Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- require_once("../app/api.nucleo.php");
- $zone = 'Dar Rango';
- $action = FilterText($_GET['action']);
- $id = FilterText($_GET['id']);
- if($myrow['rank'] >= 11){
- $users = mysql_query("SELECT * FROM users WHERE username = '". $myrow['username']."' AND password = '".$_SESSION['Password']."'");
- $user =mysql_fetch_array( $users);
- $a = mysql_query("SELECT * FROM users WHERE rank >= 3");
- $cntranks = mysql_num_rows($a);
- $b = mysql_query("SELECT * FROM bans");
- $cntbans = mysql_num_rows($b);
- $c = mysql_query("SELECT * FROM users");
- $cntusers = mysql_num_rows($c);
- if(User == true) {
- require_once("../ACP4.0/templates/header.tpl");
- $result = mysql_query("SELECT * FROM cms_settings WHERE id = 1 LIMIT 1");
- $data = mysql_fetch_array($result);
- $action = FilterText($_GET['action']);
- $id = FilterText($_GET['id']);
- if (isset($_GET['action']) && isset($_GET['id']))
- {
- if($action == 'err' && $id > 0)
- {
- $elmSQ = mysql_query("SELECT * FROM users WHERE id = '".$id."'");
- $busA = mysql_fetch_assoc($elmSQ);
- $conteo = mysql_num_rows($elmSQ);
- if ($conteo > 0)
- {
- mysql_query("UPDATE users SET rank = '1' WHERE id = '".$busA['id']."' LIMIT 1");
- header("LOCATION: /ACP4.0/ranks.php");
- }
- else{
- header("LOCATION: /ACP4.0/ranks.php");
- }
- }
- }
- if($_POST['giverank']){
- $check = mysql_query("SELECT * FROM users WHERE username = '".FilterText($_POST['name'])."' LIMIT 1");
- $row = mysql_fetch_array($check);
- if(empty($_POST['name'])){
- $error = "No has puesto el nombre";
- header("LOCATION: /ACP4.0/ranks.php");
- }
- else{
- if(mysql_num_rows($check) > 0){
- mysql_query("UPDATE users SET cms_role = '".FilterText($_POST['cms_role'])."', rank = '".FilterText($_POST['rankid'])."', bandera = '".FilterText($_POST['bandera'])."', cms_pin = '".FilterText($_POST['pin'])."', cms_verified = '".FilterText($_POST['cms_verified'])."', cms_staffocult = '".FilterText($_POST['ocult'])."' WHERE username = '".$_POST['name']."'");
- mysql_query("INSERT INTO cms_stafflogs (username, action, message, rank, userid, timestamp) VALUES ('". $myrow['username'] ."','Dar Rango', 'Le ha dado rango ".$_POST['rankid']." a ".$_POST['name']."', '". $myrow['rank'] ."', '". $myrow['id'] ."', '".date("Y-m-d ")."')");
- mysql_query("INSERT INTO user_badges (user_id, badge_id) VALUES ('". $row['id'] ."', '".FilterText($_POST['badge'])."')");
- $good = "Rango entregado correctamente";
- header("LOCATION: /ACP4.0/ranks.php");
- }else {
- $error = "El usuario no exíste";
- header("LOCATION: /ACP4.0/ranks.php");
- }
- }
- }
- ?>
- <html>
- <body>
- <div class="row">
- <div class="col-lg-6">
- <div class="panel border-1 border-green-500">
- <div class="panel-title bg-green-500">
- <div class="panel-head color-white"><i class="fa fa-user-plus"></i> Dar Rango</div>
- </div>
- <div class="panel-body">
- <center><b style='color:red;'><?php echo $error; ?></b></center>
- <center><b style='color:green;'><?php echo $good; ?></b></center>
- <form action="" method="post" autocomplete="off">
- <p class="text-light margin-bottom-20">Rellena todos los campos para agregar un Rango</p>
- <div class="form-group">
- <label for="input-text" class="control-label">Usuario</label>
- <input type="text" class="form-control" id="input-text" name="name" placeholder="Usuario a dar el rango" value="">
- </div>
- <div class="form-group">
- <label for="input-text" class="control-label">Rango</label>
