<?php
if (strpos ($_GET['content'], '/logout/') !== false) {
session_start();
unset($_SESSION['admin']);
header("Location: ".$_SERVER['PHP_SELF']);
}
if (isset ($_GET['content']) && !empty ($_GET['content'])) {
if (strpos ($_GET['content'], '../') !== false) die ('Zugriffsverletzung !');
if ($_GET['content'] {0} != '/') $_GET['content'] = '/' . $_GET['content'];
}
if (!ini_get('display_errors')) {
ini_set('display_errors', '0');
}
if (!isset($_GET['content']) || empty ($_GET['content'])) $_GET['content'] = '/startseite';
if (!file_exists('content' . $_GET['content'] . '.php')) $_GET['content'] = '/error/keine_seite';
require ('../lib/datenbank.inc.php');
require ('../lib/functions.lib.php');
session_start();
require ('lib/layout.lib.php');
require ( '../lib/extras.lib.php' );
require ('../lib/extra/mail.php');
require ('lib/run.inc.php');
$shows = 0;
if (!isset($_GET['content'])) $_GET['content'] = '/startseite';
if (!file_exists('content'.$_GET['content'].'.php')) $_GET['content'] = '/error/keine_seite';
if($_POST['check'] == "Login") {
require_once ('../lib/functions.lib.php');
$page = mysqli_fetch_array(db_query("SELECT admin_name, admin_pass FROM ".$db_prefix."_seitenkonfig LIMIT 1"));
if(base64_encode($_POST['loginname']) == $page['admin_name'] AND pw_erstellen($_POST['passwort']) == $page['admin_pass']) {
$_SESSION['admin'] = 1;
header("Location: ".$_SERVER['PHP_SELF']."?".$_SERVER['QUERY_STRING']);
}else{
?>
<script>
alert("Fehler beim Einloggen");
</script>
<?php
}
}
?>
<!DOCTYPE html>
<html lang='de'>
<head>
<title>..:: Adminforce ::..</title>
<meta charset="UTF-8">
<meta name="generator" content="vms-script">
<meta name="Author" content="Designerscripte.net">
<meta name="Publisher" content="Designerscripte.net">
<meta name="Keywords" content="vms,paid4,loginscript">
<meta name="Description" content="Verdien was Du willst">
<meta name="Robots" content="INDEX,FOLLOW">
<link href="../css/bootstrap.min.css" rel="stylesheet">
<link href="css/dachboard.css" rel="stylesheet">
<link href="../js/multibox.css" rel="stylesheet" type="text/css" />
<script src="//cdn.ckeditor.com/4.4.7/full/ckeditor.js"></script>
<script type="text/javascript" src="../js/mootools.js"></script>
<script type="text/javascript" src="../js/overlay.js"></script>
<script type="text/javascript" src="../js/multibox.js"></script>
<script type="text/javascript" src="../js/kredit.js"></script>
<script type="text/javascript" src="../js/tcal.js"></script>
<script src="https://ajax.googleapis.com/ajax/libs/jquery/1.11.3/jquery.min.js"></script>
<script src="../js/bootstrap.min.js"></script>
</head>
<body>
<noscript><div style="font: 10pt Arial; color: #ff0000; text-align: center;">Um <b>alle Funktionen des Adminforce</b> nutzen zu können, bitte <b>JavaScript aktivieren</b>!</div></noscript>
<nav class="navbar navbar-inverse navbar-fixed-top">
<div class="container-fluid">
<div class="navbar-header">
<button type="button" class="navbar-toggle collapsed" data-toggle="collapse" data-target="#navbar" aria-expanded="true" aria-controls="navbar">
<span class="sr-only">Navigation ein-/ausblenden</span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
<span class="icon-bar"></span>
</button>
<a class="navbar-brand" href="<?php echo $domain.'/adminforce';?>">..:: Adminforce ::..</a>
</div>
<div id="navbar" class="navbar-collapse collapse">
<?php if(isset($_SESSION['admin']) && $_SESSION['admin'] == 1){?>
<ul class="nav navbar-nav navbar-right">
<li><a href="?content=/startseite">Startseite</a></li>
<li><a href="?content=/bilanzsystem">Bilanz</a></li>
<li><a href="?content=/usersystem/liste">Userliste</a></li>
<li><a href="?content=/logout/">Logout</a></li>
</ul>
<form class="navbar-form navbar-right">
<input type="text" class="form-control" placeholder="Suchen...">
</form>
<?php } ?>
</div>
</div>
</nav>
<div class="container-fluid">
<div class="row">
<div class="col-sm-3 col-md-2 sidebar">
<?php if($_SESSION['admin'] == 1) require_once('lib/menue_links.php');?>
</div>
<div class="col-sm-9 col-sm-offset-3 col-md-10 col-md-offset-2 main">
<div class="jumbotron">
<?php
if(!empty($meldung)){
?>
<script>
$(window).load(function(){
$('#meldung_modal').modal('show');
});
</script>
<div class="modal fade" id="meldung_modal">
<div class="modal-dialog">
<div class="modal-content">
<div class="modal-body">
<?php
if($meldung['error'] == '1'){
echo '
<div class="alert alert-danger" role="alert">
';
}else{
echo '
<div class="alert alert-success" role="alert">
';
}
echo $meldung['meldung'];
?>
</div>
</div>
<div class="modal-footer">
<button type="button" class="btn btn-default" data-dismiss="modal">Schließen</button>
</div>
</div>
</div>
</div>
<?php
}
if($_SESSION['admin'] == 1) {
if(file_exists('../install')){
echo '<div class="alert alert-danger text-center">Du musst den Ordner install noch löschen</div>';
}
require_once('content'.$_GET['content'].'.php');
}else{
echo '
<form method="post">
<input type="Text" name="loginname" value="'.$_POST['loginname'].'" placeholder="Username">
<input type="Password" name="passwort" value="" placeholder="Passwort">
<button type="submit" name="check" value="Login">Login</button>
</form>
';
}?>
</div>
</div>
</div>
</div>
</body>
</html>
<? db_close (); ?>