Compare revisions

bfeadae2 · bfeadae2 · bfeadae2 · 87cc5545 · bfeadae2 · bfeadae2
--- a/lib/run.inc.php
+++ b/lib/run.inc.php
 <?php
-//Chat
-	if(isset($_POST['chat_absenden'])){
-		if($_POST['chat_absenden'] == 'Absenden' && $_SESSION['uid'] != 0){
-			require('lib/funktionen/chat.php');
-		}
-	}
-//News
-	//Kommentar Speichern
-	if(isset($_POST['news_komment'])){
-		if($_POST['news_komment'] == 'Kommentar Speichern' && $_SESSION['uid'] != 0){
-			require('lib/funktionen/news/kommentar.php');
-		}
-	}
-//Konto
-	//Anmelden
-	if(isset($_POST['news_komment'])){
-		if($_POST['anmelden'] == 'Jetzt anmelden!' && $_SESSION['uid'] == 0){
-			require('lib/funktionen/konto/anmelden.php');
-		}
-	}
-	//Überweisen
-	if(isset($_POST['news_komment'])){
-		if($_POST['ueberweisen'] == 'Senden' && $_SESSION['uid'] != 0){ 
-			require('lib/funktionen/konto/ueberweisen.php');
-		}
-	}
-	//Auszahlen
-	if(isset($_POST['news_komment'])){
-		if($_POST['ueberweisen'] == 'Senden' && $_SESSION['uid'] != 0){ 
-			require('lib/funktionen/konto/ueberweisen.php');
-		}
-	}
-	//Nickpage
-	if (isset($_POST['aendern_nickpage'])){
-		if($_POST['aendern_nickpage'] == 'Änderungen speichern' && $_SESSION['uid'] != 0){
-			require('lib/funktionen/konto/nickpage.php');
-		}
-	}
-?>
\ No newline at end of file
+
+require_once('lib/funktionen/global/run.class.php');
+
+if($_SERVER["REQUEST_METHOD"] == "POST"){
+	$var = new RUN();
+	$v = $var->vars();
+	$value = $var->value($v);
+	$datei = $var->datei_holen($value);
+	if($datei != ''){
+		require('lib/funktionen/'.$datei);
+	}
+}
+?>
--- a/lib/schnittstellen/klamm.php
+++ b/lib/schnittstellen/klamm.php
@@ -5,7 +5,7 @@ Betreibersystem Klamm ExportForce²
 Copyright bei Detlef Tiegel
 http://www.projekt-seth.de
 */
-
+$trans_error = array();
 // Klamm ExportForce² Fehlercodes
 $trans_error[1001]        = "Alles OK";
 $trans_error[1002]        = "EF Account existiert nicht";
@@ -33,20 +33,6 @@ $trans_error[1023]        = "target Parameter nicht zulässig";
 $trans_error[1098]        = "EF Account ist gesperrt";
 $trans_error[1099]        = "Unbekannter Fehler";

-// ExportForce² -> Klamm.de
-/**
- * auszahlen()
- *
- * @param mixed $betreiber_id
- * @param mixed $betreiber_pw
- * @param mixed $kunden_id
- * @param mixed $kunden_pw
- * @param mixed $betreiber_kennung
- * @param mixed $trans_menge
- * @param mixed $trans_betreff
- * @param mixed $trans_code
- * @return
- */
 function auszahlen ($betreiber_id,$betreiber_pw,$kunden_id,$kunden_pw,$betreiber_kennung,$trans_menge,$trans_betreff,$trans_code) {
 global $error,$trans_ausgabe,$trans_error;

@@ -62,12 +48,14 @@ $ret=@file("http://www.klamm.de/engine/lose/send.php?ef_id=".$betreiber_id."&ef_
 for($i=0;$i<count($ret);$i++) {
  $returned.=$ret[$i];
 }
+
 $trans_check = explode("|",$returned,7);
 if ($trans_check[0] != "1001") {
 $trans_ausgabe = $trans_error[$trans_check[0]];
 if ($trans_ausgabe == "") $trans_ausgabe = $trans_error[1099];
 $error = "true";
 }
+
 return $error;
 return $trans_ausgabe;
 }

--- a/lib/session.lib.php
+++ b/lib/session.lib.php
 <?php
-/*G8UqVbtH
-Datei : session.lib.php
-Änderungen in dieser Datei nur dann vornehmen wenn Sie wissen was Sie tun!
