PDA

View Full Version : php/frames help


Abush
November 9th, 2006, 01:02
I was playing around with a script and I got an error that says "Sorry, your browser doesn't seem to support frames." I went and looked through the code and I can't tell where it is messed up.
Here is long code

<?

function page ($str)
{
return base64_encode ($str);
}

function check ($i)
{
if (is_writable ($i))
{
return 1;
}

return 0;
}

function mod_status ()
{
}

function mod_status1 ()
{
global $VAR;
$a = mysql_query ('SELECT `admin` FROM `user` WHERE `user` = \'' . $VAR['4'] . '\'');
$b = mysql_fetch_array ($a);
if ($b['admin'] == '1')
{
return '1';
}

return '2';
}

$TURN_OF_HEADER = 1;
include '../inc/config/connect.inc';
$MAINDATA = '';
$MAINCOOKIE = '';
$SEND_HEADER = '';
if (isset ($_COOKIE['FOXADMIN']))
{
$MAINCOOKIE = $_COOKIE['FOXADMIN'];
}

if (isset ($_GET['id']))
{
$_GET['id'] = base64_decode ($_GET['id']);
}

if (isset ($_GET['return']))
{
$_GET['return'] = base64_decode ($_GET['return']);
}

if (isset ($_GET['new_header']))
{
$SEND_HEADER = base64_decode ($_GET['new_header']);
}

if ($GET_CONFIG_SQL_B['turn_site_offline'] != '1')
{
if (member_types2 ($VAR[4]) != '0')
{
header ('Location: ' . $VAR['0']);
exit ();
}
}

if (pw_check ($GET_CONFIG_SQL_B['admin_password'], $MAINCOOKIE) == '2')
{
include 'html/index.php';
exit ();
}

if (isset ($_GET['action']))
{
eval (base64_decode ('ZWNobyBodG1sX2NvcHlyaWdodF90b3AoKTs='));
echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en">
<head>
<title>phpFoX Admin Panel</title>
<link rel="stylesheet" href="' . $VAR['0'] . '/admin/main.css" type="text/css" />
<script type="text/javascript" src="' . $VAR['0'] . '/inc/script/affect.js"></script>
<script type="text/javascript" src="' . $VAR['0'] . '/inc/script/main.js"></script>
<script type="text/javascript" src="' . $VAR['0'] . '/inc/script/menu.js"></script>
</head>
<body>';
$_GET['action'] = base64_decode ($_GET['action']);
$source_file = '';
if (isset ($_GET['source']))
{
$_GET['source'] = base64_decode ($_GET['source']);
$source_file = $_GET['source'];
}

switch ($_GET['action'])
{
case 'index':
{
if (file_exists ('html/' . $source_file . '.php'))
{
include 'html/' . $source_file . '.php';
break;
}
else
{
include 'html/home.php';
break;
}

break;
}

case 'logout':
{
setcookie ('FOXADMIN', '', 0, '/', $VAR['8'] . '');
header ('Location: ' . $VAR['0'] . '/');
exit ();
}

case 'left':
{
include 'html/left.php';
break;
}

case 'feature_image':
{
mysql_query ('UPDATE `main` SET `feature` = \'1\' WHERE `id` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'remove_feature_image':
{
mysql_query ('UPDATE `main` SET `feature` = \'\' WHERE `id` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'remove_feature_music':
{
mysql_query ('UPDATE `music` SET `feature` = \'\' WHERE `musicid` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'feature_user':
{
mysql_query ('UPDATE `user` SET `feature` = \'1\' WHERE `user` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'feature_music':
{
mysql_query ('UPDATE `music` SET `feature` = \'1\' WHERE `musicid` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'delete_listing':
{
mysql_query ('DELETE FROM `listing_main` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted listing ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . '/listing"> Return To Classifieds Index </a> ]';
include 'html/template.php';
break;
}

