0";
$_rt = dbQuery($req,'NUMERIC');
$ext = true;
if (isset($_rt[0]) && is_array($_rt[0])) {
foreach ($_rt as $_svr) {
if (strpos(' '. $_SERVER['HTTP_REFERER'],$_svr['server_url']) === 1) {
$ext = false;
break;
}
}
}
if (isset($ext) && $ext === true) {
exit;
}
}
saveForm('eaf');
$url = $_SERVER['HTTP_REFERER'];
if (!checkType($_post['eaf_email'],'email')) {
$_SESSION['jr_user_data']['ERROR_TEXT'] = 'INVALID_EMAIL';
addToForm('ERROR_TEXT','INVALID_EMAIL','eaf');
jrLocation($url .'#eaf');
}
$_rep = array(
'RECOMMENDED_URL' => $url
);
$_rep = jrArrayMerge($_user,$_rep);
$_rep = array_change_key_case($_rep,CASE_UPPER);
list($sub,$msg) = jrProcessEmail('jr_email_a_friend',$_rep);
emailForm($_post['eaf_email'],$sub,$msg,'null',$_user['user_emailadr']);
jmLogger(0,'INF','email a friend page sent to '. $_post['eaf_email'] .' - '. $url);
resetForm('eaf');
$_SESSION['jr_user_data']['SUCCESS_TEXT'] = 'EMAIL_SENT';
jrLocation($url .'#eaf');
}
elseif (isset($_post['mode']) && $_post['mode'] == 'preview') {
$_user = sessionVerify();
jrAdminOnly();
if (!isset($_post['name']) || strlen($_post['name']) === 0) {
$_post['name'] = 'Sage';
}
$config['index_template'] = stripHtml($_post['name']);
jrLocation("{$config['jamroom_index']}?skin={$_post['name']}&template={$_post['name']}");
}
elseif (isset($_post['mode']) && $_post['mode'] == 'preview_style') {
$_user = sessionVerify();
jrAdminOnly();
if (!isset($_post['name']) || empty($_post['name'])) {
$_post['name'] = $_user['user_style'];
}
$_user['user_style'] = $_post['name'];
$language = getLanguage($_user['user_language']);
ob_start();
jmHtmlBegin($language['user'][3]);
jmBodyBegin('jmTable',false);
jmSpanCell("{$language['user'][4]} "{$_user['user_nickname']}"",$language['user'][5],30,'html_modify.png');
jmLinkCell($language['user'][7],$_user['user_fullname']);
jmLinkCell($language['user'][8],$_user['user_emailadr']);
jmLinkCell($language['user'][9],$_user['user_homepage']);
jmLinkCell($language['user'][10],$_user['user_imnumber']);
jmBodyEnd();
jmHtmlEnd();
ob_end_flush();
exit;
}
elseif (isset($_post['mode']) && $_post['mode'] == 'pu') {
$_user = sessionVerify();
jrAdminOnly();
if (strlen($_post['k']) === 0 || !is_numeric($_post['n'])) {
exit;
}
$num = jrProgressCount($_post['k'],'get');
ob_start();
echo '
';
if (is_numeric($num) && $num < $_post['n']) {
echo '';
}
echo '
';
ob_end_flush();
exit;
}
elseif (isset($_post['mode']) && $_post['mode'] == 'logout') {
define('JR_DISABLE_CHECK','no');
$_user = sessionCheck();
$req = "DELETE FROM {$jamroom_db['cache_misc']} WHERE cache_key LIKE 'WO_%' OR cache_key LIKE 'jrGetOnlineUsers-%'";
dbQuery($req);
jrRunBridge('logout',$_user);
sessionDestroy();
jrCookie('destroy');
$_user = array();
unset($_user);
jrLocation($config['jamroom_logout']);
}
elseif (isset($_post['mode']) && $_post['mode'] == 'exit') {
$_user = sessionCheck();
if (isset($_SESSION['JR_LOGOUT_PAGE']) && strlen($_SESSION['JR_LOGOUT_PAGE']) > 0) {
$url = $_SESSION['JR_LOGOUT_PAGE'];
unset($_SESSION['JR_LOGOUT_PAGE']);
jrLocation($url);
}
elseif (isset($config['jamroom_exit_page']) && strlen($config['jamroom_exit_page']) > 0) {
jrLocation($config['jamroom_exit_page']);
}
jrLocation($jamroom['jm_htm']);
}
elseif (isset($_post['c']) && strlen($_post['c']) > 0) {
$_user = sessionCheck();
$_mode['jr_location'] = 'Viewing Page: '. htmlentities($_post['c']);
sessionSetLocation($_mode);
$tim = time();
$req = "SELECT c.*,
u.*
FROM {$jamroom_db['content']} c
LEFT JOIN {$jamroom_db['user']} u ON u.user_id = c.content_author
WHERE content_name = '". dbEscapeString($_post['c']) ."'
AND (c.content_publish_date <= {$tim} OR c.content_publish_date = '0')
AND (c.content_removal_date >= {$tim} OR c.content_removal_date = '0') ";
if (!isset($_user['user_id']) || $_user['user_id'] != '0' || strlen($_user['user_nickname']) === 0) {
$req .= " AND c.content_status != '0' ";
}
$req .= "LIMIT 1";
$_rt = dbQuery($req,'SINGLE');
if (isset($_rt) && is_array($_rt)) {
switch ($_rt['content_status']) {
case '1':
break;
case '2':
if ((!isset($_user['band_quota']) || !is_numeric($_user['band_quota']) || $_user['band_quota'] < 1) && $_user['user_id'] != '0') {
$_rt = array();
}
break;
case '3':
if ((!isset($_user['band_quota']) || !is_numeric($_user['band_quota']) || $_user['band_quota'] > -1) && $_user['user_id'] != '0') {
$_rt = array();
}
break;
case '4':
if ((!isset($_user['band_quota']) || !is_numeric($_user['band_quota']) || $_user['band_quota'] == '0') && $_user['user_id'] != '0') {
$_rt = array();
}
break;
case '5':
if (!isset($_user['user_id']) || $_user['user_id'] != '0' || strlen($_user['user_nickname']) === 0) {
$_rt = array();
}
break;
default:
if ((!strpos($_rt['content_status'],'q_') === 0 || 'q_'. $_user['quota_id'] != $_rt['content_status']) && $_user['user_id'] != '0') {
$_rt = array();
}
break;
}
}
else {
$_rt = array();
}
$_rt = array_change_key_case($_rt,CASE_UPPER);
$template = 'jr_content.tpl';
if (isset($_post['t']) && strlen($_post['t']) > 0) {
$template = $_post['t'] .'.tpl';
}
ob_start();
htmlShowTemplate('skin',$template,$_rt);
ob_end_flush();
exit;
}
if (isset($_post['mode']) && ($_post['mode'] == 'login' || $_post['mode'] == 'cp')) {
if (isset($_post['page']) && $_post['page'] == 'add' && $config['vault_login'] == 'no') {
$_user = sessionCheck();
$guest = true;
if (checkType($_user['user_id'],'number_nn') && strlen($_user['user_nickname']) > 0) {
$guest = false;
}
}
else {
$_user = sessionVerify();
if (($_user['quota_id'] < 0 && $config['member_login'] == 'no') && $_user['user_id'] !== 0) {
jrLocation($jamroom['jm_htm']);
}
if (!isset($_post['page']) || strlen($_post['page']) === 0) {
$_post['page'] = 'band';
}
}
if (isset($_post['r']) && $_post['r'] == '1') {
$_SESSION['JR_LOGOUT_PAGE'] = jrGetLocalReferrer();
}
$_SESSION['JR_CONTROL_PANEL_FRAMES'] = 0;
$page = 'band.php';
switch ($_post['page']) {
case 'notes':
if ($_user['quota_user_notes'] == 'yes' && is_file($jamroom['jm_dir'] .'/note.php')) {
$_SESSION['JR_PAGE_LOCATION'] = 'note.php?mode=inbox';
jrLocation($config['jamroom_index'] .'?mode=cp');
}
break;
case 'add':
if (is_file($jamroom['jm_dir'] .'/cart.php')) {
$_post['id'] = (int) $_post['id'];
$_SESSION['JR_REFERRER'] = jrGetLocalReferrer();
if (isset($guest) && $guest === true) {
$_SESSION['JR_PAGE_LOCATION'] = 'cart.php?mode=add&id='. $_post['id'];
jrLocation('cart.php?mode=add&id='. $_post['id']);
}
else {
$_SESSION['JR_PAGE_LOCATION'] = 'cart.php?mode=add&id='. $_post['id'];
jrLocation($config['jamroom_index'] .'?mode=cp');
}
}
break;
case 'myfiles':
if (is_file($jamroom['jm_dir'] .'/vault.php')) {
if (isset($_post['payment_status']) && $_post['payment_status'] == 'Completed') {
$_SESSION['JR_SHOW_PURCHASE'] = true;
}
$page = 'vault.php?mode=return';
if (isset($config['vault_return']) && strlen($config['vault_return']) > 0) {
if (strpos($config['vault_return'],'tpl')) {
$page = $jamroom['jm_htm'] .'/'. $config['jamroom_index'] .'?template='. trim($config['vault_return']);
}
else {
$page = $config['vault_return'];
}
}
}
break;
case 'cart':
if (is_file($jamroom['jm_dir'] .'/cart.php')) {
$page = 'cart.php?mode=view';
}
break;
default:
if (isset($_SESSION['JR_PAGE_LOCATION'])) {
$page = $_SESSION['JR_PAGE_LOCATION'];
unset($_SESSION['JR_PAGE_LOCATION']);
}
break;
}
if (isset($_SESSION['JR_REFRESH_MENU'])) {
switch ($_SESSION['JR_REFRESH_MENU']) {
case 'admin':
$menu = 'jrconfig.php?mode=menu';
break;
case 'artist':
$menu = 'admin.php?mode=artist';
break;
default:
$menu = 'admin.php?mode=member';
break;
}
unset($_SESSION['JR_REFRESH_MENU']);
}
else {
$refresh_menu = 'jrconfig';
if (strpos($_SERVER['HTTP_REFERER'],'band.php')) {
$refresh_menu = 'band';
}
elseif ((strpos($_SERVER['HTTP_REFERER'],'member.php') || strpos($_SERVER['HTTP_REFERER'],'user.php')) && !strpos($_SERVER['HTTP_REFERER'],'user_type=artist')) {
$refresh_menu = 'member';
}
$menu = 'admin.php?mode=artist';
if ($_user['user_id'] === 0 && ((isset($_post['menu']) && $_post['menu'] == 'show_config') || ($_post['mode'] == 'cp' || $_post['mode'] == 'login'))) {
if (!isset($refresh_menu) || $refresh_menu == 'jrconfig') {
$menu = 'jrconfig.php?mode=menu';
}
elseif (isset($refresh_menu) && $refresh_menu == 'member') {
$menu = 'admin.php?mode=member';
}
}
elseif ((isset($_user['quota_id']) && $_user['quota_id'] < 0) || (isset($_post['menu']) && $_post['menu'] == 'member')) {
$menu = 'admin.php?mode=member';
}
}
$_mode['login'] = 'User Logging In';
sessionSetLocation($_mode);
$language = getLanguage($_user['user_language']);
$_SESSION['JR_CONTROL_PANEL_FRAMES'] = 1;
ob_start();
$rtl = '';
if ($language['settings']['layout'] == 'rtl') {
$rtl = ' dir="rtl"';
}
?>
>
()
0) {
$_post['template'] = $_post['t'] .'.tpl';
}
if (isset($_post['template'])) {
$template = $_post['template'];
$mode = 'skin';
if (isset($_post['m']) && $_post['m'] == 'i') {
$mode = 'interface';
}
if (is_file("{$jamroom['jm_dir']}/skins/{$config['index_template']}/{$template}.php")) {
$pre_process = true;
$pre_procfile = "{$jamroom['jm_dir']}/skins/{$config['index_template']}/{$template}.php";
}
}
elseif (isset($config['index_template']) && strstr($config['index_template'],'.tpl')) {
$template = $config['index_template'];
$mode = 'template';
}
else {
if (is_file($jamroom['jm_dir'] .'/skins/'. $config['index_template'] .'/'. $config['index_template'] .'.tpl')) {
$template = $config['index_template'] .'.tpl';
}
else {
$template = 'jr_index.tpl';
}
$mode = 'skin';
}
if (isset($_post['s'])) {
$GLOBALS['JR_SKIN_DIR'] = $_post['s'];
}
if (isset($_post['skin']) && strlen($_post['skin']) > 0) {
jrAdminOnly();
$config['index_template'] = stripHtml($_post['skin']);
}
$_rep = array(
'VISITOR_IP' => $jamroom['ip_address'],
'JAMROOM_ICON1' => "",
'JAMROOM_ICON2' => "",
'POPUP_JAVACODE' => "var win = null;\nfunction popwin(mypage,myname,w,h,scroll){\nLeftPosition = (screen.width) ? (screen.width-w)/2 : 0;\nTopPosition = (screen.height) ? (screen.height-h)/2 : 0;\nsettings = 'height='+h+',width='+w+',top='+TopPosition+',left='+LeftPosition+',scrollbars='+scroll+',resizable'\nwin = window.open(mypage,myname,settings)\n}"
);
if (isset($_post['r']) && is_array($_post['r'])) {
$_post['replace'] = $_post['r'];
unset($_post['r']);
}
if (isset($_post['replace']) && is_array($_post['replace'])) {
foreach ($_post['replace'] as $k => $v) {
$_rep["REPLACE_{$k}"] = htmlentities(stripHtml(@html_entity_decode(stripslashes(urldecode($v)),ENT_QUOTES,$config['entity_encoding'])));
}
unset($_post['replace']);
}
foreach ($_post as $k => $v) {
if (!is_numeric($v)) {
if (isset($v) && is_array($v)) {
foreach ($v as $kone => $ktwo) {
$_post[$k][$kone] = htmlentities(stripHtml(@html_entity_decode(stripslashes(@urldecode($ktwo)),ENT_QUOTES,$config['entity_encoding'])));
}
}
else {
$_post[$k] = htmlentities(stripHtml(@html_entity_decode(stripslashes(urldecode($v)),ENT_QUOTES,$config['entity_encoding'])));
}
}
}
$_rep = jrArrayMerge($_post,$_rep);
if (isset($_post['lang']) && strlen($_post['lang']) > 0) {
if (is_file("{$jamroom['jm_dir']}/skins/{$config['index_template']}/lang/{$_post['lang']}.php")) {
@setcookie('jr_lang',$_post['lang'],time() + 86400000);
$_COOKIE['jr_lang'] = $_post['lang'];
}
elseif (isset($_post['theme']) && is_file("{$jamroom['jm_dir']}/themes/{$_post['theme']}/lang/{$_post['lang']}.php")) {
@setcookie('jr_lang',$_post['lang'],time() + 86400000);
$_COOKIE['jr_lang'] = $_post['lang'];
}
}
if (isset($_post['ref']) && $_post['ref'] == '1' && strpos($_SERVER['HTTP_REFERER'],$jamroom['jm_htm']) === 0 && !strstr($_SERVER['HTTP_REFERER'],'ref=')) {
jrLocation($_SERVER['HTTP_REFERER']);
}
ob_start();
if ($pre_process) {
include($pre_procfile);
}
htmlShowTemplate($mode,$template,$_rep);
$out = ob_get_contents();
ob_end_clean();
if (!headers_sent()) {
header('Connection: close');
header('Content-Length: '. strlen($out));
}
ob_start();
echo $out;
ob_end_flush();
exit;
?>