Mirror/Gazelle
1
0
Fork 0
mirror of https://github.com/WhatCD/Gazelle.git synced 2024-12-14 03:16:25 +00:00
Code Issues Actions Packages Projects Releases Wiki Activity

Empty commit

Browse Source
This commit is contained in:
Git 2012-06-03 08:00:14 +00:00
parent e2284cae1c
commit 91e6660e94
3 changed files with 10 additions and 9 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

4
sections/collages/browse.php
View File

@ -222,7 +222,9 @@
} }
if (check_perms('site_collages_subscribe')) { ?> if (check_perms('site_collages_subscribe')) { ?>
<a href="userhistory.php?action=subscribed_collages">[My Subscribed Collages]</a> <a href="userhistory.php?action=subscribed_collages">[My Subscribed Collages]</a>
<? } <? } ?>
<a href="bookmarks.php?type=collages">[Bookmarked Collages]</a>
<?
if (check_perms('site_collages_recover')) { ?> if (check_perms('site_collages_recover')) { ?>
<a href="collages.php?action=recover">[Recover collage]</a> <a href="collages.php?action=recover">[Recover collage]</a>
<? <?

6
sections/collages/edit.php
View File

@ -29,9 +29,9 @@
<td> <td>
<select name="category"> <select name="category">
<? <?
if (!check_perms('site_collages_delete')) { array_shift($CollageCats); } foreach($CollageCats as $CatID=>$CatName) {
foreach($CollageCats as $CatID=>$CatName) { ?> if (!check_perms('site_collages_delete') && $CatID == 0) { continue; } // Only mod-type get to make things personal ?>
<option value="<?=$CatID?>" <? if($CatID == $CategoryID) { echo ' selected="selected"'; }?>><?=$CatName?></option> <option value="<?=$CatID?>" <? if($CatID == $CategoryID) { echo ' selected="selected"'; }?>><?=$CatName?></option>
<? } ?> <? } ?>
</select> </select>
</td> </td>

9
sections/torrents/takeedit.php
View File

@ -83,6 +83,9 @@
//--------------- Validate data in edit form -----------------------------------// //--------------- Validate data in edit form -----------------------------------//
$DB->query('SELECT UserID, Remastered, RemasterYear, FreeTorrent FROM torrents WHERE ID='.$TorrentID); $DB->query('SELECT UserID, Remastered, RemasterYear, FreeTorrent FROM torrents WHERE ID='.$TorrentID);
if($DB->record_count() == 0) {
error(404);
}
list($UserID, $Remastered, $RemasterYear, $CurFreeLeech) = $DB->next_record(MYSQLI_BOTH, false); list($UserID, $Remastered, $RemasterYear, $CurFreeLeech) = $DB->next_record(MYSQLI_BOTH, false);
if($LoggedUser['ID']!=$UserID && !check_perms('torrents_edit')) { if($LoggedUser['ID']!=$UserID && !check_perms('torrents_edit')) {
@ -93,13 +96,9 @@
error(403); error(403);
} }
$DB->query("SELECT UserID FROM torrents WHERE ID = ".$TorrentID);
list($UploaderID) = $DB->next_record();
if($Properties['UnknownRelease'] && !($Remastered == '1' && !$RemasterYear) && !check_perms('edit_unknowns')) { if($Properties['UnknownRelease'] && !($Remastered == '1' && !$RemasterYear) && !check_perms('edit_unknowns')) {
//It's Unknown now, and it wasn't before //It's Unknown now, and it wasn't before
if($LoggedUser['ID'] != $UploaderID) { if($LoggedUser['ID'] != $UserID) {
//Hax //Hax
die(); die();
} }