exec("INSERT INTO `$dbname`.`csrf_token` (`token`,`timestamp`,`sessionid`) VALUES ('$csrf_token','".time()."','".session_id()."')") === false) { $err_msg = print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } if (($db_csrf = $mysqlcon->query("SELECT * FROM `$dbname`.`csrf_token` WHERE `sessionid`='".session_id()."'")->fetchALL(PDO::FETCH_UNIQUE|PDO::FETCH_ASSOC)) === false) { $err_msg = print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } if (isset($_POST['update']) && isset($db_csrf[$_POST['csrf_token']])) { if ($_POST['rankup_hash_ip_addresses_mode'] != $cfg['rankup_hash_ip_addresses_mode']) { $err_msg2 = $lang['wisvinfo1']; $err_lvl2 = 2; } $cfg['rankup_hash_ip_addresses_mode'] = $_POST['rankup_hash_ip_addresses_mode']; $cfg['logs_timezone'] = $_POST['logs_timezone']; $cfg['default_date_format'] = $_POST['default_date_format']; $cfg['logs_path'] = addslashes($_POST['logs_path']); $cfg['logs_debug_level'] = $_POST['logs_debug_level']; $cfg['logs_rotation_size'] = $_POST['logs_rotation_size']; $cfg['default_language'] = $_SESSION[$rspathhex.'language'] = $_POST['default_language']; unset($lang); $lang = set_language($cfg['default_language']); $cfg['version_update_channel'] = $_POST['version_update_channel']; $cfg['webinterface_admin_client_unique_id_list'] = $_POST['webinterface_admin_client_unique_id_list']; if ($mysqlcon->exec("INSERT INTO `$dbname`.`cfg_params` (`param`,`value`) VALUES ('logs_timezone','{$cfg['logs_timezone']}'),('default_date_format','{$cfg['default_date_format']}'),('logs_path','{$cfg['logs_path']}'),('logs_debug_level','{$cfg['logs_debug_level']}'),('logs_rotation_size','{$cfg['logs_rotation_size']}'),('default_language','{$cfg['default_language']}'),('version_update_channel','{$cfg['version_update_channel']}'),('webinterface_admin_client_unique_id_list','{$cfg['webinterface_admin_client_unique_id_list']}'),('rankup_hash_ip_addresses_mode','{$cfg['rankup_hash_ip_addresses_mode']}') ON DUPLICATE KEY UPDATE `value`=VALUES(`value`); DELETE FROM `$dbname`.`csrf_token` WHERE `token`='{$_POST['csrf_token']}'") === false) { $err_msg = print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } else { $err_msg = $lang['wisvsuc']." ".sprintf($lang['wisvres'], ' '); $err_lvl = NULL; } $cfg['webinterface_admin_client_unique_id_list'] = array_flip(explode(',', $cfg['webinterface_admin_client_unique_id_list'])); $cfg['logs_path'] = $_POST['logs_path']; if(!isset($cfg['default_language']) || $cfg['default_language'] == "en") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_en.php'); } elseif($cfg['default_language'] == "ar") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_ar.php'); } elseif($cfg['default_language'] == "cz") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_cz.php'); } elseif($cfg['default_language'] == "de") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_de.php'); } elseif($cfg['default_language'] == "es") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_es.php'); } elseif($cfg['default_language'] == "fr") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_fr.php'); } elseif($cfg['default_language'] == "it") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_it.php'); } elseif($cfg['default_language'] == "nl") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_nl.php'); } elseif($cfg['default_language'] == "pl") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_pl.php'); } elseif($cfg['default_language'] == "ro") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_ro.php'); } elseif($cfg['default_language'] == "ru") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_ru.php'); } elseif($cfg['default_language'] == "pt") { require_once(substr(dirname(__FILE__),0,-12).'languages/core_pt.php'); } } elseif(isset($_POST['update'])) { echo '

',$lang['errcsrf'],'

'; rem_session_ts3($rspathhex); exit; } ?>