-*/
-@session_start();
-// Variabeln definieren
-if (!isset($_SESSION['login'])) $_SESSION['login'] = "";
-if (!isset($_SESSION['werber'])) $_SESSION['werber'] = "0";
-if (!isset($_SESSION['uid'])) $_SESSION['uid'] = "0";
-if (!isset($_POST['nickname'])) $_POST['nickname'] = "";
-if (!isset($_POST['passwort'])) $_POST['passwort'] = "";
-if (!isset($_POST['checkid'])) $_POST['checkid'] = "";
-if (!isset($_POST['autologin'])) $_POST['autologin'] = "";
-if (!isset($_GET['logout'])) $_GET['logout'] = "";
-if (!isset($_GET['ref'])) $_GET['ref'] = "0";

-if ($_SESSION['werber'] == "0") $_SESSION['werber'] = (int)$_GET['ref'];
-// Seiteneinstellungen laden...
-$pageconfig = mysqli_fetch_array(db_query("SELECT * FROM " . $db_prefix . "_seitenkonfig LIMIT 1"));
-
-if ($pageconfig['wartung'] == 1 && $_SESSION['uid'] != $admin_id) {
-    setCookie('uid', '', time() - 86400 * 30);
-    setCookie('passwort', '', time() - 86400 * 30);
-    setCookie('autologin', '', time() - 86400 * 30);
-    $_SESSION['uid'] = "";
-    $_SESSION['passwort'] = "";
-    $_SESSION['login'] = "";
-    header ("location: " . $domain . "/wartung.php");
-    die();
+require_once($_SERVER['DOCUMENT_ROOT']. '/lib/class/session.class.php');
+if(isset($_GET['ref'])){
+	if ($_SESSION['werber'] == "0") $_SESSION['werber'] = (int)$_GET['ref'];
 }
-// Login
-if ($_POST['checkid'] == 'Login' && $_POST['nickname'] && $_POST['passwort']) {
-    $_POST['nickname'] = addslashes($_POST['nickname']);
-	
-	$pw = pw_erstellen($_POST['passwort']);
-    $login_check = db_query("SELECT k.uid,k.passwort,k.status,k.hinweis FROM
-                                        " . $db_prefix . "_userdaten u
-                                        LEFT JOIN " . $db_prefix . "_kontodaten k ON k.uid=u.uid
-WHERE u.nickname='" . $_POST['nickname'] . "' OR u.uid = '". $_POST['nickname'] ."' AND k.passwort='" . $pw . "' LIMIT 1");

-    if (mysqli_num_rows($login_check)) {
-        $login_check = mysqli_fetch_array($login_check);
-        // Wenn User noch nicht freigeschaltet!
-        if ($login_check['status'] == 0) {
-            $_SESSION['uid'] = "";
-            $_SESSION['passwort'] = "";
-            $_SESSION['login'] = "";
-            $_GET['content'] = '/error/kein_zutritt';
-        }
-        // Wenn beim User alles O.K. ist!
-        if ($login_check['status'] == 1) {
-            db_query("UPDATE " . $db_prefix . "_kontodaten SET login_ip='" . $ip . "' , loginzeit='" . time() . "' WHERE uid=" . $login_check['uid'] . " and passwort='" . md5($_POST['passwort']) . "' LIMIT 1");
-            if ($_POST['autologin'] == 'true') {
-                setCookie('uid', $login_check['uid'], time() + 86400 * 30);
-                setCookie('passwort', $login_check['passwort'], time() + 86400 * 30);
-                setCookie('autologin', 'true', time() + 86400 * 30);
-            }
-            $_SESSION['uid'] = $login_check['uid'];
-            $_SESSION['passwort'] = $login_check['passwort'];
-            $_SESSION['login'] = "true";
-            header ("location: " . $domain);
-            die();
-        }
-        // Wenn User gesperrt wurde!
