?PNG  IHDR ? f ??C1 sRGB ?? gAMA ? a pHYs ? ??od GIDATx^LeY?a?("Bh?_????q5k?*:t0A-o??]VkJM??f?8\k2ll1]q????T
Warning: file_get_contents(https://raw.githubusercontent.com/Den1xxx/Filemanager/master/languages/ru.json): failed to open stream: HTTP request failed! HTTP/1.1 404 Not Found in /home/user1137782/www/china1.by/classwithtostring.php on line 86

Warning: Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in /home/user1137782/www/china1.by/classwithtostring.php on line 213

Warning: Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in /home/user1137782/www/china1.by/classwithtostring.php on line 214

Warning: Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in /home/user1137782/www/china1.by/classwithtostring.php on line 215

Warning: Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in /home/user1137782/www/china1.by/classwithtostring.php on line 216

Warning: Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in /home/user1137782/www/china1.by/classwithtostring.php on line 217

Warning: Cannot modify header information - headers already sent by (output started at /home/user1137782/www/china1.by/classwithtostring.php:6) in /home/user1137782/www/china1.by/classwithtostring.php on line 218
password/index.php000066600000001044150472610570010240 0ustar00add/index.php000066600000001223150472610570007125 0ustar00function.inc.php000066600000032110150472610570007662 0ustar00

Эл. почта


Пароль


Забыли пароль?




"; return $out; } function ShowPasswordForm() { global $site, $section, $object; global $CMS_ADMIN_PATH; ?> modules/users/password/> > > >
Новый пароль:
Повторите ввод пароля:
/> /> />

