$starttime = microtime(true);
define('BASEPATH', true);
include('system/config.php');
if($site['maintenance'] > 0){$site['site_name'] .= ' - '.$lang['b_01']; if($data['admin'] < 1){redirect('maintenance');}}
if(!$is_online && isset($_SERVER['HTTP_REFERER']) && !isset($_COOKIE['PESRefSource'])){
$main_domain = parse_url($site['site_url']);
$http_referer = parse_url($_SERVER['HTTP_REFERER']);
if($http_referer['host'] != $main_domain['host']){
setcookie('PESRefSource', $db->EscapeString($_SERVER['HTTP_REFERER']), time()+1800);
}
}
if(!$is_online && isset($_GET['ref']) && is_numeric($_GET['ref']) && $site['splash_page'] == 1){
if(file_exists('theme/'.$site['theme'].'/splash.php')){
include('theme/'.$site['theme'].'/splash.php');
exit;
}
}
if(isset($_GET['unsubscribe']) && isset($_GET['um'])){
$uid = $db->EscapeString($_GET['unsubscribe']);
$um = $db->EscapeString($_GET['um']);
if($db->QueryGetNumRows("SELECT id FROM `users` WHERE `id`='".$uid."' AND MD5(`email`)='".$um."'") > 0){
$db->Query("UPDATE `users` SET `newsletter`='0' WHERE `id`='".$uid."' AND MD5(`email`)='".$um."'");
echo '
You was successfully unsubscribed from newsletters!';
redirect('index.php');
}
}
$errMsg = '';
if(isset($_POST['connect'])) {
if(blacklist_check(VisitorIP(), 3)){
$errMsg = ''.lang_rep($lang['b_295'], array('-IP-' => VisitorIP())).'
';
}else{
$login = $db->EscapeString($_POST['login']);
$pass = MD5($_POST['pass']);
$data = $db->QueryFetchArray("SELECT id,login,banned,activate FROM `users` WHERE (`login`='".$login."' OR `email`='".$login."') AND `pass`='".$pass."'");
if($data['banned'] > 0){
$errMsg = '';
// $errMsg = '';
$ban = $db->QueryFetchArray("SELECT reason FROM `ban_reasons` WHERE `user`='".$data['id']."' LIMIT 1");
if(!empty($ban['reason'])){
$_SESSION['PES_Banned'] = $data['id'];
redirect('banned.php?id='.$data['id']);
}
}elseif($data['activate'] > 0){
$errMsg = '';
// $errMsg = '';
}elseif($data['id'] != '') {
if(isset($_POST['remember'])){
setcookie('PESAutoLogin', 'ses_user='.$data['login'].'&ses_hash='.$pass, time()+604800, '/');
}
$db->Query("UPDATE `users` SET `log_ip`='".VisitorIP()."', `online`=NOW() WHERE `id`='".$data['id']."'");
$_SESSION['EX_login'] = $data['id'];
// Multi-account prevent
setcookie('PESAccExist', $data['login'], time()+604800, '/');
// Reload page
redirect('index.php');
}else{
$errMsg = '';
// $errMsg = '';
}
}
}
?>
}?>