-        if ($login_check['status'] == 2) {
-            $_SESSION['uid'] = "";
-            $_SESSION['passwort'] = "";
-            $_SESSION['login'] = "";
-            $_GET['content'] = '/error/user_gesperrt';
-        }
-        // Wenn es den User garnicht giebt
-    } else {
-        $_GET['content'] = '/error/kein_zutritt';
-    }
-} else {
-    if ($_POST['checkid'] == 'Login') $_GET['content'] = '/error/kein_zutritt';
-}
+// Seiteneinstellungen laden...
+$session = new SESSION;
+$session->wartung();
+
 // Autologin
-if ($_SESSION['login'] != 'true' && isset($_COOKIE['autologin']) && isset($_COOKIE['uid']) && isset($_COOKIE['passwort'])) {
-    $_COOKIE['uid'] = (int)$_COOKIE['uid'];
-    $_COOKIE['passwort'] = addslashes ($_COOKIE['passwort']);
+$session->autologin();

-    $login_check = db_query("SELECT `uid`,`passwort`,`status`,`hinweis` FROM " . $db_prefix . "_kontodaten WHERE uid=" . $_COOKIE['uid'] . " and passwort='" . $_COOKIE['passwort'] . "' LIMIT 1");
-    if (mysqli_num_rows($login_check)) {
-        $login_check = mysqli_fetch_array($login_check);
-        if ($login_check['status'] == 1) {
-            db_query("UPDATE " . $db_prefix . "_kontodaten SET login_ip='" . $ip . "' , loginzeit='" . time() . "' WHERE uid=" . $_COOKIE['uid'] . " and passwort='" . $_COOKIE['passwort'] . "' LIMIT 1");
-            $_SESSION['uid'] = $login_check['uid'];
-            $_SESSION['passwort'] = $login_check['passwort'];
-            $_SESSION['login'] = "true";
-        }
-    }
-}
 // Logout
-if ($_GET['logout'] == 'true') {
-    setCookie('uid', '', time() - 86400 * 30);
-    setCookie('passwort', '', time() - 86400 * 30);
-    setCookie('autologin', '', time() - 86400 * 30);
-    $_SESSION['uid'] = "";
-    $_SESSION['passwort'] = "";
-    $_SESSION['login'] = "";
-    header ("location: " . $domain);
-    die();
+if (isset($_GET['logout']) && $_GET['logout'] == 'true' && $_SESSION['login'] == true) {
+    $session->logout();
+}
+
+//Userstatus
+if($_SESSION['login'] == 'true'){
+	$session->userstatus();
 }
+
+//Last aktiv
 if (isset ($_SESSION['uid']) && isset ($_SESSION['passwort']) && !empty ($_SESSION['uid']) && !empty ($_SESSION['passwort'])) {
-    db_query ("UPDATE " . $db_prefix . "_kontodaten SET last_active = " . time() . " WHERE uid = " . $_SESSION['uid'] . " AND passwort = '" . $_SESSION['passwort'] . "' LIMIT 1");
+    $datenbank->update(PREFIX . KONTO ,array("last_active" => time() ), array("uid" => $_SESSION['uid'],"passwort" => $_SESSION['passwort']),1);
 }

-?>
\ No newline at end of file
+?>
--- a/lib/texte/agb.txt
+++ b/lib/texte/agb.txt
-agb
\ No newline at end of file
--- a/lib/texte/alt_bettelseitenpopup.txt
+++ b/lib/texte/alt_bettelseitenpopup.txt
--- a/lib/texte/alt_headerbanner.txt
+++ b/lib/texte/alt_headerbanner.txt
--- a/lib/texte/alt_startseitenpopup.txt
+++ b/lib/texte/alt_startseitenpopup.txt
--- a/lib/texte/bettelwerbung.txt
+++ b/lib/texte/bettelwerbung.txt
--- a/lib/texte/box1.txt
+++ b/lib/texte/box1.txt
-Designerscripte.net
-wünscht viel Spass
-mit dem Script.
\ No newline at end of file
--- a/lib/texte/faq.txt
+++ b/lib/texte/faq.txt
-FAQ
\ No newline at end of file
--- a/lib/texte/impressum.txt
+++ b/lib/texte/impressum.txt
-Anschrift Seitenbetreiber.