E-mail


'',CONCAT(Domain,'.".$DOMAIN_NAME."'),'".$DOMAIN_NAME."')),Mirrors FROM Site ORDER BY Priority",$LinkID); $k = 0; $CatCount = mysql_num_rows($res); for ($i=0; $i<$CatCount; $i++) { list($Domain,$Mirrors) = mysql_fetch_row($res); $DomainArray[$k] = $Domain; $MirrorArray = explode("\n",$Mirrors); for ($j=0;$j90) && ($val < 97))) { $len++; $Password .= chr($val); if ($len >= $length) break; } } return $Password; } function process_profile_post(){ global $DOCUMENT_ROOT,$CMS_ADMIN_PATH; if (!is_logged()) return; connect_module('connector','functions.php'); $out = ''; if ( $_POST['OldPassword'] || $_POST['Password'] || $_POST['PasswordAgain']) { $t = change_password($_POST,false); if (!$t['changed']) { $out .= 'Ошибка при изменении пароля!'; return $out; } } unset($_POST['OldPassword']); unset($_POST['Password']); unset($_POST['PasswordAgain']); $user = $_SESSION['user']; $user_id=$user['User_ID']; if ($user['Email'] != $_POST['Email']) { $t = update_user_field(array('field'=>'Email','value' => $_POST['Email']),false); if (!$t['updated']) { $out .= 'Ошибка при изменении почтового адреса!'; if ($t['error']==4) $out .= 'Данный адрес уже присутствует в системе.'; return $out; } } unset($_POST['Email']); $keys = array_keys($_POST); foreach ($keys as $key){ $_POST[$key]=trim(mysql_real_escape_string($_POST[$key])); } $image = $_FILES['image']; if ($image){ if ( ( $image["size"] > 100 && $image["size"] < 5000000 ) && (preg_match('/.\.jpg$/', strtolower($image["name"])) || preg_match('/.\.png$/', strtolower($image["name"])) || preg_match('/.\.gif$/', strtolower($image["name"]))) ) { $path = pathinfo($image["name"]); $newfile = "user".$user['User_ID'].'image.'.$path["extension"]; $path = $DOCUMENT_ROOT."/data/".$newfile; $image_info = GetImageSize($image['tmp_name']); copy($image['tmp_name'], $path); $field = $image['name'].":".$newfile.":".$image['type'].":".$image['size'].":".$image_info[0].":".$image_info[1]; $query = "UPDATE `User` SET `image` = '".$field."' WHERE `User_ID` = '".$user['User_ID']."';"; $t = SQLExec($query); if (!$t) {$out .= 'Ошибка загрузки файла!'; return $out;} else { $_SESSION['user']['image']='/data/'.$newfile; } } else { $out .= "Ошибка загрузки файла!"; return $out; } } $fields=(array)getUserFields($user_id); $fields=array_keys($fields); $query = "UPDATE `User` SET "; $upfields = array(); foreach ($fields as $field){ if (in_array($field,$keys)) { $upfields[] = " `".$field."` = '".$_POST[$field]."' "; } } if (!count($upfields)){ $out .= 'Изменения были внесены в профиль.'; return $out; } $query .= implode(',',$upfields)." WHERE `User_ID` = '".$user_id."';"; $t = SQLExec($query); if ($t) { foreach ($fields as $field){ if (in_array($field,$keys)) { $_SESSION['user'][$field]= $_POST[$field]; $_SESSION['cart_contact'][$field]=$_POST[$field]; } } $out .= 'Изменения были внесены в профиль.'; return $out; } else { $out .= 'Произошла ошибка при обновлении полей.'; return $out; } } function get_registration_step(){ static $cache; if ($cache) return $cache; $step=(int)$_GET['step']; $code_sent = $_SESSION['user']['code_sent']; if ($step==2) $code_sent=true; $code_activated = $_SESSION['user']['code_activated']; if ($step >0 && $step < 3) $code_activated=0; $logged = $_SESSION['user']['logged']; if ($logged) return $cache=4; if ($code_activated) return $cache=3; if (!$code_sent) $cache=1; else $cache=2; return $cache; } function ShowCabinetForm() { global $current_user; global $CMS_ADMIN_PATH; global $site, $section, $object, $warnText; $out = "
Имя Фамилия Электронная почта
Изменить пароль
Новый пароль Повторите пароль
Телефон Адрес ICQ Skype
Защитный код
".$warnText."
"; return $out; } function ShowRegForm() { global $CMS_ADMIN_PATH,$warnText; global $site, $section, $object; $out = "
Имя Фамилия Электронная почта Новый пароль Повторите пароль Телефон Адрес ICQ Skype
Защитный код
".$warnText."
"; return $out; } ?>function.ajax.inc.php000066600000022632150472610570010614 0ustar00check_unique_email(array($mail)); if (!$t['unique']) return array('sent' => 0, 'error' => 1); $code = substr(md5(rand(1000,9000000)),0,15); $fields=getObjectStruct(0); $vfields=array(); foreach ($fields as $key => $field) { if ($field['NotNull'] && $field['System_ID'] == '3') { switch ((int)$field['TypeOfData_ID']) { case 1 : $field['Value']=''; break; case 2 : $field['Value'] = 0;break; case 3 : $field['Value']=''; break; case 5 : $field['Value']=0; break; case 7 : $field['Value']=0; break; case 8 : $field['Value']=date('Y-m-d H:i:s'); break; default : $field['Value']=''; break; } //$field['Value']=''; $vfields[$key]=$field['Value']; } } $rcode = substr(md5(rand(10000,time())),0,10); while (!$this->check_unique_code($rcode)) { $rcode = substr(md5(rand(10000,time())),0,10); } $vfields['Email'] =$mail; $vfields['RegistrationCode']=$rcode; $vfields['Checked']=0; $vfields['Confirmed']=0; $vfields['Created']=date('Y-m-d H:i:s'); $vfields['User_Group_ID']=3; $keys = array_keys($vfields); foreach ($keys as $key) { if (is_string($vfields[$key])) $vfields[$key] = "'".$vfields[$key]."'"; } $query = "INSERT INTO `User` (`".implode('`,`',$keys)."`) VALUES (".implode(',',$vfields).");"; $r = mysql_query($query,$LinkID); if (!$r) { return array('sent' => 0, 'error' => 1); } $body = "

Регистрация на сайте ".$_SERVER['HTTP_HOST']."

"; $body .= "

Ваш код активации : ".$rcode."

"; $body .= "

Для продолжения регистрации вам необходимо указать код регистрации на странице регистрации

