safesql( trim( htmlspecialchars( $_REQUEST['author'] ) ) ); else $author = ""; if( isset( $_REQUEST['ifdelete'] ) ) $ifdelete = $_REQUEST['ifdelete']; else $ifdelete = ""; if( isset( $_REQUEST['news_fixed'] ) ) $news_fixed = $_REQUEST['news_fixed']; else $news_fixed = ""; if( isset( $_REQUEST['search_cat'] ) ) $search_cat = intval( $_REQUEST['search_cat'] ); else $search_cat = ""; include_once SYSTEM_DIR . '/classes/parse.class.php'; $parse = new ParseFilter( Array (), Array (), 1, 1 ); if( $action == "list" ) { $_SESSION['admin_referrer'] = $_SERVER['REQUEST_URI']; echoheader( "editnews", $lang['edit_head'] ); $search_field = $db->safesql( trim( htmlspecialchars( stripslashes( urldecode( $_REQUEST['search_field'] ) ), ENT_QUOTES ) ) ); $search_author = $db->safesql( trim( htmlspecialchars( stripslashes( urldecode( $_REQUEST['search_author'] ) ), ENT_QUOTES ) ) ); $fromnewsdate = $db->safesql( trim( htmlspecialchars( stripslashes( $_REQUEST['fromnewsdate'] ), ENT_QUOTES ) ) ); $tonewsdate = $db->safesql( trim( htmlspecialchars( stripslashes( $_REQUEST['tonewsdate'] ), ENT_QUOTES ) ) ); $start_from = intval( $_REQUEST['start_from'] ); $news_per_page = intval( $_REQUEST['news_per_page'] ); $gopage = intval( $_REQUEST['gopage'] ); $_REQUEST['news_status'] = intval( $_REQUEST['news_status'] ); $news_status_sel = array ('0' => '', '1' => '', '2' => '' ); $news_status_sel[$_REQUEST['news_status']] = 'selected="selected"'; if( ! $news_per_page or $news_per_page < 1 ) { $news_per_page = 50; } if( $gopage ) $start_from = ($gopage - 1) * $news_per_page; if( $start_from < 0 ) $start_from = 0; $where = array (); if( ! $user_group[$member_id['user_group']]['allow_all_edit'] and $member_id['user_group'] != 1 ) { $where[] = "autor = '{$member_id['name']}'"; } if( $search_field != "" ) { $where[] = "(short_story like '%$search_field%' OR title like '%$search_field%' OR full_story like '%$search_field%')"; } if( $search_author != "" ) { $where[] = "autor like '$search_author%'"; } if( $search_cat != "" ) { if ($search_cat == -1) $where[] = "category = '' OR category = '0'"; else $where[] = "category regexp '[[:<:]]($search_cat)[[:>:]]'"; } if( $fromnewsdate != "" ) { $where[] = "date >= '$fromnewsdate'"; } if( $tonewsdate != "" ) { $where[] = "date <= '$tonewsdate'"; } if( $_REQUEST['news_status'] == 1 ) $where[] = "approve = '1'"; elseif( $_REQUEST['news_status'] == 2 ) $where[] = "approve = '0'"; if( count( $where ) ) { $where = implode( " AND ", $where ); $where = " WHERE " . $where; } else { $where = ""; } $order_by = array (); if( $_REQUEST['search_order_f'] == "asc" or $_REQUEST['search_order_f'] == "desc" ) $search_order_f = $_REQUEST['search_order_f']; else $search_order_f = ""; if( $_REQUEST['search_order_m'] == "asc" or $_REQUEST['search_order_m'] == "desc" ) $search_order_m = $_REQUEST['search_order_m']; else $search_order_m = ""; if( $_REQUEST['search_order_d'] == "asc" or $_REQUEST['search_order_d'] == "desc" ) $search_order_d = $_REQUEST['search_order_d']; else $search_order_d = ""; if( $_REQUEST['search_order_t'] == "asc" or $_REQUEST['search_order_t'] == "desc" ) $search_order_t = $_REQUEST['search_order_t']; else $search_order_t = ""; if( ! empty( $search_order_f ) ) { $order_by[] = "fixed $search_order_f"; } if( ! empty( $search_order_m ) ) { $order_by[] = "approve $search_order_m"; } if( ! empty( $search_order_d ) ) { $order_by[] = "date $search_order_d"; } if( ! empty( $search_order_t ) ) { $order_by[] = "title $search_order_t"; } $order_by = implode( ", ", $order_by ); if( ! $order_by ) $order_by = "fixed desc, approve asc, date desc"; $search_order_fixed = array ('----' => '', 'asc' => '', 'desc' => '' ); if( isset( $_REQUEST['search_order_f'] ) ) { $search_order_fixed[$search_order_f] = 'selected'; } else { $search_order_fixed['desc'] = 'selected'; } $search_order_mod = array ('----' => '', 'asc' => '', 'desc' => '' ); if( isset( $_REQUEST['search_order_m'] ) ) { $search_order_mod[$search_order_m] = 'selected'; } else { $search_order_mod['asc'] = 'selected'; } $search_order_date = array ('----' => '', 'asc' => '', 'desc' => '' ); if( isset( $_REQUEST['search_order_d'] ) ) { $search_order_date[$search_order_d] = 'selected'; } else { $search_order_date['desc'] = 'selected'; } $search_order_title = array ('----' => '', 'asc' => '', 'desc' => '' ); if( ! empty( $search_order_t ) ) { $search_order_title[$search_order_t] = 'selected'; } else { $search_order_title['----'] = 'selected'; } $db->query( "SELECT id, date, title, category, autor, alt_name, comm_num, approve, fixed, news_read, remote_addr FROM " . PREFIX . "_post" . $where . " ORDER BY " . $order_by . " LIMIT $start_from,$news_per_page" ); // Prelist Entries if( $start_from == "0" ) { $start_from = ""; } $i = $start_from; $entries_showed = 0; $entries = ""; while ( $row = $db->get_array() ) { $i ++; $itemdate = date( "d.m.Y", strtotime( $row['date'] ) ); if( strlen( $row['title'] ) > 65 ) $title = substr( $row['title'], 0, 65 ) . " ..."; else $title = $row['title']; $title = htmlspecialchars( stripslashes( $title ), ENT_QUOTES ); $title = str_replace("&","&", $title ); $entries .= " $itemdate - "; if( $row['fixed'] == '1' ) $entries .= "$lang[edit_fix] "; if( $row['comm_num'] > 0 ) { $full_link = $config['http_home_url'] . $row['id'] . "-" . $row['alt_name'] . ".html"; $comm_link = "{$row['comm_num']}"; } else { $comm_link = $row['comm_num']; } $entries .= "$title {$row['news_read']}" . $comm_link; $entries .= ""; if( $row['approve'] ) $erlaub = "$lang[edit_yes]"; else $erlaub = "$lang[edit_no]"; $entries .= $erlaub; $entries .= ""; if( ! $row['category'] ) $my_cat = "---"; else { $my_cat = array (); $cat_list = explode( ',', $row['category'] ); foreach ( $cat_list as $element ) { if( $element ) $my_cat[] = $cat[$element]; } $my_cat = implode( ',
', $my_cat ); } $entries .= "$my_cat" . $row['autor'] . " "; $entries_showed ++; if( $i >= $news_per_page + $start_from ) { break; } } // End prelisting $result_count = $db->super_query( "SELECT COUNT(*) as count FROM " . PREFIX . "_post" . $where ); $all_count_news = $result_count['count']; /////////////////////////////////////////// // Options Bar $category_list = CategoryNewsSelection( $search_cat, 0, false ); echo <<
HTML; // End Options Bar echo << JSCRIPT; if( $entries_showed == 0 ) { echo <<
{$lang['news_list']}
 {$lang['news_advanced_search']}
{$lang['edit_nonews']}
HTML; } else { echo <<
{$lang['news_list']}
 {$lang['news_advanced_search']}
{$entries} HTML; // pagination $npp_nav = "
"; if( $start_from > 0 ) { $previous = $start_from - $news_per_page; $npp_nav .= "<< "; } if( $all_count_news > $news_per_page ) { $enpages_count = @ceil( $all_count_news / $news_per_page ); $enpages_start_from = 0; $enpages = ""; if( $enpages_count <= 10 ) { for($j = 1; $j <= $enpages_count; $j ++) { if( $enpages_start_from != $start_from ) { $enpages .= "$j "; } else { $enpages .= "$j "; } $enpages_start_from += $news_per_page; } $npp_nav .