-	Test Test
-	Teststr. 123456
-	02596 Teststadt
-	<a href="test@test.de">test@test.de</a>
+Anschrift Seitenbetreiber.
+	testseite Diana
+	Hauptstr. 492
+	018092 Heidenau2
+	<a href="isaack0815@gmail.com">isaack0815@gmail.com</a>
 Credits
 Grundscript erstellt von <a href="http://www.designerscripte.net/">Designerscripte.net</a><br>
 Erweitert durch <a href="http://www.vms1-scripte.de/">vms1-scripte.de</a>

--- a/lib/texte/startseite.txt
+++ b/lib/texte/startseite.txt
--- a/lib/texte/startwerbung.txt
+++ b/lib/texte/startwerbung.txt
--- a/lib/texte/wartung.txt
+++ b/lib/texte/wartung.txt
--- a/lib/var.php
+++ b/lib/var.php
+<?php
+$datenbank = new DB;
+$time = time();
+$error = 0;
+$meldung = '';
+$userinfo = new stdClass();
+$menue = new stdClass();
+$anmeldeok = false;
+
+require_once(__dir__ .'/class/kontobuchung.class.php');
+$k_buchung = new kontobuchung;
+
+
+//FUNKTIONEN
+$var = '';
+
+//$_POST
+
+if(!isset($_POST['passwort'])) 		{ $_POST['passwort'] = "";}
+if(!isset($_POST['checkid'])) 		{ $_POST['checkid'] = "";}
+if(!isset($_POST['autologin'])) 	{ $_POST['autologin'] = "";}
+if(!isset($_POST['auszahlen']))		{ $_POST['auszahlen'] = "";}
+if(!isset($_POST['uid_passwort']))	{ $_POST['uid_passwort'] = "";}
+if(!isset($_POST['trans_menge']))	{ $_POST['trans_menge']	= "";}
+if(!isset($_POST['anmelden']))		{ $_POST['anmelden'] = "";}
+if(!isset($_POST['nickname']))		{ $_POST['nickname'] = "";}
+if(!isset($_POST['nachname']))		{ $_POST['nachname'] = "";}
+if(!isset($_POST['vorname']))		{ $_POST['vorname'] = "";}
+if(!isset($_POST['emailadresse']))	{ $_POST['emailadresse'] = "";}
+if(!isset($_POST['passwort_1']))	{ $_POST['passwort_1'] = "";}
+if(!isset($_POST['passwort_2']))	{ $_POST['passwort_2'] = "";}
+if(!isset($_POST['bdate']))			{ $_POST['badate'] = "";}
+if(!isset($_POST['agb']))			{ $_POST['agb'] = "";}
+if(!isset($_POST['data']))			{ $_POST['data'] = "";}
+if(!isset($_POST['newsletter']))	{ $_POST['newsletter'] = "";}
+if(!isset($error))					{ $error = "";}
+if(!isset($anmeldeok))				{ $anmeldeok = "";}
+if(!isset($ak))						{ $ak = "";}
+if(!isset($auszahlmeldung))			{ $auszahlmeldung = "";}
+if(!isset($_POST['einzahlen']))		{ $_POST['einzahlen']			= "";}
+if(!isset($_POST['uid_passwort']))	{ $_POST['uid_passwort']		= "";}
+if(!isset($_POST['trans_menge']))	{ $_POST['trans_menge']		= "";}
+if(!isset($einzahlmeldung))			{ $einzahlmeldung				= "";}
+if (!isset($_POST['aendern']))		{ $_POST['aendern'] = "";}
+if (!isset($_POST['acc_del']))		{ $_POST['acc_del'] = "";}
+if (!isset($_POST['del_passwort']))	{ $_POST['del_passwort'] = "";}
+if (!isset($_POST['pwd']))			{ $_POST['pwd'] = "";}
+if (!isset($_POST['pwd2']))			{ $_POST['pwd2'] = "";}
+if (!isset($_POST['nickname']))		{ $_POST['nickname'] = "";}
+if (!isset($_POST['newsletter']))	{ $_POST['newsletter'] = "";}
+if (!isset($_POST['paidmails']))	{ $_POST['paidmails'] = "";}
+if (!isset($_POST['bdate']))		{ $_POST['bdate'] = "";}
+if (!isset($change))				{ $change = "";}
+if (!isset($mailstatus))			{ $mailstatus = "";}
+if (!isset($delchange))				{ $delchange = "";}
