API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Oct 28th, 2017
72
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
text 7.43 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. require_once("../app/api.nucleo.php");
  3.  
  4. $zone = 'Dar Rango';
  5.  
  6. $action = FilterText($_GET['action']);
  7. $id = FilterText($_GET['id']);
  8. if($myrow['rank'] >= 11){
  9. $users = mysql_query("SELECT * FROM users WHERE username = '". $myrow['username']."' AND password = '".$_SESSION['Password']."'");
  10. $user =mysql_fetch_array( $users);
  11.  
  12. $a = mysql_query("SELECT * FROM users WHERE rank >= 3");
  13. $cntranks = mysql_num_rows($a);
  14.  
  15. $b = mysql_query("SELECT * FROM bans");
  16. $cntbans = mysql_num_rows($b);
  17.  
  18. $c = mysql_query("SELECT * FROM users");
  19. $cntusers = mysql_num_rows($c);
  20.  
  21. if(User == true) {
  22. require_once("../ACP4.0/templates/header.tpl");
  23. $result = mysql_query("SELECT * FROM cms_settings WHERE id = 1 LIMIT 1");
  24. $data = mysql_fetch_array($result);
  25.  
  26. $action = FilterText($_GET['action']);
  27. $id = FilterText($_GET['id']);
  28.  
  29. if (isset($_GET['action']) && isset($_GET['id']))
  30. {
  31. if($action == 'err' && $id > 0)
  32. {
  33. $elmSQ = mysql_query("SELECT * FROM users WHERE id = '".$id."'");
  34. $busA = mysql_fetch_assoc($elmSQ);
  35. $conteo = mysql_num_rows($elmSQ);
  36. if ($conteo > 0)
  37. {
  38. mysql_query("UPDATE users SET rank = '1' WHERE id = '".$busA['id']."' LIMIT 1");
  39. header("LOCATION: /ACP4.0/ranks.php");
  40. }
  41. else{
  42. header("LOCATION: /ACP4.0/ranks.php");
  43. }
  44. }
  45. }
  46.  
  47. if($_POST['giverank']){
  48. $check = mysql_query("SELECT * FROM users WHERE username = '".FilterText($_POST['name'])."' LIMIT 1");
  49. $row = mysql_fetch_array($check);
  50. if(empty($_POST['name'])){
  51. $error = "No has puesto el nombre";
  52. header("LOCATION: /ACP4.0/ranks.php");
  53. }
  54. else{
  55. if(mysql_num_rows($check) > 0){
  56. mysql_query("UPDATE users SET cms_role = '".FilterText($_POST['cms_role'])."', rank = '".FilterText($_POST['rankid'])."', bandera = '".FilterText($_POST['bandera'])."', cms_pin = '".FilterText($_POST['pin'])."', cms_verified = '".FilterText($_POST['cms_verified'])."', cms_staffocult = '".FilterText($_POST['ocult'])."' WHERE username = '".$_POST['name']."'");
  57. mysql_query("INSERT INTO cms_stafflogs (username, action, message, rank, userid, timestamp) VALUES ('". $myrow['username'] ."','Dar Rango', 'Le ha dado rango ".$_POST['rankid']." a ".$_POST['name']."', '". $myrow['rank'] ."', '". $myrow['id'] ."', '".date("Y-m-d ")."')");
  58. mysql_query("INSERT INTO user_badges (user_id, badge_id) VALUES ('". $row['id'] ."', '".FilterText($_POST['badge'])."')");
  59. $good = "Rango entregado correctamente";
  60. header("LOCATION: /ACP4.0/ranks.php");
  61. }else {
  62. $error = "El usuario no ex&iacute;ste";
  63. header("LOCATION: /ACP4.0/ranks.php");
  64. }
  65. }
  66. }
  67. ?>
  68. <html>
  69. <body>
  70. <div class="row">
  71. <div class="col-lg-6">
  72. <div class="panel border-1 border-green-500">
  73. <div class="panel-title bg-green-500">
  74. <div class="panel-head color-white"><i class="fa fa-user-plus"></i> Dar Rango</div>
  75. </div>
  76. <div class="panel-body">
  77. <center><b style='color:red;'><?php echo $error; ?></b></center>
  78. <center><b style='color:green;'><?php echo $good; ?></b></center>
  79. <form action="" method="post" autocomplete="off">
  80. <p class="text-light margin-bottom-20">Rellena todos los campos para agregar un Rango</p>
  81. <div class="form-group">
  82. <label for="input-text" class="control-label">Usuario</label>
  83. <input type="text" class="form-control" id="input-text" name="name" placeholder="Usuario a dar el rango" value="">
  84. </div>