= $enpages; } else { $start = 1; $end = 10; if( $start_from > 0 ) { if( ($start_from / $news_per_page) > 4 ) { $start = @ceil( $start_from / $news_per_page ) - 3; $end = $start + 9; if( $end > $enpages_count ) { $start = $enpages_count - 10; $end = $enpages_count - 1; } $enpages_start_from = ($start - 1) * $news_per_page; } } if( $start > 2 ) { $enpages .= "1 ... "; } for($j = $start; $j <= $end; $j ++) { if( $enpages_start_from != $start_from ) { $enpages .= "$j "; } else { $enpages .= "$j "; } $enpages_start_from += $news_per_page; } $enpages_start_from = ($enpages_count - 1) * $news_per_page; $enpages .= "... $enpages_count "; $npp_nav .= $enpages; } } if( $all_count_news > $i ) { $how_next = $all_count_news - $i; if( $how_next > $news_per_page ) { $how_next = $news_per_page; } $npp_nav .= ">>"; } $npp_nav .= "
"; // pagination if( $entries_showed != 0 ) { echo << HTML; if( $all_count_news > $news_per_page ) { echo << HTML; } } echo <<
  {$lang['edit_title']}  {$lang['st_views']}   {$lang['edit_com']}  {$lang['edit_approve']} {$lang['edit_cl']} {$lang['edit_autor']}
{$npp_nav}
{$lang['edit_go_page']}
HTML; } echofooter(); } // ******************************************************************************** // Показ новости и редактирование // ******************************************************************************** elseif( $action == "editnews" ) { $id = intval( $_GET['id'] ); $row = $db->super_query( "SELECT * FROM " . PREFIX . "_post where id = '$id'" ); $found = FALSE; if( $id == $row['id'] ) $found = TRUE; if( ! $found ) {msg( "error", $lang['cat_error'], $lang['edit_nonews'] );} $cat_list = explode( ',', $row['category'] ); $have_perm = 0; if( $user_group[$member_id['user_group']]['allow_edit'] and $row['autor'] == $member_id['name'] ) { $have_perm = 1; } if( $user_group[$member_id['user_group']]['allow_all_edit'] ) { $have_perm = 1; $allow_list = explode( ',', $user_group[$member_id['user_group']]['cat_add'] ); foreach ( $cat_list as $selected ) { if( $allow_list[0] != "all" and !in_array( $selected, $allow_list ) AND $row['approve']) $have_perm = 0; } } if( ($member_id['user_group'] == 1) ) { $have_perm = 1; } if( ! $have_perm ) { msg( "error", $lang['addnews_denied'], $lang['edit_denied'], "$PHP_SELF?mod=editnews&action=list" ); } $row['title'] = $parse->decodeBBCodes( $row['title'], false ); $row['title'] = str_replace("&","&", $row['title'] ); $row['descr'] = $parse->decodeBBCodes( $row['descr'], false ); $row['keywords'] = $parse->decodeBBCodes( $row['keywords'], false ); $row['metatitle'] = stripslashes( $row['metatitle'] ); $row['short_story'] = $parse->decodeBBCodes( $row['short_story'], false ); $row['full_story'] = $parse->decodeBBCodes( $row['full_story'], false ); $access = permload( $row['access'] ); if( $row['votes'] ) { $poll = $db->super_query( "SELECT * FROM " . PREFIX . "_poll where news_id = '{$row['id']}'" ); $poll['title'] = $parse->decodeBBCodes( $poll['title'], false ); $poll['frage'] = $parse->decodeBBCodes( $poll['frage'], false ); $poll['body'] = $parse->decodeBBCodes( $poll['body'], false ); $poll['multiple'] = $poll['multiple'] ? "checked" : ""; } echoheader( "editnews", $lang['edit_head'] ); echo " "; echo "
"; $categories_list = CategoryNewsSelection( $cat_list, 0 ); if( $config['allow_multi_category'] ) $category_multiple = "class=\"cat_select\" multiple"; else $category_multiple = ""; if( $member_id['user_group'] == 1 ) { $author_info = ""; } else { $author_info = "{$row['autor']}"; } if ( $user_group[$member_id['user_group']]['admin_editusers'] ) { $author_info .= " "; } echo <<
{$lang['edit_etitle']}
HTML; echo <<
{$lang['v_ftitle']} [?]
