forked from sir55/xbtit
-
Notifications
You must be signed in to change notification settings - Fork 0
/
Copy pathdelete.php
129 lines (109 loc) · 5.63 KB
/
delete.php
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
64
65
66
67
68
69
70
71
72
73
74
75
76
77
78
79
80
81
82
83
84
85
86
87
88
89
90
91
92
93
94
95
96
97
98
99
100
101
102
103
104
105
106
107
108
109
110
111
112
113
114
115
116
117
118
119
120
121
122
123
124
125
126
127
128
129
<?php
/////////////////////////////////////////////////////////////////////////////////////
// xbtit - Bittorrent tracker/frontend
//
// Copyright (C) 2004 - 2019 Btiteam
//
// This file is part of xbtit.
//
// Redistribution and use in source and binary forms, with or without modification,
// are permitted provided that the following conditions are met:
//
// 1. Redistributions of source code must retain the above copyright notice,
// this list of conditions and the following disclaimer.
// 2. Redistributions in binary form must reproduce the above copyright notice,
// this list of conditions and the following disclaimer in the documentation
// and/or other materials provided with the distribution.
// 3. The name of the author may not be used to endorse or promote products
// derived from this software without specific prior written permission.
//
// THIS SOFTWARE IS PROVIDED BY THE AUTHOR ``AS IS'' AND ANY EXPRESS OR IMPLIED
// WARRANTIES, INCLUDING, BUT NOT LIMITED TO, THE IMPLIED WARRANTIES OF
// MERCHANTABILITY AND FITNESS FOR A PARTICULAR PURPOSE ARE DISCLAIMED.
// IN NO EVENT SHALL THE AUTHOR BE LIABLE FOR ANY DIRECT, INDIRECT, INCIDENTAL,
// SPECIAL, EXEMPLARY, OR CONSEQUENTIAL DAMAGES (INCLUDING, BUT NOT LIMITED
// TO, PROCUREMENT OF SUBSTITUTE GOODS OR SERVICES; LOSS OF USE, DATA, OR
// PROFITS; OR BUSINESS INTERRUPTION) HOWEVER CAUSED AND ON ANY THEORY OF
// LIABILITY, WHETHER IN CONTRACT, STRICT LIABILITY, OR TORT (INCLUDING
// NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF THIS SOFTWARE,
// EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
//
////////////////////////////////////////////////////////////////////////////////////
if (!defined('IN_BTIT')) {
die('non direct access!');
}
$id = mysqli_real_escape_string($GLOBALS['conn'], $_GET['info_hash']);
if (!isset($id) || !$id) {
die('Error ID');
}
if ($XBTT_USE) {
$res = do_sqlquery('SELECT '.$query1_select." f.info_hash, f.uploader, f.filename, f.url, UNIX_TIMESTAMP(f.data) as data, f.size, f.comment, c.name as cat_name, f.seeds+ ifnull(x.seeders,0) as seeds, f.leechers+ ifnull(x.leechers,0) as leechers, f.finished+ ifnull(x.completed,0) as finished, f.speed FROM {$TABLE_PREFIX}files f LEFT JOIN xbt_files x ON x.info_hash=f.bin_hash LEFT JOIN {$TABLE_PREFIX}categories c ON c.id=f.category WHERE f.info_hash ='".$id."'", true);
} else {
$res = do_sqlquery('SELECT '.$query1_select." f.info_hash, f.uploader, f.filename, f.url, UNIX_TIMESTAMP(f.data) as data, f.size, f.comment, c.name as cat_name, f.seeds, f.leechers, f.finished, f.speed FROM {$TABLE_PREFIX}files f LEFT JOIN {$TABLE_PREFIX}categories c ON c.id=f.category WHERE f.info_hash ='".$id."'", true);
}
$row = mysqli_fetch_assoc($res);
if (!$CURUSER || $CURUSER['uid'] < 2 || ($CURUSER['delete_torrents'] != 'yes' && $CURUSER['uid'] != $row['uploader'])) {
stderr($language['SORRY'], $language['CANT_DELETE_TORRENT']);
}
$scriptname = htmlspecialchars($_SERVER['PHP_SELF']);
$link = urldecode($_GET['returnto']);
$hash = addslashes($_GET['info_hash']);
if ($link == '') {
$link = 'index.php?page=torrents';
}
if (isset($_POST['action'])) {
if ($_POST['action'] == $language['FRM_DELETE']) {
$ris = do_sqlquery("SELECT f.info_hash, f.filename, f.url, f.uploader, u.username FROM {$TABLE_PREFIX}files f , {$TABLE_PREFIX}users u WHERE f.uploader=u.id AND info_hash=\"$hash\"") or die(mysqli_error($GLOBALS['conn']));
if (mysqli_num_rows($ris) == 0) {
stderr('Sorry!', "torrent $hash not found.");
} else {
list($torhash, $torname, $torurl) = mysqli_fetch_array($ris);
}
write_log("Deleted torrent $torname ($torhash)", 'delete');
@do_sqlquery("DELETE FROM {$TABLE_PREFIX}files WHERE info_hash=\"$hash\"");
@do_sqlquery("DELETE FROM {$TABLE_PREFIX}timestamps WHERE info_hash=\"$hash\"");
@do_sqlquery("DELETE FROM {$TABLE_PREFIX}comments WHERE info_hash=\"$hash\"");
@do_sqlquery("DELETE FROM {$TABLE_PREFIX}ratings WHERE infohash=\"$hash\"");
@do_sqlquery("DELETE FROM {$TABLE_PREFIX}peers WHERE infohash=\"$hash\"");
@do_sqlquery("DELETE FROM {$TABLE_PREFIX}history WHERE infohash=\"$hash\"");
if ($XBTT_USE) {
do_sqlquery("UPDATE xbt_files SET flags=1 WHERE info_hash=UNHEX('$hash')") or die(mysqli_error($GLOBALS['conn']));
}
unlink($TORRENTSDIR."/$hash.btf");
redirect($link);
exit();
} else {
redirect($link);
exit();
}
}
$torrenttpl = new bTemplate();
$torrenttpl->set('language', $language);
$torrent = [];
$torrent['filename'] = $row['filename'];
$torrent['info_hash'] = $row['info_hash'];
$torrent['description'] = format_comment($row['comment']);
$torrent['catname'] = $row['cat_name'];
$torrent['size'] = makesize($row['size']);
include __DIR__.'/include/offset.php';
$torrent['date'] = date('d/m/Y', $row['data'] - $offset);
if (!$XBTT_USE) {
if ($row['speed'] < 0) {
$speed = 'N/D';
} elseif ($row['speed'] > 2097152) {
$speed = round($row['speed'] / 1048576, 2).' MB/sec';
} else {
$speed = round($row['speed'] / 1024, 2).' KB/sec';
}
$torrenttpl->set('NO_XBBT', true, true);
} else {
$torrenttpl->set('NO_XBBT', false, true);
}
$torrent['speed'] = $speed;
$torrent['complete'] = $row['finished'];
$torrent['peers'] = $language['PEERS'].' :'.$row['seeds'].','.$language['LEECHERS'].': '.$row['leechers'].'='.($row['leechers'] + $row['seeds']).' '.$language['PEERS'];
$torrent['return'] = urlencode($link);
unset($row);
((mysqli_free_result($res) || (is_object($res) && (get_class($res) == 'mysqli_result'))) ? true : false);
$torrenttpl->set('torrent', $torrent);
?>