_SESSION['user'] = '';
- $page = '';
- $userin = "";
- }
- // id name email username password status surname sponsor skype perfectmoney payeer advcash bitcoin date
- include('userdetails.php');
- if ($do == 'register') {
- $err_msg = '';
- //check if email already exists
- $checku_id = '';
- $queryacheck = "SELECT * FROM `users` WHERE `username` = '$username'";
- $dataacheck = mysql_query($queryacheck);
- while ($rowacheck = mysql_fetch_array($dataacheck)) {
- $checku_id = $rowacheck['id'];
- $checku_us = $rowacheck['username'];
- }
- if ($checku_id) {
- $err_msg = 'Уже есть акаунт на этот мейл!';
- } else {
- if ($passrepeat == $password) {
- if (!empty($bitcoin) || !empty($advcash) || !empty($payeer) || !empty($perfectmoney)) {
- $qupb = "INSERT INTO `users` (`id`, `name`, `email`, `username`, `password`, `status`, `surname`, `sponsor`, `skype`, `perfectmoney`, `payeer`, `advcash`, `bitcoin`, `date`) VALUES (NULL, '$name', '$email', '$username', '$password', 'pending', '$surname', '$sponsor', '$skype', '$perfectmoney', '$payeer', '$advcash', '$bitcoin', '$nowis');";
- mysql_query($qupb) or die("Error: Can't insert data! " . mysql_error());
- //get last
- $queryul = "SELECT * FROM `users` ORDER BY `id` DESC LIMIT 1";
- $dataul = mysql_query($queryul);
- while ($rowul = mysql_fetch_array($dataul)) {
- $lastuid = $rowul['id'];
- }
- //send an email to admin
- $to = "admin@cash-ladder.com";
- //$to = "";
- $subject = "Регитрация на Cash Ladder";
- $from = "admin@cash-ladder.com";
- //begin of HTML message
- $message = '
- <table width="100%" border="0" cellspacing="0" cellpadding="3">
- <tr>
- <td colspan="2" style="font-size:16px; color:#333; font-family:Arial, Helvetica, sans-serif; font:Arial, Helvetica, sans-serif;">
- <p>Здравствуйте Админ,</p>
- <p>Новая регистрация на сайте Cash Ladder:</p>
- <p>имя:' . $name . '</p>
- <p>фамилия:' . $surname . '</p>
- <p>мейл:' . $email . '</p>
- </td>
- </tr>
- </table>
- ';
- //end of message
- $headers = "From: $from\r\n";
- $headers .= "Content-type: text/html\r\n";
- // to client
- mail($to, $subject, $message, $headers);
- //send an email to CLIENT
- //$to_client = "tatiana.gramatikova@gmail.com";
- $to_client = $email;
- $subject_client = "Добро пожаловать на Cash Ladder";
- $from_client = "admin@cash-ladder.com";
- //echo '<br>to '.$to;
- //begin of HTML message
- $message_client = '
- <table width="100%" border="0" cellspacing="0" cellpadding="3">
- <tr>
- <td colspan="2" style="font-size:16px; color:#333; font-family:Arial, Helvetica, sans-serif; font:Arial, Helvetica, sans-serif;">
- <p>Добро пожаловать в Cash Ladder
- Для подтверждения Вашей регистрации перейдите пожалуйста по <a href="http://idees.uk/cash-ladder-php/index.php?page=activation&&uac=' . $lastuid . '&&do=activate" target="_blank">этой ссылке</a>
- <p>С уважением </p>
- <p>Cash Ladder Team</p>
- <p><a href="http://www.cash-ladder.com" target="_blank">www.cash-ladder.com</a></p>
- </td>
- </tr>
- </table>
- ';
- //end of message
- $headers_client = "From: $from_client\r\n";
- $headers_client .= "Content-type: text/html\r\n";
- // now lets send the email.