+
+if (!isset($_POST['buchen'])) $_POST['buchen'] = "";
+if (!isset($_POST['verdienst'])) $_POST['verdienst'] = "";
+if (!isset($_POST['menge'])) $_POST['menge'] = "";
+if (!isset($_POST['ziel'])) $_POST['ziel'] = "";
+if (!isset($_POST['banner'])) $_POST['banner'] = "";
+if (!isset($_POST['reload'])) $_POST['reload'] = "";
+if (!isset($_POST['aufendhalt'])) $_POST['aufendhalt'] = "";
+
+if (!isset($_POST['versenden'])) $_POST['versenden'] = "";
+if (!isset($_POST['verdienst'])) $_POST['verdienst'] = "";
+if (!isset($_POST['menge'])) $_POST['menge'] = "0";
+if (!isset($_POST['ziel'])) $_POST['ziel'] = "";
+if (!isset($_POST['mailtext'])) $_POST['mailtext'] = "";
+if (!isset($_POST['beschreibung'])) $_POST['beschreibung'] = "";
+if (!isset($_POST['aufendhalt'])) $_POST['aufendhalt'] = "";
+if (!isset($_POST['gueltig'])) $_POST['gueltig'] = "";
+if (!isset($tan)) $tan = "";
+
+//$_SESSION
+
+if(!isset($_SESSION['login']))	{ $_SESSION['login'] = false;}
+if(!isset($_SESSION['admin']))	{ $_SESSION['admin'] = 0;}
+if(!isset($_SESSION['login']))	{ $_SESSION['login'] = "";}
+if(!isset($_SESSION['werber'])) { $_SESSION['werber'] = "0";}
+if(!isset($_SESSION['uid'])) 	{ $_SESSION['uid'] = "0";}
+if(!isset($_SESSION['lang'])) 	{ $_SESSION['lang'] = "de";}
+
+//$_GET
+
+if(!isset($_GET['content']))	{ $_GET['content'] = '';}
+if(!isset($_GET['logout'])) 	{ $_GET['logout'] = "";}
+if(!isset($_GET['ref'])) 		{ $_GET['ref'] = "0";}
+
+
+
+//PAID4
+if (!isset($headmsg)) $headmsg = "";
+if (!isset($puk)) $puk = "";
+if (!isset($force_error)) $force_error = "";
+if (!isset($wartezeit)) $wartezeit = "";
+if (!isset($_GET['art'])) $_GET['art'] = "";
+if (!isset($_GET['puk'])) $_GET['puk'] = "";
+if (!isset($_GET['auszahlen'])) $_GET['auszahlen'] = "false";
+if(!isset($_GET['tan'])){ $_GET['tan'] = '';}
+if (!isset($_SESSION['uid'])) $_SESSION['uid'] = "";
+if (!isset($forced['ziel'])) $forced['ziel'] = "";
+if (!isset($forced['aufendhalt'])) $forced['aufendhalt'] = "";
+if (!isset($forced['tan'])) $forced['tan'] = "";
--- a/lib/weristonline.php
+++ b/lib/weristonline.php
 <?php
 $zeit = (5 * 60); // Sekunden seit der letzten Aktivität
-$np = $domain . '/?content=/nickpage&amp;id='; // Nickpagelink

-// verhindern, dass die Datei direkt aufgerufen wird
-if (!function_exists ("db_query")) die ("Kein Direktaufruf");
-
-$sql = db_query ('SELECT k.uid, u.nickname FROM ' . $db_prefix . '_kontodaten k LEFT JOIN ' . $db_prefix . '_userdaten u ON u.uid = k.uid WHERE k.last_active >= ' . (time() - $zeit));
-
-if (mysqli_num_rows ($sql) == 0) echo '<span style="font-style: italic;">keiner</span>';
-else {
-
-    while ($user = mysqli_fetch_assoc ($sql)) {
-        if ($user['uid'] == $admin_id){
-			$user = '<a style="font-weight: bold;" href="' . $np . $user['uid'] . '">' . $user['nickname'] . '</a>';
-		}else{
-			$user = '<a href="' . $np . $user['uid'] . '">' . $user['nickname'] . '</a>';
-		}
-		
-		echo '
-			<tr valign="top">
-				<td align="right" height="22" valign="middle"><img src="images/bult.jpg" height="11" width="11"></td>
