Файл: inc.php
Строк: 40
<?php
##########################################################
# За дополнениями обращайтесь: #
# icq 449-424-588 #
# email: Dimonnet@inbox.ru #
##########################################################
# coding by ___хакер___ (MaZaFaKa) #
##########################################################
# запрещено распространять каталог без согласия автора!!!#
##########################################################
##############################################################
$db_host = "localhost"; // хост #
$db_name = "123"; // название бд #
$db_user = "root"; // имя пользователя бд #
$db_pass = ""; // пароль от бд #
$cat_url = "http://localhost/kats";// Путь к каталогу #
##############################################################
//////////////////////////////////////////////////////////////////////////////////////////////////////////
@mysql_connect($db_host,$db_user,$db_pass) or die ("<fieldset>Can not connect to MySQL<br/>Paramitres connect:<br/>DB HOST - $db_host<br/>DB USER - $db_user<br/>DB NAME - $db_name<br/>DB PASS - ******</fieldset><br/><center>© MaZaFaKa</center>");
@mysql_select_db($db_name);
function preobraz($value){
$value1=array("&","$","'",""","<",">");
$value2=array("&","$$","'",""","<",">");
$value=str_replace($value1,$value2,$value);
if(get_magic_quotes_gpc()){
$value = stripslashes($value);}
$value = mysql_real_escape_string($value);
return $value;}
$ctable = "cusers";
$pr_count = @mysql_query("SELECT * FROM `adminka`;");
$arr = @mysql_fetch_array($pr_count);
$sc=mysql_query("select * from cusers where ci='".$ci."';");
$ch = @mysql_fetch_array($sc);
function autorize() {
global $login, $pas, $ci;
$q = @mysql_query("select * from `users` where `admin`='$login' and `password`='$pas' and `ci`='$ci' limit 1;");
$sdata = @mysql_fetch_array($q);
return $sdata;}
$id=eregi_replace('"',"",$id);
$id=eregi_replace("[[,{}+'!@#$%)(^&*%:;./-_]","",$id);
$id=intval($id);
$pas=eregi_replace('"',"",$pas);
$pas=htmlspecialchars(stripslashes(trim($pas)));
$pas=eregi_replace("[[,{}+'!@#$%)(^&*%:;./-_]","",$pas);
$ci=eregi_replace('"',"",$ci);
$ci=htmlspecialchars(stripslashes(trim($ci)));
$ci=eregi_replace("[[,{}+'!@#$%)(^&*%:;./-_]","",$ci);
$login=eregi_replace('"',"",$login);
$login=htmlspecialchars(stripslashes(trim($login)));
$login=eregi_replace("[[,{}+'!@#$%)(^&*%:;./-_]","",$login);
$s=eregi_replace('"',"",$s);
$s=htmlspecialchars(stripslashes(trim($s)));
$s=eregi_replace("[[,{}+'!@#$%)(^&*%:;./-_]","",$s);
////////////////////////////////////////////////////////////////////////////////////////////////////////////
?>