{$lang['vote_title']} [?]
$lang[vote_body]
$lang[vote_str_1]
  {$lang['v_multi']}
{$lang['v_info']}
   
HTML; echo <<
HTML; echofooter(); } // ******************************************************************************** // Сохранение или удаление новости // ******************************************************************************** elseif( $action == "doeditnews" ) { $id = intval( $_GET['id'] ); $allow_comm = isset( $_POST['allow_comm'] ) ? intval( $_POST['allow_comm'] ) : 0; $allow_main = isset( $_POST['allow_main'] ) ? intval( $_POST['allow_main'] ) : 0; $approve = isset( $_POST['approve'] ) ? intval( $_POST['approve'] ) : 0; $allow_rating = isset( $_POST['allow_rating'] ) ? intval( $_POST['allow_rating'] ) : 0; $news_fixed = isset( $_POST['news_fixed'] ) ? intval( $_POST['news_fixed'] ) : 0; $category = $_POST['category']; if( ! count( $category ) ) { $category = array (); $category[] = '0'; } $category_list = array(); foreach ( $category as $value ) {$category_list[] = intval($value);} $category_list = $db->safesql( implode( ',', $category ) ); $allow_list = explode( ',', $user_group[$member_id['user_group']]['cat_add'] ); foreach ( $category as $selected ) {if( $allow_list[0] != "all" and ! in_array( $selected, $allow_list ) and $member_id['user_group'] != 1 ) $approve = 0;} if( !$user_group[$member_id['user_group']]['moderation'] ) $approve = 0; $title = $parse->process( trim( strip_tags ($_POST['title']) ) ); $full_story = $parse->process( $_POST['full_story'] ); $short_story = $parse->process( $_POST['short_story'] ); $full_story = $db->safesql( $parse->BB_Parse( $full_story, false ) ); $short_story = $db->safesql( $parse->BB_Parse( $short_story, false ) ); if( $parse->not_allowed_text ) { msg( "error", $lang['addnews_error'], $lang['news_err_39'], "javascript:history.go(-1)" ); } if( trim( $title ) == "" and $ifdelete != "yes" ) msg( "error", $lang['cat_error'], $lang['addnews_ertitle'], "javascript:history.go(-1)" ); if( strlen( $title ) > 255 ) {msg( "error", $lang['cat_error'], $lang['addnews_ermax'], "javascript:history.go(-1)" );} if( trim( $_POST['alt_name'] ) == "" or ! $_POST['alt_name'] ) $alt_name = totranslit( stripslashes( $title ) ); else $alt_name = totranslit( stripslashes( $_POST['alt_name'] ) ); $remote_addr = $_POST['remote_addr']; $title = $db->safesql( $title ); $metatags = create_metatags( $short_story . $full_story ); $catalog_url = $db->safesql( substr( htmlspecialchars( strip_tags( stripslashes( trim( $_POST['catalog_url'] ) ) ) ), 0, 3 ) ); if( preg_match( "/[\||\'|\<|\>|\"|\!|\?