case 'delete_group':
{
mysql_query ('DELETE FROM `group_forum` WHERE `group_id` = \'' . $_GET['id'] . '\'');
$a = mysql_query ('SELECT * FROM `group_gallery` WHERE `group_id` = \'' . $_GET['id'] . '\'');
while ($b = mysql_fetch_array ($a))
{
unlink ('' . $VAR[5] . '/' . $b['img'] . '/thumb/' . $b['id'] . '.jpg');
unlink ('' . $VAR[5] . '/' . $b['img'] . '/' . $b['id'] . '.jpg');
}

mysql_query ('DELETE FROM `group_gallery` WHERE `group_id` = \'' . $_GET['id'] . '\'');
mysql_query ('DELETE FROM `group_main` WHERE `id` = \'' . $_GET['id'] . '\'');
mysql_query ('DELETE FROM `group_member` WHERE `group_id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted group ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . '/groups"> Return To Group Index </a> ]';
include 'html/template.php';
break;
}

case 'delete_music':
{
mysql_query ('DELETE FROM `music` WHERE `musicid` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted song ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_comment':
{
mysql_query ('DELETE FROM `comment` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted comment ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_blog':
{
mysql_query ('DELETE FROM `journal` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted the blog ID#: ' . $_GET['id'] . ' from the site database.';
include 'html/template.php';
break;
}
Abush
November 9th, 2006, 01:05
case 'delete_forum_1':
{
$a1 = $SQL ($SL . ' * ' . $FR . ' `forum_post` ' . $W . ' `id` = \'' . $_GET['id'] . '\'');
$b1 = $FA ($a1);
mysql_query ('DELETE FROM `forum_post` WHERE `id` = \'' . $b1['id'] . '\'');
mysql_query ('DELETE FROM `forum_reply` WHERE `fid` = \'' . $b1['id'] . '\'');
$DATA = 'You have deleted forum topic ID#: ' . $_GET['id'] . ' from the site database.';
include 'html/template.php';
break;
}

case 'delete_poll':
{
mysql_query ('DELETE FROM `polls` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted poll ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_fun':
{
mysql_query ('DELETE FROM `fun` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted fun ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_quiz':
{
mysql_query ('DELETE FROM `hot_quiz` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted quiz ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_forum_2':
{
mysql_query ('DELETE FROM `forum_reply` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted forum reply ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_group_forum':
{
mysql_query ('DELETE FROM `group_forum` WHERE `id` = \'' . $_GET['id'] . '\'');
if ($_GET['d_type'] == '!')
{
mysql_query ('DELETE FROM `group_forum` WHERE `reply_id` = \'' . $_GET['id'] . '\'');
}

$DATA = 'You have deleted forum item ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'remove_feature_user':
{
mysql_query ('UPDATE `user` SET `feature` = \'\' WHERE `user` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'delete_image':
{
$a = mysql_query ('SELECT * FROM `main` WHERE `id` = \'' . $_GET['id'] . '\'');
$b = mysql_fetch_array ($a);
$img = 'gallery/' . $b['img'] . '/thumb/' . $b['id'] . '.jpg';
$img2 = 'gallery/' . $b['img'] . '/' . $b['id'] . '.jpg';
mysql_query ('DELETE FROM `main` WHERE `id` = \'' . $b['id'] . '\'');
unlink ('' . $VAR[5] . '/' . $img . '');
unlink ('' . $VAR[5] . '/' . $img2 . '');
$DATA = 'You have deleted the image ID#: ' . $b['id'] . ' from the site database.';
include 'html/template.php';
break;
}

case 'frame_top':
{
echo '<style type="text/css">
body { margin:0px; }
</style>
<table style="width:100%;" class="top" cellpadding="0" cellspacing="0">
<tr>
<td style="font-size:8pt;text-align:left;">

