File manager

File manager - Edit - /home/newsbmcs.com/public_html/static/img/logo/includes.zip

Back
PK��X�Z��{��{��function_general.phpnu��[��<?php require_once '../app/includes/constant.php'; require_once '../config.php'; require_once '../app/includes/app_start.php'; // Getting All User Data this Function echo Data function User_Data($column) { global $socket; $current_user = $_SESSION['Loggedin_user_id']; $sql = "select * from zon_users where id=$current_user"; $run = mysqli_query($socket, $sql); $row = mysqli_fetch_assoc($run); echo $row[$column]; } // Getting All User Data this Function return Data function User_Data_Two($column) { global $socket; if (isset($_SESSION['Loggedin_user'])) { $current_user = $_SESSION['Loggedin_user_id']; $sql = "select * from zon_users where id=$current_user"; $row = mysqli_fetch_assoc(mysqli_query($socket, $sql)); return $row[$column]; } } // Getting user Data by column name and condition function User_Data_By_Cond($column, $cond) { global $socket; $sql = "select * from zon_users where $cond"; $row = mysqli_fetch_assoc(mysqli_query($socket, $sql)); return $row[$column]; } // Getting All Game Data this Function print Data function Game_Data($id, $data) { global $socket; $query = "SELECT * from zon_games where id=$id"; $row = mysqli_fetch_assoc(mysqli_query($socket, $query)); echo $row[$data]; } // Getting All Game Data this Function return data function Game_Data_Two($id, $data) { global $socket; $query = "SELECT * from zon_games where id=$id"; $row = mysqli_fetch_assoc(mysqli_query($socket, $query)); return $row[$data]; } // Secure Data function Secure_DATA($d) { global $socket; return htmlspecialchars(mysqli_real_escape_string($socket, $d)); } // Checking Data From Databse exist or not function Exist_Data($table, $condition) { global $socket; $query = "select * from $table where $condition"; return mysqli_num_rows(mysqli_query($socket, $query)); } // Getting Game Likes function Game_Likes($data, $condition) { global $socket; $query = "select * from zon_likes where $condition"; $run = mysqli_query($socket, $query); $row = mysqli_fetch_assoc($run); return $row[$data]; } // Getting All Configuraton Data of Site function Zon_Config($data) { global $socket; $query = "select * from zon_config"; $run = mysqli_query($socket, $query); $row = mysqli_fetch_assoc($run); return $row[$data]; } // Play Newest function AutoPlays() { global $socket; global $site_url; $query = "select * from zon_games order by id desc limit 1"; $run = mysqli_query($socket, $query); $row = mysqli_fetch_assoc($run); echo $site_url . "single/" . $row['id'] . "/" . $row['game_name']; } // Getting Category Data function Category_Data($data, $condition) { global $socket; $query = "select * from zon_category where $condition"; $run = mysqli_query($socket, $query); $row = mysqli_fetch_assoc($run); if (!empty($row[$data])) { return $row[$data]; } else { return false; } } // Getting Likes Data function Game_likes_data($data) { global $socket; $current_user = User_Data_Two('id'); $query = "select * from zon_likes where user_id=$current_user"; $run = mysqli_query($socket, $query); $row = mysqli_fetch_assoc($run); return $row[$data]; } // Getting Total Numbers of Rows of Games function Total_Games() { global $socket; $query = "select * from zon_games"; return mysqli_num_rows(mysqli_query($socket, $query)); } // Getting Total Numbers of Rows By Table Name function Total_Items ($table) { global $socket; $query = "select * from $table"; return mysqli_num_rows(mysqli_query($socket, $query)); } // check user is in database or not function ValidateFields($field, $var) { global $socket; $Validate = "select * from zon_users where $field='$var'"; return mysqli_num_rows(mysqli_query($socket, $Validate)); } // Getting Page Data From Database function page_data ($id, $data) { global $socket; $query = "select * from zon_pages where id=$id"; $run = mysqli_query($socket, $query); $row = mysqli_fetch_assoc($run); return $row[$data]; }PK��X�Z�I�)-:��-:�� app_start.phpnu��[��<?php session_start(); try { $socket = new mysqli(DB_HOST, DB_USERNAME, DB_PASSWORD, DB_NAME); $con = new mysqli(DB_HOST, DB_USERNAME, DB_PASSWORD, DB_NAME); if ($socket) { # empty code; } else { # error if connection is not established } } catch (Exeception $error) { if ($error) { echo 'Connection is not establish'; } } function LoadFile($name) { global $zon; $theme = $zon['config']['theme']; $path = "themes/$theme/layout/" . $name . ".phtml"; if (file_exists($path)) { ob_start(); require ($path); $content = ob_get_contents(); ob_end_clean(); return $content; } else { echo 'file not exists.' . $path . '\n'; } } function LoadFile2($name) { global $zon; $theme = $zon['config']['theme']; $path = $name; if (file_exists($path)) { ob_start(); require ($path); $content = ob_get_contents(); ob_end_clean(); return $content; } else { echo 'file not exists.' . $path . '\n'; } } function ZonConfig() { global $socket; $sql = $socket->query('SELECT * FROM ' . T_ZON_CONFIG); $data = []; while ($row = $sql->fetch_assoc()) { $data = $row; } return $data; } function HomeFeedGames() { global $socket; $data = []; $s = "SELECT * FROM zon_games ORDER BY id DESC"; $q = $socket->query($s); while ($game = $q->fetch_assoc()) { if (count($data) != 201) { if ($game['is_featured'] == 1) { $data[] = $game; } if ($game['is_featured'] == 0) { $data[] = $game; } } // if (count($data) != 130) { // $data[] = $game; // } else { // if ($game['is_featured'] == 1) { // $data[] = $game; // die(); // } // } // if (count($data) != 170) { // $data[] = $game; // } else { // if ($game['is_featured'] == 1) { // $data[] = $game; // die(); // } // } // if (count($data) != 200) { // $data[] = $game; // } } return $data; } $zon = []; $zon['url'] = $_GET['url'] ?? ''; $zon['page'] = explode("/", $_GET['url'] ?? ''); $zon['config'] = ZonConfig(); $zon['user'] = getLoggedinUser(); // if (isset($_GET) && isset($_GET['theme'])) { // if ($_GET['theme'] === 'garud' \|\| $_GET['theme'] === 'zontal') { // $_SESSION['theme'] = $_GET['theme']; // if (isset($_SESSION) && isset($_SESSION['theme'])) { // $zon['config']['theme'] = $_SESSION['theme']; // header("Location: ?"); // } // } // } // $zon['config']['theme'] = $_SESSION['theme'] ?? 'garud'; if (isset($_SESSION['Loggedin'])) { define("IsLoggedin", true); } else { define("IsLoggedin", false); } if (isset($_SESSION['is_admin_Loggedin'])) { define("IsAdmin", true); } else { define("IsAdmin", false); } function getLoggedinUser() { global $socket; if (isset($_SESSION['Loggedin']) && isset($_SESSION['Loggedin_user'])) { $user_i = $_SESSION['Loggedin_user']; $sql = "SELECT * FROM " . T_ZON_USERS . " WHERE username='$user_i' OR email='$user_i' "; $runned = mysqli_query($socket, $sql); $data = []; while ($row = $runned->fetch_assoc()) { $data = $row; } return $data; } } function DynamicSection() { global $socket; $sql = $socket->query('SELECT * FROM ' . T_ZON_SEC); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function GameByCategoryName($id, $limit) { global $socket; $name = getCategoryNameById($id); if ($limit !== '') { $sql = $socket->query("SELECT * FROM " . T_ZON_GAMES . " WHERE game_category='$name' LIMIT $limit "); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } } function GameByCategoryWise($name, $limit = 0) { global $socket; if ($limit !== 0) { $sql = $socket->query("SELECT * FROM " . T_ZON_GAMES . " WHERE game_category='$name' LIMIT $limit "); } else { $sql = $socket->query("SELECT * FROM " . T_ZON_GAMES . " WHERE game_category='$name'"); } $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function getGame($limit) { global $socket; if ($limit !== '') { $sql = $socket->query("SELECT * FROM " . T_ZON_GAMES . " ORDER BY id DESC LIMIT $limit "); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } } function getCategoryNameById($id) { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_CATEGORY . " WHERE id=$id "); $data = $row = $sql->fetch_assoc(); return $data['name']; } function getFeaturedGames() { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_F_GAMES); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function getGamesById($game_id) { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_GAMES . " WHERE id=$game_id "); $data = []; while ($row = $sql->fetch_assoc()) { $data = $row; } return $data; } function getCategory($limit = 0) { global $socket; if ($limit !== 0) { $sql = $socket->query("SELECT * FROM " . T_ZON_CATEGORY . " LIMIT $limit "); } else { $sql = $socket->query("SELECT * FROM " . T_ZON_CATEGORY); } $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function num_rows($table, $con) { global $socket; $sql = $socket->query("SELECT * FROM $table WHERE $con ORDER BY id DESC "); $count = 0; while ($row = $sql->fetch_assoc()) { $count++; } return $count; } function getGamesByPopular($limit) { global $socket; $sql = $socket->query("SELECT MAX( game_played ) FROM " . T_ZON_GAMES . " $limit "); $s = $socket->query("SELECT * FROM " . T_ZON_GAMES . " $limit "); $data = []; $count = 0; while ($row = $sql->fetch_assoc()) { $data[] = $row; $count++; } $data2 = []; if ($count <= 4) { while ($r = $s->fetch_assoc()) { $data2[] = $r; } } return $data2; } function getBlogs() { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_BLOGS . " ORDER BY id DESC "); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function tabActivation($page, $class) { global $zon; if (isset($zon['page'][0]) && $zon['page'][0] == $page) { echo $class; } } function AutoPlay() { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_GAMES . " ORDER BY id DESC "); $game_len = count(mysqli_fetch_all($sql)); $game_id = rand(1, $game_len); if (num_rows(T_ZON_GAMES, "id=$game_id") > 0) { $game_id = rand(1, $game_len); } $game_sql = $socket->query("SELECT * FROM " . T_ZON_GAMES . " WHERE id=$game_id ORDER BY id DESC "); $data = []; while ($row = $game_sql->fetch_assoc()) { $data = $row; } return $data; } function getAd($offset, $d) { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_ADS . " LIMIT $offset "); $data = []; while ($row = $sql->fetch_assoc()) { $data = $row; } return $data[$d]; } function getAdById($id, $d) { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_ADS . " WHERE id=$id ORDER BY id DESC"); $data = []; while ($row = $sql->fetch_assoc()) { $data = $row; } return $data[$d]; } function makeSlug($v) { $e = strtolower($v); $e = str_replace(" ", "-", $e); $e = urlencode($e); return $e; } function blogById($id) { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_BLOGS . " WHERE id=$id ORDER BY id DESC "); $data = []; while ($row = $sql->fetch_assoc()) { $data = $row; } return $data; } function IsGame($slug) { $game_name = urldecode(str_replace("-", " ", $zon['page'][1])); $data = dataBy("SELECT * FROM zon_games WHERE game_name='$game_name'"); if(count($data) > 0) { return true; } else { return false; } } function getTitle() { global $zon; if ($zon['page'][0] == 'autoplay') { echo "AutoPlay - Play Random Games"; } else if ($zon['page'][0] == 'games') { echo $zon['config']['games_title']; } else if ($zon['page'][0] == 'all-games') { echo $zon['config']['games_title']; } else if ($zon['page'][0] == 'popular-games' \|\| ($zon['page'][0] == 'archive' && $zon['page'][1] == 'popular')) { echo $zon['config']['games_title']; } else if (isCategory($zon['page'][0])) { // for category $category_name = str_replace("-", " ", trim(urldecode($zon['page'][0]))); $data = dataBy("SELECT * FROM zon_category WHERE name='$category_name'")[0]; $category_title = $zon['config']['category_title']; $title = str_replace("[name]", $data['name'], $category_title); echo $title; } else if ($zon['page'][0] == 'blogs') { echo "Blogs"; } else if ($zon['page'][0] == 'g' && count($zon['page']) == 2) { $play_title = $zon['config']['play_title']; $game_name = str_replace("-", " ", $zon['page'][1]); $game = dataBy("SELECT * FROM zon_games WHERE game_name='$game_name'")[0]; $title = str_replace("[name]", $game['game_name'], $play_title); echo $title; } else if ($zon['page'][0] == 'blog') { $blog = blogById($zon['page'][2]); echo $blog['blog_title']; } else if ($zon['page'][0] == 'login') { echo "Login"; } else if ($zon['page'][0] == 'register') { echo "Register"; } else if ($zon['page'][0] == 'c') { $slug = str_replace("-", " ", $zon['page'][1]); $page = getPageBySlug(urldecode($slug)); echo $page['title']; } else if ($zon['page'][0] == '') { echo $zon['config']['site_title']; } else if (isset($zon['page'][0]) && num_rows(T_ZON_USERS, "username='" . $zon['page'][0] . "'")) { $username = $zon['user']['username']; $pro_title = $zon['config']['profile_title']; $title = str_replace("[name]", $username, $pro_title); echo $title; } else { echo "404 Page Not Found"; } } function getPages() { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_PAGES . " ORDER BY id DESC "); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function getPageById($id) { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_PAGES . " WHERE id=$id ORDER BY id DESC "); $data = []; while ($row = $sql->fetch_assoc()) { $data = $row; } return $data; } function getPageBySlug($slug) { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_PAGES . " WHERE title='$slug' ORDER BY id DESC "); $data = []; while ($row = $sql->fetch_assoc()) { $data = $row; } return $data; } function getGamesByQuery($query, $limit) { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_GAMES . " WHERE game_name LIKE '%$query%' LIMIT $limit "); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function getCommentsByGameId($id) { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_COMMENTS . " WHERE game_id=$id ORDER BY id DESC "); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function getUserDataById($id) { global $socket; $sql = $socket->query("SELECT * FROM " . T_ZON_USERS . " WHERE id=$id"); $data = []; while ($row = $sql->fetch_assoc()) { $data = $row; } return $data; } function redirect($path, $full = 0) { global $site_url; $p = $path; if ($full == 1) { $p = $site_url . $path; } else { $p = $path; return $p; } echo "<script>window.location.href = '$p'</script>"; } function getUserGame($user_id) { global $socket; $sql = $socket->query("SELECT , zon_games.id FROM zon_games LEFT JOIN zon_likes ON zon_games.id=zon_likes.game_id WHERE zon_likes.user_id=$user_id"); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function getUserComments($user_id) { global $socket; $sql = $socket->query("SELECT , zon_comments.id FROM zon_comments LEFT JOIN zon_users ON zon_users.id=zon_comments.user_id WHERE zon_comments.user_id=$user_id"); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function add_views($game_id) { global $socket; mysqli_query($socket, "UPDATE " . T_ZON_GAMES . " SET game_played=game_played+1 WHERE id=$game_id"); } function dataBy($query) { global $socket; $sql = $socket->query($query); $data = []; while ($row = $sql->fetch_assoc()) { $data[] = $row; } return $data; } function formatNumber($num) { if ($num >= 1000000) { return number_format($num / 1000000, 1) . 'm'; } elseif ($num >= 1000) { return number_format($num / 1000, 1) . 'k'; } else { return $num; } } function isCategory($name) { $n = str_replace("-", " ", urldecode($name)); if (num_rows(T_ZON_CATEGORY, "name='$n'")) { return true; } else { return false; } } function clearText($value) { $v = str_replace(":", "", $value); $v = str_replace("'", "", $v); $v = str_replace(",", "", $v); $v = str_replace('"', "", $v); $v = str_replace(';', "", $v); $v = str_replace('-', "", $v); $v = str_replace('_', "", $v); return $v; }PK��X�Z��constant.phpnu��[��<?php define('T_ZON_SEC', 'zon_section'); define('T_ZON_CONFIG', 'zon_config'); define('T_ZON_GAMES', 'zon_games'); define('T_ZON_CATEGORY', 'zon_category'); define('T_ZON_F_GAMES', 'zon_featured_games'); define('T_ZON_BLOGS', 'zon_blog'); define('T_ZON_ADS', 'zon_ads'); define('T_ZON_PAGES', 'zon_pages'); define('T_ZON_COMMENTS', 'zon_comments'); define('T_ZON_USERS', 'zon_users'); define('T_ZON_LIKES', 'zon_likes'); define('T_ZON_REPORTS', 'zon_report'); define("T_ZON_DISLIKES", "zon_unlikes");PK��PZ�Z%\�, ��, �� header.phpnu��[��<?php // session_start(); ?> <!DOCTYPE html> <html lang="en" class="dark:bg-zinc-800"> <head> <meta charset="UTF-8"> <meta http-equiv="X-UA-Compatible" content="IE=edge"> <meta name="robots" content="noindex, nofollow"> <meta name="viewport" content="width=device-width, initial-scale=1.0"> <?php if (!empty($page)) { ?> <title> <?php echo $page ?> </title> <?php } else { ?> <title> <?php echo Zon_Config('site_name') ?> </title> <?php } ?> <link rel="stylesheet" href="<?php echo $site_url ?>admin/assets/css/bootstrap.min.css"> <link rel="stylesheet" href="<?php echo $site_url ?>admin/assets/css/style.css"> <link rel="stylesheet" href="<?php echo $site_url ?>admin/assets/css/rte_theme_default.css"> <link rel="stylesheet" href="<?php echo $site_url ?>admin/assets/vendor/bootstrap-icons/bootstrap-icons.css"> <link rel="shortcut icon" href="<?php echo $site_url ?>static/img/logo/<?php echo Zon_Config('site_favicon') ?>" type="image/x-icon"> <script src="<?php echo $site_url ?>js/tailwind.js"></script> <script src="https://cdn.ckeditor.com/ckeditor5/37.0.1/classic/ckeditor.js"></script> <script src="<?php echo $site_url ?>admin/assets/js/rte.js"></script> </head> <div class="mx-2"> <div class="container"> <?php if (Zon_Config('auto_fetch_all_games_fetched') == 1) { ?> <div id="fetched_alert" class="bg-blue-200 relative text-xs capitalize flex gap-4 rounded-md text-blue-400 font-bold py-2.5 px-4 mt-2"> <i class="bi bi-info-circle-fill"></i> All games have been fetched from your ( <?php echo Zon_Config('auto_fetch_game_publisher') ?> ) <button onclick="this.parentNode.classList.add('hidden'), localStorage.setItem('fetched_alert', 1)" class="close-button font-bold text-lg top-[4px] absolute px-1 right-[20px]">×</button> </div> <?php } ?> <?php if (is_dir("../install")) { ?> <div class="bg-red-200 text-xs capitalize flex gap-4 rounded-md text-red-500 font-bold py-2.5 px-4 mt-4"> <i class="bi bi-info-circle-fill"></i> Please delete (./install) folder for security reason. </div> <?php } ?> </div> <script> if (localStorage.getItem('fetched_alert') == 1) { document.getElementById("fetched_alert").classList.add("hidden"); } </script> </div>PK��PZ�Z��sidebar.phpnu��[��<?php // session_start(); if (!isset($_SESSION['admin-Loggedin']) && !isset($_SESSION['is_admin_Loggedin'])) { @header("location: ../login"); // echo "<script>window.location.href='./login.php';</script>"; } ///include("config.php"); ?> <div class="sidebar sticky w-[350px] h-[100vh]"> <style> .sidebar { position: sticky; top: 0; } .colorpick-eyedropper-input-trigger { display: none; } /* .main { max-width: 400px !important; } / body { max-width: 1000px; margin: auto; } .container { max-width: 1000px; margin: auto; } .sidebar a { white-space: nowrap; } </style> <!-- <div class="logo px-4 py-6"> --> <!-- <a href="<?php echo $site_url ?>"> <h3 class="fw-bold text-2xl dark:text-gray-100 text-center uppercase text-gray-600 "><?php echo Zon_Config('site_name') ?></h3> </a> --> <!-- </div> --> <?php $zon['page'][0] = explode("/", $_SERVER['PHP_SELF'])[2] ?? 'index.php'; ?> <ul class="list px-4 mt-2"> <li class="<?php if($zon['page'][0] === 'index.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="index.php"><span class="bi-speedometer2 mr-2"></span> Dashboard</a></li> <li class="text-gray-500 hover:text-gray-700 my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="/" target="_blank"><span class="bi-house mr-2"></span> Home</a></li> <li class="<?php if($zon['page'][0] === 'games.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="games.php"><span class="bi-controller mr-2"></span> Games</a></li> <li class="<?php if($zon['page'][0] === 'featured_games.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="featured_games.php"><span class="bi-stickies mr-2"></span> Featured Games</a></li> <li class="<?php if($zon['page'][0] === 'categories.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="categories.php"><span class="bi-columns-gap mr-2"></span> Categories</a></li> <li class="<?php if($zon['page'][0] === 'users.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="users.php"><span class="bi-person mr-2"></span> Users</a></li> <!-- <li class="<?php if($zon['page'][0] === 'comments.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="comments.php"><span class="bi-chat-square-text mr-2"></span> Comments</a></li> --> <li class="<?php if($zon['page'][0] === 'pages.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="pages.php"><span class="bi-collection mr-2"></span> Pages</a></li> <!-- <li class="<?php if($zon['page'][0] === 'blog.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="blog.php"><span class="bi-clipboard mr-2"></span> Blog</a></li> --> <li class="<?php if($zon['page'][0] === 'reports.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="reports.php"><span class="bi-bug mr-2"></span> Reports</a></li> <!-- <li class="<?php if($zon['page'][0] === 'auto-fetch.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="auto-fetch.php"><span class="bi-arrow-repeat mr-2"></span> Auto Fetching</a></li> --> <!-- <li class="<?php if($zon['page'][0] === 'section.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="section.php"><span class="bi-grip-horizontal mr-2"></span> Sections</a></li> --> <!-- <li class="<?php if($zon['page'][0] === 'themes.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="themes.php"><span class="bi-palette mr-2"></span> Themes</a></li> --> <li class="<?php if($zon['page'][0] === 'customize.