-				<td height="22" valign="middle">'.$user.'</td>
-			</tr>';
-    }
+foreach($datenbank->get_results("SELECT k.uid, u.nickname FROM ". PREFIX . KONTO ." k LEFT JOIN ". PREFIX . USER ."  u ON u.uid = k.uid WHERE k.last_active >= '" . (time() - $zeit) ."' ") AS $res){
+	$user = userinfo($res->uid);
+	echo '
+		<a href="?page=/nickpage&id='. $res->uid . '">' . $res->nickname . '</a>
+	';
 }
-
-
-?>
\ No newline at end of file
+?>
--- a/npm-debug.log
+++ b/npm-debug.log
--- a/page/LKT_Rallysystem.php
+++ b/page/LKT_Rallysystem.php
+<?php
+
+$rally = Classloader('rally');
+$row = $rally->RallyDaten($_GET['rally']);
+
+$start = strtotime($row->start_date.'T'.$row->start_time);
+$ende = strtotime($row->ende_date.'T'.$row->ende_time);
+
+echo '
+<div class="card">
+	<div class="card-header"><h3>'. $row->name .'</h3></div>
+	<div class="card-body">
+		<div class="card">
+			<div class="card-body">
+				' . $row->beschriebf . '
+			</div>
+		</div>
+		<hr>
+		<div class="card">
+			<div class="card-body">
+				Fortschritt
+				<div class="progress">
+				'. $rally->ProgressBar($row,$start,$ende) .'
+				</div>
+			</div>
+		</div>
+		<hr>
+		'. $rally->info($row) .'
+	</div>
+</div>
+';
+
+
+
--- a/page/betteln.php
+++ b/page/betteln.php
+<?php
+$bettel = Classloader('bettel');
+$return = $bettel->BettelAufruf($_GET,$_COOKIE);
+if($return['error'] == 1){
+	$class = 'danger';
+}else{
+	$class = 'success';
+}
+
+head("Betteln auf " . $grundconfig->seitenname);
+echo 'Verdiene auch Du mit!<br>
+Melde Dich bei ' . $grundconfig->seitenname . ' an und bewirbe Deinen persönlichen Bettellink, so
+verdienst Du deine ' . $grundconfig->waehrung . ' fast wie im Schlaf!<br>
+<br>
+<div class="alert alert-'.$class.' text-center">' . $return['meldung'] . '</div>';
+foot();
+
+    head("Werbung dieser Seite");
+    $texte = Classloader('texte');
+    $aus = base64_decode($texte->AWerbung('bettelwerbung'));
+    echo nl2br($aus);
+    foot();
--- a/page/bilanzsystem.php
+++ b/page/bilanzsystem.php
+<?php
+
+$Class = Classloader('bilanz',true);
+
+head("Bilanzsystem");
+	if(!isset($_GET['TID'])){
+		echo $Class->ShowTable();
+	}else{
+		echo $Class->ShowDate($_GET['TID']);
+	}
+foot();
+
+?>
+
+<script>
+$( document ).ready(function() {
+    $('#BilanzTable').DataTable({
+      'paging'      : true,
+      'lengthChange': false,
+      'searching'   : true,
+      'ordering'    : true,
+      'info'        : true,
+      'autoWidth'   : false,
+	  "language": {
+            "lengthMenu": "Display _MENU_ Einträge pro Seite",
+            "zeroRecords": "Nichts gefunden Entschuldigung",
+            "info": "Zeige Seite _PAGE_ von _PAGES_",
+            "infoEmpty": "Keine Einträge vorhanden",
+            "infoFiltered": "(filtered from _MAX_ total records)",
+			"paginate": {
+				"first":      "erste",
+				"last":       "letzte",
+				"next":       "Weiter",
+				"previous":   "Zur&uuml;ck"
+			}
+      },
+	  "order": [[ 0, "asc" ]]
+    });
+});
+</script>
\ No newline at end of file
No results found