- mail($to_client, $subject_client, $message_client, $headers_client);
- $reg_msg = "Добро пожаловать $name! Проверьте свою почту чтоб активировать аккаунт. Проверьте и спам-папку.";
- } else {
- $err_msg = 'Обязательно заполните один из кошельков!';
- }
- } else {
- $err_msg = 'Пароль не совпадает!';
- }
- }
- }
- if ($do == 'contact') {
- //send an email to admin
- $to = "tatiana.gramatikova@gmail.com";
- //$to = "";
- $subject = "Контакт на сайте Cash Ladder";
- $from = "admin@cash-ladder.com";
- //begin of HTML message
- $message = '
- <table width="100%" border="0" cellspacing="0" cellpadding="3">
- <tr>
- <td colspan="2" style="font-size:16px; color:#333; font-family:Arial, Helvetica, sans-serif; font:Arial, Helvetica, sans-serif;">
- <p>Здравствуйте Админ,</p>
- <p>Сообщение на сайте Cash Ladder:</p>
- <p>имя:' . $name . '</p>
- <p>мейл:' . $email . '</p>
- <p>сообщение:' . $message . '</p>
- </td>
- </tr>
- </table>
- ';
- //end of message
- $headers = "From: $from\r\n";
- $headers .= "Content-type: text/html\r\n";
- //options to send to cc+bcc
- //$headers .= "Cc: [email]maa@p-i-s.cXom[/email]";
- // $headers .= "Bcc: [email]tatiana.gramatikova@gmail.com[/email]";
- // to client
- mail($to, $subject, $message, $headers);
- //send an email to CLIENT
- //$to_client = "tatiana.gramatikova@gmail.com";
- $to_client = $email;
- $subject_client = "Ваш запрос на Cash Ladder принят";
- $from_client = "admin@cash-ladder.com";
- //echo '<br>to '.$to;
- //begin of HTML message
- $message_client = '
- <table width="100%" border="0" cellspacing="0" cellpadding="3">
- <tr>
- <td colspan="2" style="font-size:16px; color:#333; font-family:Arial, Helvetica, sans-serif; font:Arial, Helvetica, sans-serif;">
- <p>Здравствуйте ' . $name . ',</p>
- <p>Спасибо, Ваш запрос принят! В ближайшее время с вами свяжется один из наших админов.</p>
- <p>С приветом</p>
- <p>Cash Ladder Team</p>
- <p><a href="http://www.cash-ladder.com" target="_blank">www.cash-ladder.com</a></p>
- </td>
- </tr>
- </table>
- ';
- //end of message
- $headers_client = "From: $from_client\r\n";
- $headers_client .= "Content-type: text/html\r\n";
- //options to send to cc+bcc
- //$headers .= "Cc: [email]maa@p-i-s.cXom[/email]";
- //$headers_client .= "Bcc: [email]tatiana.gramatikova@gmail.com[/email]";
- // now lets send the email.
- mail($to_client, $subject_client, $message_client, $headers_client);
- $err_msg = "Спасибо $name!";
- }
- if ($do == 'forgotpass') {
- $err_msg = '';
- //check if email already exists
- $checku_id = '';
- $queryacheck = "SELECT * FROM `users` WHERE `email` = '$email'";
- $dataacheck = mysql_query($queryacheck);
- while ($rowacheck = mysql_fetch_array($dataacheck)) {
- $checku_id = $rowacheck['id'];
- $checku_mail = $rowacheck['email'];
- $checku_name = $rowacheck['name'];
- $checku_surname = $rowacheck['surname'];
- }
- if ($checku_id) {
- //send an email to CLIENT
- //$to_client = "tatiana.gramatikova@gmail.com";
- $to_client = $email;
- $subject_client = "Ваш запрос на восстановление доступа к Cash Ladder";
- $from_client = "admin@cash-ladder.com";
- //echo '<br>to '.$to;
- //begin of HTML message
- $message_client = '
- <table width="100%" border="0" cellspacing="0" cellpadding="3">
- <tr>
- <td colspan="2" style="font-size:16px; color:#333; font-family:Arial, Helvetica, sans-serif; font:Arial, Helvetica, sans-serif;">
- <p>Здравствуйте ' . $checku_name . ',</p>
- <p>Чтобы сбросить пароль, перейдите <a href="http://idees.uk/cash-ladder-php/index.php?page=forgot&&uac=' . $checku_id . '&&do=activate" target="_blank">по этой ссылке</a>.</p>
- <p>С приветом</p>
- <p>Cash Ladder Team</p>
- <p><a href="http://www.cash-ladder.com" target="_blank">www.cash-ladder.com</a></p>
- </td>
- </tr>
- </table>
- ';
- //end of message
- $headers_client = "From: $from_client\r\n";
- $headers_client .= "Content-type: text/html\r\n";
- //options to send to cc+bcc
- //$headers .= "Cc: [email]maa@p-i-s.cXom[/email]";
- //$headers_client .= "Bcc: [email]tatiana.gramatikova@gmail.com[/email]";
- // now lets send the email.
