archive
/
utd-control-panel
Watch 1
Star 0
Fork 0
Code Issues 0 Pull Requests 0 Releases 0 Wiki Activity
Unsupported scripts and control panel web app for a hosting company
You can not select more than 25 topics Topics must start with a letter or number, can include dashes ('-') and can be up to 35 characters long.
2 Commits
1 Branch
Tree: 415764575f
Branches Tags
${ item.name }
Create branch ${ searchTerm }
from '415764575f'
${ noResults }
utd-control-panel/www/addsite.php

addsite.php 2.5KB
History Raw

1234567891011121314151617181920212223242526272829303132333435363738394041424344454647484950515253545556575859606162636465666768697071727374 
  1. <?PHP

  2. 

  3.  require_once('lib/dashboard.php');

  4.  require_once('lib/common.php');

  5.  require_once('lib/account.php');

  6. 

  7.  checkAccess(HAS_HOSTING);

  8.  

  9.  define('TITLE', 'Add site');

  10.  

  11.  addDashboardItem('Useful links', 'Support center', 'support');

  12.   

  13.  function meep () {

  14.   if (!isset($_POST['docroot']) || !isset($_POST['domain'])) {

  15.    return;

  16.   }

  17.   if (!ctype_digit($_POST['domain'])) {

  18.    define('MESSAGE', 'Invalid domain name');

  19.    return;

  20.   }

  21.   $path = '/home/'.USER.'/'.$_POST['docroot'];

  22.   $path = preg_replace('#/(.*?)/\.\./#','/',$path);

  23.   $path = preg_replace('#//+#','/',$path);

  24.   $path = preg_replace('#/\./#', '/', $path);

  25.   if (substr($path, 0, strlen('/home/'.USER.'/')) != '/home/'.USER.'/') {

  26.    logger::log('Potential attack; attempted to create site with doc root "'.$_POST['docroot'].'"',logger::normal);

  27.    define('MESSAGE', 'Invalid document root');

  28.    return;

  29.   }

  30.   if (substr($path,-1) == '/') { $path = substr($path,0,-1); }

  31.   $sql = 'SELECT user_id, domain_name FROM domains WHERE domain_id = '.m($_POST['domain']);

  32.   $res = mq($sql, __FILE__, __LINE__);

  33.   if (mysql_num_rows($res) == 0) {

  34.    define('MESSAGE', 'No such domain name');

  35.    return;

  36.   }

  37.   $row = mysql_fetch_array($res);

  38.   if ($row['user_id'] != UID) {

  39.    logger::log('Potential attack; attempted to create site with domain name "'.$row['domain_name'].'" (belongs to another user)', logger::normal);

  40.    define('MESSAGE', 'No such domain name');

  41.    return;

  42.   }

  43.   $sql = 'SELECT record_value FROM records WHERE domain_id = '.m($_POST['domain']).' AND record_type = \'UTD\'';

  44.   $re2 = mq($sql, __FILE__, __LINE__);

  45.   if (mysql_num_rows($re2) > 0) {

  46.    define('MESSAGE', 'Domain name is already associated with another site.');

  47.    return;

  48.   }

  49.   $sql = 'INSERT INTO sites (user_id, site_name, site_docroot, site_curdocroot) VALUES ('.UID.', \''.m($row['domain_name']).'\',\''.m($path).'\',\''.m($path).'\')';

  50.   $res = mysql_query($sql) or mf(__FILE__, __LINE__, $sql);

  51.   $id = mysql_insert_id();

  52.   $sql = 'INSERT INTO records (record_type, domain_id, record_value) VALUES (\'UTD\', '.m($_POST['domain']).', \''.m($id).'\')';

  53.   mysql_query($sql) or mf(__FILE__, __LINE__, $sql);

  54. 

  55.   $sql  = 'INSERT INTO actions (user_id, action_type, action_value) VALUES (';

  56.   $sql .= UID . ', \'updateconf\', \'bind\')';

  57.   mysql_query($sql) or mf(__FILE__, __LINE__, $sql);

  58. 

  59.   logger::log('Added site: '.$row['domain_name'].' ['.$path.']', logger::info);

  60.   header('Location: '.CP_PATH.'editsite/'.$id);

  61.   exit;

  62.  }

  63. 

  64.  meep();

  65. 

  66. 

  67.  require_once('lib/header.php');

  68.  

  69.  require_once('pages/addsite.php');

  70.  

  71.  require_once('lib/footer.php');

  72. 

  73. 

  74. ?>