<a href="/"><img src="img/logo.gif" alt="" /></a>

</td><td style="font-size:8pt;text-align:right;vertical-align:top;font-size:10pt;">
<div style="padding:10px;">
phpFoX Version: ';
echo $PHPFOX_SOURCE_VERSION;
echo ' <br /><br />
';
if (mod_status1 () != '1')
{
echo ' Domain Key: ';
echo phpfox_site_check ('DOMAIN');
echo ' | License: ';
echo phpfox_site_check ('KEY');
echo ' ';
}

echo ' </div>
</td>
</tr>
</table>

<div id="outer2">
<table cellpadding="0" cellspacing="0">
<tr>
<td>&nbsp; &nbsp; </td>
<td class="menu" onclick="javascript:parent.main.location.href=\'';
echo $VAR[0];
echo '/admin/?action=';
echo base64_encode ('home');
echo '&amp;frameset=true\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="';
echo $VAR[0];
echo '/admin/?action=';
echo base64_encode ('home');
echo '&amp;frameset=true" target="main">ADMIN HOME</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.main.location.href=\'';
echo $VAR[0];
echo '/\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="';
echo $VAR[0];
echo '/" target="main">PREVIEW SITE</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.location.href=\'';
echo $VAR[0];
echo '/\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="';
echo $VAR[0];
echo '/" target="_parent">SITE INDEX</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.location.href=\'';
echo $VAR[0];
echo '/admin/?action=';
echo page ('logout');
echo '\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="';
echo $VAR[0];
echo '/admin/?action=';
echo page ('logout');
echo '" target="_parent">LOGOUT</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.main.location.href=\'http://www.phpfox.com/members/forum.php\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="http://www.phpfox.com/members/forum.php" target="main">FORUM SUPPORT</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.main.location.href=\'http://www.phpfox.com/support/contact\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="http://www.phpfox.com/support/contact" target="main">CONTACT US</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.main.location.href=\'http://www.phpfox.com/changelog.php\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="http://www.phpfox.com/changelog.php" target="main">CHANGE LOG</a>
</td>
</tr>
</table>
</div>

<div class="top">
<div><br /></div>
</div>
';
break;
}
}

while (true)
{
include 'html/home.php';
if (true)
{
echo '<br /><br />
<script type="text/javascript" src="' . $VAR['0'] . '/inc/script/affect2.js"></script>
</body>
</html>';
return 1;
}
}
}

$sendheader = '?action=' . base64_encode ('home') . '&amp;frameset=true';
eval (base64_decode ('ZWNobyBodG1sX2NvcHlyaWdodF90b3AoKTs='));
echo '<html>
<head>
<title>phpFoX Administration</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>
<frameset rows="120,*" cols="*" framespacing="0" frameborder="no" border="0">
<frame src="';
echo $VAR[0];
echo '/admin/?action=';
echo base64_encode ('frame_top');
echo '&amp;frameset=true" name="topFrame" frameborder="no" scrolling="no" noresize id="topFrame"/>
<frameset cols="230,566*" frameborder="NO" border="0" framespacing="0" rows="*">
<frame src="';
echo $VAR[0];
echo '/admin/?action=';
echo base64_encode ('left');
echo '&amp;frameset=true" name="nav" frameborder="no" scrolling="yes" />
<frame src="';
echo $VAR[0];
echo '/admin/';
echo $sendheader;
echo '" name="main" frameborder="no" />
</frameset>
</frameset>
<body bgcolor="#FFFFFF" text="#000000">
<p>Sorry, your browser doesn\'t seem to support frames</p>
</body>
</html>
';
?>



Here is output
[CODE]<?

function page ($str)
{
return base64_encode ($str);
}

function check ($i)
{
if (is_writable ($i))
{
return 1;
}

return 0;
}

function mod_status ()
{
}

function mod_status1 ()
{
global $VAR;
$a = mysql_query ('SELECT `admin` FROM `user` WHERE `user` = \'' . $VAR['4'] . '\'');
$b = mysql_fetch_array ($a);
if ($b['admin'] == '1')
{
return '1';
}

return '2';
}
Abush
November 9th, 2006, 01:06
$TURN_OF_HEADER = 1;
include '../inc/config/connect.inc';
$MAINDATA = '';
$MAINCOOKIE = '';
$SEND_HEADER = '';
if (isset ($_COOKIE['FOXADMIN']))
{
$MAINCOOKIE = $_COOKIE['FOXADMIN'];
}