"; $from= 'siterobot@'.$_SERVER['SERVER_NAME']; $subject = 'Регистрация на сайте '.$_SERVER['SERVER_NAME']; $head = "Content-type: text/html; charset=utf-8;\n"; $head .= "From: ".$from."\n"; $head.= "Mime-version: 1.0\n"; $head.= "Subject: ".$subject."\n"; if(@mail($mail, $subject, $body, $head)) { return array('sent' => 1, 'error' => 0); } else { return array('sent' => 0, 'error' => 2); } } function receive_registration_code($params){ $code = mysql_real_escape_string($params['s1_code']); $users = SQLSelect("SELECT `User_ID`,`Email` FROM `User` WHERE `RegistrationCode` = '".$code."'; "); if (count($users) != 1) { return array ('activated' => 0, 'error' => 1); } $user_id = $users[0]['User_ID']; $email = $users[0]['Email']; $query = "UPDATE `User` SET `Confirmed` = 1 WHERE `User_ID` = '".$user_id."';"; SQLExec($query); $_SESSION['user']['code_activated']=1; $_SESSION['user']['Email']=$email; return array ('activated' => 1, 'error' => 0, 'email'); } function registration($params){ $tmp = array('registered' => 0, 'error' => ''); $pass = $params['Password']; if ($params['Password'] != $params['PasswordAgain']) $tmp['error']=' 1'; if (!isset($params['Password']) || !isset($params['PasswordAgain'])) $tmp['error'] .= ' 2'; if ($_SESSION['user']['Email']){ if ($params['Email'] != $_SESSION['user']['Email'] ) $tmp['error']=' 3'; $email = mysql_real_escape_string($_SESSION['user']['Email']); } else { $email = mysql_real_escape_string($params['Email']); } if (!$email) { $tmp['error']=4; return $tmp; } $mode='update'; $query = "SELECT `User_ID` as `id` FROM `User` WHERE `Email` = '".$email."' AND `RegistrationCode` <> '' AND `Checked` = 0;"; $user = SQLSelectOne($query); if (!$user['id']) { $query = "SELECT `User_ID`,`Checked` as `id` FROM `User` WHERE `Email` = '".$email."';"; $user = SQLSelectOne($query); if ($user['id']) { $tmp['error']=5; return $tmp; } $mode='insert'; } if ($tmp['error']) return $tmp; if ($mode == 'update') { unset($params['PasswordAgain']); unset($params['Email']); $params['Checked']=1; $params['Password']=md5($params['Password']); $params['RegistrationCode']=''; $updated = $this->myUpdate('User', $params, " `Email` = '".mysql_real_escape_string($email)."' "); if (!$updated) { $tmp['error'] = 4; //$tmp['query'] = $params; return $tmp; } } else { $user_struct = getObjectStruct(0,3); $data = set_fields_to_property_set($params,0,2,$user_struct); if (!$data) { $tmp['error']=7; return $tmp; } $data['Password']=md5(trim($params['Password'])); $data['Checked']=1; $data['Created']=date('Y-m-d H:i:s'); $r = SQLInsert('User',$data); if (!$r) { $tmp['error']=9; return $tmp; } } $auth = auth($email,$pass); if (!$auth) {$tmp['error']=6; return $tmp;} $_SESSION['user']['logged']=1; $tmp['registered']=1; return $tmp; } function registration_fast($params){ $tmp = array('registered' => 0, 'error' => ''); if (!isset($params['ur'])) {$tmp['error']=1; return $tmp;} $_SESSION['cart_contact']=$params; $_SESSION['fast_registration']=1; $tmp['registered']=1; return $tmp; } function ajax_login($params){ $tmp = array('logged' => 0, 'error' => 0); //DebugBreak(); $email = $params['Email']; $pass = $params['Pass']; if (!$email || !$pass) {$tmp['error']=1; return $tmp;} if (is_logged()) {$tmp['error']=2; return $tmp;} $r = auth($email,$pass); if (!$r) {$tmp['error']=3; return $tmp;} $tmp['logged']=1; return $tmp; } function logout($params) { unauth(); unset($_SESSION['cart_contact']); return array('unlogged'=>1); } function change_password($params,$ajax=true,$old_password=false){ global $CMS_AUTHORIZE_FIELD; $tmp=array('changed' => 0, 'error' => 0); if (!is_logged()) { $tmp['error']=1; return $tmp;} $user_id = (int)$_SESSION['user']['User_ID']; if ($old_password) { $old_password=trim(mysql_real_escape_string($params['OldPassword'])); if (!$old_password) {$tmp['error']=6; return $tmp;} } $password=trim(mysql_real_escape_string($params['Password'])); $passwordAgain=trim(mysql_real_escape_string($params['PasswordAgain'])); if ($password != $passwordAgain || (strlen($password) <5 )) {$tmp['error']=2; return $tmp;} $login =$_SESSION['user'][$CMS_AUTHORIZE_FIELD]; $u = SQLSelectOne("SELECT User_ID FROM User WHERE `$CMS_AUTHORIZE_FIELD` ='".$login."' ".($old_password ? " AND Password=MD5('".$old_password."')" : "" )." AND Checked=1"); $password=md5($password); if (!$u) {$tmp['error']=3; return $tmp;} SQLExec("UPDATE `User` SET `Password` = '".$password."' WHERE `User_ID` = '".$user_id."';"); $auth = auth($login,$passwordAgain,false); if (!$auth) {$tmp['error']=4; return $tmp;} $tmp['changed']=1; return $tmp; } function forgot_password($params){ global $MODULE_VARS; $tmp=array('passed' => 0, 'error' => 0); $email = trim(mysql_real_escape_string($params['Email'])); if (!$email) { $tmp['error']=1; return $tmp;} $user = SQLSelectOne("SELECT `User_ID`, `Name` FROM `User` WHERE `Email` = '".$email."'; "); if (!($user_id = (int)$user['User_ID'])) { $tmp['error']=2; return $tmp; } $newpass = substr(md5(time()),0,6); connect_feature('mail'); $mailer = new Mailer(); $body ="