- mail($to_client, $subject_client, $message_client, $headers_client);
- $inmsg = 'Проверьте мейл и спам папку!';
- } else {
- $err_msg = 'Невозможен сброс пароля!';
- }
- }
- if ($do == 'resetpass') {
- if ($passrepeat == $password) {
- $qupb = "UPDATE `users` SET `password` = '$password' WHERE `users`.`id` = '$uac'";
- mysql_query($qupb) or die("Error: Can't insert data! " . mysql_error());
- $inmsg = 'Готово! Вы можете войти с новым паролем.';
- } else {
- $err_msg = 'Пароль не совпадает!';
- }
- }
- //admin stuff
- $stepsel = $_POST['stepsel'];
- $step_name = $_POST['step_name'];
- $step_price = $_POST['step_price'];
- $step_seats = $_POST['step_seats'];
- $step_reinvest = $_POST['step_reinvest'];
- $step_tech_acc = $_POST['step_tech_acc'];
- $step_ta_step = $_POST['step_ta_step'];
- $referal = $_POST['referal'];
- $navivod = $_POST['navivod'];
- $finpodushka = $_POST['finpodushka'];
- $otvet = $_POST['otvet'];
- $title = $_POST['title'];
- $editu = $_POST['editu'];
- if ($do == 'edit-step') {
- $qupb = "UPDATE `tables` SET
- `name` = '$step_name',
- `price` = '$step_price',
- `seats` = '$step_seats',
- `reinvest` = '$step_reinvest',
- `tech_acc` = '$step_tech_acc',
- `tech_acc_step` = '$step_ta_step',
- `referal` = '$referal',
- `vivod` = '$navivod',
- `fin_podushka` = '$finpodushka' WHERE `tables`.`id` = '$stepsel'";
- mysql_query($qupb) or die("Error: Can't insert data! " . mysql_error());
- }
- if ($do == 'editfaq') {
- $qupb = " UPDATE `faqs` SET `otvet` = '$otvet', `time` = '$nowis' WHERE `faqs`.`id` = 1";
- mysql_query($qupb) or die("Error: Can't insert data! " . mysql_error());
- }
- if ($do == 'editterms') {
- $qupb = " UPDATE `terms` SET `text` = '$otvet', `time` = '$nowis' WHERE `terms`.`id` = 1";
- mysql_query($qupb) or die("Error: Can't insert data! " . mysql_error());
- }
- if ($do == 'editnews') {
- $qupb = " UPDATE `novosti` SET `title` = '$title', `news` = '$otvet', `time` = '$nowis' WHERE `novosti`.`id` = '$stepsel'";
- mysql_query($qupb) or die("Error: Can't insert data! " . mysql_error());
- }
- if ($do == 'addnews') {
- $qupb = "INSERT INTO `novosti` (`id`, `title`, `news`, `time`) VALUES (NULL, '$title', '$otvet', '$nowis')";
- mysql_query($qupb) or die("Error: Can't insert data! " . mysql_error());
- }
- if ($do == 'deln') {
- $qupb = "DELETE FROM `novosti` WHERE `novosti`.`id` = '$todo'";
- mysql_query($qupb) or die("Error: Can't insert data! " . mysql_error());
- }
- //edit user account
- if ($do == 'profile') {
- $qupb = "UPDATE `users` SET `name` = '$name', `email` = '$email', `username` = '$username', `password` = '$password', `surname` = '$surname', `skype` = '$skype' WHERE `users`.`id` = '$userin'";
- mysql_query($qupb) or die("Error: Can't insert data! " . mysql_error());
- }
- //edit user
- if ($do == 'uedit') {
- $qupb = "UPDATE `users` SET `name` = '$name', `email` = '$email', `username` = '$username', `password` = '$password', `status` = '$status', `surname` = '$surname', `sponsor` = '$sponsor', `skype` = '$skype', `perfectmoney` = '$perfectmoney', `payeer` = '$payeer', `advcash` = '$advcash', `bitcoin` = '$bitcoin' WHERE `users`.`id` = '$u'";
- mysql_query($qupb) or die("Error: Can't update data! " . mysql_error());
- }
- //end of admin stuff
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement