AUTH_KEY * [torrentid] => TORRENT_ID * [type] => TYPE * [otherid] => OTHER_ID * * It should not be used on site as is, except in its current use (Switch) as it is lacking for any purpose but this. */ if (!check_perms('admin_reports')) { error(403); } authorize(); if (!is_number($_POST['torrentid'])) { echo 'No Torrent ID'; die(); } else { $TorrentID = $_POST['torrentid']; } $DB->query(" SELECT tg.CategoryID FROM torrents_group AS tg JOIN torrents AS t ON t.GroupID=tg.ID WHERE t.ID = ".$TorrentID); if ($DB->record_count() < 1) { $Err = 'No torrent with that ID exists!'; } else { list($CategoryID) = $DB->next_record(); } if (!isset($_POST['type'])) { echo 'Missing Type'; die(); } else if (array_key_exists($_POST['type'], $Types[$CategoryID])) { $Type = $_POST['type']; $ReportType = $Types[$CategoryID][$Type]; } else if (array_key_exists($_POST['type'],$Types['master'])) { $Type = $_POST['type']; $ReportType = $Types['master'][$Type]; } else { //There was a type but it wasn't an option! echo 'Wrong type'; die(); } $ExtraID = $_POST['otherid']; if (!empty($_POST['extra'])) { $Extra = db_string($_POST['extra']); } else { $Extra = ''; } if (!empty($Err)) { echo $Err; die(); } $DB->query(" SELECT ID FROM reportsv2 WHERE TorrentID=$TorrentID AND ReporterID=".db_string($LoggedUser['ID'])." AND ReportedTime > '".time_minus(3)."'"); if ($DB->record_count() > 0) { die(); } $DB->query(" INSERT INTO reportsv2 (ReporterID, TorrentID, Type, UserComment, Status, ReportedTime, ExtraID) VALUES (".db_string($LoggedUser['ID']).", $TorrentID, '$Type', '$Extra', 'New', '".sqltime()."', '$ExtraID')"); $ReportID = $DB->inserted_id(); $Cache->delete_value('reports_torrent_'.$TorrentID); $Cache->increment('num_torrent_reportsv2'); echo $ReportID; ?>