if (isset ($_GET['id']))
{
$_GET['id'] = base64_decode ($_GET['id']);
}

if (isset ($_GET['return']))
{
$_GET['return'] = base64_decode ($_GET['return']);
}

if (isset ($_GET['new_header']))
{
$SEND_HEADER = base64_decode ($_GET['new_header']);
}

if ($GET_CONFIG_SQL_B['turn_site_offline'] != '1')
{
if (member_types2 ($VAR[4]) != '0')
{
header ('Location: ' . $VAR['0']);
exit ();
}
}

if (pw_check ($GET_CONFIG_SQL_B['admin_password'], $MAINCOOKIE) == '2')
{
include 'html/index.php';
exit ();
}

if (isset ($_GET['action']))
{
eval (base64_decode ('ZWNobyBodG1sX2NvcHlyaWdodF90b3AoKTs='));
echo '<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
<html xmlns="http://www.w3.org/1999/xhtml" lang="en">
<head>
<title>phpFoX Admin Panel</title>
<link rel="stylesheet" href="' . $VAR['0'] . '/admin/main.css" type="text/css" />
<script type="text/javascript" src="' . $VAR['0'] . '/inc/script/affect.js"></script>
<script type="text/javascript" src="' . $VAR['0'] . '/inc/script/main.js"></script>
<script type="text/javascript" src="' . $VAR['0'] . '/inc/script/menu.js"></script>
</head>
<body>';
$_GET['action'] = base64_decode ($_GET['action']);
$source_file = '';
if (isset ($_GET['source']))
{
$_GET['source'] = base64_decode ($_GET['source']);
$source_file = $_GET['source'];
}

switch ($_GET['action'])
{
case 'index':
{
if (file_exists ('html/' . $source_file . '.php'))
{
include 'html/' . $source_file . '.php';
break;
}
else
{
include 'html/home.php';
break;
}

break;
}

case 'logout':
{
setcookie ('FOXADMIN', '', 0, '/', $VAR['8'] . '');
header ('Location: ' . $VAR['0'] . '/');
exit ();
}

case 'left':
{
include 'html/left.php';
break;
}

case 'feature_image':
{
mysql_query ('UPDATE `main` SET `feature` = \'1\' WHERE `id` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'remove_feature_image':
{
mysql_query ('UPDATE `main` SET `feature` = \'\' WHERE `id` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'remove_feature_music':
{
mysql_query ('UPDATE `music` SET `feature` = \'\' WHERE `musicid` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'feature_user':
{
mysql_query ('UPDATE `user` SET `feature` = \'1\' WHERE `user` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'feature_music':
{
mysql_query ('UPDATE `music` SET `feature` = \'1\' WHERE `musicid` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'delete_listing':
{
mysql_query ('DELETE FROM `listing_main` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted listing ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . '/listing"> Return To Classifieds Index </a> ]';
include 'html/template.php';
break;
}
case 'delete_group':
{
mysql_query ('DELETE FROM `group_forum` WHERE `group_id` = \'' . $_GET['id'] . '\'');
$a = mysql_query ('SELECT * FROM `group_gallery` WHERE `group_id` = \'' . $_GET['id'] . '\'');
while ($b = mysql_fetch_array ($a))
{
unlink ('' . $VAR[5] . '/' . $b['img'] . '/thumb/' . $b['id'] . '.jpg');
unlink ('' . $VAR[5] . '/' . $b['img'] . '/' . $b['id'] . '.jpg');
}

mysql_query ('DELETE FROM `group_gallery` WHERE `group_id` = \'' . $_GET['id'] . '\'');
mysql_query ('DELETE FROM `group_main` WHERE `id` = \'' . $_GET['id'] . '\'');
mysql_query ('DELETE FROM `group_member` WHERE `group_id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted group ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . '/groups"> Return To Group Index </a> ]';
include 'html/template.php';
break;
}

case 'delete_music':
{
mysql_query ('DELETE FROM `music` WHERE `musicid` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted song ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_comment':
{
mysql_query ('DELETE FROM `comment` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted comment ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_blog':
{
mysql_query ('DELETE FROM `journal` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted the blog ID#: ' . $_GET['id'] . ' from the site database.';
include 'html/template.php';
break;
}

case 'delete_forum_1':
{
$a1 = $SQL ($SL . ' * ' . $FR . ' `forum_post` ' . $W . ' `id` = \'' . $_GET['id'] . '\'');
$b1 = $FA ($a1);
mysql_query ('DELETE FROM `forum_post` WHERE `id` = \'' . $b1['id'] . '\'');
mysql_query ('DELETE FROM `forum_reply` WHERE `fid` = \'' . $b1['id'] . '\'');
$DATA = 'You have deleted forum topic ID#: ' . $_GET['id'] . ' from the site database.';
include 'html/template.php';
break;
}

case 'delete_poll':
{
mysql_query ('DELETE FROM `polls` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted poll ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_fun':
{
mysql_query ('DELETE FROM `fun` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted fun ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_quiz':
{
mysql_query ('DELETE FROM `hot_quiz` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted quiz ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_forum_2':
{
mysql_query ('DELETE FROM `forum_reply` WHERE `id` = \'' . $_GET['id'] . '\'');
$DATA = 'You have deleted forum reply ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'delete_group_forum':
{
mysql_query ('DELETE FROM `group_forum` WHERE `id` = \'' . $_GET['id'] . '\'');
if ($_GET['d_type'] == '!')
{
mysql_query ('DELETE FROM `group_forum` WHERE `reply_id` = \'' . $_GET['id'] . '\'');
}
Abush
November 9th, 2006, 01:07
$DATA = 'You have deleted forum item ID#: ' . $_GET['id'] . ' from the site database. [ <a href="' . $VAR[0] . $_GET['return'] . '"> Go Back </a> ]';
include 'html/template.php';
break;
}

case 'remove_feature_user':
{
mysql_query ('UPDATE `user` SET `feature` = \'\' WHERE `user` = \'' . $_GET['id'] . '\'');
header ('Location: ' . $VAR[0] . $_GET['return'] . '');
exit ();
}

case 'delete_image':
{
$a = mysql_query ('SELECT * FROM `main` WHERE `id` = \'' . $_GET['id'] . '\'');
$b = mysql_fetch_array ($a);
$img = 'gallery/' . $b['img'] . '/thumb/' . $b['id'] . '.jpg';
$img2 = 'gallery/' . $b['img'] . '/' . $b['id'] . '.jpg';
mysql_query ('DELETE FROM `main` WHERE `id` = \'' . $b['id'] . '\'');
unlink ('' . $VAR[5] . '/' . $img . '');
unlink ('' . $VAR[5] . '/' . $img2 . '');
$DATA = 'You have deleted the image ID#: ' . $b['id'] . ' from the site database.';
include 'html/template.php';
break;
}

case 'frame_top':
{
echo '<style type="text/css">
body { margin:0px; }
</style>
<table style="width:100%;" class="top" cellpadding="0" cellspacing="0">
<tr>
<td style="font-size:8pt;text-align:left;">

<a href="/"><img src="img/logo.gif" alt="" /></a>

</td><td style="font-size:8pt;text-align:right;vertical-align:top;font-size:10pt;">
<div style="padding:10px;">
phpFoX Version: ';
echo $PHPFOX_SOURCE_VERSION;
echo ' <br /><br />
';
if (mod_status1 () != '1')
{
echo ' Domain Key: ';
echo phpfox_site_check ('DOMAIN');
echo ' | License: ';
echo phpfox_site_check ('KEY');
echo ' ';
}