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="customize.php"><span class="bi-palette2 mr-2"></span> Customize</a></li> <li class="<?php if($zon['page'][0] === 'tools.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="tools.php"><span class="bi-tools mr-2"></span> Tools</a></li> <li class="<?php if($zon['page'][0] === 'advertisement.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="advertisement.php"><span class="bi-tv mr-2"></span> Advertisement</a></li> <li class="<?php if($zon['page'][0] === 'settings.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="settings.php"><span class="bi-gear mr-2"></span> Settings</a></li> <!-- <li class="<?php if($zon['page'][0] === 'update-script.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="update-script.php"><span class="bi-pause-fill mr-2"></span> Update</a></li> --> <li class="<?php if($zon['page'][0] === 'delete-games.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="delete-games.php"><span class="bi-trash mr-2"></span> Delete All Games</a></li> <li class="<?php if($zon['page'][0] === 'logout.php') { echo "bg-blue-600 text-white hover:text-white"; } else { ?> text-gray-500 hover:text-gray-700 <?php } ?> my-1 px-3 list-style-none"><a class="text-docoration-none py-2 block text-[13px] " href="logout.php"><span class="bi-door-open mr-2"></span> logout</a></li> </ul> </div>PK��PZ�Z!.h��ajax/gamesbyquery.phpnu��[��<?php include ('../../../config.php'); include ('../../../app/includes/constant.php'); include ('../../../app/includes/app_start.php'); $message = ''; if (isset ($_POST) && !empty ($_POST)) { $query = $_POST['query']; $sql = "SELECT FROM zon_games WHERE game_name LIKE '%$query%' LIMIT 20 "; $run = mysqli_query($socket, $sql); while ($row = mysqli_fetch_assoc($run)) { if ($row) { // if ($row['game_banner_url'] !== '') { ?> <div class="game-box"> <div class="flex items-center justify-between"> <div class="flex items-center gap-3"> <img class="h-10 w-10 rounded-md" src="<?= $row['game_image_url'] ?>" /> <div class="details"> <span class="text-lg font-bold "> <?= $row['game_name'] ?> </span> <br> <span class="text-gray-400 text-sm "> <?= $row['game_category'] ?> </span> </div> </div> <input type="checkbox" value="<?= $row['id'] ?>" class="h-7 outline-auto focus:outline-blue-500 rounded-lg w-7" name="game_id[]" /> </div> </div> <?php // } else { // $message = 'game not able to add in featured game.'; // } } else { echo 'game not found'; } } } else { echo "Search your game"; } echo $message; ?>PK��PZ�Z6s^�,��,�� config.phpnu��[��<?php require '../config.php'; // $host_name = 'localhost'; // $sql_db_user = 'root'; // $sql_db_pass = ''; // $sql_db_name = 'zontal'; // $con = mysqli_connect($host_name, $sql_db_user, $sql_db_pass, $sql_db_name); // $site_url = "http://localhost/Zontal/"; ?>PK��PZ�Z��y[� �� footer.phpnu��[��<script src="<?php echo $site_url?>admin/assets/js/main.js"></script> <script> const DROP_BUTTON=document.querySelectorAll(".drop_btn");null!==DROP_BUTTON&&DROP_BUTTON.forEach(e=>{e.addEventListener("click",()=>{let t=e.getAttribute("data-target");document.querySelector(t).classList.toggle("show")})});const TAB_BUTTON=document.querySelectorAll(".tab-button"),TAB=document.querySelectorAll(".tab");function ActiveButton(){TAB_BUTTON.forEach(e=>{e.classList.remove("bg-blue-500"),e.classList.remove("text-gray-100"),e.classList.add("text-gray-500")}),this.classList.add("bg-blue-500"),this.classList.replace("text-gray-500","text-gray-100")}null!==TAB_BUTTON&&TAB_BUTTON.forEach(e=>{e.addEventListener("click",t=>{TAB.forEach(e=>{e.classList.add("hidden"),e.classList.remove("show")});let l=e.getAttribute("data-target");document.querySelector(l).classList.remove("hidden"),document.querySelector(l).classList.toggle("block")})}),null!==TAB_BUTTON&&TAB_BUTTON.forEach(e=>{e.addEventListener("click",ActiveButton)});const USER_PROFILE_UPLOAD_IMAGE_BUTTON=document.getElementById("pic_upload_button");null!==USER_PROFILE_UPLOAD_IMAGE_BUTTON&&USER_PROFILE_UPLOAD_IMAGE_BUTTON.addEventListener("click",()=>{document.getElementById("user_profile_pic").click()});const FILE_TYPE=document.getElementById("File_Type");null!==FILE_TYPE&&(FILE_TYPE.addEventListener("change",()=>{("File"===FILE_TYPE.value\|\|"URL"===FILE_TYPE.value)&&"null"!==FILE_TYPE.value&&(console.warn(FILE_TYPE.value),"File"===FILE_TYPE.value?document.getElementById("FILE_IMAGE").classList.remove("hidden"):document.getElementById("FILE_IMAGE").classList.add("hidden"),"URL"===FILE_TYPE.value?document.getElementById("URL_IMAGE").classList.remove("hidden"):document.getElementById("URL_IMAGE").classList.add("hidden"))}),window.addEventListener("load",()=>{null!==FILE_TYPE&&("File"===FILE_TYPE.value\|\|"URL"===FILE_TYPE.value)&&"null"!==FILE_TYPE.value&&(console.warn(FILE_TYPE.value),"File"===FILE_TYPE.value?document.getElementById("FILE_IMAGE").classList.remove("hidden"):document.getElementById("FILE_IMAGE").classList.add("hidden"),"URL"===FILE_TYPE.value?document.getElementById("URL_IMAGE").classList.remove("hidden"):document.getElementById("URL_IMAGE").classList.add("hidden"))}));const CATEGORY_INPUT=document.getElementById("category_name");null!==CATEGORY_INPUT&&CATEGORY_INPUT.addEventListener("keyup",e=>{var t=e.target.value;document.getElementById("category_slug").innerHTML=t}); console.log(CATEGORY_INPUT) </script> <script> document.querySelectorAll("body").forEach((e) => { e.classList.add("dark:bg-[#121317]"); }); document.querySelectorAll("input, select").forEach((e) => { e.classList.add("dark:bg-zinc-900"); }); </script>PK��[�Z�KH�) ��) �� game_list.phpnu��[��<?php // Deprecated since v1.6.4 replaced with theme-functions.php // However, this script maybe still used in admin area function get_game_list($type, $amount=12, $page=0, $count=true){ if($type == 'new'){ $data = Game::getList( $amount, 'id DESC', $page, $count ); return $data; } elseif($type == 'random'){ $data = Game::getList( $amount, 'RAND()', $page, $count ); return $data; } elseif($type == 'popular'){ $data = Game::getList( $amount, 'views DESC', $page, $count ); return $data; } elseif($type == 'likes'){ $data = Game::getList( $amount, 'upvote DESC', $page, $count ); return $data; } elseif($type == 'trending'){ // Last 7 days trending $data = []; $conn = open_connection(); $date = new \DateTime('now'); // Get last 7 days $date->sub(new DateInterval('P7D')); $sql = "SELECT * FROM trends WHERE created >= '{$date->format('Y-m-d')}'"; $st = $conn->prepare($sql); $st->execute(); $row = $st->fetchAll(PDO::FETCH_ASSOC); $list = array(); if(count($row)){ foreach ($row as $item) { if(isset($list[$item['slug']])){ $list[$item['slug']] += (int)$item['views']; } else { $list[$item['slug']] = (int)$item['views']; } } arsort($list); $i = 0; foreach ($list as $slug => $views) { if($i < $amount){ $game = Game::getBySlug($slug); if($game){ $data[] = $game; } } $i++; } } return (array( "results" => $data, "totalRows" => count($list), "totalPages" => 1 )); } } function get_collection($name, $amount = 12){ $data = Collection::getListByCollection( $name, $amount ); return $data; } function get_game_list_category($cat_name, $amount, $page=0){ $cat_id = Category::getIdByName( $cat_name ); $data = Category::getListByCategory( $cat_id, $amount, $page ); return $data; } function get_game_list_category_id($cat_id, $amount, $page=0){ $data = Category::getListByCategory( $cat_id, $amount, $page ); return $data; } function get_game_list_categories($arr, $amount, $page=0, $random = true){ $ids = array(); foreach ($arr as $cat_name) { $cat_id = Category::getIdByName( $cat_name ); array_push($ids, $cat_id); } $data = Category::getListByCategories( $ids, $amount, $page, $random ); return $data; } ?>PK��[�Z��y��y�� page-post.phpnu��[��<?php defined('POST_ACTIVE') or die('Posts plugin not installed.'); require_once( TEMPLATE_PATH . '/functions.php' ); $post = null; if ( isset($_GET['slug']) ) { $_GET['slug'] = htmlspecialchars($_GET['slug']); if(strlen($_GET['slug']) >= 2){ $post = Post::getBySlug( $_GET['slug'] ); } } function _is_post_page_valid(){ // Used to validate the pagination // Set to 404 if current page is not exist // This script is inefficient, reason: Similar code is also executed in theme post-list.php (Double call) // But at least all themes is applied this rules instead of update all themes or possibly unsupported method for old theme global $url_params; $cur_page = 1; if(isset($url_params[1])){ $_GET['page'] = $url_params[1]; if(!is_numeric($_GET['page'])){ $_GET['page'] = 1; } } if(isset($_GET['page'])){ $cur_page = htmlspecialchars($_GET['page']); if(!is_numeric($cur_page)){ $cur_page = 1; } } $items_per_page = get_setting_value('post_results_per_page'); $data = Post::getList($items_per_page, 'created_date DESC', $items_per_page($cur_page-1)); $total_posts = $data['totalRows']; $total_page = $data['totalPages']; $posts = $data['results']; if(count($posts) >= 1){ return true; } else { return false; } } if($post){ if(PRETTY_URL){ if(count($url_params) >= 3){ // Post page only contains 3 parameter max // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } } if($lang_code != 'en'){ // If use translation (localization) // Begin translate the content if has translation $translated_fields = get_content_translation('post', $post->id, $lang_code, 'all'); if(!is_null($translated_fields)){ $post->title = isset($translated_fields['title']) ? $translated_fields['title'] : $post->title; $post->content = isset($translated_fields['content']) ? $translated_fields['content'] : $post->content; } } $page_title = $post->title . ' \| '.SITE_TITLE; $meta_description = str_replace(array('"', "'"), "", strip_tags($post->content)); require( TEMPLATE_PATH . '/post.php' ); } else { if(file_exists( TEMPLATE_PATH . '/post-list.php' )){ if(PRETTY_URL){ if(count($url_params) > 2){ // Post list page can contains 3 parameter max // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } if(isset($url_params[1]) && !is_numeric($url_params[1])){ // Page number should be a number // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } } if(_is_post_page_valid()){ $page_title = _t('Posts') . ' \| '.SITE_TITLE; $meta_description = _t('Posts') .' \| '.SITE_DESCRIPTION; require( TEMPLATE_PATH . '/post-list.php' ); } else { require( ABSPATH . 'includes/page-404.php' ); } } else { require( ABSPATH . 'includes/page-404.php' ); } } ?>PK��[�Z�NY�j��j��user.phpnu��[��<?php require('../config.php'); require('../init.php'); if($login_user){ if(isset($_POST['action'])){ if(ADMIN_DEMO && $login_user->role == 'admin'){ $status = 'error'; $info = 'Demo mode! Can\'t change Admin user profile'; if(isset($_POST['redirect'])){ header('Location: '.$_POST['redirect'].'&status='.$status.'&info='.$info); } return; } if($_POST['action'] == 'upload_avatar'){ if(!verify_csrf_token()) die('ERR CSRF'); $status = ''; $message = ''; if(isset($_FILES["avatar"])){ if(!file_exists(ABSPATH . 'images/avatar')){ mkdir('../images/avatar', 755, true); } $uploadOk = 1; $fileType = strtolower(pathinfo(basename($_FILES["avatar"]["name"]),PATHINFO_EXTENSION)); $target_file = ABSPATH . 'images/avatar/'.$login_user->username.'.png'; $check = getimagesize($_FILES["avatar"]["tmp_name"]); if($check) { //echo "File is an image - " . $check["mime"] . "."; $uploadOk = 1; } else { //echo "File is not an image."; $uploadOk = 0; } if ($uploadOk && $_FILES["avatar"]["size"] > 500000) { //echo "Sorry, your file is too large. max 500kb"; $uploadOk = 0; } if($fileType != "jpg" && $fileType != "png" && $fileType != "jpeg") { //echo "Sorry, only JPG, JPEG, PNG files are allowed."; $uploadOk = 0; } if ($uploadOk == 0) { //echo "Sorry, your file was not uploaded."; } else { //Convert to PNG $conver_image = $_FILES['avatar']['tmp_name']; switch ($fileType) { case 'jpg': case 'jpeg': $set_image = imagecreatefromjpeg($conver_image); break; case 'gif': $set_image = imagecreatefromgif($conver_image); break; case 'png': $set_image = imagecreatefrompng($conver_image); break; } imagepng($set_image, $conver_image); if (move_uploaded_file($_FILES["avatar"]["tmp_name"], $target_file)) { //echo "The file ". basename( $_FILES["avatar"]["name"]). " has been uploaded."; resize_avatar($target_file); $status = 'success'; } else { echo "Sorry, there was an error uploading your file."; } } } if(!$uploadOk){ $status = 'error'; $message = 'Upload failed!'; } else { $status = 'success'; $message = 'Avatar uploaded!'; } $_SESSION['alert'] = [ 'status' => $status, 'message' => $message ]; if(isset($_POST['redirect'])){ header('Location: '.$_POST['redirect']); } } elseif($_POST['action'] == 'edit_profile'){ if(!verify_csrf_token()) die('ERR CSRF'); $status = ''; $message = ''; $error = false; if($_POST['email']){ if( $_POST['email'] != $login_user->email){ if (!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) { $error = true; $status = 'error'; $message = 'Email not valid!'; } else { if(User::getByEmail($_POST['email'])){ $error = true; $status = 'error'; $message = 'Email already exist!'; } } } } $login_user->bio = esc_string($_POST['bio']); if(!$error){ $login_user->birth_date = $_POST['birth_date']; $login_user->gender = $_POST['gender']; $login_user->email = $_POST['email']; $login_user->update(); $status = 'success'; $message = 'Profile updated!'; } $_SESSION['alert'] = [ 'status' => $status, 'message' => $message ]; if(isset($_POST['redirect'])){ header('Location: '.$_POST['redirect']); } } elseif($_POST['action'] == 'change_password'){ if(!verify_csrf_token()) die('ERR CSRF'); $status = ''; $message = ''; $error = false; $new_password = str_replace(' ','',$_POST['new_password']); if($new_password != $_POST['new_password']){ $error = true; $status = 'error'; $message = 'Password must not contain any space!'; } if(!$error){ if(!password_verify($_POST['cur_password'], get_current_user_hash())){ $error = true; $status = 'error'; $message = 'Incorrect password!'; } } if(!$error){ $login_user->password = password_hash($_POST['new_password'], PASSWORD_DEFAULT); $login_user->update(); $status = 'success'; $message = 'Password updated!'; } $_SESSION['alert'] = [ 'status' => $status, 'message' => $message ]; if(isset($_POST['redirect'])){ header('Location: '.$_POST['redirect']); } } elseif($_POST['action'] == 'choose_avatar'){ if(!verify_csrf_token()) die('ERR CSRF'); $status = ''; $message = ''; $error = false; if(file_exists(ABSPATH.'images/avatar/default/'.$_POST['avatar'].'.png')){ $login_user->avatar = $_POST['avatar']; $login_user->update(); if(file_exists(ABSPATH.'images/avatar/'.$login_user->username.'.png')){ unlink('../images/avatar/'.$login_user->username.'.png'); } } else { $status = 'error'; $message = 'Failed!'; $error = true; } if(!$error){ $status = 'success'; $message = 'Avatar updated!'; } $_SESSION['alert'] = [ 'status' => $status, 'message' => $message ]; if(isset($_POST['redirect'])){ header('Location: '.$_POST['redirect']); } } elseif($_POST['action'] == 'delete_account'){ if(!verify_csrf_token()) die('ERR CSRF'); $status = ''; $message = ''; $error = false; $cur_password = str_replace(' ','',$_POST['cur_password']); if($cur_password != $_POST['cur_password']){ $error = true; $status = 'error'; $message = 'Password must not contain any "space"!'; } if(!$error){ if(!password_verify($_POST['cur_password'], get_current_user_hash())){ $error = true; $status = 'error'; $message = 'Incorrect password!'; } } if(!$error){ $login_user->delete( $_POST['cur_password'] ); CA_Auth::delete(); unset( $_SESSION['username'] ); header('Location: '.DOMAIN); return; } if($error){ $_SESSION['alert'] = [ 'status' => $status, 'message' => $message ]; if(isset($_POST['redirect'])){ header('Location: '.$_POST['redirect']); } } } } } function resize_avatar($path, $rs_width=100, $rs_height=100){ if(file_exists($path)){ $x = getimagesize($path); $width = $x['0']; $height = $x['1']; $img = imagecreatefrompng($path); $img_base = imagecreatetruecolor($rs_width, $rs_height); imagecopyresampled($img_base, $img, 0, 0, 0, 0, $rs_width, $rs_height, $width, $height); imagepng($img_base, $path, 9); } } ?>PK��[�Zjr�\|1��\|1��cron.phpnu��[��<?php if(!defined('CRON')){ die('p'); } $data = get_pref('cron-job'); define("LIMIT", 3); $game_count = 0; $log_txt = ""; if(!is_null($data)){ $data = json_decode($data, true); if(isset($data['auto-post'])){ $task_date = $data['auto-post']['date']; $cur_date = date("Y-m-d H:i:s"); if($cur_date >= $task_date){ $datetime1 = date_create($cur_date); $datetime2 = date_create($task_date); $interval = date_diff($datetime1, $datetime2); $diff = $interval->format('%d'); if($diff < 4){ $new_task_date = date('Y-m-d H:i:s', strtotime('+8 hours', strtotime(date('Y-m-d H:i:s')))); $data['auto-post']['date'] = $new_task_date; update_option('cron-job', json_encode($data)); auto_add_games($data); } else { //More than 4 days inactive echo 'remove'; unset($data['auto-post']); update_option('cron-job', json_encode($data)); } } else { if(!defined('CRON')){ echo 'on the way'; } } } else { //Inactive } } function auto_add_games($data){ if(!ADMIN_DEMO){ add_to_log(); $data['auto-post']['last-status'] = 'null'; $url = 'https://api.cloudarcade.net/fetch-auto.php?action=fetch&code='. check_purchase_code(); $url .= '&data='.json_encode($data['auto-post']['list']); $url .= '&ref='.DOMAIN.'&v='.VERSION; $ch = curl_init($url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_SSL_VERIFYPEER, false); curl_setopt($ch, CURLOPT_TIMEOUT, 10); $curl = curl_exec($ch); curl_close($ch); $game_data = json_decode($curl, true); if(isset($game_data['error'])){ add_to_log('Failed auto add games: '.$curl); } else if($game_data){ foreach ($game_data as $a => $b) { foreach ($b as $item) { $item['tags'] = ''; x_add_game2($item); } } } else { add_to_log('Failed auto add games. Null'); } write_log(); } } function x_add_game2($data){ $_POST = $data; // Copied from request.php add_game() $ref = ''; if(isset($_POST['ref'])) $ref = $_POST['ref']; $_POST['description'] = html_purify($_POST['description']); $_POST['instructions'] = html_purify($_POST['instructions']); if($_POST['source'] == 'self' \|\| $_POST['source'] == 'remote'){ if(!isset($_POST['published'])){ $_POST['published'] = false; } } if(!isset($_POST['is_mobile'])){ $_POST['is_mobile'] = false; } $redirect = 0; if(isset($_POST['redirect'])){ $redirect = $_POST['redirect']; } if(isset($_POST['slug'])){ $slug = esc_slug($_POST['slug']); } else { $slug = esc_slug(strtolower(str_replace(' ', '-', $_POST["title"]))); } $slug = preg_replace('/-{2,}/', '-', $slug); $slug = trim($slug, '-'); $_POST['slug'] = $slug; if(is_array($_POST['category'])){ // Array category is not allowed // Convert to string $cats = ''; $i = 0; $total = count($_POST['category']); foreach ($_POST['category'] as $key) { $cats = $cats.$key; if($i < $total-1){ $cats = $cats.','; } $i++; } $_POST['category'] = $cats; } if($_POST['category'] == '' \|\| $_POST['category'] == ' '){ $_POST['category'] = 'Other'; } // Begin category filter if(file_exists(ABSPATH."content/plugins/category-filter")){ // Plugin exist $cats = ''; $categories = commas_to_array($_POST['category']); $i = 0; $total = count($categories); foreach ($categories as $key) { $cats = $cats.category_name_filtering($key); if($i < $total-1){ $cats = $cats.','; } $i++; } $_POST['category'] = $cats; } $game = new Game; $check=$game->getBySlug($slug); $status='failed'; if(is_null($check)){ if($ref != 'upload'){ // Come from fetch games if(IMPORT_THUMB){ // Check if webp is activated $use_webp = get_setting_value('webp_thumbnail'); import_thumbnail($_POST['thumb_2'], $slug, 2); $name = basename($_POST['thumb_2']); $extension = pathinfo($_POST['thumb_2'], PATHINFO_EXTENSION); $_POST['thumb_2'] = '/thumbs/'.$slug.'_2.'.$extension; if($use_webp){ $file_extension = pathinfo($_POST['thumb_2'], PATHINFO_EXTENSION); $_POST['thumb_2'] = str_replace('.'.$file_extension, '.webp', $_POST['thumb_2']); } // import_thumbnail($_POST['thumb_1'], $slug, 1); $name = basename($_POST['thumb_1']); $extension = pathinfo($_POST['thumb_1'], PATHINFO_EXTENSION); $_POST['thumb_1'] = '/thumbs/'.$slug.'_1.'.$extension; if($use_webp){ $file_extension = pathinfo($_POST['thumb_1'], PATHINFO_EXTENSION); $_POST['thumb_1'] = str_replace('.'.$file_extension, '.webp', $_POST['thumb_1']); } if( SMALL_THUMB ){ $output = pathinfo($_POST['thumb_2']); $_POST['thumb_small'] = '/thumbs/'.$slug.'_small.'.$output['extension']; if($use_webp){ $file_extension = pathinfo($_POST['thumb_2'], PATHINFO_EXTENSION); $_POST['thumb_small'] = str_replace('.'.$file_extension, '.webp', $_POST['thumb_small']); generate_small_thumbnail($_POST['thumb_2'], $slug); } else { generate_small_thumbnail($_POST['thumb_2'], $slug); } } } } $game->storeFormValues( $_POST ); $game->insert(); $status='added'; // $cats = commas_to_array($_POST['category']); if(is_array($cats)){ //Add new category if not exist $length = count($cats); for($i = 0; $i < $length; $i++){ $_POST['name'] = $cats[$i]; $category = new Category; $exist = $category->isCategoryExist($_POST['name']); if($exist){ // } else { unset($_POST['slug']); $_POST['description'] = ''; $category->storeFormValues( $_POST ); $category->insert(); } $category->addToCategory($game->id, $category->id); } } } else{ $status='exist'; } $keys =['title', 'slug', 'description', 'instructions', 'width', 'height', 'category', 'thumb_1', 'thumb_2', 'url', 'tags']; if($status != 'added'){ if($_POST['source'] == 'self' \|\| $_POST['source'] == 'remote'){ // Store current fields foreach ($keys as $item) { $_SESSION[$item] = (isset($_POST[$item])) ? $_POST[$item] : null; } } } else { // Successfully added // Clear last fields if(isset($_SESSION['title'])){ foreach ($keys as $item) { if(isset($_SESSION[$item])){ unset($_SESSION[$item]); } } } add_to_log('Game added - '.$_POST['source'].' - '.$slug); } if($status == 'exist'){ add_to_log('Game alredy exist - '.$_POST['source'].' - '.$slug); $status='exist'; } } function category_name_filtering($category_name){ // Specific function for "Category Filter" plugin if(true){ $json = get_pref("category-filter"); if($json){ $data = json_decode($json, true); foreach ($data as $key => $value) { if($key == $category_name){ return $value; } } } } return $category_name; } function generate_small_thumbnail($path, $slug){ // copied from admin-functions.php $parent_dir = dirname(__FILE__) . '/../'; // CloudArcade root / installation folder if(!file_exists($parent_dir.$path)){ echo 'error 910: img file not found!'; return; } // $use_webp = get_setting_value('webp_thumbnail'); $path_info = pathinfo($path); $root_folder = explode ("/", $path); $output = "thumbs/" . $slug . "_small." . $path_info['extension']; if($path_info['extension'] == 'webp'){ // WEBP thumbnail $file_extension = pathinfo($path, PATHINFO_EXTENSION); $output = str_replace('.'.$file_extension, '.webp', $output); $_img = getimagesize($parent_dir.$path); $width = $_img['0']; $height = $_img['1']; $img = imagecreatefromwebp($parent_dir.$path); $new_img = imagecreatetruecolor(160, 160); imagecopyresized($new_img, $img, 0, 0, 0, 0, 160, 160, $width, $height); //output imagewebp($new_img, $parent_dir.$output, -1); // No compression } else { // PNG, JPG, GIF $x = getimagesize($parent_dir.$path); $width = $x['0']; $height = $x['1']; switch ($x['mime']) { case "image/gif": $img = imagecreatefromgif($parent_dir.$path); break; case "image/jpg": case "image/jpeg": $img = imagecreatefromjpeg($parent_dir.$path); break; case "image/png": $img = imagecreatefrompng($parent_dir.$path); break; } $img_base = imagecreatetruecolor(160, 160); if($x['mime'] == "image/png"){ imageAlphaBlending($img_base, false); imageSaveAlpha($img_base, true); } imagecopyresampled($img_base, $img, 0, 0, 0, 0, 160, 160, $width, $height); $path_info = pathinfo($parent_dir.$path); switch ($path_info['extension']) { case "gif": imagegif($img_base, $parent_dir.$output); // No compression break; case "jpg": case "jpeg": imagejpeg($img_base, $parent_dir.$output, 100); // No compression break; case "png": imagepng($img_base, $parent_dir.$output, 6); // Balance compression break; } imagedestroy($img); imagedestroy($img_base); } } function import_thumbnail($url, $game_slug, $index = null){ // copied from admin-functions.php $parent_dir = dirname(__FILE__) . '/../'; // CloudArcade root / installation folder if($url) { if (!file_exists($parent_dir.'thumbs')) { mkdir($parent_dir.'thumbs', 0777, true); } $extension = pathinfo($url, PATHINFO_EXTENSION); $identifier = ''; if(!is_null($index)){ $identifier = '_'.$index; } $new = $parent_dir.'thumbs/'.$game_slug.$identifier.'.'.$extension; if( get_setting_value('webp_thumbnail') ){ // Using WEBP format $file_extension = pathinfo($url, PATHINFO_EXTENSION); $new = str_replace('.'.$file_extension, '.webp', $new); // Create a cURL resource $ch = curl_init(); // Set cURL options for retrieving the remote image file curl_setopt($ch, CURLOPT_URL, $url); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true); curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0'); // Retrieve the remote image and save it to a local file $remoteImage = curl_exec($ch); if($remoteImage !== false){ $localFile = fopen($new, 'w'); if($localFile){ fwrite($localFile, $remoteImage); fclose($localFile); } else { echo 'Could not create local file'; } } else { echo 'Could not download remote image'; } // Close the cURL resource curl_close($ch); image_to_webp($new, 100, $new); } else { // Using JPG/PNG/GIF format save_remote_thumbnail($url, $new); } } } function save_remote_thumbnail($source, $destination, $quality = 100) { // copied from admin-functions.php $ch = curl_init(); // Set cURL options for retrieving the remote image file curl_setopt($ch, CURLOPT_URL, $source); curl_setopt($ch, CURLOPT_RETURNTRANSFER, true); curl_setopt($ch, CURLOPT_FOLLOWLOCATION, true); curl_setopt($ch, CURLOPT_USERAGENT, 'Mozilla/5.0'); // Retrieve the remote image and create an image resource from it $remoteImage = curl_exec($ch); if($remoteImage !== false){ $image = imagecreatefromstring($remoteImage); if($image !== false){ $info = getimagesizefromstring($remoteImage); if ($info['mime'] == 'image/png'){ imageAlphaBlending($image, true); imageSaveAlpha($image, true); imagepng($image, $destination, 6); } else if($info['mime'] == 'image/jpg' \|\| $info['mime'] == 'image/jpeg') { imagejpeg($image, $destination, 100); // No compression } else if($info['mime'] == 'image/gif') { imagegif($image, $destination); } imagedestroy($image); } else { echo 'Could not create image resource'; } } else { echo 'Could not download remote image'; } // Close the cURL resource curl_close($ch); } function add_to_log($msg = ""){ global $log_txt; if($msg == ""){ $log_txt .= "---- Executed - ".date('Y-m-d H:i:s'); } else { $log_txt .= $msg; } $log_txt .= PHP_EOL; } function write_log(){ global $log_txt; if($log_txt != ""){ $path = ABSPATH . PLUGIN_PATH . '/auto-publish'; if(file_exists($path . '/log.txt')){ $filesizeKB = filesize($path . '/log.txt') / 1024; if($filesizeKB >= 50){ file_put_contents($path . '/log_prev.txt', file_get_contents($path . '/log.txt')); unlink($path . '/log.txt'); } } if(file_exists($path)){ $full_log = ""; if(file_exists($path . '/log.txt')){ $full_log = file_get_contents($path . '/log.txt'); } $full_log = $log_txt.$full_log; file_put_contents($path . '/log.txt', $full_log); } } } ?>PK��[�Z�4fh�� page-game.phpnu��[��<?php require_once( TEMPLATE_PATH . '/functions.php' ); // if ( !isset($_GET['slug']) \|\| !$_GET['slug'] ) { // require( ABSPATH . 'includes/page-homepage.php' ); // return; // } if(count($url_params) != 2){ // The number of parameter is not match require( ABSPATH . 'includes/page-404.php' ); return; } $_GET['slug'] = htmlspecialchars($_GET['slug']); Game::update_views( $_GET['slug'] ); $game = Game::getBySlug( $_GET['slug'] ); if($game && !$game->published){ // This game is drafted if(is_login() && USER_ADMIN){ // Show message for admin user echo '<div class="alert alert-warning alert-draft" style="z-index: 1000;">The game has not been published yet and is currently in draft mode.</div>'; } else { $game = null; // Show 404 page for visitor } } if($game){ if($lang_code != 'en'){ // If use translation (localization) // Begin translate the content if has translation $translated_fields = get_content_translation('game', $game->id, $lang_code, 'all'); if(!is_null($translated_fields)){ $game->title = isset($translated_fields['title']) ? $translated_fields['title'] : $game->title; $game->description = isset($translated_fields['description']) ? $translated_fields['description'] : $game->description; $game->instructions = isset($translated_fields['instructions']) ? $translated_fields['instructions'] : $game->instructions; } } $page_title = $game->title . ' \| '.SITE_DESCRIPTION; $meta_description = str_replace(array('"', "'"), "", strip_tags($game->description)); require( TEMPLATE_PATH . '/game.php' ); } else { require( ABSPATH . 'includes/page-404.php' ); } ?>PK��[�Z��u�Q��Q��load-class.phpnu��[��<?php require_once( ABSPATH . CLASS_PATH . "/Page.php" ); require_once( ABSPATH . CLASS_PATH . "/Category.php" ); require_once( ABSPATH . CLASS_PATH . "/Game.php" ); require_once( ABSPATH . CLASS_PATH . "/User.php" ); require_once( ABSPATH . CLASS_PATH . "/Auth.php" ); require_once( ABSPATH . CLASS_PATH . "/Widget.php" ); ?>PK��[�Z-_ɦ��page-search.phpnu��[��<?php require_once( TEMPLATE_PATH . '/functions.php' ); if(PRETTY_URL){ if(count($url_params) > 3 \|\| count($url_params) < 2){ // Search page only contains 3 parameter max, // If more than that or less than 2, the url is not valid // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } if(isset($url_params[2]) && !is_numeric($url_params[2])){ // Page number should be a number // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } } $_GET['slug'] = htmlspecialchars(str_replace('-', ' ', $_GET['slug'])); $cur_page = 1; if(isset($url_params[2])){ $cur_page = (int)$url_params[2]; } $items_per_page = get_setting_value('search_results_per_page'); $data = Game::searchGame($_GET['slug'], $items_per_page, $items_per_page($cur_page-1)); $games = $data['results']; $total_games = $data['totalRows']; $total_page = $data['totalPages']; $meta_description = _t('Search %a Games', $_GET['slug']).' \| '.SITE_DESCRIPTION; $archive_title = _t('Search %a', $_GET['slug']); $page_title = _t('Search %a Games', $_GET['slug']).' \| '.SITE_DESCRIPTION; require( TEMPLATE_PATH . '/search.php' ); ?>PK��[�Z�q�3 ��3 ��vote.phpnu��[��<?php require( '../config.php' ); require( '../init.php' ); if(isset($_POST['vote']) && isset($_POST['action']) && isset($_POST['id'])){ $ip_address = getIpAddr(); $conn = open_connection(); $sql = "SELECT * FROM votelogs WHERE ip = :ip AND game_id = :game_id AND action = :action"; $st = $conn->prepare($sql); $st->bindValue(":ip", $ip_address, PDO::PARAM_STR); $st->bindValue(":game_id", $_POST['id'], PDO::PARAM_INT); $st->bindValue(":action", $_POST['action'], PDO::PARAM_STR); $st->execute(); $row = $st->fetch(PDO::FETCH_ASSOC); if(!$row){ if($_POST['action'] == 'upvote'){ Game::upvote($_POST['id']); if($login_user){ $login_user->like($_POST['id']); } } elseif ($_POST['action'] == 'downvote') { Game::downvote($_POST['id']); if($login_user){ $login_user->dislike($_POST['id']); } } // $sql = "INSERT INTO votelogs(ip,game_id,action) VALUES(:ip_address, :game_id, :action)"; $st = $conn->prepare($sql); $st->bindValue(":ip_address", $ip_address, PDO::PARAM_STR); $st->bindValue(":game_id", $_POST['id'], PDO::PARAM_INT); $st->bindValue(":action", $_POST['action'], PDO::PARAM_STR); $st->execute(); //Check count $sql = "SELECT * FROM votelogs"; $st = $conn->prepare($sql); $st->execute(); $count = $st->rowCount(); if($count > 120){ $sql = "DELETE FROM votelogs ORDER BY id ASC LIMIT 20"; $st = $conn->prepare($sql); $st->execute(); } } else { echo(' exist'); } } if(isset($_POST['favorite']) && isset($_POST['action']) && isset($_POST['id'])){ if($login_user){ $conn = open_connection(); $sql = "SELECT * FROM favorites WHERE user_id = :user_id AND game_id = :game_id LIMIT 1"; $st = $conn->prepare($sql); $st->bindValue(":user_id", $login_user->id, PDO::PARAM_INT); $st->bindValue(":game_id", $_POST['id'], PDO::PARAM_INT); $st->execute(); $row = $st->fetch(PDO::FETCH_ASSOC); if($row){ // Remove from favorite $sql = "DELETE FROM favorites WHERE user_id = :user_id AND game_id = :game_id LIMIT 1"; $st = $conn->prepare($sql); $st->bindValue(":user_id", $login_user->id, PDO::PARAM_INT); $st->bindValue(":game_id", $_POST['id'], PDO::PARAM_INT); $st->execute(); echo 'rm-favorite'; } else { // Add to favorite $sql = "INSERT INTO favorites(game_id,user_id) VALUES(:game_id, :user_id)"; $st = $conn->prepare($sql); $st->bindValue(":user_id", $login_user->id, PDO::PARAM_INT); $st->bindValue(":game_id", $_POST['id'], PDO::PARAM_INT); $st->execute(); echo 'add-favorite'; } } } ?>PK��[�Z�qX�� page-user.phpnu��[��<?php if(isset($url_params[1]) && $url_params[1] != ''){ $url_params[1] = htmlspecialchars($url_params[1]); } else { header( "Location: /" ); return; } $rank; if(file_exists(ABSPATH.'includes/rank.json')){ $rank = json_decode(file_get_contents(ABSPATH.'includes/rank.json'), true); $rank_values = array_values($rank); } $page_title = $url_params[1]; $meta_description = SITE_DESCRIPTION; require_once( TEMPLATE_PATH . '/functions.php' ); if(file_exists(TEMPLATE_PATH.'/user.php')){ require(TEMPLATE_PATH.'/user.php'); return; } //Start page require( TEMPLATE_PATH.'/includes/header.php' ); $is_visitor = true; $cur_user = null; if($login_user && $login_user->username === $url_params[1]){ $is_visitor = false; $cur_user = $login_user; } else { $cur_user = User::getByUsername(strtolower($url_params[1])); } if(isset($url_params[2]) && $url_params[2] == 'edit'){ $_GET['edit'] = true; } if($cur_user){ if(isset($_GET['edit']) && !$is_visitor){ //Edit user profile require( ABSPATH . 'includes/page-user-edit.php' ); } else { //User profile page require( ABSPATH . 'includes/page-user-profile.php' ); } } else { //User is not exist ?> <div class="container"> <p> <h2 class="text-center"><?php _e('User does not exist!') ?></h2> </p> </div> <?php } require( TEMPLATE_PATH.'/includes/footer.php' ); //End page ?>PK��[�Z��n:��:��banned-username.jsonnu��[��["admin","login","demo","administrator","super","default"]PK��[�Z̼��,��,��version.phpnu��[��<?php define( "VERSION", "1.9.6" ); ?>PK��[�ZJSA� �� banned-words-comment.jsonnu��[��["just_sample","another_sample"]PK��[�ZJSA� �� banned-words.jsonnu��[��["just_sample","another_sample"]PK��[�ZF1U1�!��!��api.phpnu��[��<?php if (session_status() == PHP_SESSION_NONE) { session_start(); } require( '../config.php' ); require( '../init.php' ); if(isset($_POST['action'])){ $score = null; if($_POST['action'] === 'submit'){ if($login_user){ //Only logged in user $user_id = $login_user->id; if(isset($_POST['value']) && isset($_POST['ref'])){ $score = $_POST['value']; $score = base64_decode($score); $score = $score1.33; if (strpos($score, '.')) { //invalid } else { $game = Game::getBySlug($_POST['ref']); if($game){ $game_id = $game->id; $conn = open_connection(); $sql = 'SELECT score FROM scores WHERE user_id = :user_id AND game_id = :game_id LIMIT 1'; $st = $conn->prepare($sql); $st->bindValue(":game_id", $game_id, PDO::PARAM_INT); $st->bindValue(":user_id", $user_id, PDO::PARAM_INT); $st->execute(); $row = $st->fetch(); if($row){ //Update existing data if($row['score'] < $score){ $sql = 'UPDATE scores SET score = :score WHERE user_id = :user_id AND game_id = :game_id LIMIT 1'; $st = $conn->prepare($sql); $st->bindValue(":game_id", $game_id, PDO::PARAM_INT); $st->bindValue(":user_id", $user_id, PDO::PARAM_INT); $st->bindValue(":score", $score, PDO::PARAM_INT); $st->execute(); } } else { $sql = 'INSERT INTO scores (game_id, user_id, score) VALUES ( :game_id, :user_id, :score)'; $st = $conn->prepare($sql); $st->bindValue(":game_id", $game_id, PDO::PARAM_INT); $st->bindValue(":user_id", $user_id, PDO::PARAM_INT); $st->bindValue(":score", $score, PDO::PARAM_INT); $st->execute(); } // $login_user->xp += 10; $login_user->update_xp(); // echo 'ok'; } } } else { die('x'); } } } elseif ($_POST['action'] === 'get_current_user'){ if($login_user){ $user = array(); $user['username'] = $login_user->username; $user['id'] = $login_user->id; $user['gender'] = $login_user->gender; $user['join_date'] = $login_user->join_date; $user['birth_date'] = $login_user->birth_date; echo json_encode($user); } } elseif ($_POST['action'] === 'get_user_score'){ //Get current user score if($login_user){ $user_id = $login_user->id; $game = Game::getBySlug($_POST['ref']); if(!$game){ die(); } $game_id = $game->id; $sql = "SELECT score FROM scores WHERE user_id = :user_id AND game_id = :game_id LIMIT 1"; $conn = open_connection(); $st = $conn->prepare($sql); $st->bindValue(":user_id", $user_id, PDO::PARAM_INT); $st->bindValue(":game_id", $game_id, PDO::PARAM_INT); $st->execute(); $res = $st->fetch(); if($res){ echo $res['score']; } else { echo 0; } } } elseif ($_POST['action'] === 'get_score_rank'){ //Get current user score rank if($login_user){ $user_id = $login_user->id; $game = Game::getBySlug($_POST['ref']); if(!$game){ die(); } $game_id = $game->id; $sql = "SELECT FROM scores WHERE game_id = :game_id ORDER by score DESC LIMIT 5000"; $conn = open_connection(); $st = $conn->prepare($sql); $st->bindValue(":game_id", $game_id, PDO::PARAM_INT); $st->execute(); $row = $st->fetchAll(PDO::FETCH_ASSOC); if(count($row)){ $i = 0; foreach ($row as $item) { $i++; if($item['user_id'] == $user_id){ echo $i; return; } } } echo 0; } } elseif ($_POST['action'] === 'get_scoreboard'){ if(isset($_POST['conf'])){ $config = json_decode($_POST['conf'], true); $type = $config['type']; $amount = 10; if(isset($config['amount'])){ $amount = $config['amount']; } $sql = null; $game = null; $game_id = null; if(isset($_POST['ref'])){ //Old method $game = Game::getBySlug($_POST['ref']); if($game){ $game_id = $game->id; } } elseif(isset($_POST['game-id'])){ //New preferred method $game_id = (int)$_POST['game-id']; } if(!$game_id){ die(); } if($type === 'top-all'){ $sql = "SELECT * FROM scores ORDER by score DESC, created_date ASC LIMIT ".$amount; } elseif($type === 'top-all-day'){ $sql = "SELECT * FROM scores WHERE created_date > DATE_SUB(NOW(), INTERVAL 1 DAY) ORDER by score DESC LIMIT ".$amount; } elseif($type === 'top-all-week'){ $sql = "SELECT * FROM scores WHERE created_date > DATE_SUB(NOW(), INTERVAL 1 WEEK) ORDER by score DESC LIMIT ".$amount; } elseif($type === 'top-all-month'){ $sql = "SELECT * FROM scores WHERE created_date > DATE_SUB(NOW(), INTERVAL 1 MONTH) ORDER by score DESC LIMIT ".$amount; } elseif($type === 'top'){ $sql = "SELECT * FROM scores WHERE game_id = ".$game_id." ORDER by score DESC LIMIT ".$amount; } elseif($type === 'top-day'){ $sql = "SELECT * FROM scores WHERE created_date > DATE_SUB(NOW(), INTERVAL 1 DAY) AND game_id = ".$game_id." ORDER by score DESC LIMIT ".$amount; } elseif($type === 'top-week'){ $sql = "SELECT * FROM scores WHERE created_date > DATE_SUB(NOW(), INTERVAL 1 WEEK) AND game_id = ".$game_id." ORDER by score DESC LIMIT ".$amount; } elseif($type === 'top-month'){ $sql = "SELECT * FROM scores WHERE created_date > DATE_SUB(NOW(), INTERVAL 1 MONTH) AND game_id = ".$game_id." ORDER by score DESC LIMIT ".$amount; } if($sql){ $conn = open_connection(); $st = $conn->prepare($sql); $st->execute(); // $row = $st->fetchAll(PDO::FETCH_ASSOC); $list = []; foreach($row as $item){ $item['game_title'] = Game::getById($item['game_id'])->title; $item['username'] = User::getById($item['user_id'])->username; array_push($list, $item); } echo json_encode($list); } } } elseif ($_POST['action'] === 'load_ad'){ if(isset($_POST['value'])){ $tags = get_pref('ads-manager'); if($tags){ $tags = json_decode($tags, true); $selected = null; foreach ($tags as $tag => $item) { if(strtolower($_POST['value']) == strtolower($tag)){ $selected = $item; $selected['type'] = strtolower($tag); break; } } if(!$selected){ foreach ($tags as $tag => $item) { if($item['default']){ $selected = $item; $selected['type'] = strtolower($tag); break; } } } if($selected['type'] == 'banner'){ if($selected['selected'] == 'random'){ if(isset($selected['data']) && $selected['data']){ $picked_banner = $selected['data'][rand(0, count($selected['data'])-1)]; $selected['value'] = $picked_banner['image']; $selected['url'] = $picked_banner['url']; $selected['name'] = $picked_banner['name']; //Add show stats $ad_stats = get_pref('ads-manager-stats'); if($ad_stats){ $ad_stats = json_decode($ad_stats, true); } else { $ad_stats = array(); } if(!isset($ad_stats[$picked_banner['name']])){ $ad_stats[$picked_banner['name']] = array(); $ad_stats[$picked_banner['name']]['views'] = 0; $ad_stats[$picked_banner['name']]['clicks'] = 0; } $ad_stats[$picked_banner['name']]['views']++; update_option('ads-manager-stats', json_encode($ad_stats)); //End } } $selected['delay'] = 5; } echo json_encode($selected); } else { echo '{"error": "Ads Manager plugin not installed."}'; } } } elseif ($_POST['action'] === 'ad_clicked'){ if(isset($_POST['value'])){ //Add click stats $name = $_POST['value']; $ad_stats = get_pref('ads-manager-stats'); if($ad_stats){ $ad_stats = json_decode($ad_stats, true); } else { $ad_stats = array(); } if(!isset($ad_stats[$name])){ $ad_stats[$name] = array(); $ad_stats[$name]['views'] = 0; $ad_stats[$name]['clicks'] = 0; } $ad_stats[$name]['clicks']++; update_option('ads-manager-stats', json_encode($ad_stats)); //End } } elseif ($_POST['action'] === 'get_ad_config'){ if(get_pref_bool('ads-manager-active')){ $result = array( 'status' => 'active', 'h5_client_id' => get_pref('ads-manager-h5-clientID') ); echo json_encode($result); } else { $result = array( 'status' => 'inactive', 'h5_client_id' => '' ); echo json_encode($result); } } } ?>PK��[�Z��(��/��/��statistics.phpnu��[��<?php if (session_status() == PHP_SESSION_NONE) { session_start(); } require_once( dirname(__FILE__)."/../config.php" ); class Stats { public static $debug = false; public static function debug() { if ( self::$debug ) : $bt = debug_backtrace(); $caller = array_shift($bt); ?> <pre class='__debug'><?php print_r([ "file" => $caller["file"], "line" => $caller["line"], "args" => func_get_args() ]); ?> </pre> <?php endif; } public static function migration_db() { // create table stats try { $pdo = new PDO(DB_DSN, DB_USERNAME, DB_PASSWORD); $pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $table_db_stats = 'statistics'; $sql = "CREATE TABLE IF NOT EXISTS `".$table_db_stats."` ( `id` INT(11) UNSIGNED AUTO_INCREMENT PRIMARY KEY, `created_date` DATE, `page_views` VARCHAR(255), `unique_visitor` VARCHAR(255), `data` MEDIUMTEXT, )"; $pdo->exec($sql); self::debug("Table ".$table_db_stats." created successfully<br>"); } catch(PDOException $e) { self::debug($sql . "<br>" . $e->getMessage()); } // create table stats_ip_address try { $pdo = new PDO(DB_DSN, DB_USERNAME, DB_PASSWORD); $pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $table_db_stats_ip_address = 'stats_ip_address'; $sql = "CREATE TABLE IF NOT EXISTS `".$table_db_stats_ip_address."` ( `id` INT(11) UNSIGNED AUTO_INCREMENT PRIMARY KEY, `ip_address` VARCHAR(255), `created_date` DATE )"; $pdo->exec($sql); self::debug("Table ".$table_db_stats_ip_address." created successfully<br>"); } catch(PDOException $e) { self::debug($sql . "<br>" . $e->getMessage()); } } public static function create_stats( $page_views = 0, $unique_visitor = 0, $data = '' ){ try { $pdo = new PDO(DB_DSN, DB_USERNAME, DB_PASSWORD); $pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); // $ip_address = get_visitor_ip(); $created_date = date('Y-m-d'); $sql = "INSERT INTO `statistics` (page_views,unique_visitor,created_date,data) VALUES ('$page_views','$unique_visitor','$created_date','$data')"; $pdo->exec($sql); //self::debug("New record created successfully in stats"); } catch( PDOException $e ) { self::debug($sql . "<br>" . $e->getMessage()); } } public static function update_stats( $page_views = 0, $unique_visitor = 0, $data = '' ) { try { $pdo = new PDO(DB_DSN, DB_USERNAME, DB_PASSWORD); $pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); // $ip_address = get_visitor_ip(); $created_date = date('Y-m-d'); $sql = "UPDATE `statistics` SET page_views='$page_views',unique_visitor='$unique_visitor',data='$data' WHERE `created_date` = '$created_date'"; $pdo->exec($sql); self::debug("New record update successfully in stats"); } catch( PDOException $e ) { self::debug($sql . "<br>" . $e->getMessage()); } } public static function create_stats_ip($ip_address = null, $conn = null) { if(!$ip_address){ $ip_address = self::get_visitor_ip(); } try { $close_conn = false; if($conn){ $close_conn = true; $conn = new PDO(DB_DSN, DB_USERNAME, DB_PASSWORD); $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); } $created_date = date('Y-m-d'); $sql = "INSERT INTO `stats_ip_address` (ip_address,created_date) VALUES ('$ip_address','$created_date')"; $conn->exec($sql); if($close_conn){ $conn = null; } //self::debug("New record created successfully in stats_ip_address"); } catch( PDOException $e ) { //self::debug($sql . "<br>" . $e->getMessage()); } } public static function delete_stats_ip() { try { $pdo = new PDO(DB_DSN, DB_USERNAME, DB_PASSWORD); $pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $created_date = date('Y-m-d'); $sql = "DELETE FROM stats_ip_address"; $pdo->exec($sql); //self::debug("Record deleted successfully in stats_ip_address"); } catch( PDOException $e ) { self::debug($sql . "<br>" . $e->getMessage()); } } public static function get_stats_ip( $args = [] ) { $stats_ip = []; try { $pdo = new PDO(DB_DSN, DB_USERNAME, DB_PASSWORD); $pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $ip_address = self::get_visitor_ip(); $created_date = date('Y-m-d'); $sql = "SELECT * FROM `stats_ip_address` WHERE `ip_address` = '$ip_address'"; $created_date = ''; if ( isset( $args['created_date']) && !empty( $args['created_date'] ) ) : $created_date = $args['created_date']; endif; if ( $created_date ) : $sql .= " AND `created_date` = '$created_date'"; endif; if ( empty($created_date) ) : $created_date_before = ''; if ( isset( $args['created_date_before']) && !empty( $args['created_date_before'] ) ) : $created_date_before = $args['created_date_before']; endif; if ( $created_date_before ) : $sql .= " AND `created_date` < '$created_date_before'"; endif; endif; $limit = -1; $offset = 0; if ( isset( $args['limit'] ) && !empty( $args['limit'] ) ) : $limit = intval($args['limit']); endif; if ( isset( $args['offset'] ) && !empty( $args['offset'] ) ) : $offset = intval($args['offset']); endif; if ( !empty($limit) && $limit != -1 ) : $sql .= " LIMIT ".$limit." OFFSET ".$offset.""; endif; $stmt = $pdo->prepare($sql); $stmt->execute(); // set the resulting array to associative $result = $stmt->setFetchMode(PDO::FETCH_ASSOC); $stats_ip = $stmt->fetchAll(); } catch(PDOException $e) { self::migration_db(); self::debug("Error: " . $e->getMessage()); } return $stats_ip; } public static function is_unique_visitor($ip, $conn = null) { $close_conn = false; if(!$conn){ $close_conn = true; $conn = new PDO(DB_DSN, DB_USERNAME, DB_PASSWORD); $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); } $sql = 'SELECT * FROM stats_ip_address WHERE ip_address = :ip'; $st = $conn->prepare($sql); $st->bindValue(":ip", $ip, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if($close_conn){ $conn = null; } if($row){ return false; } else { return true; } } public static function update_data($data = []) { $ip_address = self::get_visitor_ip(); $date_time = date('Y-m-d'); $conn = new PDO(DB_DSN, DB_USERNAME, DB_PASSWORD); $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $sql = 'SELECT data FROM statistics WHERE created_date = :date_time'; $st = $conn->prepare($sql); $st->bindValue(":date_time", $date_time, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if($row){ $row = json_decode($row['data'], true); $json_data = ''; $unique_visitor = 0; if(self::is_unique_visitor($ip_address, $conn)){ $unique_visitor = 1; self::create_stats_ip($ip_address, $conn); foreach ($data as $item => $value) { if(isset($row[$item][$value])){ $row[$item][$value]++; } else { $row[$item][$value] = 1; } } $json_data = json_encode($row); } else { if($row === ''){ $json_data = json_encode($data); } else { $json_data = json_encode($row); } } $sql = 'UPDATE statistics SET page_views = page_views + 1, unique_visitor = unique_visitor + :uv, data = :data WHERE created_date = :date_time'; $st = $conn->prepare($sql); $st->bindValue(":date_time", $date_time, PDO::PARAM_STR); $st->bindValue(":uv", $unique_visitor, PDO::PARAM_INT); $st->bindValue(":data", $json_data, PDO::PARAM_STR); $st->execute(); } else { self::delete_stats_ip(); self::create_stats(1,1, json_encode(self::convert_array_data($data))); } $conn = null; } public static function convert_array_data( $data = [] ) { $array = []; foreach ($data as $item => $value) { $array[$item][$value] = 1; } return $array; } public static function get_data( $args = [] ) { $stats = []; try { $pdo = new PDO(DB_DSN, DB_USERNAME, DB_PASSWORD); $pdo->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $start_date = ''; $end_date = ''; if ( isset( $args['start_date']) && !empty( $args['start_date'] ) ) : $start_date = $args['start_date']; endif; if ( isset( $args['end_date']) && !empty( $args['end_date'] ) ) : $end_date = $args['end_date']; endif; $sql = "SELECT * FROM `statistics`"; if ( $start_date && $end_date ) : $sql .= " WHERE `created_date` BETWEEN '$start_date' AND '$end_date'"; endif; $limit = -1; $offset = 0; if ( isset( $args['limit'] ) && !empty( $args['limit'] ) ) : $limit = intval($args['limit']); endif; if ( isset( $args['offset'] ) && !empty( $args['offset'] ) ) : $offset = intval($args['offset']); endif; if ( !empty($limit) && $limit != -1 ) : $sql .= " LIMIT ".$limit." OFFSET ".$offset.""; endif; $stmt = $pdo->prepare($sql); $stmt->execute(); // set the resulting array to associative $result = $stmt->setFetchMode(PDO::FETCH_ASSOC); $stats = $stmt->fetchAll(); } catch(PDOException $e) { self::migration_db(); self::debug("Error: " . $e->getMessage()); } return $stats; } public static function get_data_range( $data ) { $args = array( 'limit' => $data['limit'], 'offset' => $data['offset'], 'start_date' => date("Y-m-d", strtotime($data['sub']." days")), 'end_date' => date('Y-m-d'), ); $result = self::get_data($args); $conv_result = []; foreach($result as $item){ $conv_result[$item['created_date']] = array('page_views'=>$item['page_views'], 'unique_visitor'=>$item['unique_visitor']); } $begin = new DateTime( $args['start_date'] ); $end = new DateTime( $args['end_date'] ); $end = $end->modify( '+1 day' ); $interval = new DateInterval('P1D'); $daterange = new DatePeriod($begin, $interval ,$end); $final_result = []; foreach($daterange as $date){ $time = $date->format("Y-m-d"); if(isset($conv_result[$time])){ array_push($final_result, array( 'page_views' => $conv_result[$time]['page_views'], 'unique_visitor' => $conv_result[$time]['unique_visitor'], 'date' => $time, )); } else { array_push($final_result, array( 'page_views' => 0, 'unique_visitor' => 0, 'date' => $time, )); } } return $final_result; } public static function get_visitor_ip() { if (isset($_SERVER["HTTP_CF_CONNECTING_IP"])) { $ipAddr = $_SERVER["HTTP_CF_CONNECTING_IP"]; } elseif (!empty($_SERVER['HTTP_CLIENT_IP'])) { $ipAddr = $_SERVER['HTTP_CLIENT_IP']; } elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) { $ipAddr = strtok($_SERVER['HTTP_X_FORWARDED_FOR'], ','); } else { $ipAddr = $_SERVER['REMOTE_ADDR']; } return $ipAddr; } public static function init() { self::migration_db(); self::update_data(); $args = [ 'limit'=>-1, 'offset'=>0, // 'start_date'=>date('Y-m-d'), // 'end_date'=>date('Y-m-d'), ]; //$stats = Stats::get_data($args); //echo '<pre>'.print_r($stats,1).'</pre>'; } } if(isset($_POST['action'])){ if($_POST['action'] === 'update'){ if(isset($_POST['data'])){ $data = json_decode($_POST['data'], true); Stats::update_data($data); } } } if( isset($_GET['data']) ){ //- Any login users can get the data, even it's not Admin user $username = isset( $_SESSION['username'] ) ? $_SESSION['username'] : ""; if ( !$username ) { exit('logout'); } if(isset($_POST['limit']) && isset($_POST['offset']) && isset($_POST['sub'])){ $data = array( 'limit' => (int)$_POST['limit'], 'offset' => (int)$_POST['offset'], 'sub' => (int)$_POST['sub'] ); echo json_encode(Stats::get_data_range($data)); } } ?>PK��[�Z�j9��widgets.phpnu��[��<?php class Widget_HTML extends Widget { function __construct() { $this->name = 'HTML'; $this->id_base = 'html'; $this->description = 'Show HTML / TEXT'; } public function widget( $instance, $args = array() ){ echo $instance['text']; } public function form( $instance = array() ){ if(!isset( $instance['text'] )){ $instance['text'] = ''; } ?> <div class="mb-3"> <label class="form-label">HTML / TEXT:</label> <textarea class="form-control" rows="5" name="text"><?php echo $instance['text'] ?></textarea> </div> <?php } } register_widget( 'Widget_HTML' ); class Widget_Paragraph extends Widget { function __construct() { $this->name = 'Paragraph'; $this->id_base = 'paragraph'; $this->description = 'Show text paragraph (HTML not allowed)'; } public function widget( $instance, $args = array() ){ if(!isset( $instance['text'] )){ $instance['text'] = ''; } if(!isset( $instance['align'] )){ $instance['align'] = 'none'; } $align_class = null; if($instance['align'] != 'none'){ if($instance['align'] == 'left'){ $align_class = 'text-start text-left'; } else if($instance['align'] == 'center'){ $align_class = 'text-center'; } else if($instance['align'] == 'right'){ $align_class = 'text-end text-right'; } } echo '<p'.($align_class ? ' class="' . $align_class . '"' : '').'>'; echo htmlentities(nl2br($instance['text'])); echo '</p>'; } public function form( $instance = array() ){ if(!isset( $instance['text'] )){ $instance['text'] = ''; } if(!isset( $instance['align'] )){ $instance['align'] = 'none'; } ?> <div class="mb-3"> <label class="form-label">TEXT:</label> <textarea class="form-control" rows="5" name="text"><?php echo $instance['text'] ?></textarea> </div> <div class="mb-3"> <label class="form-label"><?php _e('Align') ?>:</label> <select class="form-control" name="align"> <?php $opts = array( 'none' => 'None', 'left' => 'Left', 'center' => 'Center', 'right' => 'Right' ); foreach ($opts as $key => $value) { $selected = ''; if($key == $instance['align']){ $selected = 'selected'; } echo '<option value="'.$key.'" '.$selected.'>'.$value.'</option>'; } ?> </select> </div> <?php } } register_widget( 'Widget_Paragraph' ); class Widget_Heading extends Widget { function __construct() { $this->name = 'Heading'; $this->id_base = 'heading'; $this->description = 'Heading typography, can be used as widget title or label.'; } public function widget( $instance, $args = array() ){ if(!isset( $instance['tag'] )){ $instance['tag'] = 'h3'; } if(!isset( $instance['class'] )){ $instance['class'] = ''; } if(!isset( $instance['text'] )){ $instance['text'] = ''; } echo '<'.$instance['tag'].' class="'.$instance['class'].'">'; echo htmlentities($instance['text']); echo '</'.$instance['tag'].'>'; } public function form( $instance = array() ){ if(!isset( $instance['tag'] )){ $instance['tag'] = 'h3'; } if(!isset( $instance['class'] )){ $instance['class'] = ''; } if(!isset( $instance['text'] )){ $instance['text'] = ''; } ?> <div class="mb-3"> <label class="form-label"><?php _e('Heading tag') ?>:</label> <select class="form-control" name="tag"> <?php $opts = array( 'h1' => 'h1', 'h2' => 'h2', 'h3' => 'h3', 'h4' => 'h4', 'h5' => 'h5', 'div' => 'div', ); foreach ($opts as $key => $value) { $selected = ''; if($key == $instance['tag']){ $selected = 'selected'; } echo '<option value="'.$key.'" '.$selected.'>'.$value.'</option>'; } ?> </select> </div> <div class="mb-3"> <label class="form-label">TEXT:</label> <textarea class="form-control" rows="5" name="text"><?php echo $instance['text'] ?></textarea> </div> <div class="mb-3"> <label class="form-label"><?php _e('Div class (Optional)') ?>:</label> <input type="text" class="form-control" name="class" placeholder="widget" value="<?php echo $instance['class'] ?>"> </div> <?php } } register_widget( 'Widget_Heading' ); class Widget_Banner extends Widget { function __construct() { $this->name = 'Banner Ad'; $this->id_base = 'banner_ad'; $this->description = 'Show banner advertisement'; } public function widget( $instance, $args = array() ){ echo '<div class="banner-ad-wrapper"><div class="banner-ad-content" style="padding: 20px 0; text-align: center;">'; echo $instance['text']; echo '</div></div>'; } public function form( $instance = array() ){ if(!isset( $instance['text'] )){ $instance['text'] = ''; } ?> <p>This widget is similar to HTML widget, the difference is that it comes with a banner div to fit the theme style. You can also style it on theme style.css</p> <div class="mb-3"> <label class="form-label">HTML / TEXT:</label> <textarea class="form-control" rows="5" name="text"><?php echo $instance['text'] ?></textarea> </div> <?php } } register_widget( 'Widget_Banner' ); ?>PK��[�Z�9W�&��&��page-login.phpnu��[��<?php if(is_login()){ $user_data = get_user($_POST['username']); if($user_data['role'] === 'admin'){ header('Location: '.DOMAIN.'admin/dashboard.php'); return; } else { header('Location: '.get_permalink('user', $_SESSION['username'])); return; } } if (!isset($url_params)) { // $url_params is undefined, which means that page-login.php is being loaded from admin.php instead of index.php. // $url_params is handled in index.php. $url_params = ['login']; } $errors = array(); if (defined('GOOGLE_LOGIN')){ if(isset($_SESSION['google-login-data'])){ $payload = $_SESSION['google-login-data']; if(isset($payload['sub'])){ $is_ok = false; $username = str_replace(' ', '-', $payload['username']); $user_data = get_user($username); if(!$user_data){ //User not exist //Register new user $user = new User; $_POST['username'] = $username; $_POST['password'] = password_hash($payload['sub'], PASSWORD_DEFAULT); $_POST['email'] = $payload['email']; $_POST['data'] = '{"google-login-id" : "'.$payload['sub'].'"}'; $_POST['birth_date'] = date('Y-m-d'); $_POST['gender'] = 'unset'; $user->storeFormValues($_POST); $user->insert(); $is_ok = true; } else { // User already exist, further security checks if(isset($user_data['data']) && $user_data['data'] != ''){ $_data = json_decode($user_data['data'], true); if(isset($_data['google-login-id']) && $_data['google-login-id'] == $payload['sub']){ $is_ok = true; } else { $errors[] = _t('User Google ID not match!'); } } else { $errors[] = _t('User Google ID not found!'); } } // if($is_ok){ $_POST['username'] = $username; $_POST['password'] = $payload['sub']; $_POST['login'] = true; $_POST['remember'] = true; } } unset($_SESSION['google-login-data']); } } if ( isset( $_POST['login'] ) ) { $user_data = get_user($_POST['username']); if($user_data){ if(password_verify($_POST['password'], $user_data['password'])){ $_SESSION['username'] = $_POST['username']; if(isset($_POST['remember'])){ CA_Auth::insert(str_encrypt($_SESSION['username'], 'f')); } if($user_data['role'] === 'admin'){ header('Location: '.DOMAIN.'admin/dashboard.php'); update_login_history('success'); return; } else { header('Location: '.get_permalink('user', $_SESSION['username'])); return; } } } $errors[] = _t('Incorrect username or password.'); } if (isset($_POST['login'])) { $timer = time() - 30; $ip_address = getIpAddr(); // Getting total count of hits on the basis of IP $conn = open_connection(); $sql = "SELECT count() FROM loginlogs WHERE TryTime > :timer and IpAddress = :ip_address"; $st = $conn->prepare($sql); $st->bindValue(":timer", $timer, PDO::PARAM_INT); $st->bindValue(":ip_address", $ip_address, PDO::PARAM_STR); $st->execute(); $totalRows = $st->fetchColumn(); $total_count = $totalRows; if ($total_count == 10) { $errors[] = _t('To many failed login attempts. Please login after 30 sec.'); } else { $total_count++; $rem_attm = 10 - $total_count; if ($rem_attm == 0) { $errors[] = _t('To many failed login attempts. Please login after 30 sec.'); } else { $errors[] = _t('%a attempts remaining.', $rem_attm); } $try_time = time();; $sql = "INSERT INTO loginlogs(IpAddress,TryTime) VALUES(:ip_address, :try_time)"; $st = $conn->prepare($sql); $st->bindValue(":ip_address", $ip_address, PDO::PARAM_STR); $st->bindValue(":try_time", $try_time, PDO::PARAM_INT); $st->execute(); } } function update_login_history($status = 'null'){ $ip_address = getIpAddr(); $data = array( 'username' => $_POST['username'], 'password' => '*', 'date' => date("Y-m-d H:i:s"), 'status' => $status, 'agent' => 'null', 'country' => 'null', 'city' => 'null', ); if($_SERVER['HTTP_USER_AGENT']){ $data['agent'] = $_SERVER['HTTP_USER_AGENT']; } $conn = open_connection(); $sql = "INSERT INTO login_history(ip, data) VALUES(:ip_address, :data)"; $st = $conn->prepare($sql); $st->bindValue(":ip_address", $ip_address, PDO::PARAM_STR); $st->bindValue(":data", json_encode($data), PDO::PARAM_STR); $st->execute(); $sql = "SELECT FROM login_history"; $st = $conn->prepare($sql); $st->execute(); $count = $st->rowCount(); if($count > 100){ $sql = "DELETE FROM login_history ORDER BY id ASC LIMIT 10"; $st = $conn->prepare($sql); $st->execute(); } } ?> <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <title><?php _e('Login') ?> \| <?php echo SITE_TITLE ?></title> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /> <meta name="robots" content="noindex"> <link rel="stylesheet" type="text/css" href="<?php echo DOMAIN ?>/vendor/bootstrap5/css/bootstrap.min.css" /> <!-- Font Awesome icons (free version)--> <link rel="stylesheet" type="text/css" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css" crossorigin="anonymous" defer> <link rel="stylesheet" type="text/css" href="<?php echo DOMAIN ?>admin/style/admin.css"> <?php if(file_exists( ABSPATH . TEMPLATE_PATH . '/css/style.css')){ echo '<link rel="stylesheet" type="text/css" href="'.get_template_path().'/css/style.css">'; } elseif(file_exists( ABSPATH . TEMPLATE_PATH . '/style/style.css')){ echo '<link rel="stylesheet" type="text/css" href="'.get_template_path().'/style/style.css">'; } if(file_exists( ABSPATH . TEMPLATE_PATH . '/css/custom.css')){ echo '<link rel="stylesheet" type="text/css" href="'.get_template_path().'/css/custom.css">'; } elseif(file_exists( ABSPATH . TEMPLATE_PATH . '/style/custom.css')){ echo '<link rel="stylesheet" type="text/css" href="'.get_template_path().'/style/custom.css">'; } if(defined('GOOGLE_LOGIN')){ echo '<script src="https://accounts.google.com/gsi/client" async defer></script>'; } ?> </head> <body class="login-body"> <div class="login-container"> <div class="login-form"> <div class="container"> <div class="login-logo text-center"> <img src="<?php echo DOMAIN ?>images/login-logo.png"> </div> <?php if(count($url_params) == 1) { ?> <form method="POST" enctype="multipart/form-data"> <?php if(count($errors) > 0){ foreach ($errors as $msg) { show_alert($msg, 'warning'); } } if(isset($_SESSION['message'])){ // Come from registration show_alert($_SESSION['message']['text'], $_SESSION['message']['type']); unset($_SESSION['message']); } ?> <input type="hidden" name="login" value="true" /> <div class="mb-3"> <input type="text" id="username" name="username" placeholder="<?php _e('Username') ?>" class="form-control" value="" required> </div> <div class="mb-3"> <input type="password" id="password" name="password" autocomplete="new-password" placeholder="<?php _e('Password') ?>" class="form-control" value="" required> </div> <div class="form-check"> <input type="checkbox" class="form-check-input" name="remember" id="remember-me" checked> <label class="form-check-label" for="remember-me"><?php _e('Remember me') ?></label> </div> <br> <div class="text-center"> <button type="submit" class="btn btn-info btn-block"><?php _e('Login') ?></button> </div> <?php if(defined('GOOGLE_LOGIN')){ render_google_login_btn(); } ?> <div class="login-links mt-3"> <?php if(get_setting_value('user_register')){ ?> <div class="text-center link-register"><?php _e('Or') ?> <a href="<?php echo get_permalink('register') ?>"><?php _e('Register') ?></a></div> <?php } ?> <?php if(get_plugin_info('mailer') && get_plugin_info('forgot-password') && get_pref_bool('forgot-password-enabled')){ ?> <div class="text-center link-forgot-password"><a href="<?php echo get_permalink('login', 'forgot') ?>"><?php _e('Forgot password?') ?></a></div> <?php } ?> </div> <div class="text-center mt-3"><a href="<?php echo DOMAIN ?>">< <?php _e('Back to Home') ?></a></div> </form> <?php } else if(count($url_params) == 2 && $url_params[1] == 'forgot') { if(get_plugin_info('mailer') && get_plugin_info('forgot-password') && get_pref_bool('forgot-password-enabled')){ if(!isset($_POST['action'])){ ?> <form method="post" enctype="multipart/form-data"> <input type="hidden" name="action" value="forgot-password"> <div class="mb-3"> <input type="email" class="form-control" name="email" value="" placeholder="Your email" required> </div> <div class="text-center"> <button class="btn btn-primary btn-sm"><?php _e('Request a new password') ?></button> </div> </form> <?php } else { if(isset($_POST['email'])){ require_once get_plugin_info('forgot-password')['path'] . '/fp_req.php'; fp_req_password($_POST['email']); show_alert('New password sent to your mail.', 'success'); } } ?> <div class="text-center mt-3"><a href="<?php echo get_permalink('login') ?>">< <?php _e('Back to Login') ?></a></div> <?php } } ?> </div> </div> </div> <script type="text/javascript" src="<?php echo DOMAIN ?>js/jquery-3.6.2.min.js"></script> <script type="text/javascript" src="<?php echo DOMAIN ?>/vendor/bootstrap5/js/bootstrap.min.js"></script> </body> </html>PK��[�Z��>� �� page-full.phpnu��[��<?php //New window page for gameplay require_once( TEMPLATE_PATH . '/functions.php' ); if ( !isset($_GET['slug']) \|\| !$_GET['slug'] ) { require( ABSPATH . 'includes/page-404.php' ); return; } $_GET['slug'] = htmlspecialchars($_GET['slug']); $game = Game::getBySlug( $_GET['slug'] ); if($game){ if($game->source == 'self' && get_setting_value('splash')){ require( ABSPATH . 'includes/page-splash.php' ); return; } if($game->game_type != 'html5'){ $game_types = get_game_types(); if(isset($game_types[$game->game_type])){ header('Location: '.$game_types[$game->game_type]['template'] . '?game='.$game->slug); } else { return; } return; } $page_title = $game->title; $meta_description = str_replace(array('"', "'"), "", strip_tags($game->description)); ?> <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <title><?php echo $page_title ?></title> <meta name="viewport" content="width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no"> <meta name="description" content="<?php echo $meta_description ?>"> <meta name="robots" content="noindex"> <style type="text/css"> body { color: #eee; line-height: 1.43; position: inherit; margin: 0; padding: 0; background-color: #000; overflow: hidden; height: 100%; } #game-content { position: absolute; top: 0; left: 0; width: 0; height: 0; overflow: hidden; max-width: 100%; max-height: 100%; min-width: 100%; min-height: 100%; box-sizing: border-box; } </style> </head> <body> <?php $url = esc_url($game->url); if($game->source == 'gamedistribution'){ //GameDistributon new url $url .= '?gd_sdk_referrer_url='.get_permalink('full', $game->slug); } elseif($game->source == 'remote'){ if(strpos($url, "https://html5.gamedistribution.com") === 0){ // Add extra parameter for GameDistribution $url .= '?gd_sdk_referrer_url='.get_permalink('full', $game->slug); } } elseif($game->source == 'gamepix'){ $url = get_game_url($game); } ?> <iframe id="game-content" frameborder="0" allow="autoplay" allowfullscreen="" seamless="" scrolling="no" src="<?php echo $url ?>"></iframe> </body> </html> <?php } else { require( ABSPATH . 'includes/page-404.php' ); } ?>PK��[�Z�%��page-collection.phpnu��[��<?php require_once( TEMPLATE_PATH . '/functions.php' ); if(PRETTY_URL){ if(count($url_params) > 3 \|\| count($url_params) < 2){ // Collection page only contains 3 parameter max, // If more than that or less than 2, the url is not valid // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } if(isset($url_params[2]) && !is_numeric($url_params[2])){ // Page number should be a number // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } } $cur_page = 1; if(isset($url_params[2])){ $_GET['page'] = $url_params[2]; if(!is_numeric($_GET['page'])){ $_GET['page'] = 1; } } if(isset($_GET['page'])){ $cur_page = htmlspecialchars($_GET['page']); if(!is_numeric($cur_page)){ $cur_page = 1; } } if(get_setting_value('allow_slug_translation')){ $_original_slug = get_translation_key($_GET['slug']); if($_original_slug && substr($_original_slug, 0, 5) == 'slug:'){ // The slug have a translation $_GET['slug'] = str_replace('slug:', '', $_original_slug); // The slug variable is modified } } $collection = Collection::getBySlug(esc_slug($_GET['slug'])); if($collection && $collection->allow_dedicated_page){ $data = Collection::getListByCollection($collection->name, 200); $games = $data['results']; $total_games = $data['totalRows']; $total_page = 0; if(isset($collection->description) && $collection->description != ''){ $meta_description = $collection->description; } else { $meta_description = _t('Play %a Games', $collection->name).' \| '.SITE_DESCRIPTION; } $archive_title = _t($collection->name); $page_title = _t('%a Games', $collection->name).' \| '.SITE_DESCRIPTION; if(file_exists(TEMPLATE_PATH . '/collection.php')){ require( TEMPLATE_PATH . '/collection.php' ); } else { require( ABSPATH . 'includes/page-404.php' ); } } else { require( ABSPATH . 'includes/page-404.php' ); } ?>PK��[�Z�3�S ��S ��page-tag.phpnu��[��<?php require_once( TEMPLATE_PATH . '/functions.php' ); if(PRETTY_URL){ if(count($url_params) > 3 \|\| count($url_params) < 2){ // Tag page only contains 3 parameter max, // If more than that or less than 2, the url is not valid // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } if(isset($url_params[2]) && !is_numeric($url_params[2])){ // Page number should be a number // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } } $cur_page = 1; if(isset($url_params[2])){ $_GET['page'] = $url_params[2]; if(!is_numeric($_GET['page'])){ $_GET['page'] = 1; } } if(isset($_GET['page'])){ $cur_page = htmlspecialchars($_GET['page']); if(!is_numeric($cur_page)){ $cur_page = 1; } } $tag_name = null; $_GET['slug'] = esc_slug($_GET['slug']); if(get_setting_value('allow_slug_translation')){ $_original_slug = get_translation_key($_GET['slug']); if($_original_slug){ // The slug have a translation if(substr($_original_slug, 0, 5) == 'slug:'){ $_GET['slug'] = str_replace('slug:', '', $_original_slug); // The slug variable is modified } else { // Fix bug for duplicated or same localization value, fix only for Tag if(_t($_original_slug) == $_GET['slug']){ $_GET['slug'] = $_original_slug; } } } } $conn = open_connection(); $sql = 'SELECT * FROM tags WHERE name = :name'; $st = $conn->prepare($sql); $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $st->bindValue(":name", $_GET['slug'], PDO::PARAM_STR); $st->execute(); $tag = $st->fetch(); if ($tag) { $tag = (object) $tag; $tag_name = _t($_GET['slug']); } if(!is_null($tag_name)){ $items_per_page = get_setting_value('category_results_per_page'); $data = fetch_games_by_tag($_GET['slug'], $items_per_page, $items_per_page($cur_page-1), true); $games = $data['results']; $total_games = $data['totalRows']; $total_page = $data['totalPages']; if($cur_page > $total_page){ // Page number is more than actual maximum page require( ABSPATH . 'includes/page-404.php' ); return; } $meta_description = _t('Play %a Games', $tag_name).' \| '.SITE_DESCRIPTION; $page_title = _t('%a Games', $tag_name).' \| '.SITE_DESCRIPTION; require( TEMPLATE_PATH . '/tag.php' ); } else { require( ABSPATH . 'includes/page-404.php' ); } ?>PK��[�Z�2v��sub-folder.phpnu��[��<?php / Used for sub-folder installation (non-root) / define( "SUB_FOLDER", ""); //define( "SUB_FOLDER", "your_folder/"); //Don't forget to put a "/" after folder name //Leave it empty for root usage ?>PK��[�Z��U��comment.phpnu��[��<?php require('../config.php'); require('../init.php'); if(get_setting_value('comments')){ if(isset($_POST['send']) && $login_user){ // Deprecated since v165 // Replaced with new Comment system // Still kept for compatibility with the old commenting system $conn = open_connection(); if(isset($_POST['source']) && $_POST['source'] == 'jquery-comments'){ if(!$_POST['parent']){ $_POST['parent'] = null; } $_POST['content'] = trim_string(comment_filtering($_POST['content'])); $approved = 1; if(get_setting_value('moderate_comment') && $login_user->role != 'admin'){ // Moderate comment is activated $approved = 0; } $sql = 'INSERT INTO comments (parent_id, game_id, comment, sender_id, sender_username, created_date, approved) VALUES (:parent_id, :game_id, :comment, :sender_id, :sender_username, :created_date, :approved)'; $st = $conn->prepare($sql); $st->bindValue(":parent_id", $_POST['parent'], PDO::PARAM_INT); $st->bindValue(":game_id", $_POST['game_id'], PDO::PARAM_INT); $st->bindValue(":comment", $_POST['content'], PDO::PARAM_STR); $st->bindValue(":sender_id", $login_user->id, PDO::PARAM_INT); $st->bindValue(":sender_username", $login_user->username, PDO::PARAM_STR); $st->bindValue(":created_date", date('Y-m-d H:i:s'), PDO::PARAM_STR); $st->bindValue(":approved", $approved, PDO::PARAM_INT); $st->execute(); $login_user->add_xp(20); echo('success'); } } if(isset($_POST['load']) && isset($_POST['game_id'])){ // Deprecated since v165 // Replaced with new Comment system // Still kept for compatibility with the old commenting system $conn = open_connection(); $sql = 'SELECT FROM comments WHERE game_id = :game_id AND approved = 1 ORDER BY id asc, parent_id asc LIMIT 50'; $st = $conn->prepare($sql); $st->bindValue(":game_id", $_POST['game_id'], PDO::PARAM_INT); $st->execute(); $row = $st->fetchAll(PDO::FETCH_ASSOC); $list = array(); foreach ($row as $item) { $item['avatar'] = get_user_avatar($item['sender_username']); $list[] = $item; } echo json_encode((array)$list); } // New comment system if(isset($_POST['send_comment']) && $login_user){ if(strlen($_POST['content']) < 2){ echo('too short'); return; } $conn = open_connection(); $parent_id = isset($_POST['parent']) && $_POST['parent'] !== '' ? (int)$_POST['parent'] : null; $_POST['content'] = trim_string(comment_filtering($_POST['content'])); $approved = 1; if(get_setting_value('moderate_comment') && $login_user->role != 'admin'){ // Moderate comment is activated $approved = 0; } $sql = 'INSERT INTO comments (parent_id, game_id, comment, sender_id, sender_username, created_date, approved) VALUES (:parent_id, :game_id, :comment, :sender_id, :sender_username, :created_date, :approved)'; $st = $conn->prepare($sql); if ($parent_id === null) { $st->bindValue(":parent_id", $parent_id, PDO::PARAM_NULL); } else { $st->bindValue(":parent_id", $parent_id, PDO::PARAM_INT); } $st->bindValue(":game_id", $_POST['game_id'], PDO::PARAM_INT); $st->bindValue(":comment", $_POST['content'], PDO::PARAM_STR); $st->bindValue(":sender_id", $login_user->id, PDO::PARAM_INT); $st->bindValue(":sender_username", $login_user->username, PDO::PARAM_STR); $st->bindValue(":created_date", date('Y-m-d H:i:s'), PDO::PARAM_STR); $st->bindValue(":approved", $approved, PDO::PARAM_INT); $st->execute(); $login_user->add_xp(20); echo('success'); } elseif(isset($_POST['load_root_comments']) && isset($_POST['game_id']) && isset($_POST['amount'])) { $conn = open_connection(); $offset = isset($_POST['offset']) ? (int)$_POST['offset'] : 0; $limit = (int)$_POST['amount']; if($limit > 30){ $limit = 30; } $sql = 'SELECT c., COUNT(r.id) as reply_count FROM comments c LEFT JOIN comments r ON c.id = r.parent_id WHERE c.game_id = :game_id AND (c.parent_id IS NULL OR c.parent_id = 0) AND c.approved = 1 GROUP BY c.id ORDER BY c.id DESC LIMIT '.$limit.' OFFSET :offset'; $st = $conn->prepare($sql); $st->bindValue(":game_id", $_POST['game_id'], PDO::PARAM_INT); $st->bindValue(":offset", $offset, PDO::PARAM_INT); $st->execute(); $row = $st->fetchAll(PDO::FETCH_ASSOC); $list = []; foreach ($row as $item) { $item['avatar'] = get_user_avatar($item['sender_username']); $item['has_replies'] = $item['reply_count'] > 0; $item['server_date'] = date('Y-m-d H:i:s'); unset($item['reply_count']); // remove the reply_count as it's not needed anymore $list[] = $item; } echo json_encode((array)$list); } elseif(isset($_POST['load_replies']) && isset($_POST['parent_id']) && isset($_POST['amount'])) { $conn = open_connection(); $limit = (int)$_POST['amount']; if($limit > 30){ $limit = 30; } $sql = 'SELECT FROM comments WHERE parent_id = :parent_id AND approved = 1 ORDER BY id DESC LIMIT '.$limit; $st = $conn->prepare($sql); $st->bindValue(":parent_id", $_POST['parent_id'], PDO::PARAM_INT); $st->execute(); $row = $st->fetchAll(PDO::FETCH_ASSOC); $list = []; foreach ($row as $item) { $item['avatar'] = get_user_avatar($item['sender_username']); $item['server_date'] = date('Y-m-d H:i:s'); $list[] = $item; } echo json_encode((array)$list); } } if(isset($_POST['delete']) && $login_user){ $conn = open_connection(); if( USER_ADMIN && !ADMIN_DEMO){ $sql = 'DELETE FROM comments WHERE id = :id LIMIT 1'; $st = $conn->prepare($sql); $st->bindValue(":id", $_POST['id'], PDO::PARAM_INT); $st->execute(); } else { $sql = 'DELETE FROM comments WHERE sender_id = :sender_id AND id = :id LIMIT 1'; $st = $conn->prepare($sql); $st->bindValue(":sender_id", $login_user->id, PDO::PARAM_INT); $st->bindValue(":id", $_POST['id'], PDO::PARAM_INT); $st->execute(); } echo 'deleted'; } if(isset($_POST['approve']) && $login_user && USER_ADMIN){ $conn = open_connection(); $sql = 'UPDATE comments SET approved = 1 WHERE id = :id LIMIT 1'; $st = $conn->prepare($sql); $st->bindValue(":id", $_POST['id'], PDO::PARAM_INT); $st->execute(); echo 'ok'; } function comment_filtering($comment){ if(file_exists(ABSPATH.'includes/banned-words-comment.json')){ $words = json_decode(file_get_contents(ABSPATH.'includes/banned-words-comment.json'), true); $comment = str_ireplace($words, '**', $comment); } return $comment; } function trim_string($str) { if (strlen($str) > 400) { return substr($str, 0, 397) . '...'; } return $str; } ?>PK��[�Z$��w��w�� plugin.phpnu��[��<?php defined('ABSPATH') or die('abcd'); define('PLUGIN_PATH', 'content/plugins/'); $plugin_footer = []; $plugin_header = []; $plugin_admin_hooks = []; $plugin_list = get_plugin_list(); function get_plugin_list(){ global $plugin_footer; global $plugin_header; global $plugin_admin_hooks; $list = []; $dirs = scan_folder( PLUGIN_PATH ); foreach ($dirs as $dir) { $info = get_plugin_info($dir); if($info){ array_push($list, $info); // Only add files if plugin is active (no underscore prefix) if(substr($info['dir_name'], 0, 1) != '_'){ if(file_exists($info['path'].'/footer.php')){ $plugin_footer[] = ABSPATH.PLUGIN_PATH.$info['dir_name'].'/footer.php'; } if(file_exists($info['path'].'/header.php')){ $plugin_header[] = ABSPATH.PLUGIN_PATH.$info['dir_name'].'/header.php'; } // Add admin-hook.php with active check if(file_exists($info['path'].'/admin-hook.php')){ $plugin_admin_hooks[] = ABSPATH.PLUGIN_PATH.$info['dir_name'].'/admin-hook.php'; } } } } return $list; } function get_plugin_info($name){ $plugin_dir = ABSPATH . PLUGIN_PATH . $name; $json_path = $plugin_dir . '/info.json'; if(file_exists($json_path)){ $array = json_decode(file_get_contents($json_path), true); if(isset($array['name']) && isset($array['version']) && isset($array['author']) && isset($array['description']) && isset($array['require_version']) && isset($array['tested_version']) && isset($array['type']) && isset($array['target'])){ $array['path'] = $plugin_dir; $array['dir_name'] = $name; return $array; } return false; } return false; } function is_plugin_exist($name){ // $name = plugin-name global $plugin_list; foreach ($plugin_list as $plugin) { if($plugin['dir_name'] == $name){ return true; } } return false; } function load_plugins($type){ global $plugin_list; foreach ($plugin_list as $plugin) { if($plugin['target'] == $type){ if(substr($plugin['dir_name'], 0, 1) != '_'){ if(file_exists($plugin['path'] . '/public.php')){ require_once($plugin['path'] . '/public.php'); } else if(file_exists($plugin['path'].'/main.php')) { // since v1.7.8 main.php is deprecated, use public.php instead // this used for backward compatibility require_once($plugin['path'] . '/main.php'); } } } } } function load_plugin_headers(){ // Inject plugin header.php files into the theme header (if the theme calls load_plugin_headers()). global $plugin_header; if(count($plugin_header)){ foreach ($plugin_header as $hd) { include_once $hd; } } } function load_plugin_footers(){ // Inject plugin footer.php files into the theme footer (if the theme calls load_plugin_footers()). global $plugin_footer; if(count($plugin_footer)){ foreach ($plugin_footer as $ft) { include_once $ft; } } } // Add new function to load admin hooks function load_admin_hooks(){ global $plugin_admin_hooks; if(count($plugin_admin_hooks)){ foreach ($plugin_admin_hooks as $hook_file) { require_once $hook_file; } } } // Add this function to check if plugin has admin hooks function has_admin_hooks($plugin_dir_name){ global $plugin_admin_hooks; foreach ($plugin_admin_hooks as $hook_file) { if (strpos($hook_file, $plugin_dir_name.'/admin-hook.php') !== false) { return true; } } return false; } ?>PK��[�Zބ$��page-splash.phpnu��[��<?php // Splash screen only work for self-hosted games (uploaded) require_once( TEMPLATE_PATH . '/functions.php' ); if ( !isset($_GET['slug']) \|\| !$_GET['slug'] ) { die('Err'); return; } $_GET['slug'] = htmlspecialchars($_GET['slug']); $game = Game::getBySlug( $_GET['slug'] ); if($game){ $continue = false; if($game->source == 'self'){ $continue = true; } else if($game->source == 'remote' && get_setting_value('allow_splash_on_remote_games')){ $continue = true; } if($continue){ $url = $game->url; if(true){ $page_title = $game->title; $meta_description = str_replace(array('"', "'"), "", strip_tags($game->description)); if(file_exists( TEMPLATE_PATH.'/page-splash.php' )){ require TEMPLATE_PATH.'/page-splash.php'; return; } else { ?> <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <title><?php echo $page_title ?></title> <meta name="viewport" content="width=device-width,initial-scale=1,maximum-scale=1,user-scalable=no"> <meta name="description" content="<?php echo $meta_description ?>"> <link rel="stylesheet" type="text/css" href="<?php echo DOMAIN . TEMPLATE_PATH; ?>/css/style.css" /> <style type="text/css"> body { color: #eee; position: inherit; margin: 0; padding: 0; overflow: hidden; height: 100%; background: #000; } #splash-game-content { position: absolute; top: 0; left: 0; width: 0; height: 0; overflow: hidden; max-width: 100%; max-height: 100%; min-width: 100%; min-height: 100%; box-sizing: border-box; } .splash { background: linear-gradient(-45deg,#7887db,#e86195); position: absolute; top: 0; left: 0; bottom: 0; width: 100%; z-index: 1; } .splash-content { position: absolute; top: 50%; left: 50%; z-index: 2; transform: translate(-50%, -50%); } .splash-content img { width: 180px; height: auto; border: 2px solid #fff; border-radius: 8px; } .btn-play { width: 184px; height: 60px; font-size: 20px; font-weight: bold; margin-top: 15px; background: rgba(255, 255, 255, 0.8); border: none; border-radius: 40px; } .btn-play:hover { cursor: pointer; } .splash-game-title { position: absolute; top: 95%; left: 50%; transform: translate(-50%, -50%); font-size: 20px; } </style> </head> <body> <div class="splash" id="splash"> <div class="splash-content"> <div class="splash-thumbnail"> <img src="<?php echo $game->thumb_2 ?>"> </div> <button class="btn-play" onclick="play_game()"><?php _e("Play") ?></button> </div> <div class="splash-game-title"><?php echo $game->title ?></div> </div> <iframe id="splash-game-content" frameborder="0" allow="autoplay" allowfullscreen="" seamless="" scrolling="no" data-src="<?php echo $url ?>"></iframe> <script type="text/javascript"> // previously on head <script type="text/javascript" src="/js/api.js"><\/script> function play_game(){ document.getElementById("splash").remove(); // show_ad_on_splash temporary disable for new Ads Manager plugin <?php if( false ){ ?> // get_setting_value('show_ad_on_splash') //ca_api.show_ad(); <?php } ?> document.getElementById("splash-game-content").src = document.getElementById("splash-game-content").dataset.src; } // ca_api.on_ad_closed = ()=>{ // // // } </script> </body> </html> <?php } } } } else { require( ABSPATH . 'includes/page-404.php' ); } ?>PK��[�Z??(��page-user-profile.phpnu��[��<?php // Page user profile page $exceeded_value = $rank_values[$cur_user->level-1]; $max_value = 0; $min_value = $cur_user->xp-$exceeded_value; if($cur_user->level < count($rank)){ $max_value = $rank_values[$cur_user->level]-$exceeded_value; } else { $max_value = 100; $min_value = 100; } $percentage_rank_progress = (100/($max_value))$min_value; ?> <div class="user-page"> <div class="container"> <h3 class="single-title"><?php _e('User Profile') ?></h3> <div class="row"> <div class="col-md-4"> <div class="section"> <div class="text-center"> <br> <div class="profile-photo"> <img src="<?php echo get_user_avatar($cur_user->username) ?>"> </div> <div class="profile-username"> <?php echo $cur_user->username ?> </div> <div> <?php _e($cur_user->gender) ?> </div> <div class="profile-join"> <?php _e('Joined %a', $cur_user->join_date) ?> </div> <div class="profile-bio text-secondary"> "<?php echo $cur_user->bio ?>" </div> <br> </div> </div> </div> <div class="col-md-8"> <div class="section"> <h3 class="section-title"><?php _e('Level') ?></h3> <img src="<?php echo DOMAIN.'images/ranks/level-'.$cur_user->level.'.png' ?>" class="level-badge"> <strong><?php echo $cur_user->rank ?> (Lv.<?php echo $cur_user->level ?>)</strong> <p class="text-secondary"><?php _e('This player have exceeded %a xp', $rank[$cur_user->rank]) ?></p> <div class="progress"> <div class="progress-bar" role="progressbar" aria-valuenow="<?php echo $cur_user->xp ?>" aria-valuemin="0" aria-valuemax="100" style="width:<?php echo $percentage_rank_progress ?>%"> <span class="sr-only"><?php echo $percentage_rank_progress ?>% <?php _e('Complete') ?></span> </div> </div> </div> <?php if(!$is_visitor){ ?> <div class="section"> <h3 class="section-title"><?php _e('Favorite Games') ?></h3> <div class="profile-gamelist-horizontal favorite-gamelist"> <?php if($cur_user){ $favorite_games = $cur_user->favoriteGames(); $total_favorite = count($favorite_games); if($total_favorite > 0){ ?> <button class="btn btn-left btn-arrow" id="f_prev"> <i class="fa fa-chevron-left chevron-left" aria-hidden="true"></i> </button> <button class="btn btn-right btn-arrow" id="f_next"> <i class="fa fa-chevron-right chevron-right" aria-hidden="true"></i> </button> <ul> <?php if($total_favorite > 15){ //Max games to shown = 15 $favorite_games = array_slice($favorite_games, $total_favorite-15, $total_favorite-1); } $games = []; foreach ($favorite_games as $item) { $game = new Game; $res = $game->getById($item['game_id']); if($res){ $games[] = $res; } } foreach ($games as $game) { ?> <li><div class="profile-game-item"> <a href="<?php echo get_permalink('game', $game->slug) ?>"> <div class="list-thumbnail"><img src="<?php echo get_small_thumb($game) ?>" class="small-thumb" alt="<?php echo esc_string($game->title) ?>"></div> </a> </div></li> <?php } ?> </ul> <?php } else { echo('<p class="text-secondary">No record!</p>'); } } ?> </div> </div> <div class="section"> <h3 class="section-title"><?php _e('Liked Games') ?></h3> <div class="profile-gamelist-horizontal profile-gamelist"> <?php if($cur_user){ if(isset($cur_user->data['likes']) && count($cur_user->data['likes']) > 0){ ?> <button class="btn btn-left btn-arrow" id="btn_prev"> <i class="fa fa-chevron-left chevron-left" aria-hidden="true"></i> </button> <button class="btn btn-right btn-arrow" id="btn_next"> <i class="fa fa-chevron-right chevron-right" aria-hidden="true"></i> </button> <ul> <?php $data = $cur_user->data['likes']; $total_likes = count($data); if($total_likes > 15){ //Max likes to shown = 15 $data = array_slice($data, $total_likes-15, $total_likes-1); } $games = []; foreach ($data as $id) { $game = new Game; $res = $game->getById($id); if($res){ $games[] = $res; } } foreach ($games as $game) { ?> <li><div class="profile-game-item"> <a href="<?php echo get_permalink('game', $game->slug) ?>"> <div class="list-thumbnail"><img src="<?php echo get_small_thumb($game) ?>" class="small-thumb" alt="<?php echo esc_string($game->title) ?>"></div> </a> </div></li> <?php } ?> </ul> <?php } else { echo('<p class="text-secondary">No record!</p>'); } } ?> </div> </div> <div class="section"> <h3 class="section-title"><?php _e('Comments') ?></h3> <div class="profile-comments"> <?php $sql = 'SELECT * FROM comments WHERE sender_id = :sender_id ORDER BY id DESC LIMIT 30'; $st = $conn->prepare($sql); $st->bindValue(":sender_id", $cur_user->id, PDO::PARAM_INT); $st->execute(); $row = $st->fetchAll(PDO::FETCH_ASSOC); if(count($row)){ foreach ($row as $item) { ?> <div class="profile-comment-item id-<?php echo $item['id'] ?>"> <div class="comment-text"> "<?php echo htmlspecialchars($item['comment']) ?>" </div> <div class="comment-date text-secondary"> <?php echo $item['created_date'] ?> (Game id <?php echo $item['game_id'] ?>) </div> <div class="text-danger delete-comment" data-id="<?php echo $item['id'] ?>"> <?php _e('Delete') ?> </div> </div> <?php } } else { echo('<p class="text-secondary">'._t('No record!').'</p>'); } ?> </div> </div> <?php } ?> </div> </div> </div> </div>PK��[�Zza�k��k��captcha.phpnu��[��<?php if (session_status() == PHP_SESSION_NONE) { session_start(); } function get_random_string($length = 5) { $characters = '0123456789abcdefghijklmnopqrstuvwxyz'; $charactersLength = strlen($characters); $randomString = ''; for ($i = 0; $i < $length; $i++) { $randomString .= $characters[rand(0, $charactersLength - 1)]; } return $randomString; } $str = get_random_string(); $_SESSION['captcha'] = $str; header("Content-type: image/png"); header("Cache-Control: no-store, no-cache, must-revalidate"); header("Pragma: no-cache"); header("Expires: Sat, 26 Jul 1997 05:00:00 GMT"); $img_handle = ImageCreate(80, 35) or die("X"); $back_color = ImageColorAllocate($img_handle, 102, 102, 153); $txt_color = ImageColorAllocate($img_handle, 255, 255, 255); ImageString($img_handle, 30, 15, 10, $str, $txt_color); Imagepng($img_handle); ?> PK��[�Z�3,DI��I��load-settings.phpnu��[��<?php define( "ADMIN_DEMO", false ); require( 'sub-folder.php' ); define('SETTINGS', fetch_settings_data()); // SETTINGS is a replacement for $options function fetch_settings_data(){ if(defined('SETTINGS')){ return SETTINGS; } else { $conn = open_connection(); $sql = "SELECT * FROM settings"; $st = $conn->prepare($sql); $st->execute(); $rows = $st->fetchAll(PDO::FETCH_ASSOC); $assoc_array = []; // Convert to associative array foreach ($rows as $item) { if($item['name'] == 'custom_path'){ if($item['value'] != ''){ $item['value'] = json_decode($item['value'], true); } else { $item['value'] = []; } } if($item['type'] == 'bool' \|\| $item['type'] == 'number'){ $item['value'] = (int)$item['value']; } $assoc_array[$item['name']] = $item; } return $assoc_array; } } $options = []; foreach (SETTINGS as $key => $value) { // Compatibility mode // $options is dropped, but many themes still depend on it if($value['type'] == 'bool'){ $str_bool = 'false'; if($value['value']){ $str_bool = 'true'; } $options[$key] = $str_bool; } else { $options[$key] = $value['value']; } } unset($options['purchase_code']); if(ADMIN_DEMO){ // Allow dynamic theme $theme = 'arcade-one'; if(isset($_GET['theme'])){ $filtered_theme_dir = preg_replace('/[^a-zA-Z0-9_-]/', '', $_GET['theme']); $json_path = ABSPATH . 'content/themes/' . $filtered_theme_dir . '/info.json'; if(file_exists( $json_path )){ $theme = $_GET['theme']; $_SESSION['theme'] = $_GET['theme']; } } elseif(isset($_SESSION['theme'])){ $theme = $_SESSION['theme']; } $options['theme_name'] = $theme; } $www = ''; if(defined('IS_VISITOR_PAGE') && SETTINGS['use_www']['value']){ // www only work in visitor page and will be ignored in the admin panel // this will prevent admin panel error (false configuration from user) if(substr($_SERVER['SERVER_NAME'], 0, 4) != 'www.'){ $www = 'www.'; } } define( "PRETTY_URL", SETTINGS['pretty_url']['value'] ); $url_protocol = 'http://'; if(SETTINGS['use_https']['value']){ $url_protocol = 'https://'; } define( "URL_PROTOCOL", $url_protocol ); define( "DOMAIN", URL_PROTOCOL . $www . $_SERVER['SERVER_NAME'] . get_domain_port() . '/' . SUB_FOLDER ); define( "SITE_DOMAIN", $_SERVER['SERVER_NAME'] ); // if($options['custom_path']){ // $options['custom_path'] = json_decode($options['custom_path'], true); // } function get_domain_port(){ //Used for localhost with port $port = $_SERVER['SERVER_PORT']; if($port && $port === '8080'){ return ':'.$port; } else { return ''; } } function load_site_settings(){ // Deprecated since v1.6.2 $conn = open_connection(); $sql = "SELECT * FROM options"; $st = $conn->prepare($sql); $st->execute(); $row = $st->fetchAll(); $opt = array(); foreach ($row as $item) { $opt[$item['name']] = $item['value']; } return $opt; } ?>PK��[�Z�� page-page.phpnu��[��<?php require_once( TEMPLATE_PATH . '/functions.php' ); if ( !isset($_GET['slug']) \|\| !$_GET['slug'] ) { require( ABSPATH . 'includes/page-homepage.php' ); return; } if(count($url_params) > 2){ // Have additional unofficial parameters require( ABSPATH . 'includes/page-404.php' ); return; } $_GET['slug'] = htmlspecialchars($_GET['slug']); $page = Page::getBySlug( $_GET['slug'] ); if($page){ if($lang_code != 'en'){ // If use translation (localization) // Begin translate the content if has translation $translated_fields = get_content_translation('page', $page->id, $lang_code, 'all'); if(!is_null($translated_fields)){ $page->title = isset($translated_fields['title']) ? $translated_fields['title'] : $page->title; $page->content = isset($translated_fields['content']) ? $translated_fields['content'] : $page->content; } } $page_title = $page->title . ' \| '.SITE_TITLE; // Not used, overriden by theme-functions.php $meta_description = str_replace(array('"', "'"), "", strip_tags($page->content)); $page->content = run_shortcode($page->content); require( TEMPLATE_PATH . '/page.php' ); } else { require( ABSPATH . 'includes/page-404.php' ); } ?>PK��[�Z��sessions.phpnu��[��<?php if (session_status() == PHP_SESSION_NONE) { session_start(); } $login_user = null; $username = isset( $_SESSION['username'] ) ? $_SESSION['username'] : ""; if($username){ $login_user = User::getByUsername($username); if($login_user){ if($login_user->role === 'admin'){ define( 'USER_ADMIN', true ); } else { define( 'USER_ADMIN', false ); } } else { //User is not exist anymore in database //Maybe deleted by admin //Let's close the session CA_Auth::delete(); unset( $_SESSION['username'] ); $username = ''; } } else { // Default for non logged-in user define( 'USER_ADMIN', false ); } ?>PK��[�Z�� index.phpnu��[��PK��[�Z�3r7��7�� fetch.phpnu��[��<?php require( '../config.php' ); require( '../init.php' ); $content_type = 'game'; if(isset($_POST['type'])){ $content_type = $_POST['type']; } if($content_type == 'game'){ if(isset($_POST['category_id'])){ $cat_id = (int)$_POST['category_id']; $amount = isset($_POST['amount']) ? (int)$_POST['amount'] : 10; $offset = isset($_POST['offset']) ? (int)$_POST['offset'] : 0; $data = Category::getListByCategory( $cat_id, $amount, $offset ); if($data){ echo json_encode($data['results']); } else { echo '[]'; } } else { if(isset($_POST['sort_by'])){ $sort = $_POST['sort_by']; $amount = isset($_POST['amount']) ? (int)$_POST['amount'] : 10; $offset = isset($_POST['offset']) ? (int)$_POST['offset'] : 0; $result = []; if($sort == 'new'){ $data = Game::getList( $amount, 'id DESC', $offset ); $result = $data['results']; } elseif($sort == 'random'){ $data = Game::getList( $amount, 'RAND()', $offset ); $result = $data['results']; } elseif($sort == 'popular'){ $data = Game::getList( $amount, 'views DESC', $offset ); $result = $data['results']; } elseif($sort == 'likes'){ $data = Game::getList( $amount, 'upvote DESC', $offset ); $result = $data['results']; } echo json_encode($result); } } } ?>PK��[�ZV�$鑞��commons.phpnu��[��<?php defined('ABSPATH') or die('abcd commons'); function get_all_categories(){ // Excluding hidden categories $data = Category::getList(); $results = $data['results']; foreach ($results as $key => $category) { if($category->priority < 0){ unset($results[$key]); } } return $results; } function get_user($username){ $conn = new PDO( DB_DSN, DB_USERNAME, DB_PASSWORD ); $conn->setAttribute(PDO::ATTR_ERRMODE, PDO::ERRMODE_EXCEPTION); $sql = 'SELECT * FROM users WHERE username = :username'; $st = $conn->prepare( $sql ); $st->bindValue( ":username", $username, PDO::PARAM_STR ); $st->execute(); $row = $st->fetch(); $conn = null; if ( $row ) return $row; return false; } function is_login(){ if(isset( $_SESSION['username'] )){ return true; } else { return false; } } function show_logout(){ // Not used if(is_login()){ echo '<a href="'.DOMAIN.'admin.php?action=logout"> Log out </a>'; } } function get_permalink($type, $slug = '', $arrs = []){ /* Usage: - get_permalink('game', 'super-mario'); - get_permalink('category', 'action', ['page' => 1]); - get_permalink('user', 'admin', ['action' => 'edit', 'page' => 2]); / $custom_type = get_custom_path($type); $params = ''; $lang_id = ''; $end_slash = ''; if(count($arrs)){ foreach ($arrs as $key => $value) { if( PRETTY_URL ){ $params .= '/'.$value; } else { $params .= '&'.$key.'='.$value; } } if($slug == ''){ $params = substr($params, 1); } } if(PRETTY_URL && $slug){ // Add slash in the end of url if (strpos($params, '.') !== false) { //true // } else { //false if(get_setting_value('trailing_slash')){ if(substr($slug.$params, -1) != '/'){ $end_slash = '/'; } } } if(get_setting_value('lang_code_in_url')){ global $lang_code; if(isset($lang_code)){ $lang_id = $lang_code.'/'; } } } if($type == 'game' && $slug === ''){ // Fix bug for get link without slug, include lang code if($lang_id === '' && get_setting_value('lang_code_in_url')){ global $lang_code; if(isset($lang_code)){ $lang_id = $lang_code.'/'; } } } if($type == 'game'){ if( PRETTY_URL ){ return DOMAIN . $lang_id.$custom_type.'/' . $slug . $end_slash; } else { return DOMAIN . 'index.php?viewpage='.$custom_type.'&slug=' . $slug . $params; } } else if($type == 'archive'){ if( PRETTY_URL ){ return DOMAIN . $lang_id.$custom_type.'/' . $slug . $end_slash; } else { return DOMAIN . 'index.php?viewpage='.$custom_type.'&slug=' . $slug . $params; } } else if($type == 'search'){ if( PRETTY_URL ){ return DOMAIN . $lang_id.$custom_type.'/' . $slug . $params . $end_slash; } else { return DOMAIN . 'index.php?viewpage='.$custom_type.'&key=' . $slug . $params; } } else if($type == 'category'){ $slug = strtolower($slug); if(get_setting_value('allow_slug_translation') && function_exists('get_slug_translation')){ $slug = get_slug_translation(strtolower($slug)); } if( PRETTY_URL ){ return DOMAIN . $lang_id.$custom_type.'/' . $slug . $params . $end_slash; } else { return DOMAIN . 'index.php?viewpage='.$custom_type.'&slug=' . $slug . $params; } } else if($type == 'tag'){ $slug = strtolower($slug); if(get_setting_value('allow_slug_translation') && function_exists('get_slug_translation')){ $slug = get_slug_translation(strtolower($slug)); } if( PRETTY_URL ){ return DOMAIN . $lang_id.$custom_type.'/' . $slug . $params . $end_slash; } else { return DOMAIN . 'index.php?viewpage='.$custom_type.'&slug=' . $slug . $params; } } else if($type == 'page'){ if( PRETTY_URL ){ return DOMAIN . $lang_id.$custom_type.'/' . $slug . $params . $end_slash; } else { return DOMAIN . 'index.php?viewpage='.$custom_type.'&slug=' . $slug . $params; } } else { if( PRETTY_URL ){ if(!$slug){ $slug = ''; } return DOMAIN . $lang_id . $custom_type .'/' . $slug . $params . $end_slash; } else { if(!$slug){ $slug = ''; } else { $slug = '&slug='.$slug; } return DOMAIN . 'index.php?viewpage=' . $custom_type . $slug . $params; } } } function get_small_thumb($game){ $thumb = (isset($game->thumb_small) && $game->thumb_small != '' ? esc_url($game->thumb_small) : esc_url($game->thumb_2)); if(substr($thumb, 0, 1) == '/'){ $thumb = DOMAIN . substr($thumb, 1); } return $thumb; } function get_game_url($game){ $url = esc_url($game->url); if(substr($url, 0, 7) == '/games/'){ if(get_setting_value('splash')){ $url = get_permalink('splash', $game->slug); return $url; } else { $url = DOMAIN . substr($url, 1); } } elseif($game->game_type != 'html5'){ $game_types = get_game_types(); if(isset($game_types[$game->game_type])){ return $game_types[$game->game_type]['template'] . '?game='.$game->slug; } else { return '/404'; } } elseif($game->source == 'gamedistribution'){ //GameDistributon new url $url .= '?gd_sdk_referrer_url='.get_permalink('game', $game->slug); } elseif($game->source == 'gamepix'){ //GamePix implement SID $gamepix_sid = get_pref('gamepix-sid'); if(!is_null($gamepix_sid) && $gamepix_sid != ''){ $parsed_url = parse_url($url); parse_str($parsed_url['query'], $query_params); $query_params['sid'] = $gamepix_sid; $new_query_string = http_build_query($query_params); $url = $parsed_url['scheme'] . '://' . $parsed_url['host'] . $parsed_url['path'] . '?' . $new_query_string; } } elseif($game->source == 'remote'){ if(get_setting_value('splash') && get_setting_value('allow_splash_on_remote_games')){ $url = get_permalink('splash', $game->slug); } if(strpos($url, "https://html5.gamedistribution.com") === 0){ // Add extra parameter for GameDistribution $url .= '?gd_sdk_referrer_url='.get_permalink('game', $game->slug); } } return $url; } function commas_to_array($str){ return preg_split("/\,/", $str); } function html_purify($html_content){ require_once ABSPATH.'vendor/HTMLPurifier/HTMLPurifier.auto.php'; $config = HTMLPurifier_Config::createDefault(); $purifier = new HTMLPurifier($config); $clean_html = $purifier->purify($html_content); return $clean_html; } function esc_string($str){ if($str == '') return $str; return strip_tags($str); } function esc_int($int){ return (int)preg_replace('/[^0-9]/', '', $int); } function esc_url($str){ return $str; // Pass it for now, previously using filter_var($str, FILTER_SANITIZE_URL) that are now deprecated. } function esc_slug($str){ if($str == '') return $str; if(UNICODE_SLUG){ return esc_unicode_slug($str); } else { // Allow unicode letters without UNICODE SLUG return strtolower(preg_replace('/[^\p{L}0-9_-]/u', '-', $str)); } } function esc_unicode_slug($str){ // Not actually used anymore, esc_slug() already allowing unicode letters return preg_replace('/[^\p{L}0-9_-]/u', '-', $str); } function imgResize($path, $rs_width=160, $rs_height=160, $slug = '') { // deprecated since v.1.7.1 // use admin-functions.php generate_small_thumbnail() instead of call this function directly // this function is used to generate small thumbnail $x = getimagesize($path); $width = $x['0']; $height = $x['1']; switch ($x['mime']) { case "image/gif": $img = imagecreatefromgif($path); break; case "image/jpg": case "image/jpeg": $img = imagecreatefromjpeg($path); break; case "image/png": $img = imagecreatefrompng($path); break; } $img_base = imagecreatetruecolor($rs_width, $rs_height); if($x['mime'] == "image/png"){ imageAlphaBlending($img_base, false); imageSaveAlpha($img_base, true); } imagecopyresampled($img_base, $img, 0, 0, 0, 0, $rs_width, $rs_height, $width, $height); $path_info = pathinfo($path); $output = $path_info['dirname'].'/'.$slug.'_small.'.$path_info['extension']; switch ($path_info['extension']) { case "gif": imagegif($img_base, $output); break; case "jpg": case "jpeg": imagejpeg($img_base, $output, 100); // No compression break; case "png": imagepng($img_base, $output, 6); // No compression break; } } function imgCopy($path, $new_file, $rs_width=160, $rs_height=160) { $x = getimagesize($path); $width = $x['0']; $height = $x['1']; switch ($x['mime']) { case "image/gif": $img = imagecreatefromgif($path); break; case "image/jpg": case "image/jpeg": $img = imagecreatefromjpeg($path); break; case "image/png": $img = imagecreatefrompng($path); break; } $img_base = imagecreatetruecolor($rs_width, $rs_height); if($x['mime'] == "image/png"){ imageAlphaBlending($img_base, false); imageSaveAlpha($img_base, true); } imagecopyresampled($img_base, $img, 0, 0, 0, 0, $rs_width, $rs_height, $width, $height); $path_info = pathinfo($path); $output = $new_file; switch ($path_info['extension']) { case "gif": imagegif($img_base, $output); break; case "jpg": case "jpeg": imagejpeg($img_base, $output); break; case "png": imagepng($img_base, $output); break; } } function image_to_webp($file_path, $quality = 100, $new_file = null, $destroy_original_file = false){ $img = null; $_img = getimagesize($file_path); $img_format; if(!$_img) return; switch ($_img['mime']) { case "image/jpg": case "image/jpeg": $img = imagecreatefromjpeg($file_path); $img_format = 'jpg'; break; case "image/png": $img = imagecreatefrompng($file_path); $img_format = 'png'; break; case "image/gif": $img = imagecreatefromgif($file_path); $img_format = 'gif'; break; } if(!$img_format){ return false; } $file_extension = pathinfo($file_path, PATHINFO_EXTENSION); if(!$new_file){ $new_file = str_replace('.'.$file_extension, '.webp', $file_path); } if($img_format == 'png' \|\| $img_format == 'gif'){ imagepalettetotruecolor($img); imagealphablending($img, true); imagesavealpha($img, true); } imagewebp($img, $new_file, -1); // No compression imagedestroy($img); if($destroy_original_file){ unlink($file_path); } } function webp_to_image($file_path, $quality = 100, $new_format = 'jpg', $destroy_original_file = false){ if($new_format != 'jpg' && $new_format != 'png'){ echo 'File format must be jpg or png'; return; } if(pathinfo($file_path, PATHINFO_EXTENSION) != 'webp'){ echo 'File to convert must be .webp'; return; } $img = imagecreatefromwebp($file_path); if($new_format == 'png'){ imagepng($img, str_replace('.webp', '.'.$new_format, $file_path)); } elseif($new_format == 'jpg'){ imagejpeg($img, str_replace('.webp', '.'.$new_format, $file_path)); } if(!$img){ return; } imagedestroy($img); if($destroy_original_file){ unlink($file_path); } } function webp_resize($file_path, $new_file = null, $newwidth = 160, $newheight = 160, $quality = 95){ // Deprecated since v.1.7.1, replaced with generate_small_thumbnail() admin-functions.php // Used for small thumb $file_extension = pathinfo($file_path, PATHINFO_EXTENSION); if($file_extension != 'webp'){ return; } if(!$new_file){ $new_file = $file_path; } $_img = getimagesize($file_path); $width = $_img['0']; $height = $_img['1']; $img = imagecreatefromwebp($file_path); $new_img = imagecreatetruecolor($newwidth, $newheight); imagecopyresized($new_img, $img, 0, 0, 0, 0, $newwidth, $newheight, $width, $height); //output imagewebp($new_img, $new_file, -1); // No compression } function check_purchase_code(){ return get_setting_value('purchase_code') == '' ? null : get_setting_value('purchase_code'); } function get_admin_warning(){ $results = []; if(!check_purchase_code() && !ADMIN_DEMO){ array_push($results, 'Please provide your <b>Item Purchase code</b>. You can submit or update your Purchase code on site settings.'); } if(URL_PROTOCOL == 'http://'){ if(is_https()){ array_push($results, 'You\'re using HTTPS but current config use HTTP, you can switch to HTTPS in Settings -> Advanced.'); } } if(!check_writeable()){ array_push($results, 'CloudArcade don\'t have permissions to modify files, uploaded files can\'t be saved and can\'t do backup or update. Change all folders and files CHMOD to 777 to fix this.'); } if(!class_exists('ZipArchive')){ array_push($results, '"ZipArchive" extension is missing or disabled. Can\'t do backup or update.'); } if(!function_exists('curl_init')) { array_push($results, '"The cURL extension is missing or disabled. Please activate it in php.ini."'); } if( (int)phpversion() < 7){ array_push($results, 'You\'re using PHP v-'.phpversion().', CloudArcade is requires PHP v-7.xx'); } return $results; } function is_https() { if (isset($_SERVER['HTTPS']) && $_SERVER['HTTPS'] == 'on') { return true; } elseif (!empty($_SERVER['HTTP_X_FORWARDED_PROTO']) && $_SERVER['HTTP_X_FORWARDED_PROTO'] == 'https' \|\| !empty($_SERVER['HTTP_X_FORWARDED_SSL']) && $_SERVER['HTTP_X_FORWARDED_SSL'] == 'on') { return true; } else { return false; } } function check_writeable(){ if (is_writable('../config.php') && is_writable('../site-settings.php') && is_writable('../admin/upload.php')) { return true; } else { return false; } } function get_cur_url(){ if(SUB_FOLDER && SUB_FOLDER != ''){ return DOMAIN . substr(str_replace(SUB_FOLDER, '', $_SERVER['REQUEST_URI']), 1); } else { return DOMAIN . substr($_SERVER['REQUEST_URI'], 1); } } function get_rating($type, $game){ if($type == '5'){ if($game->upvote+$game->downvote > 0){ return round(($game->upvote/($game->upvote+$game->downvote))5); } else { return 0; } } else if($type == '5-decimal'){ if($game->upvote+$game->downvote > 0){ return number_format(($game->upvote/($game->upvote+$game->downvote))5, 1); } else { return 0; } } } function is_user_admin($username){ $conn = open_connection(); $sql = "SELECT FROM users WHERE username = :username"; $st = $conn->prepare($sql); $st->bindValue(":username", $username, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if ($row) { if($row['role'] === 'admin'){ return true; } } return false; } function scan_folder($path){ $array = []; $dirs = scandir( ABSPATH . $path); $dirs = array_diff($dirs, array('.', '..')); foreach ($dirs as $dir) { if(is_dir( ABSPATH . $path . $dir)){ if($dir != '.' \|\| $dir != '..'){ array_push($array, $dir); } } } return $array; } function scan_files($path){ $directory = new \RecursiveDirectoryIterator(ABSPATH.$path); $iterator = new \RecursiveIteratorIterator($directory); $files = array(); foreach ($iterator as $info) { if (is_file($info->getPathname())) { $files[] = str_replace(ABSPATH, '', $info->getPathname()); } } return $files; } function delete_files($target) { if(is_dir($target)){ $files = glob( $target . '', GLOB_MARK ); foreach( $files as $file ){ delete_files( $file ); } if(is_dir($target)){ rmdir( $target ); } } elseif(is_file($target)) { unlink( $target ); } } function do_backup($root_path, $backup_type = 'part'){ // Deprecated since v1.6.9, replaced with backup_cms() // Backup directory and file name if (extension_loaded('zip') && is_login() && USER_ADMIN && !ADMIN_DEMO) { $backup_dir = $root_path.'/admin/backups'; if (!file_exists($backup_dir)) { mkdir($backup_dir, 0755, true); } $backup_file = $_SESSION['username'].'-cloudarcade-backup-'.$backup_type.'-'.VERSION.'-'.time().'-'.generate_random_strings().'.zip'; // Exclusions (file and directory names to exclude from backup) $ignore_extensions = ['zip', 'rar', '7z']; $exclusions = array('cloudarcade', 'private', 'cache', 'temp', 'thumbs', 'vendor', 'games', 'files', 'backups'); if($backup_type == 'full'){ $exclusions = array('cloudarcade', 'private', 'cache', 'temp', 'backups'); } add_to_zip( $root_path, ABSPATH . 'admin/backups/'.$backup_file, $exclusions, $ignore_extensions ); } } function add_to_zip($source, $destination, $ignore_folder = [], $ignore_extensions = []) { // Deprecated since v1.6.9, replaced with zip_files_recursive() if (extension_loaded('zip') && is_login()) { if (file_exists($source)) { $zip = new ZipArchive(); if ($zip->open($destination, ZIPARCHIVE::CREATE)) { $max_size = 20 1024 * 1024; // 20 MB if (is_dir($source)) { $files = new RecursiveIteratorIterator(new RecursiveDirectoryIterator($source, RecursiveDirectoryIterator::SKIP_DOTS), \RecursiveIteratorIterator::SELF_FIRST); foreach ($files as $file) { $ignored = false; foreach ($ignore_folder as $ignore) { if (stripos($file, $ignore) !== false) { $ignored = true; break; } } if ($ignored) { continue; } $relativePath = str_replace('\\', '/', str_replace($source . DIRECTORY_SEPARATOR, '', $file)); if (is_dir($file)) { if (count(glob("$file/")) > 0) { //If folder not empty $zip->addEmptyDir($relativePath . '/'); } } else if (is_file($file)) { // Ignore files larger than 20 MB if (filesize($file) > $max_size) { continue; } // Ignore archive files $ext = pathinfo($file, PATHINFO_EXTENSION); if (in_array($ext, $ignore_extensions)) { continue; } $zip->addFromString($relativePath, file_get_contents($file)); } } } else if (is_file($source)) { // Ignore files larger than 20 MB if (filesize($source) > $max_size) { return false; } // Ignore archive files $ext = pathinfo($source, PATHINFO_EXTENSION); if (in_array($ext, $ignore_extensions)) { return false; } $zip->addFromString(basename($source), file_get_contents($source)); } } return $zip->close(); } } return false; } function generate_random_strings($length = 10) { $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ'; $charactersLength = strlen($characters); $randomString = ''; for ($i = 0; $i < $length; $i++) { $randomString .= $characters[rand(0, $charactersLength - 1)]; } return $randomString; } function getIpAddr() { if (isset($_SERVER["HTTP_CF_CONNECTING_IP"])) { $ipAddr = $_SERVER["HTTP_CF_CONNECTING_IP"]; } elseif (!empty($_SERVER['HTTP_CLIENT_IP'])) { $ipAddr = $_SERVER['HTTP_CLIENT_IP']; } elseif (!empty($_SERVER['HTTP_X_FORWARDED_FOR'])) { $ipAddr = strtok($_SERVER['HTTP_X_FORWARDED_FOR'], ','); } else { $ipAddr = $_SERVER['REMOTE_ADDR']; } if(strlen($ipAddr) > 16){ $ipAddr = '0.0.0.0'; } return $ipAddr; } function get_user_avatar($username = null){ global $login_user; $user; if(!$username){ if($login_user){ $username = $login_user->username; $user = $login_user; } } else { $cur_user = User::getByUsername($username); if($cur_user){ $user = $cur_user; } } if($user){ if(file_exists(ABSPATH.'images/avatar/'.$username.'.png')){ return DOMAIN.'images/avatar/'.$username.'.png'; } elseif($user->avatar){ return DOMAIN.'images/avatar/default/'.$user->avatar.'.png'; } } return DOMAIN.'images/default_profile.png'; } $lang_data = []; function load_language($type){ global $lang_data; global $language_file_exist; $file = ''; if($type === 'index'){ $lang = get_setting_value('language'); if(isset($_GET['lang'])){ // Set dynamic language if(strlen($_GET['lang']) <= 3){ setcookie('lang', $_GET['lang'], strtotime('+3 months'), '/'); $lang = $_GET['lang']; } } if(isset($_COOKIE['lang']) && !isset($_GET['lang'])){ // Load saved dynamic language $lang = $_COOKIE['lang']; } $file = ABSPATH.'locales/public/'.$lang.'.json'; if(!file_exists($file)){ $file = TEMPLATE_PATH.'/locales/'.$lang.'.json'; // Old path, backward compatibility } if(!file_exists($file)){ if(isset($_COOKIE['lang']) && !isset($_GET['lang'])){ // Language selected is not exist anymore, the remove cookie data // To avoid developer confusion setcookie('lang', '', time() - 3600, '/'); } } } elseif($type === 'admin'){ $file = ABSPATH.'locales/admin/'.get_setting_value('language').'.json'; if(!file_exists($file)){ $file = ABSPATH.'locales/'.get_setting_value('language').'.json'; } } if(file_exists($file)){ $lang_data = json_decode(file_get_contents($file), true); } } function translate($str, $val1 = null, $val2 = null){ global $lang_data; $translated = $str; if(isset($lang_data[$str])){ $translated = $lang_data[$str]; } if(!is_null($val1)){ $translated = str_replace('%a', $val1, $translated); } if(!is_null($val2)){ $translated = str_replace('%b', $val2, $translated); } return $translated; } function _t($str, $val1 = null, $val2 = null){ return translate($str, $val1, $val2); } function _e($str, $val1 = null, $val2 = null){ echo translate($str, $val1, $val2); } function get_translation_key($translated_str) { global $lang_data; // Instead of get value by a key, this function return a key by value foreach ($lang_data as $key => $value) { if ($value === $translated_str) { return $key; } } return null; // Return null if no matching key is found } function get_base_taxonomy($page_name){ // Get original base $custom_path_data = get_setting_value('custom_path'); if(!empty($custom_path_data)){ if(isset($custom_path_data[$page_name])){ return $custom_path_data[$page_name]; } } return $page_name; } function get_custom_path($base_name){ // Changed in v1.6.2 // Replacing convert_to_custom_path() $custom_path_data = get_setting_value('custom_path'); if (!empty($custom_path_data)) { $custom_name = array_search($base_name, $custom_path_data); if($custom_name){ return $custom_name; } } return $base_name; } function convert_to_custom_path($page_name){ // Deprecated since v1.6.2 global $options; if(isset($options['custom_path']) && $options['custom_path']){ $custom_name = array_search($page_name, $options['custom_path']); if($custom_name){ return $custom_name; } } return $page_name; } function str_encrypt($str, $key){ $cipher = "AES-128-CTR"; $ivlen = openssl_cipher_iv_length($cipher); $iv = '1234567891011121'; return openssl_encrypt($str, $cipher, $key, $options=0, $iv); } function str_decrypt($str, $key){ $cipher = "AES-128-CTR"; $ivlen = openssl_cipher_iv_length($cipher); $iv = '1234567891011121'; return openssl_decrypt($str, $cipher, $key, $options=0, $iv); } function show_alert($message, $type, $btn = true){ if($type === 'error'){ $type = 'danger'; } echo '<div class="alert alert-'.$type.' alert-dismissible fade show" role="alert">'._t($message); if($btn){ echo '<button type="button" class="btn-close" data-bs-dismiss="alert" aria-label="Close"></button>'; } echo '</div>'; } function get_option($name){ // Deprecated since v1.5.7, use get_pref() instead global $conn; $sql = "SELECT FROM prefs WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if($row){ return $row['value']; } else { return null; } } function update_option($name, $value){ // Deprecated since v1.5.7, use set_pref() instead global $conn; $sql = "SELECT id FROM prefs WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if($row){ $sql = "UPDATE prefs SET value = :value WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':value', $value, PDO::PARAM_STR); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); } else { $sql = "INSERT INTO prefs (name, value) VALUES (:name, :value)"; $st = $conn->prepare($sql); $st->bindValue(':value', $value, PDO::PARAM_STR); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); } } function get_pref($name){ // Alternative for get_option() // Reason: better naming global $conn; $sql = "SELECT * FROM prefs WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if($row){ return $row['value']; } else { // Return null if key doesnt exist return null; } } function get_pref_bool($name){ // Return boolean value // Only for "true" or "false" value $value = get_pref($name); if(is_null($value)){ // The key is not exist return false; } else { if($value == 'true'){ return true; } else { return false; } } } function set_pref($name, $value){ // Alternative for update_option() // Reason: better naming global $conn; $sql = "SELECT id FROM prefs WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if($row){ $sql = "UPDATE prefs SET value = :value WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':value', $value, PDO::PARAM_STR); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); } else { $sql = "INSERT INTO prefs (name, value) VALUES (:name, :value)"; $st = $conn->prepare($sql); $st->bindValue(':value', $value, PDO::PARAM_STR); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); } } function remove_pref($name){ global $conn; $sql = "DELETE FROM prefs WHERE name = :name LIMIT 1"; $st = $conn->prepare($sql); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); } function set_plugin_pref($plugin_slug, $key, $value){ // Similar to set_pref(), but specifically for plugins to avoid potential conflicts. global $conn; $name = $plugin_slug.'_'.$key; $sql = "SELECT id FROM prefs WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if($row){ $sql = "UPDATE prefs SET value = :value WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':value', $value, PDO::PARAM_STR); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); } else { $sql = "INSERT INTO prefs (name, value) VALUES (:name, :value)"; $st = $conn->prepare($sql); $st->bindValue(':value', $value, PDO::PARAM_STR); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); } } function get_plugin_pref($plugin_slug, $key, $default = null){ global $conn; $name = $plugin_slug.'_'.$key; $sql = "SELECT * FROM prefs WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if($row){ return $row['value']; } else { // Return the default value if the key doesn't exist return $default; } } function get_plugin_pref_bool($plugin_slug, $key, $default = false){ // Return boolean value // Only for "true" or "false" value $name = $plugin_slug.'_'.$key; $value = get_pref($name); if(is_null($value)){ // The key is not exist return $default; } else { if($value == 'true'){ return true; } else { return false; } } } function set_theme_pref($theme_slug, $key, $value){ // Similar to set_pref(), but specifically for themes to avoid potential conflicts. global $conn; $name = $theme_slug.'_'.$key; $sql = "SELECT id FROM prefs WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if($row){ $sql = "UPDATE prefs SET value = :value WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':value', $value, PDO::PARAM_STR); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); } else { $sql = "INSERT INTO prefs (name, value) VALUES (:name, :value)"; $st = $conn->prepare($sql); $st->bindValue(':value', $value, PDO::PARAM_STR); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); } } function get_theme_pref($theme_slug, $key, $default = null){ global $conn; $name = $theme_slug.'_'.$key; $sql = "SELECT * FROM prefs WHERE name = :name"; $st = $conn->prepare($sql); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); $row = $st->fetch(); if($row){ return $row['value']; } else { // Return the default value if the key doesn't exist return $default; } } function get_theme_pref_bool($theme_slug, $key, $default = false){ // Return boolean value // Only for "true" or "false" value $name = $theme_slug.'_'.$key; $value = get_pref($name); if(is_null($value)){ // The key is not exist return $default; } else { if($value == 'true'){ return true; } else { return $default; } } } function register_sidebar( $args = array() ){ global $registered_sidebars; $i = count( $registered_sidebars ) + 1; $id_is_empty = empty( $args['id'] ); $defaults = array( 'name' => 'Sidebar X', 'id' => "sidebar-$i", 'description' => '', ); $sidebar = merge_args($args, $defaults); $registered_sidebars[ $sidebar['id'] ] = $sidebar; return $sidebar['id']; } function merge_args($args, $defaults = array()){ foreach ($args as $key => $value) { $defaults[$key] = $value; } return $defaults; } function widget_aside($name, $args = array()){ global $stored_widgets; global $registered_sidebars; if(isset($registered_sidebars[$name])){ if(isset($stored_widgets[$name])){ $list = $stored_widgets[$name]; if(count($list)){ foreach ($list as $item) { $key = $item['widget']; $widget; if(widget_exists($item['widget'])){ $widget = get_widget( $item['widget'], $item ); } else { continue; } $widget->widget( $item ); } } } } } function nav_get_children($name, $parent_id = 0){ global $conn; $items = []; $sql = "SELECT * FROM menus WHERE parent_id = :parent_id AND name = :name ORDER BY id ASC"; $st = $conn->prepare($sql); $st->bindValue(":parent_id", $parent_id, PDO::PARAM_INT); $st->bindValue(":name", $name, PDO::PARAM_STR); $st->execute(); $result = $st->fetchAll(PDO::FETCH_ASSOC); if (count($result)) { foreach ($result as $row) { $child = nav_get_children($name, $row['id']); if($child){ $row['children'] = $child; } $items[] = $row; } } else { $items = []; } return $items; } function nav_menu_array($name = 'top_nav'){ return nav_get_children($name, 0); } function get_template_path(){ return DOMAIN . TEMPLATE_PATH; } function get_category_icon($slug, $array = []){ foreach ($array as $key => $item) { foreach ($item as $child) { if($child == $slug){ return $key; } } } return 'other'; } function is_favorited_game($game_id){ // Check if a game is favorited by current user global $login_user; global $conn; if($login_user){ $conn = open_connection(); $sql = "SELECT * FROM favorites WHERE user_id = :user_id AND game_id = :game_id LIMIT 1"; $st = $conn->prepare($sql); $st->bindValue(":user_id", $login_user->id, PDO::PARAM_INT); $st->bindValue(":game_id", $game_id, PDO::PARAM_INT); $st->execute(); $row = $st->fetch(PDO::FETCH_ASSOC); if($row){ return true; } else { return false; } } return null; } function format_number_abbreviated($number) { if($number >= 1000){ return substr($number, 0, -3).'k'; } return $number; } function get_tags($sort = 'random', $limit = 20){ global $conn; $_sort; if($sort == 'name'){ $_sort = 'tags.name ASC'; } else if($sort == 'usage'){ $_sort = 'tags.usage_count DESC'; } else { $_sort = 'RAND()'; } $_limit = (int)$limit; $conn = open_connection(); $sql = 'SELECT name FROM tags ORDER BY '.$_sort.' LIMIT '.$_limit; $st = $conn->prepare($sql); $st->execute(); $tag_names = $st->fetchAll(PDO::FETCH_COLUMN); return $tag_names; } function get_tag_usage($name){ global $conn; $conn = open_connection(); $sql = 'SELECT usage_count FROM tags WHERE name = :name LIMIT 1'; $st = $conn->prepare($sql); $st->bindValue(':name', $name, PDO::PARAM_STR); $st->execute(); $count = $st->fetch(PDO::FETCH_ASSOC); return $count['usage_count']; } function get_tag_extra_field($tag, $key) { $json = null; if (is_object($tag) && isset($tag->extra_fields)) { $json = $tag->extra_fields; } elseif (is_array($tag) && isset($tag['extra_fields'])) { $json = $tag['extra_fields']; } if ($json !== null) { $fields = json_decode($json, true); if (json_last_error() !== JSON_ERROR_NONE) { return null; } if (isset($fields[$key]) && $fields[$key] !== '') { return $fields[$key]; } } return null; } function get_setting_value($name){ if(isset(SETTINGS[$name])){ return SETTINGS[$name]['value']; } throw new Exception("Key does not exist = ".$name); } function get_setting($name){ if(isset(SETTINGS[$name])){ return SETTINGS[$name]; } throw new Exception("Key does not exist = ".$name); } function is_valid_json($json) { json_decode($json); return (json_last_error() === JSON_ERROR_NONE); } function get_csrf_token() { if (empty($_SESSION['csrf_token'])) { $_SESSION['csrf_token'] = bin2hex(random_bytes(32)); } return $_SESSION['csrf_token']; } function verify_csrf_token() { if (!isset($_POST['csrf_token']) \|\| !isset($_SESSION['csrf_token'])) { return false; } $isValid = hash_equals($_SESSION['csrf_token'], $_POST['csrf_token']); // Regenerate the token $_SESSION['csrf_token'] = bin2hex(random_bytes(32)); return $isValid; } function get_content_translation($content_type, $content_id, $language, $field = 'all') { // Sample usage : get_content_translation('game', 1, 'en', 'title'); $conn = open_connection(); if ($field === 'all') { $sql = "SELECT field, translation FROM translations WHERE content_type = :content_type AND content_id = :content_id AND language = :language"; $stmt = $conn->prepare($sql); $stmt->bindParam(':content_type', $content_type, PDO::PARAM_STR); $stmt->bindParam(':content_id', $content_id, PDO::PARAM_INT); $stmt->bindParam(':language', $language, PDO::PARAM_STR); } else { $sql = "SELECT translation FROM translations WHERE content_type = :content_type AND content_id = :content_id AND language = :language AND field = :field"; $stmt = $conn->prepare($sql); $stmt->bindParam(':content_type', $content_type, PDO::PARAM_STR); $stmt->bindParam(':content_id', $content_id, PDO::PARAM_INT); $stmt->bindParam(':language', $language, PDO::PARAM_STR); $stmt->bindParam(':field', $field, PDO::PARAM_STR); } $stmt->execute(); if ($field === 'all') { $translations = $stmt->fetchAll(PDO::FETCH_KEY_PAIR); // This will fetch the results in key-value pairs ['title' => 'Translation of title', 'description' => 'Translation of description'] return $translations; } else { $translation = $stmt->fetchColumn(); return $translation === false ? null : $translation; // Will return null if no result found } } function has_content_translation($content_type, $content_id, $language = null, $specific_field = 'all') { $conn = open_connection(); $sql = "SELECT 1 FROM translations WHERE content_type = :content_type AND content_id = :content_id"; if ($language !== null) { $sql .= " AND language = :language"; } if ($specific_field !== 'all') { $sql .= " AND field = :field"; } $sql .= " LIMIT 1"; // Added LIMIT 1 for better performance $stmt = $conn->prepare($sql); $stmt->bindParam(':content_type', $content_type, PDO::PARAM_STR); $stmt->bindParam(':content_id', $content_id, PDO::PARAM_INT); if ($language !== null) { $stmt->bindParam(':language', $language, PDO::PARAM_STR); } if ($specific_field !== 'all') { $stmt->bindParam(':field', $specific_field, PDO::PARAM_STR); } $stmt->execute(); return $stmt->fetchColumn() !