ok
Direktori : /proc/self/root/var/softaculous/agora/ |
Current File : //proc/self/root/var/softaculous/agora/_edit.php |
<?php ////////////////////////////////////////////////////////////// //=========================================================== // edit.php(For individual softwares) //=========================================================== // SOFTACULOUS // Version : 1.0 // Inspired by the DESIRE to be the BEST OF ALL // ---------------------------------------------------------- // Started by: Alons // Date: 10th Jan 2009 // Time: 21:00 hrs // Site: http://www.softaculous.com/ (SOFTACULOUS) // ---------------------------------------------------------- // Please Read the Terms of use at http://www.softaculous.com // ---------------------------------------------------------- //=========================================================== // (c)Softaculous Inc. //=========================================================== ////////////////////////////////////////////////////////////// if(!defined('SOFTACULOUS')){ die('Hacking Attempt'); } ///////////////////////////////////////// // All functions in this PAGE must begin // with TWO UNDERSCORE '__' to avoid // clashes with SOFTACULOUS Functions // e.g. __funcname() ///////////////////////////////////////// ////////////////////////////////////////// // Note : The path of the upgrade package // is $software['path'].'/' . So to // access other files use // $software['path'].'/other_file.ext' ////////////////////////////////////////// //The Edit process function __edit($installation){ global $__settings, $globals, $setupcontinue, $software, $error; $__settings['admin_username'] = optPOST('admin_username'); $__settings['admin_pass'] = optPOST('admin_pass'); // Do we need to reset the password ? if(!empty($__settings['admin_pass'])){ // We need the username if(empty($__settings['admin_username'])){ $error[] = '{{err_no_username}}'; return false; } // This is to get database details from import.php sp_include_once($software['path'].'/import.php'); $r = call_user_func('__import_'.$software['softname'], $__settings['softpath']); $__settings['softdbhost'] = $r['softdbhost']; $__settings['softdbuser'] = $r['softdbuser']; $__settings['softdbpass'] = $r['softdbpass']; $__settings['softdb'] = $r['softdb']; if(!empty($error)){ return false; } $query = "SELECT `_id` FROM `ap_user` WHERE `login` = '".$__settings['admin_username']."';"; // Does this user exist ? $result = sdb_query($query, $__settings['softdbhost'], $__settings['softdbuser'], $__settings['softdbpass'], $__settings['softdb']); $userid = $result[0]['_id']; if(empty($userid)){ $error[] = '{{err_no_such_user}}'; return false; }else{ // This is to obtain relevant password method from extend.php @sp_include_once($software['path'].'/extend.php'); if(sversion_compare($__settings['ver'], '23.7.3', '<')){ $__settings['salt'] = $r['salt']; // creating password using extend.php __ad_pass_sha1() function $__settings['admin_pass'] = __ad_pass_sha1($__settings['admin_pass']); }else{ //Create password using the latest method __agora_pass_encrypt_extend(); if(empty($__settings['admin_pass'])){ $error[] = '{{no_pass_encrypt}}'; return false; } } if(!empty($error)){ return false; } // Update the password now $update_query = "UPDATE `ap_user` SET `password` = '".$__settings['admin_pass']."' WHERE `_id` = '".$userid."';"; $result = sdb_query($update_query, $__settings['softdbhost'], $__settings['softdbuser'], $__settings['softdbpass'], $__settings['softdb']); } } } ?>