www.dev2.delv-in.com - UnknownSec 403

upload mass deface mass delete console info server
name : userGuideTool.php
 <?php

include('ini.php');
$Guide_Menu = new Guide_Menu;
$Guide_Content = new Guide_Content;

//$Template new Template;

    // UPDATE THE DATABASE
    
    if ($_SESSION['userGuide_opts'] == 'menu'){

		if ($_POST['submitBut'] == 'Save'){

			if ($_POST['menuID'] <= 0){
				$rows = $Guide_Menu->get('', $_POST['menuCrumbs'], '', '');
				
				if ($_POST['menuLevel'] - 1 != count($rows)){
					unset($rows[$key]);
				}
				
				$_POST['rank'] = count($rows) + 1;
			}

            
			$Guide_Menu->add_mod($_POST['menuID'], $_POST['menuCrumbs'], htmlspecialchars($_POST['content']), $_POST['access'], $_POST['rank']);
	
		} else if ($_POST['submitBut'] == 'Confirm Delete'){

            $Guide_Menu->delete($_POST['menuID'], $_POST['menuCrumbs'], $_POST['rank']);

        } else if ($_POST['submitBut'] == 'Sort' && $_POST['menuID'] > 0 && $_POST['rank'] > 0){

            $Guide_Menu->update_rank($_POST['menuID'],$_POST['menuCrumbs'], $_POST['rank'], $_POST['xRank']);

        }

	} else {

        if ($_POST['submitBut'] == 'Save'){

            if ($_POST['guideContID'] <= 0){
                // echo $_POST['menuID'] ." | " . $_POST['submitBut'] ."<br>";
                $rows = $Guide_Content->get('', $_POST['menuID'], '');
                $rank = count($rows) + 1;
            } else {
                $rank = $_POST['rank'];
            }

            $Guide_Content->add_mod($_POST['guideContID'], $_POST['menuID'], $_POST['words'], $_POST['xImage'], $_POST['img_width'], $_POST['img_align'], $_POST['img_pos'], htmlspecialchars($_POST['caption']), $rank);

        } else if ($_POST['submitBut'] == 'Sort' && $_POST['menuID'] > 0 && $_POST['rank'] > 0){

            $Guide_Content->update_rank($_POST['menuID'], $_POST['guideContID'], $_POST['rank'], $_POST['xRank']);
        }
    }

    if (isset($_POST['userGuide_opts'])){
        $_SESSION['userGuide_opts'] = $_POST['userGuide_opts'];
    }



	$Template->load('includes/private_header.php');

    echo $Template->get_alerts();


    if ($_SESSION['LID'] > 0 && ($_SESSION['LIS'] == 'superUser')){

        $Template->load('views/v_userGuide.php');

        if ($_SESSION['userGuide_opts'] == 'menu'){

            if ($_POST['submitBut'] == 'New' || $_POST['submitBut'] == 'Edit' || $_POST['submitBut'] == 'Add Submenu'){

                $Template->load('views/v_userGuideMenu_edit.php');

            } else if ($_POST['submitBut'] == 'Sort'){

            	$Template->load('views/v_userGuideMenu_sort.php');

            } else if ($_POST['submitBut'] == 'Delete'){

                $Template->load('views/v_userGuideMenu_del.php');

            } else {

                $Template->load('views/v_userGuideMenu.php');
            }

        } else if ($_SESSION['userGuide_opts'] == 'content'){

            $Template->load('views/v_userGuideContent.php');

            
        }

    } else {

        include('views/v_sess_exp.php');
    }


            
    $Template->load('includes/private_footer.php');
?>
UnknownSec Shell