- <br><select class="form-control" name="rankid">
- <?php $que = mysql_query("SELECT * FROM ranks ORDER BY id DESC"); while($qued = mysql_fetch_array($que)){?>
- <option value="<?php echo $qued['id']; ?>"><?php echo $qued['name']; ?></option>
- <?php } ?>
- </select>
- </div>
- <div class="form-group">
- <label for="input-text" class="control-label">¿Perfil verificado?</label>
- <br><select value="0" class="form-control" name="cms_verified">
- <option value="0">No</option>
- <option value="1">Sí</option>
- </select>
- </div>
- <div class="form-group">
- <label for="input-text" class="control-label">Rango Oculto</label>
- <br><select value="0" class="form-control" name="ocult">
- <option value="0">No</option>
- <option value="1">Sí</option>
- </select>
- </div>
- <div class="form-group">
- <label for="input-text" class="control-label">País</label>
- <br><select value="0" class="form-control" name="bandera">
- <option value="VE">Venezuela</option>
- <option value="CO">Colombia</option>
- <option value="PE">Peru</option>
- <option value="EC">Ecuador</option>
- <option value="ES">España</option>
- <option value="UY">Uruguay</option>
- <option value="MX">Mexico</option>
- <option value="US">Estados Unidos</option>
- <option value="AR">Argentina</option>
- <option value="CL">Chile</option>
- <option value="NO">Nope</option>
- </select>
- </div>
- <div class="form-group">
- <label for="input-text" class="control-label">Tarea</label>
- <input type="text" class="form-control" id="input-text" name="cms_role" placeholder="¿Ser puta?" value="">
- </div>
- <input name="giverank" type="submit" class="btn btn-dark bg-blue-grey-800 color-white margin-left-10" value="Guardar">
- </form>
- </div>
- </div>
- </div>
- <div class="col-lg-3">
- <div class="panel border-1 border-green-300">
- <div class="panel-title bg-green-300">
- <div class="panel-head color-white"><i class="fa fa-shield"></i> Usuarios con Rango</div>
- </div>
- <div class="panel-body" style="max-height:800px;display: block;overflow: auto;">
- <?php
- $result = mysql_query("SELECT * FROM users WHERE rank >= 2 ORDER BY id DESC");
- if(mysql_num_rows($result) > 0){
- while($data = mysql_fetch_assoc($result)){
- if($_GET['action'] == 'err' && !empty($_GET['id']))
- {
- mysql_query("INSERT INTO cms_stafflogs (username, action, message, rank, userid, timestamp) VALUES ('". $myrow['username'] ."','Rango', 'Ha bajado a un usuario', '". $myrow['rank'] ."', '". $myrow['id'] ."', '".date("Y-m-d ")."')");
- $good = "Rango bajado correctamente";
- header("LOCATION: /ACP4.0/ranks.php");
- }
- echo '<li style="font-size:13px;"><a href="/ACP4.0/ranks.php?action=err&id='.$data['id'].'"><img src="/ACP4.0/templates/images/icons/del.gif"> '.$data['username'].'</a> <div style="float:right;"> <b><i class="fa fa-shield"></i> Rango:</b> '.$data['rank'].'</div><div style="float:right;"> <b><i class="fa fa-flag"></i> Saber PAIS:</b> <a href="https://geoiptool.com/es/?ip='.$data['ip_last'].'" target="_blank">Click aqui</a></div></li><hr>';
- }
- echo '</ul>';
- }else{
- echo '<b style="color:red;">Nadie tiene rango xDDDDDD</i>';
- }
- ?>
- </div>
- </div>
- </div>
- </div>
- <?php require_once '../ACP4.0/templates/footer.tpl'; ?>
- </body>
- </html>
- <?php
- } if(User == false) { echo '<meta http-equiv="refresh" content="0;url=/">'; } }else{ header("LOCATION: /me"); exit; }?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement