This repository has been archived by the owner on Apr 14, 2021. It is now read-only.
-
Notifications
You must be signed in to change notification settings - Fork 6
/
Copy pathtakeedit.php
95 lines (73 loc) · 3.05 KB
/
takeedit.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
<?php
/*
+------------------------------------------------
| TBDev.net BitTorrent Tracker PHP
| =============================================
| by CoLdFuSiOn
| (c) 2003 - 2011 TBDev.Net
| http://www.tbdev.net
| =============================================
| svn: http://sourceforge.net/projects/tbdevnet/
| Licence Info: GPL
+------------------------------------------------
| $Date$
| $Revision$
| $Author$
| $URL$
+------------------------------------------------
*/
require_once 'include/bittorrent.php';
require_once 'include/user_functions.php';
dbconn();
loggedinorreturn();
$lang = array_merge( load_language('global'), load_language('takeedit') );
if (!mkglobal('name:descr:type'))
stderr($lang['takedit_failed'], $lang['takedit_no_data']);
$id = isset($_POST['id']) ? (int)$_POST['id'] : 0;
if ( !is_valid_id($id) )
stderr($lang['takedit_failed'], $lang['takedit_no_data']);
$res = mysql_query("SELECT owner, filename, save_as FROM torrents WHERE id = $id");
if ( false == mysql_num_rows($res) )
stderr($lang['takedit_failed'], $lang['takedit_no_data']);
$row = mysql_fetch_assoc($res);
if ($CURUSER['id'] != $row['owner'] && $CURUSER['class'] < UC_MODERATOR)
stderr($lang['takedit_failed'], $lang['takedit_not_owner']);
$updateset = array();
$fname = $row['filename'];
preg_match('/^(.+)\.torrent$/si', $fname, $matches);
$shortfname = $matches[1];
$dname = $row['save_as'];
$nfoaction = $_POST['nfoaction'];
if ($nfoaction == 'update')
{
$nfofile = $_FILES['nfo'];
if (!$nfofile) die("No data " . var_dump($_FILES));
if ($nfofile['size'] > 65535)
stderr($lang['takedit_failed'], $lang['takedit_nfo_error']);
$nfofilename = $nfofile['tmp_name'];
if (@is_uploaded_file($nfofilename) && @filesize($nfofilename) > 0)
$updateset[] = "nfo = " . sqlesc(str_replace("\x0d\x0d\x0a", "\x0d\x0a", file_get_contents($nfofilename)));
}
else
if ($nfoaction == 'remove')
$updateset[] = 'nfo = ""';
$updateset[] = "name = " . sqlesc($name);
$updateset[] = "search_text = " . sqlesc(searchfield("$shortfname $dname $name"));
$updateset[] = "descr = " . sqlesc($descr);
$updateset[] = "ori_descr = " . sqlesc($descr);
$updateset[] = "category = " . (0 + $type);
//if ($CURUSER["admin"] == "yes") {
if ($CURUSER['class'] > UC_MODERATOR) {
if ( isset($_POST['banned']) ) {
$updateset[] = 'banned = "yes"';
$_POST['visible'] = 0;
}
else
$updateset[] = 'banned = "no"';
}
$updateset[] = "visible = '" . ( isset($_POST['visible']) ? 'yes' : 'no') . "'";
mysql_query("UPDATE torrents SET " . join(",", $updateset) . " WHERE id = $id");
write_log(sprintf($lang['takedit_log'], $id, $name, $CURUSER['username']));
$returnto = "{$TBDEV['baseurl']}/details.php?id=$id&edited=1";
header("Location: $returnto");
?>