|\$|\@|\/|\\\|\&\~\*\+]/", $_POST['tags'] ) ) $_POST['tags'] = ""; else $_POST['tags'] = $db->safesql( htmlspecialchars( strip_tags( stripslashes( trim( $_POST['tags'] ) ) ), ENT_QUOTES ) ); if ( $_POST['tags'] ) { $temp_array = array(); $tags_array = array(); $temp_array = explode (",", $_POST['tags']); if (count($temp_array)) { foreach ( $temp_array as $value ) { if( trim($value) ) $tags_array[] = trim( $value ); }} if ( count($tags_array) ) $_POST['tags'] = implode(", ", $tags_array); else $_POST['tags'] = ""; } // обработка опроса if( trim( $_POST['vote_title'] != "" ) ) { $add_vote = 1; $vote_title = trim( $db->safesql( $parse->process( $_POST['vote_title'] ) ) ); $frage = trim( $db->safesql( $parse->process( $_POST['frage'] ) ) ); $vote_body = $db->safesql( $parse->BB_Parse( $parse->process( $_POST['vote_body'] ), false ) ); $allow_m_vote = intval( $_POST['allow_m_vote'] ); } else $add_vote = 0; // обработка доступа if( $member_id['user_group'] < 3 and $ifdelete != "yes" ) { $group_regel = array (); foreach ( $_POST['group_extra'] as $key => $value ) { if( $value ) $group_regel[] = intval( $key ) . ':' . intval( $value ); } if( count( $group_regel ) ) $group_regel = implode( "||", $group_regel ); else $group_regel = ""; } else $group_regel = ''; $no_permission = FALSE; $okdeleted = FALSE; $okchanges = FALSE; $db->query( "SELECT id, title, autor, category, approve, tags FROM " . PREFIX . "_post where id = '$id'" ); while ( $row = $db->get_row() ) { $item_db[0] = $row['id']; $item_db[1] = $row['autor']; $item_db[2] = $row['tags']; $item_db[3] = $row['approve']; $item_db[4] = $db->safesql( $row['title'] ); $item_db[5] = explode( ',', $row['category'] ); } $db->free(); if( $item_db[0] ) { $have_perm = 0; if( $user_group[$member_id['user_group']]['allow_all_edit'] ) $have_perm = 1; if( $user_group[$member_id['user_group']]['allow_edit'] and $item_db[1] == $member_id['name'] ) {$have_perm = 1;} if( $ifdelete == "yes" ) { $allow_list = explode( ',', $user_group[$member_id['user_group']]['cat_add'] ); foreach ( $item_db[5] as $selected ) {if( $allow_list[0] != "all" AND !in_array($selected, $allow_list) ) $have_perm = 0;} if( !$user_group[$member_id['user_group']]['moderation']) {$have_perm = 0; }} if( ($member_id['user_group'] == 1) ) {$have_perm = 1;} if( $have_perm ) { if( $ifdelete != "yes" ) { $okchanges = TRUE; // Обработка даты и времени $added_time = time() + ($config['date_adjust'] * 60); $newdate = $_POST['newdate']; if( $_POST['allow_date'] != "yes" ) { if( $_POST['allow_now'] == "yes" ) $thistime = date( "Y-m-d H:i:s", $added_time ); elseif( (($newsdate = strtotime( $newdate )) === - 1) or !$newsdate ) { msg( "error", $lang['cat_error'], $lang['addnews_erdate'], "javascript:history.go(-1)" ); } else { $thistime = date( "Y-m-d H:i:s", $newsdate ); if( ! intval( $config['no_date'] ) and $newsdate > $added_time ) { $thistime = date( "Y-m-d H:i:s", $added_time ); } } $result = $db->query( "UPDATE " . PREFIX . "_post set title='$title', date='$thistime', short_story='$short_story', full_story='$full_story', descr='{$metatags['description']}', keywords='{$metatags['keywords']}', category='$category_list', alt_name='$alt_name', allow_comm='$allow_comm', approve='$approve', allow_main='$allow_main', allow_rate='$allow_rating', fixed='$news_fixed', votes='$add_vote', access='$group_regel', remote_addr='$remote_addr', editdate='$added_time', tags='{$_POST['tags']}', metatitle='{$metatags['title']}' WHERE