echo ' </div>
</td>
</tr>
</table>


<div id="outer2">
<table cellpadding="0" cellspacing="0">
<tr>
<td>&nbsp; &nbsp; </td>
<td class="menu" onclick="javascript:parent.main.location.href=\'';
echo $VAR[0];
echo '/admin/?action=';
echo base64_encode ('home');
echo '&amp;frameset=true\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="';
echo $VAR[0];
echo '/admin/?action=';
echo base64_encode ('home');
echo '&amp;frameset=true" target="main">ADMIN HOME</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.main.location.href=\'';
echo $VAR[0];
echo '/\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="';
echo $VAR[0];
echo '/" target="main">PREVIEW SITE</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.location.href=\'';
echo $VAR[0];
echo '/\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="';
echo $VAR[0];
echo '/" target="_parent">SITE INDEX</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.location.href=\'';
echo $VAR[0];
echo '/admin/?action=';
echo page ('logout');
echo '\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="';
echo $VAR[0];
echo '/admin/?action=';
echo page ('logout');
echo '" target="_parent">LOGOUT</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.main.location.href=\'http://www.phpfox.com/members/forum.php\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="http://www.phpfox.com/members/forum.php" target="main">FORUM SUPPORT</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.main.location.href=\'http://www.phpfox.com/support/contact\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="http://www.phpfox.com/support/contact" target="main">CONTACT US</a>
</td>
<td>&nbsp;|&nbsp;</td>
<td class="menu" onclick="javascript:parent.main.location.href=\'http://www.phpfox.com/changelog.php\';" onmouseover="this.className=\'menu2\';" onmouseout="this.className=\'menu\';">
<a href="http://www.phpfox.com/changelog.php" target="main">CHANGE LOG</a>
</td>
</tr>
</table>
</div>

<div class="top">
<div><br /></div>
</div>
';
break;
}
}

while (true)
{
include 'html/home.php';
if (true)
{
echo '<br /><br />
<script type="text/javascript" src="' . $VAR['0'] . '/inc/script/affect2.js"></script>
</body>
</html>';
return 1;
}
}
}

$sendheader = '?action=' . base64_encode ('home') . '&amp;frameset=true';
eval (base64_decode ('ZWNobyBodG1sX2NvcHlyaWdodF90b3AoKTs='));
echo '<html>
<head>
<title>phpFoX Administration</title>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
</head>
<frameset rows="120,*" cols="*" framespacing="0" frameborder="no" border="0">
<frame src="';
echo $VAR[0];
echo '/admin/?action=';
echo base64_encode ('frame_top');
echo '&amp;frameset=true" name="topFrame" frameborder="no" scrolling="no" noresize id="topFrame"/>
<frameset cols="230,566*" frameborder="NO" border="0" framespacing="0" rows="*">
<frame src="';
echo $VAR[0];
echo '/admin/?action=';
echo base64_encode ('left');
echo '&amp;frameset=true" name="nav" frameborder="no" scrolling="yes" />
<frame src="';
echo $VAR[0];
echo '/admin/';
echo $sendheader;
echo '" name="main" frameborder="no" />
</frameset>
</frameset>
<body bgcolor="#FFFFFF" text="#000000">
<p>Sorry, your browser doesn\'t seem to support frames</p>
</body>
</html>
';
?>

Any Idea where what is going wrong? Krak again? :)
I know it's very long.
krakjoe
November 9th, 2006, 02:30
gimme a link to script ??

at a guess ....

<body bgcolor="#FFFFFF" text="#000000">
<p>Sorry, your browser doesn\'t seem to support frames</p>

should be



<-------->
<body bgcolor="#FFFFFF" text="#000000">
<p>Sorry, your browser doesn\'t seem to support frames</p>
</-------->


ffs it won't let me write it, but the word in the tag should be n.o.f.r.a.m.e.s without .'s in

also there's no body tag before the frames start, not that it really matters ( or shouldn't ) ....

<body bgcolor="#FFFFFF" text="#000000">

could go underneath </head>

and <p>Sorry, your browser doesn't seem to support frames</p> in the tags it won't let me write...