  85. <div class="form-group">
  86. <label for="input-text" class="control-label">Rango</label>
  87. <br><select class="form-control" name="rankid">
  88. <?php $que = mysql_query("SELECT * FROM ranks ORDER BY id DESC"); while($qued = mysql_fetch_array($que)){?>
  89. <option value="<?php echo $qued['id']; ?>"><?php echo $qued['name']; ?></option>
  90. <?php } ?>
  91. </select>
  92. </div>
  93. <div class="form-group">
  94. <label for="input-text" class="control-label">¿Perfil verificado?</label>
  95. <br><select value="0" class="form-control" name="cms_verified">
  96. <option value="0">No</option>
  97. <option value="1">S&iacute;</option>
  98. </select>
  99. </div>
  100. <div class="form-group">
  101. <label for="input-text" class="control-label">Rango Oculto</label>
  102. <br><select value="0" class="form-control" name="ocult">
  103. <option value="0">No</option>
  104. <option value="1">S&iacute;</option>
  105. </select>
  106. </div>
  107. <div class="form-group">
  108. <label for="input-text" class="control-label">País</label>
  109. <br><select value="0" class="form-control" name="bandera">
  110. <option value="VE">Venezuela</option>
  111. <option value="CO">Colombia</option>
  112. <option value="PE">Peru</option>
  113. <option value="EC">Ecuador</option>
  114. <option value="ES">España</option>
  115. <option value="UY">Uruguay</option>
  116. <option value="MX">Mexico</option>
  117. <option value="US">Estados Unidos</option>
  118. <option value="AR">Argentina</option>
  119. <option value="CL">Chile</option>
  120. <option value="NO">Nope</option>
  121. </select>
  122. </div>
  123. <div class="form-group">
  124. <label for="input-text" class="control-label">Tarea</label>
  125. <input type="text" class="form-control" id="input-text" name="cms_role" placeholder="¿Ser puta?" value="">
  126. </div>
  127. <input name="giverank" type="submit" class="btn btn-dark bg-blue-grey-800 color-white margin-left-10" value="Guardar">
  128. </form>
  129. </div>
  130. </div>
  131. </div>
  132. <div class="col-lg-3">
  133. <div class="panel border-1 border-green-300">
  134. <div class="panel-title bg-green-300">
  135. <div class="panel-head color-white"><i class="fa fa-shield"></i> Usuarios con Rango</div>
  136. </div>
  137. <div class="panel-body" style="max-height:800px;display: block;overflow: auto;">
  138. <?php
  139. $result = mysql_query("SELECT * FROM users WHERE rank >= 2 ORDER BY id DESC");
  140. if(mysql_num_rows($result) > 0){
  141. while($data = mysql_fetch_assoc($result)){
  142. if($_GET['action'] == 'err' && !empty($_GET['id']))
  143. {
  144. mysql_query("INSERT INTO cms_stafflogs (username, action, message, rank, userid, timestamp) VALUES ('". $myrow['username'] ."','Rango', 'Ha bajado a un usuario', '". $myrow['rank'] ."', '". $myrow['id'] ."', '".date("Y-m-d ")."')");
  145. $good = "Rango bajado correctamente";
  146. header("LOCATION: /ACP4.0/ranks.php");
  147. }
  148. echo '<li style="font-size:13px;"><a href="/ACP4.0/ranks.php?action=err&id='.$data['id'].'"><img src="/ACP4.0/templates/images/icons/del.gif"> '.$data['username'].'</a> <div style="float:right;"> <b><i class="fa fa-shield"></i> Rango:</b> '.$data['rank'].'</div><div style="float:right;"> <b><i class="fa fa-flag"></i> Saber PAIS:</b> <a href="https://geoiptool.com/es/?ip='.$data['ip_last'].'" target="_blank">Click aqui</a></div></li><hr>';
  149. }
  150. echo '</ul>';
  151.  
  152. }else{
  153. echo '<b style="color:red;">Nadie tiene rango xDDDDDD</i>';
  154. }
  155. ?>
  156. </div>
  157. </div>
  158. </div>
  159. </div>
  160. <?php require_once '../ACP4.0/templates/footer.tpl'; ?>
  161. </body>
  162. </html>
  163. <?php
  164. } if(User == false) { echo '<meta http-equiv="refresh" content="0;url=/">'; } }else{ header("LOCATION: /me"); exit; }?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!