id='$item_db[0]'" ); } else { $result = $db->query( "UPDATE " . PREFIX . "_post set title='$title', short_story='$short_story', full_story='$full_story', descr='{$metatags['description']}', keywords='{$metatags['keywords']}', category='$category_list', alt_name='$alt_name', allow_comm='$allow_comm', approve='$approve', allow_main='$allow_main', allow_rate='$allow_rating', fixed='$news_fixed', votes='$add_vote', access='$group_regel', remote_addr='$remote_addr', editdate='$added_time', tags='{$_POST['tags']}', metatitle='{$metatags['title']}' WHERE id='$item_db[0]'" ); } include (SYSTEM_DIR . '/inc/newsimg/doeditimg.php'); if( $add_vote ) { $count = $db->super_query( "SELECT COUNT(*) as count FROM " . PREFIX . "_poll WHERE news_id = '$item_db[0]'" ); if( $count['count'] ) $db->query( "UPDATE " . PREFIX . "_poll set title='$vote_title', frage='$frage', body='$vote_body', multiple='$allow_m_vote' WHERE news_id = '$item_db[0]'" ); else $db->query( "INSERT INTO " . PREFIX . "_poll (news_id, title, frage, body, votes, multiple) VALUES('$item_db[0]', '$vote_title', '$frage', '$vote_body', 0, '$allow_m_vote')" ); } else { $db->query( "DELETE FROM " . PREFIX . "_poll WHERE news_id='$item_db[0]'" ); $db->query( "DELETE FROM " . PREFIX . "_poll_log WHERE news_id='$item_db[0]'" ); } // Смена автора публикации if( $member_id['user_group'] == 1 and $_POST['new_author'] != $_POST['old_author'] ) { $_POST['new_author'] = $db->safesql( $_POST['new_author'] ); $row = $db->super_query( "SELECT user_id FROM " . USERPREFIX . "_users WHERE name = '{$_POST['new_author']}'" ); if( $row['user_id'] ) { $db->query( "UPDATE " . PREFIX . "_post SET autor='{$_POST['new_author']}' WHERE id='$item_db[0]'" ); $db->query( "UPDATE " . PREFIX . "_images SET author='{$_POST['new_author']}' WHERE news_id='$item_db[0]'" ); $db->query( "UPDATE " . PREFIX . "_files SET author='{$_POST['new_author']}' WHERE news_id='$item_db[0]'" ); $db->query( "UPDATE " . PREFIX . "_torrents SET author='{$_POST['new_author']}' WHERE news_id='$item_db[0]'" ); $db->query( "UPDATE " . USERPREFIX . "_users SET news_num=news_num+1 where user_id='{$row['user_id']}'" ); $db->query( "UPDATE " . USERPREFIX . "_users SET news_num=news_num-1 where name='$item_db[1]'" ); } else { msg( "error", $lang['addnews_error'], $lang['edit_no_author'], "javascript:history.go(-1)" ); } } // Облако тегов if( $_POST['tags'] != $item_db[2] or $approve != $item_db[3] ) { $db->query( "DELETE FROM " . PREFIX . "_tags WHERE news_id = '$item_db[0]'" ); if( $_POST['tags'] != "" and $approve ) { $tags = array (); $_POST['tags'] = explode( ",", $_POST['tags'] ); foreach ( $_POST['tags'] as $value ) { $tags[] = "('" . $item_db[0] . "', '" . trim( $value ) . "')"; } $tags = implode( ", ", $tags ); $db->query( "INSERT INTO " . PREFIX . "_tags (news_id, tag) VALUES " . $tags ); } } } else { $db->query( "DELETE FROM " . PREFIX . "_post WHERE id='$item_db[0]'" ); $db->query( "DELETE FROM " . PREFIX . "_comments WHERE post_id='$item_db[0]'" ); $db->query( "DELETE FROM " . PREFIX . "_poll WHERE news_id='$item_db[0]'" ); $db->query( "DELETE FROM " . PREFIX . "_poll_log WHERE news_id='$item_db[0]'" ); $db->query( "DELETE FROM " . PREFIX . "_rate WHERE type_id='$item_db[0]' AND type=1" ); $db->query( "DELETE FROM " . PREFIX . "_tags WHERE news_id = '$item_db[0]'" ); $db->query( "UPDATE " . USERPREFIX . "_users set news_num=news_num-1 where name='$item_db[1]'" ); $okdeleted = TRUE; $db->query("SELECT id, link, thumb FROM " . PREFIX . "_covers WHERE newsid = '$item_db[0]'"); while($row_covers = $db->get_row()){ @unlink(ROOT_DIR."/uploads".$row_covers['link']); @unlink(ROOT_DIR."/uploads".$row_covers['thumb']); } $db->query("DELETE FROM " . PREFIX . "_covers WHERE newsid = '$item_db[0]'"); $row = $db->super_query( "SELECT images FROM " . PREFIX . "_images where news_id = '$item_db[0]'" ); $listimages = explode( "|||", $row['images'] ); if( $row['images'] != "" ) foreach ( $listimages as $dataimages ) { $url_image = explode( "/", $dataimages ); if( count( $url_image ) == 2 ) { $folder_prefix = $url_image[0] . "/"; $dataimages = $url_image[1]; } else { $folder_prefix = ""; $dataimages = $url_image[0]; } @unlink( ROOT_DIR . "/uploads/posts/" . $folder_prefix . $dataimages ); @unlink( ROOT_DIR . "/uploads/posts/" . $folder_prefix . "thumbs/" . $dataimages ); } $db->query( "DELETE FROM " . PREFIX . "_images WHERE news_id = '$item_db[0]'" ); $db->query("SELECT id, onserver FROM " . PREFIX . "_torrents WHERE news_id = '$item_db[0]'"); while($row_torrents = $db->get_row()){ @unlink(ROOT_DIR."/uploads/torrents/".$row_torrents['onserver']); } //$db->query("DELETE FROM " . PREFIX . "_torrents WHERE news_id = '$item_db[0]'"); $db->query( "UPDATE " . PREFIX . "_torrents SET flags=1 where news_id='$item_db[0]'" ); $db->query( "SELECT id, onserver FROM " . PREFIX . "_files WHERE news_id = '$item_db[0]'" ); while ( $row = $db->get_row() ) { @unlink( ROOT_DIR . "/uploads/files/" . $row['onserver'] ); } $db->query( "DELETE FROM " . PREFIX . "_files WHERE news_id = '$item_db[0]'" ); } } else $no_permission = TRUE; } $cache->clear(); if( ! $_SESSION['admin_referrer'] ) { $_SESSION['admin_referrer'] = "?mod=editnews&action=list"; } if( $no_permission ) { msg( "error", $lang['addnews_error'], $lang['edit_denied'], $_SESSION['admin_referrer'] ); } elseif( $okdeleted ) { msg( "info", $lang['edit_delok'], $lang['edit_delok_1'], $_SESSION['admin_referrer'] ); } elseif( $okchanges ) { msg( "info", $lang['edit_alleok'], $lang['edit_alleok_1'], $_SESSION['admin_referrer'] ); } else { msg( "error", $lang['addnews_error'], $lang['edit_allerr'], $_SESSION['admin_referrer'] ); } } ?>