PDO::ERRMODE_WARNING, PDO::ATTR_PERSISTENT=>PERSISTENT]); }catch(PDOException $e){ die($I['nodb']); } asort($categories); echo ''; echo "$I[admintitle]"; echo ''; echo ''; echo ''; echo ''; echo "

$I[admintitle]

"; print_langs(); //check password if(!isSet($_POST['pass']) || $_POST['pass']!==ADMINPASS){ echo "'; if(isSet($_POST['pass'])){ echo "

$I[wrongpass]

"; } }else{ echo "

"; echo ""; echo ""; echo "

$I[link]:

'; echo "

$I[cloneof]:

'; echo "

$I[bitcoins]:

'; echo "

$I[adddesc]:
"; if(!empty($_REQUEST['desc'])){ echo htmlspecialchars(trim($_REQUEST['desc'])); }elseif(isSet($_REQUEST['addr'])){ if(preg_match('~(^(https?://)?([a-z2-7]{16}|[a-z2-7]{56})(\.onion(/.*)?)?$)~i', trim($_REQUEST['addr']), $addr)){ $addr=strtolower($addr[3]); $md5=md5($addr, true); $stmt=$db->prepare('SELECT description, category FROM ' . PREFIX . 'onions WHERE md5sum=?;'); $stmt->execute([$md5]); if($desc=$stmt->fetch(PDO::FETCH_ASSOC)){ $category=$desc['category']; echo str_replace('<br>', "\n", $desc['description']); } } } echo '

'; if(isSet($_REQUEST['cat']) && $_REQUEST['cat']=0){ $category=$_REQUEST['cat']; } if(!isSet($category)){ $category=count($categories); } echo "

$I[category]:

'; echo ''; echo ''; echo ""; echo ""; echo ""; echo ""; echo ''; echo ""; echo ""; echo ""; echo ""; echo ''; echo ""; echo '

'; echo '
'; if(!empty($_POST['addr'])){ if(!preg_match('~(^(https?://)?([a-z2-7]{16}|[a-z2-7]{56})(\.onion(/.*)?)?$)~i', trim($_POST['addr']), $addr)){ echo "

$I[invalonion]

"; }else{ $addr=strtolower($addr[3]); $md5=md5($addr, true); if($_POST['action']===$I['remove']){ //remove address from public display $db->prepare('UPDATE ' . PREFIX . "onions SET address='', locked=1 WHERE md5sum=?;")->execute([$md5]); echo "

$I[succremove]

"; }elseif($_POST['action']===$I['lock']){ //lock editing $db->prepare('UPDATE ' . PREFIX . 'onions SET locked=1 WHERE md5sum=?;')->execute([$md5]); echo "

$I[succlock]

"; }elseif($_POST['action']===$I['readd']){ //add onion back, if previously removed $db->prepare('UPDATE ' . PREFIX . 'onions SET address=?, locked=1 WHERE md5sum=?;')->execute([$addr, $md5]); echo "

$I[succreadd]

"; }elseif($_POST['action']===$I['unlock']){ //unlock editing $db->prepare('UPDATE ' . PREFIX . 'onions SET locked=0 WHERE md5sum=?;')->execute([$md5]); echo "

$I[succunlock]

"; }elseif($_POST['action']===$I['promote']){ //promote link for payed time $stmt=$db->prepare('SELECT special FROM ' . PREFIX . 'onions WHERE md5sum=?;'); $stmt->execute([$md5]); $specialtime=$stmt->fetch(PDO::FETCH_NUM); if($specialtime[0]prepare('UPDATE ' . PREFIX . 'onions SET special=?, locked=1 WHERE md5sum=?;')->execute([$time, $md5]); printf("

$I[succpromote]

", date('Y-m-d H:i', $time)); }elseif($_POST['action']===$I['unpromote']){ //remove promoted status $db->prepare('UPDATE ' . PREFIX . 'onions SET special=0 WHERE md5sum=?;')->execute([$md5]); echo "

$I[succunpromote]

"; }elseif($_POST['action']===$I['update']){ //update description $stmt=$db->prepare('SELECT * FROM ' . PREFIX . 'onions WHERE md5sum=?;'); $stmt->execute([$md5]); if($category===count($categories)){ $category=0; } if(!isSet($_POST['desc'])){ $desc=''; }else{ $desc=trim($_POST['desc']); $desc=htmlspecialchars($desc); $desc=preg_replace("/(\r?\n|\r\n?)/", '
', $desc); } if(!$stmt->fetch(PDO::FETCH_ASSOC)){ //not yet there, add it $stmt=$db->prepare('INSERT INTO ' . PREFIX . 'onions (address, description, md5sum, category, timeadded, locked) VALUES (?, ?, ?, ?, ?, 1);'); $stmt->execute([$addr, $desc, $md5, $category, time()]); echo "

$I[succadd]

"; }elseif($desc!=''){ //update description+category $stmt=$db->prepare('UPDATE ' . PREFIX . 'onions SET description=?, category=?, locked=1 WHERE md5sum=?;'); $stmt->execute([$desc, $category, $md5]); echo "

$I[succupddesc]

"; }elseif($category!=0){ //only update category $stmt=$db->prepare('UPDATE ' . PREFIX . 'onions SET category=?, locked=1 WHERE md5sum=?;'); $stmt->execute([$category, $md5]); echo "

$I[succupdcat]!

"; }else{ //no description or category change and already known echo "

$I[alreadyknown]

"; } }elseif($_POST['action']===$I['phishing']){//mark as phishing clone if($_POST['original']!=='' && !preg_match('~(^(https?://)?([a-z2-7]{16}|[a-z2-7]{56})(\.onion(/.*)?)?$)~i', $_POST['original'], $orig)){ echo "

$I[invalonion]

"; }else{ if(isset($orig[3])){ $orig=strtolower($orig[3]); }else{ $orig=''; } if($orig!==$addr){ $stmt=$db->prepare('INSERT INTO ' . PREFIX . 'phishing (onion_id, original) VALUES ((SELECT id FROM ' . PREFIX . 'onions WHERE address=?), ?);'); $stmt->execute([$addr, $orig]); $stmt=$db->prepare('UPDATE ' . PREFIX . 'onions SET locked=1 WHERE address=?;'); $stmt->execute([$addr]); echo "

$I[succaddphish]

"; }else{ echo "

$I[samephish]

"; } } }elseif($_POST['action']===$I['unphishing']){ //remove phishing clone status $stmt=$db->prepare('DELETE FROM ' . PREFIX . 'phishing WHERE onion_id=(SELECT id FROM ' . PREFIX . 'onions WHERE address=?);'); $stmt->execute([$addr]); echo "

$I[succrmphish]

"; }else{ //no specific button was pressed echo "

$I[noaction]

"; } } } } echo '

Onion Link List - ' . VERSION . '

'; echo '';