/** phpVS v3 **/
session_start();
if (substr_count($_SERVER['HTTP_ACCEPT_ENCODING'], 'gzip'))
{ ob_start("ob_gzhandler"); }
else
{ ob_start(); }
define('INSCRIPT', 1);
//i need better installed checks
if (!file_exists('./inc/config.php'))
{
echo 'Config.php does not exists. Redirecting to install.
';
exit;
}
if (file_exists('./install/index.php'))
{
echo 'The install file still exists. (Security risk!)
Please, remove ./install/*.* and the folder too.';
exit;
}
include_once dirname(__FILE__).'/inc/config.php';
include_once dirname(__FILE__).'/inc/functions.php';
track_user();
/* need to clean all the get/post stuff */
if (isset($_GET['id'])) { $id = intval($_GET['id']); }
if (isset($_GET['task'])) { $task = makesafe($_GET['task']); } else { $task = ''; }
if (isset($_GET['cat_id']))
{
$catid = intval($_GET['cat_id']);
if($catid > 0) { $task = 'viewcat'; }
}
if ('login' == $task)
{
$includefile = './inc/login.php';
}
elseif ('register' == $task)
{
$includefile = './inc/register.php';
}
elseif ('edit_profile' == $task)
{
$includefile = './inc/profile-edit.php';
}
elseif ('profile' == $task)
{
$includefile = './inc/profile.php';
}
elseif ('view_page' == $task)
{
$includefile = './inc/view-page.php';
}
elseif ('memberlist' == $task)
{
$includefile = './inc/members.php';
}
elseif ('lost_pass' == $task)
{
$includefile = './inc/pwchangemail.php';
}
elseif ('links' == $task)
{
$includefile = './inc/links.php';
}
elseif ('sendtofriend' == $task)
{
$includefile = './inc/sendtofriend.php';
}
elseif ('newcomments' == $task)
{
$includefile = './inc/newcomments.php';
}
elseif ('viewnew' == $task)
{
$includefile = './inc/view-new.php';
}
elseif ('viewpopular' == $task)
{
$includefile = './inc/view-popular.php';
}
elseif ('validate' == $task)
{
$includefile = './inc/validate.php';
}
elseif ('add_video' == $task)
{
$includefile = './inc/submit.php';
}
elseif ('logout' == $task)
{
session_destroy();
redirect($site_url);
exit;
}
elseif ('admin' == $task)
{
redirect($site_url . "/admin/index.php");
exit;
}
elseif ('addcomment' == $task)
{
if (isset($_POST['comment']))
{
$comment = makesafe($_POST['comment']);
}
else
{
redirect("$site_url/index.php?task=view&id=$id");
exit;
}
if (isset($_POST['comment']))
{
$db->connect();
$db->query("INSERT INTO `{$SQL_Ext}_comments` (`user`, `comment`, `link_id`, `thedate`) VALUES ('$_SESSION[ava_userid]', '$comment', '$id', '".date("m-d-y")."')");
$db->close();
unset($comment);
redirect("$site_url/index.php?task=view&id=$id");
exit;
}
else
{
redirect($site_url);
exit;
}
}
elseif ('view' == $task)
{
$db->connect();
$media_sql = $db->query("SELECT `description`, `views`, `keywords`, `name`, `catergory_id`, `description`, `remote_image`, `image`, `type`, `width`, `height`, `url`, `custom` FROM `{$SQL_Ext}_media` WHERE `id` = $id limit 1");
if (0 == $db->num_rows($media_sql))
{ redirect($site_url); exit; }
else
{
$media_row = $db->fetch_assoc($media_sql);
$site_description = str_replace('"', "",html_entity_decode($media_row['description'],ENT_QUOTES));
$site_keywords = $media_row['keywords'];
}
$db->cl