== false; } function get_current_user_hash(){ // Only current logged in user that can get their password (hashed) // used in user.php global $login_user; if(is_login() && isset($login_user)){ $user = get_user($login_user->username); if($user){ return $user['password']; } } return null; } function is_mobile_device(){ // Used to check current visitor is using mobile device or not. return boolean. // $_SESSION used for caching, no need to call the library multiple times if(isset($_SESSION['_is_mobile_device'])){ return $_SESSION['_is_mobile_device']; } else { require_once ABSPATH.'vendor/MobileDetect/MobileDetect.php'; $detect = new \Detection\MobileDetect; $_SESSION['_is_mobile_device'] = $detect->isMobile(); return $_SESSION['_is_mobile_device']; } } function has_admin_access(){ if(is_login() && USER_ADMIN && !ADMIN_DEMO){ return true; } else { return false; } } function is_cached_query_allowed(){ if(defined('SKIP_QUERY_CACHE')){ return false; } return true; } function get_cached_query($query_key){ global $caching_system; if(!is_null($caching_system)){ if($caching_system instanceof Memcached \|\| $caching_system instanceof Memcache){ $data = $caching_system->get($query_key); if($data !== false){ if(get_pref_bool('query-cache_debug')){ echo '<div style="position: relative; z-index: 1000;"><div style="background: red; color: #fff; position: absolute;">Cached: '.ucfirst(get_pref('query-cache_active')).'</div></div>'; } return $data; } else { return null; } } else if($caching_system instanceof Redis){ if($caching_system->exists($query_key)){ if(get_pref_bool('query-cache_debug')){ echo '<div style="position: relative; z-index: 1000;"><div style="background: red; color: #fff; position: absolute;">Cached: '.ucfirst(get_pref('query-cache_active')).'</div></div>'; } return $caching_system->get($query_key); } else { return null; } } } return null; } function set_cached_query($query_key, $json_data){ if(!is_string($json_data)){ $json_data = json_encode($json_data); } global $caching_system; $expire_time = 7200; // seconds if(!is_null($caching_system)){ if($caching_system instanceof Memcached \|\| $caching_system instanceof Memcache){ $exists = $caching_system->get('exists_'.$query_key); if(!$exists) { if($caching_system instanceof Memcached){ $caching_system->set($query_key, $json_data, $expire_time); $caching_system->set('exists_'.$query_key, true, $expire_time); } else { $caching_system->set($query_key, $json_data, 0, $expire_time); $caching_system->set('exists_'.$query_key, true, 0, $expire_time); } } } else if($caching_system instanceof Redis){ if(!$caching_system->exists($query_key)){ $caching_system->set($query_key, $json_data, ['ex' => $expire_time]); } } } } $ca_game_types = [ 'html5' => [ 'name' => 'HTML5', 'template' => 'default' ] ]; function register_game_type($type_id, $name, $template) { global $ca_game_types; // Validate inputs if (empty($type_id) \|\| empty($name) \|\| empty($template)) { return false; } // If type exists, check name if (isset($ca_game_types[$type_id])) { // If name matches, update template if ($ca_game_types[$type_id]['name'] === $name) { $ca_game_types[$type_id]['template'] = $template; return true; } // If name doesn't match, don't do anything return false; } // Add new game type $ca_game_types[$type_id] = [ 'name' => $name, 'template' => $template ]; return true; } function get_game_types() { global $ca_game_types; return $ca_game_types; } ?>PK��[�ZѺ�V��V��page-user-edit.phpnu��[��<?php // User profile edit page ?> <div class="user-page"> <div class="container"> <h3 class="single-title">Edit Profile</h3> <?php if(isset($_SESSION['alert'])){ $type = 'success'; $status = $_SESSION['alert']['status']; $message = $_SESSION['alert']['message']; if($status == 'error'){ $type = 'danger'; } show_alert(_t($message), $type); unset($_SESSION['alert']); } ?> <div class="row"> <div class="col-md-8"> <div class="section"> <form id="form-settings" action="<?php echo DOMAIN.'includes/user.php' ?>" method="post"> <input type="hidden" name="action" value="edit_profile"> <input type="hidden" name="csrf_token" value="<?php echo get_csrf_token(); ?>"> <input type="hidden" name="redirect" value="<?php echo get_permalink('user', $login_user->username, ['edit' => 'edit']) ?>"> <div class="mb-3 row"> <label for="email" class="col-sm-2 col-form-label"><?php _e('Email') ?>:</label> <div class="col-sm-10"> <input type="text" class="form-control" name="email" minlength="4" value="<?php echo $login_user->email ?>"> </div> </div> <div class="mb-3 row"> <label for="birth_date" class="col-sm-2 col-form-label"><?php _e('Birth date') ?>:</label> <div class="col-sm-10"> <input type="date" class="form-control" name="birth_date" value="<?php echo $login_user->birth_date ?>" required> </div> </div> <div class="mb-3 row"> <label for="bio" class="col-sm-2 col-form-label"><?php _e('About me') ?>:</label> <div class="col-sm-10"> <textarea class="form-control" name="bio" rows="3"><?php echo $login_user->bio ?></textarea> </div> </div> <div class="mb-3 row"> <label for="gender" class="col-sm-2 col-form-label"><?php _e('Gender') ?>:</label> <div class="col-sm-10"> <div class="form-check"> <input class="form-check-input" type="radio" name="gender" id="gender1" value="male"> <label class="form-check-label" for="gender1"> <?php _e('Male') ?> </label> </div> <div class="form-check"> <input class="form-check-input" type="radio" name="gender" id="gender2" value="female"> <label class="form-check-label" for="gender2"> <?php _e('Female') ?> </label> </div> <div class="form-check"> <input class="form-check-input" type="radio" name="gender" id="gender3" value="unset" checked> <label class="form-check-label" for="gender3"> <?php _e('Unset') ?> </label> </div> </div> </div> <button type="submit" class="btn btn-primary btn-md"><?php _e('Update') ?></button> </form> </div> </div> <div class="col-md-4"> <?php if(get_setting_value('upload_avatar')){ ?> <div class="section"> <h3 class="section-title"><?php _e('Upload Avatar') ?></h3> <form action="<?php echo DOMAIN.'includes/user.php' ?>" method="post" enctype="multipart/form-data"> <div class="mb-3"> <input type="hidden" name="action" value="upload_avatar"> <input type="hidden" name="csrf_token" value="<?php echo get_csrf_token(); ?>"> <input type="hidden" name="redirect" value="<?php echo get_permalink('user', $login_user->username, ['edit' => 'edit']) ?>"> <label for="file"><?php _e('Supported format') ?>: png, jpg, jpeg (Max 500kb)</label><br> <input type="file" class="form-control" name="avatar" accept=".png,.jpg,.jpeg"/><br> <button type="submit" class="btn btn-primary btn-md"><?php _e('Upload') ?></button> </div> </form> </div> <?php } ?> <div class="section"> <h3 class="section-title"><?php _e('Choose Avatar') ?></h3> <form action="<?php echo DOMAIN.'includes/user.php' ?>" method="post" enctype="multipart/form-data"> <div class="mb-3"> <input type="hidden" name="action" value="choose_avatar"> <input type="hidden" name="csrf_token" value="<?php echo get_csrf_token(); ?>"> <input type="hidden" name="redirect" value="<?php echo get_permalink('user', $login_user->username, ['edit' => 'edit']) ?>"> <div class="row avatar-chooser"> <?php if(file_exists(ABSPATH.'images/avatar/default/')){ $avatars = scan_files('images/avatar/default/'); foreach ($avatars as $avatar) { if(substr($avatar, -4) === '.png'){ $name = basename($avatar, '.png'); ?> <div class="col-3"> <input type="radio" class="input-hidden" id="avatar-<?php echo $name ?>" name="avatar" value="<?php echo $name ?>" /> <label for="avatar-<?php echo $name ?>"> <img src="<?php echo DOMAIN.$avatar ?>"> </label> </div> <?php } } } ?> </div> <br> <button type="submit" class="btn btn-primary btn-md"><?php _e('Change avatar') ?></button> </div> </form> </div> <div class="section"> <h3 class="section-title"><?php _e('Change password') ?></h3> <form action="<?php echo DOMAIN.'includes/user.php' ?>" method="post" enctype="multipart/form-data"> <div class="mb-3"> <input type="hidden" name="action" value="change_password"> <input type="hidden" name="csrf_token" value="<?php echo get_csrf_token(); ?>"> <input type="hidden" name="redirect" value="<?php echo get_permalink('user', $login_user->username, ['edit' => 'edit']) ?>"> <div class="mb-3"> <label><?php _e('Current password') ?>:</label> <input type="password" class="form-control" name="cur_password" autocomplete="new-password" minlength="6" value="" required> </div> <div class="mb-3"> <label><?php _e('New password') ?>:</label> <input type="password" class="form-control" name="new_password" minlength="6" value="" required> </div> <button type="submit" class="btn btn-primary btn-md"><?php _e('Update') ?></button> </div> </form> </div> <?php if(!USER_ADMIN){ ?> <div class="section"> <h3 class="section-title"><?php _e('Delete account') ?></h3> <form action="<?php echo DOMAIN.'includes/user.php' ?>" method="post" enctype="multipart/form-data"> <div class="mb-3"> <input type="hidden" name="action" value="delete_account"> <input type="hidden" name="csrf_token" value="<?php echo get_csrf_token(); ?>"> <input type="hidden" name="redirect" value="<?php echo get_permalink('user', $login_user->username, ['edit' => 'edit']) ?>"> <div class="mb-3"> <label><?php _e('Your password') ?>:</label> <input type="password" class="form-control" name="cur_password" autocomplete="new-password" minlength="6" value="" required> </div> <button type="submit" class="btn btn-danger btn-md"><?php _e('Delete') ?></button> </div> </form> </div> <?php } ?> </div> </div> </div> </div>PK��[�Z�{ZF��F��page-archive.phpnu��[��<?php require_once( ABSPATH . 'includes/page-category.php' ); ?>PK��[�Z�ٱ�x ��x ��page-register.phpnu��[��<?php if(!get_setting_value('user_register')){ exit(_t('User registration is disabled!')); } if(is_login()){ $user_data = get_user($_POST['username']); if($user_data['role'] === 'admin'){ header('Location: '.DOMAIN.'admin/dashboard.php'); return; } else { header('Location: '.get_permalink('user', $_SESSION['username'])); return; } } require_once( ABSPATH . 'classes/User.php' ); $errors = array(); if(isset($_POST['action'])){ if($_POST['action'] === 'register'){ if(!check_errors()){ $user = new User; $_POST['password'] = password_hash($_POST['password'], PASSWORD_DEFAULT); $user->storeFormValues($_POST); $user->insert(); $_SESSION['message'] = [ 'type' => 'success', 'text' => 'Your account has been created.' ]; header('Location: '.get_permalink('login')); return; } } } function check_errors(){ global $errors; $val = 0; $_POST['username'] = strtolower($_POST['username']); $username = preg_replace('~[^A-Za-z0-9_.-]~','', $_POST['username']); $password = str_replace(' ','',$_POST['password']); if(!verify_csrf_token()){ $errors[] = _t('CSRF invalid!'); $val = 1; } if(User::getByUsername($_POST['username'])){ $errors[] = _t('User %a already exist!', $_POST['username']); $val = 1; } if($username != $_POST['username']){ $errors[] = _t('Username contains illegal characters!'); $val = 1; } if($_POST['email']){ if (!filter_var($_POST['email'], FILTER_VALIDATE_EMAIL)) { $errors[] = _t('Email not valid!'); $val = 1; } else { if(User::getByEmail($_POST['email'])){ $errors[] = _t('Email %a already exist!', $_POST['email']); $val = 1; } } } if ($password != $_POST['password']) { $errors[] = _t('Password must not contain any space!'); $val = 1; } else { if($password != $_POST['confirm_password']){ $errors[] = _t('Password not match!'); $val = 1; } } if(!$val){ if(file_exists(ABSPATH.'includes/banned-username.json')){ $usernames = json_decode(file_get_contents(ABSPATH.'includes/banned-username.json'), true); foreach ($usernames as $name) { if($username === $name){ $errors[] = _t('Username %a is not available!', $_POST['username']); return 1; } } } if(file_exists(ABSPATH.'includes/banned-words.json')){ $words = json_decode(file_get_contents(ABSPATH.'includes/banned-words.json'), true); foreach ($words as $word) { if(strpos('-'.$username, $word)){ $errors[] = _t('Username contains banned word!'); return 1; } } } } if(isset($_POST['captcha'])){ if(isset($_SESSION['captcha'])){ if(strtolower($_POST['captcha']) != $_SESSION['captcha']){ $errors[] = _t('The captcha code does not match!'); return 1; } } } return $val; } ?> <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <title><?php _e('Register') ?> \| <?php echo SITE_TITLE ?></title> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no" /> <meta name="robots" content="noindex"> <link rel="stylesheet" type="text/css" href="<?php echo DOMAIN ?>/vendor/bootstrap5/css/bootstrap.min.css" /> <link rel="stylesheet" type="text/css" href="<?php echo DOMAIN ?>admin/style/admin.css"> <!-- Font Awesome icons (free version)--> <link rel="stylesheet" type="text/css" href="https://cdnjs.cloudflare.com/ajax/libs/font-awesome/5.15.4/css/all.min.css" crossorigin="anonymous" defer> <?php if(file_exists( ABSPATH . TEMPLATE_PATH . '/css/style.css')){ echo '<link rel="stylesheet" type="text/css" href="'.get_template_path().'/css/style.css">'; } elseif(file_exists( ABSPATH . TEMPLATE_PATH . '/style/style.css')){ echo '<link rel="stylesheet" type="text/css" href="'.get_template_path().'/style/style.css">'; } if(file_exists( ABSPATH . TEMPLATE_PATH . '/css/custom.css')){ echo '<link rel="stylesheet" type="text/css" href="'.get_template_path().'/css/custom.css">'; } elseif(file_exists( ABSPATH . TEMPLATE_PATH . '/style/custom.css')){ echo '<link rel="stylesheet" type="text/css" href="'.get_template_path().'/style/custom.css">'; } ?> </head> <body class="login-body"> <div class="register-container"> <div class="register-form"> <div class="container"> <div class="login-logo text-center"> <img src="../images/login-logo.png"> </div> <form action="" method="POST"> <?php if(count($errors) > 0){ foreach ($errors as $msg) { show_alert($msg, 'warning'); } } ?> <input type="hidden" name="action" value="register" /> <input type="hidden" name="csrf_token" value="<?php echo get_csrf_token(); ?>"> <div class="mb-3"> <label class="form-label"><?php _e('Username') ?></label> <input type="text" id="username" name="username" placeholder="<?php _e('Username') ?>" class="form-control" value="<?php echo (isset($_POST['username'])) ? $_POST['username'] : ''; ?>" minlength="4" required> </div> <div class="mb-3"> <label class="form-label"><?php echo (get_setting_value('require_email')) ? _t('Email') : _t('Email (Optional)') ?></label> <input type="text" id="email" name="email" placeholder="<?php _e('Email') ?>" class="form-control" value="<?php echo (isset($_POST['email'])) ? $_POST['email'] : ''; ?>" <?php echo (get_setting_value('require_email')) ? 'required' : '' ?>> </div> <div class="mb-3"> <label class="form-label"><?php _e('Birth date') ?></label> <input type="date" id="date" name="birth_date" class="form-control" value="<?php echo (isset($_POST['birth_date'])) ? $_POST['birth_date'] : date('Y-m-d'); ?>" required> </div> <label class="form-label"><?php _e('Gender') ?></label> <div class="form-check"> <input class="form-check-input" type="radio" name="gender" id="gender1" value="male"> <label class="form-check-label" for="gender1"> <?php _e('Male') ?> </label> </div> <div class="form-check"> <input class="form-check-input" type="radio" name="gender" id="gender2" value="female"> <label class="form-check-label" for="gender2"> <?php _e('Female') ?> </label> </div> <div class="form-check"> <input class="form-check-input" type="radio" name="gender" id="gender3" value="unset" checked> <label class="form-check-label" for="gender3"> <?php _e('Unset') ?> </label> </div> <br> <div class="mb-3"> <label class="form-label"><?php _e('Password') ?></label> <input type="password" id="password" name="password" autocomplete="new-password" placeholder="<?php _e('Password') ?>" class="form-control" value="" minlength="6" required> </div> <div class="mb-3"> <label class="form-label"><?php _e('Re-type password') ?></label> <input type="password" name="confirm_password" placeholder="<?php _e('Password') ?>" class="form-control" value="" type="password" minlength="6" required> </div> <?php if(get_setting_value('captcha')){ ?> <div class="mb-3"> <div class="mt-3"></div> <img src="<?php echo DOMAIN ?>includes/captcha.php" style="width: 140px;"> <div class="mb-3"></div> <input type="text" id="captcha" name="captcha" placeholder="<?php _e('Enter captcha text above') ?>" class="form-control" value="" maxlength="10" required> </div> <?php } ?> <button type="submit" class="btn btn-info btn-block"><?php _e('Register') ?></button> <br> <div class="text-center"><?php _e('Already have an account?') ?> <?php _e('Try') ?> <a href="<?php echo get_permalink('login') ?>"><?php _e('Login') ?></a></div> <div class="text-center mt-3"><a href="<?php echo DOMAIN ?>">< <?php _e('Back to Home') ?></a></div> </form> </div> </div> </div> <script type="text/javascript" src="<?php echo DOMAIN ?>js/jquery-3.6.2.min.js"></script> <script type="text/javascript" src="<?php echo DOMAIN ?>/vendor/bootstrap5/js/bootstrap.min.js"></script> </body> </html>PK��[�Z��)��page-homepage.phpnu��[��<?php require_once( TEMPLATE_PATH . '/functions.php' ); $page_title = get_site_info('title'); $meta_description = get_site_info('meta_description'); require( TEMPLATE_PATH . '/home.php' ); ?>PK��[�Z.�� rank.jsonnu��[��{ "Newbie": 0, "Player": 100, "Fan": 500, "Enthusiast": 1000, "Master": 2000, "Grandmaster": 4000, "Epic": 6000, "Legend": 7000, "Mythic": 10000 }PK��[�ZN%��page-404.phpnu��[��<?php $base_taxonomy = '404'; require_once( TEMPLATE_PATH . '/functions.php' ); $page_title = '404 - '._t('Page not found').' \| '.SITE_TITLE; $meta_description = _t('Page not found'); require( TEMPLATE_PATH . '/404.php' ); ?>PK��[�ZTU�H��H��page-category.phpnu��[��<?php require_once( TEMPLATE_PATH . '/functions.php' ); if(PRETTY_URL){ if(count($url_params) > 3 \|\| count($url_params) < 2){ // Category page only contains 3 parameter max, // If more than that or less than 2, the url is not valid // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } if(isset($url_params[2]) && !is_numeric($url_params[2])){ // Page number should be a number // Show 404 screen require( ABSPATH . 'includes/page-404.php' ); return; } } $cur_page = 1; if(isset($url_params[2])){ $_GET['page'] = $url_params[2]; if(!is_numeric($_GET['page'])){ $_GET['page'] = 1; } } if(isset($_GET['page'])){ $cur_page = htmlspecialchars($_GET['page']); if(!is_numeric($cur_page)){ $cur_page = 1; } } if(get_setting_value('allow_slug_translation')){ $_original_slug = get_translation_key($_GET['slug']); if($_original_slug && substr($_original_slug, 0, 5) == 'slug:'){ // The slug have a translation $_GET['slug'] = str_replace('slug:', '', $_original_slug); // The slug variable is modified } } $category = Category::getBySlug($_GET['slug']); if($category){ if($lang_code != 'en'){ // If use translation (localization) // Begin translate the content if has translation $translated_fields = get_content_translation('category', $category->id, $lang_code, 'all'); if(!is_null($translated_fields)){ $category->name = isset($translated_fields['name']) ? $translated_fields['name'] : $category->name; $category->description = isset($translated_fields['description']) ? $translated_fields['description'] : $category->description; $category->meta_description = isset($translated_fields['meta_description']) ? $translated_fields['meta_description'] : $category->meta_description; } } $items_per_page = get_setting_value('category_results_per_page'); $data = get_game_list_category_id($category->id, $items_per_page, $items_per_page*($cur_page-1)); $games = $data['results']; $total_games = $data['totalRows']; $total_page = $data['totalPages']; if($cur_page > $total_page){ // Page number is more than actual maximum page require( ABSPATH . 'includes/page-404.php' ); return; } if(isset($category->meta_description) && $category->meta_description != ''){ $meta_description = $category->meta_description; } else { $meta_description = _t('Play %a Games', $category->name).' \| '.SITE_DESCRIPTION; } $archive_title = _t($category->name); $page_title = _t('%a Games', $category->name).' \| '.SITE_DESCRIPTION; if(file_exists(TEMPLATE_PATH . '/category.php')){ // category.php is preferred over archive.php require( TEMPLATE_PATH . '/category.php' ); } else { // For backward compatibility require( TEMPLATE_PATH . '/archive.php' ); } } else { require( ABSPATH . 'includes/page-404.php' ); } ?>PK��X�Z��{��{��function_general.phpnu��[��PK��X�Z�I�)-:��-:�� app_start.phpnu��[��PK��X�Z��)L��constant.phpnu��[��PK��PZ�Z%\�, ��, �� hN��header.phpnu��[��PK��PZ�Z��X��sidebar.phpnu��[��PK��PZ�Z!.h��w��ajax/gamesbyquery.phpnu��[��PK��PZ�Z6s^�,��,�� ~��config.phpnu��[��PK��PZ�Z��y[� �� footer.phpnu��[��PK��[�Z�KH�) ��) �� game_list.phpnu��[��PK��[�Z��y��y�� \|��page-post.phpnu��[��PK��[�Z�NY�j��j��2��user.phpnu��[��PK��[�Zjr�\|1��\|1��Ժ��cron.phpnu��[��PK��[�Z�4fh�� page-game.phpnu��[��PK��[�Z��u�Q��Q��U��load-class.phpnu��[��PK��[�Z-_ɦ��page-search.phpnu��[��PK��[�Z�q�3 ��3 ��vote.phpnu��[��PK��[�Z�qX�� 4�page-user.phpnu��[��PK��[�Z��n:��:�� banned-username.jsonnu��[��PK��[�Z̼��,��,��} �version.phpnu��[��PK��[�ZJSA� �� banned-words-comment.jsonnu��[��PK��[�ZJSA� �� M�banned-words.jsonnu��[��PK��[�ZF1U1�!��!��api.phpnu��[��PK��[�Z��(��/��/��h-�statistics.phpnu��[��PK��[�Z�j9��]�widgets.phpnu��[��PK��[�Z�9W�&��&��r�page-login.phpnu��[��PK��[�Z��>� �� b��page-full.phpnu��[��PK��[�Z�%��'��page-collection.phpnu��[��PK��[�Z�3�S ��S ��page-tag.phpnu��[��PK��[�Z�2v��sub-folder.phpnu��[��PK��[�Z��U��comment.phpnu��[��PK��[�Z$��w��w�� plugin.phpnu��[��PK��[�Zބ$��page-splash.phpnu��[��PK��[�Z??(��page-user-profile.phpnu��[��PK��[�Zza�k��k��captcha.phpnu��[��PK��[�Z�3,DI��I��w�load-settings.phpnu��[��PK��[�Z�� page-page.phpnu��[��PK��[�Z��sessions.phpnu��[��PK��[�Z�� index.phpnu��[��PK��[�Z�3r7��7�� fetch.phpnu��[��PK��[�ZV�$鑞��%�commons.phpnu��[��PK��[�ZѺ�V��V��K��page-user-edit.phpnu��[��PK��[�Z�{ZF��F��page-archive.phpnu��[��PK��[�Z�ٱ�x ��x ��i��page-register.phpnu��[��PK��[�Z��)��"�page-homepage.phpnu��[��PK��[�Z.�� /�rank.jsonnu��[��PK��[�ZN%�� page-404.phpnu��[��PK��[�ZTU�H��H��:�page-category.phpnu��[��PK��/�/�:��

| ver. 1.4 | Github | . | PHP 8.2.28 | Generation time: 0.02 | proxy | phpinfo | Settings