<?php
if($_SERVER["REQUEST_METHOD"] == "POST" && !isset($_POST['payment_save'] ) && !isset($_POST['login'])){
	$count = 0;
	$count = count($_POST);
	if($count != 0){
		$post = array();
		$i = 1;
		foreach($_POST as $key => $value) {
			if($i == $count){
				$post[] = array("name" => $key, "value" => $value);
			}
			$i++;
		}
		
		$ab = mysqli_query($con,"SELECT datei,admin FROM ". $db_prefix ." WHERE value = '". mysqli_real_escape_string($con,$post[0]['value']) ."' AND name = '". mysqli_real_escape_string($con,$post[0]['name']) ."' ");
		if(mysqli_num_rows($ab) == 1){
			$a = mysqli_fetch_array($ab);
			if($a['admin'] == 1){
				if($_SESSION['admin'] == 1 AND rechte() == true){ die(); }
			}
			require('lib/funktionen/'.$a['datei']);
		}else{
			$error = 1;
			$meldung = 'Aktion kann nicht ausgef&uuml;hrt werden.';
		}
	}
}
?>