exec("INSERT INTO `$dbname`.`csrf_token` (`token`,`timestamp`,`sessionid`) VALUES ('$csrf_token','".time()."','".session_id()."')") === false) { $err_msg = print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } if (($db_csrf = $mysqlcon->query("SELECT * FROM `$dbname`.`csrf_token` WHERE `sessionid`='".session_id()."'")->fetchALL(PDO::FETCH_UNIQUE|PDO::FETCH_ASSOC)) === false) { $err_msg = print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } if (isset($_POST['update']) && isset($db_csrf[$_POST['csrf_token']])) { $stats_api_keys = $err_msg = ""; if (isset($_POST['apikey']) && isset($_POST['desc'])) { $apidefinition = []; foreach($_POST['apikey'] as $rowid => $apikey) { $desc = isset($_POST["desc"][$rowid]) ? $_POST["desc"][$rowid] : null; $apidefinition[] = "$apikey=>$desc"; } $stats_api_keys = implode(",", $apidefinition); $cfg['stats_api_keys'] = $stats_api_keys; } if ($mysqlcon->exec("INSERT INTO `$dbname`.`cfg_params` (`param`,`value`) VALUES ('stats_api_keys','{$cfg['stats_api_keys']}') ON DUPLICATE KEY UPDATE `value`=VALUES(`value`); DELETE FROM `$dbname`.`csrf_token` WHERE `token`='{$_POST['csrf_token']}'") === false) { $err_msg = print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } else { $err_msg = $lang['wisvsuc']; $err_lvl = NULL; } if(empty($stats_api_keys)) { $cfg['stats_api_keys'] = NULL; } else { $keyarr = explode(',', $stats_api_keys); foreach ($keyarr as $entry) { list($key, $value) = explode('=>', $entry); $addnewvalue[$key] = $value; $cfg['stats_api_keys'] = $addnewvalue; } } } elseif(isset($_POST['update'])) { echo '
',$lang['errcsrf'],'
'; rem_session_ts3($rspathhex); exit; } ?>

 
 
$desc) { ?>
 
',$lang['wiboostempty'],'
'; } else { echo '
'; }?>