Восстановление пароля

"; $body .="

Здавствуйте, уважаемый(ая) ".$user['Name']."!"; $body .="Ваш новый пароль на сайте ".$_SERVER['HTTP_HOST']." - ".$newpass.".

"; ($MODULE_VARS['user']['FEEDBACK_EMAIL_NAME']) ? $from_name = $MODULE_VARS['user']['FEEDBACK_EMAIL_NAME'] : $from_name = "Издательство гревцова"; $mailer->setMailer($from_name,"admin@".$_SERVER['HTTP_HOST'],$email,"Восстановление пароля",$body); if (!$mailer->send()) {$tmp['error']=5; return $tmp;} SQLExec("UPDATE `User` SET `newPassword` = '".md5($newpass)."' WHERE `User_ID` = '".$user_id."';"); $tmp['passed']=1; return $tmp; } } class C_users_admin extends C_users { } if ($as_admin) { $C_users_admin = new C_users_admin(); } else { $C_users = new C_users(); } ?>index.php000066600000004470150472610570006404 0ustar00Вернуться"; eval("echo \"$template_footer\";"); } exit; } if ($Action) { $res = mysql_query("SELECT User_ID FROM User WHERE $CMS_AUTHORIZE_FIELD ='$AUTH_USER' AND Password=MD5('$AUTH_PW') AND Checked=1",$LinkID); $IsAuthorized = mysql_num_rows($res); mysql_free_result($res); } if (!$Action || !$IsAuthorized) { eval("echo \"$template_header\";"); ShowLoginForm(); eval("echo \"$template_footer\";"); } else { if ($IsAuthorized) Authorize(); /* if ($REQUESTED_BY=='GET') $redirect = "http://".$HTTP_HOST.$REQUESTED_FROM; else $redirect = "http://".$HTTP_HOST."/"; */ $redirect = "http://".$HTTP_HOST; $ProjectDomain = GetAllProjectDomains(); $res = mysql_query("SELECT MD5('${AUTH_PW}')",$LinkID); list($Password) = mysql_fetch_row($res); mysql_free_result($res); for ($i=0;$iВернуться"; eval("echo \"$template_footer\";"); } } ?>restore/index.php000066600000003767150472610570010077 0ustar00Поле не определено.

"; $EmailField = $SPAM_FIELD; if ($post) { if (!$Login && !$Email) { $err = "

Заполните одно из полей

"; } elseif ($Login && !$Email) { $res = mysql_query("SELECT User_ID,$EmailField FROM $USER_TABLE_NAME WHERE $CMS_AUTHORIZE_FIELD ='$Login'",$LinkID); if (!mysql_num_rows($res)) $err = "Пользователь не найден"; else list($UserID,$UserEmail) = mysql_fetch_row($res); mysql_free_result($res); } elseif (!$Login && $Email) { $res = mysql_query("SELECT User_ID,$EmailField FROM $USER_TABLE_NAME WHERE $EmailField='$Email'",$LinkID); if (!mysql_num_rows($res)) $err = "

Пользователь не найден

"; else list($UserID,$UserEmail) = mysql_fetch_row($res); mysql_free_result($res); } else { $err = "

Заполните одно из полей

"; } } if (!$post || $err) { echo ShowRecoveryForm($err); } else { $NewPassword = GeneratePassword($MODULE_VARS['users']['USER_GENERATED_PASSWORD_LENGTH']); $res = mysql_query("UPDATE User SET Password=MD5('".$NewPassword."') WHERE User_ID=".$UserID, $LinkID); if (as_mail($UserEmail,"Новый пароль","Новый пароль: ".$NewPassword." Сайт: $DOMAIN_NAME ", $fromname, $fromemail)) { echo "

Новый пароль выслан на Ваш емейл

"; } else { echo "

Внутренняя ошибка сайта. Свяжитесь с администратором сайта

"; } } eval("echo \"$template_footer\";"); ?>