parent.location = \"$hlink\""; die(); } } include ("sorclar/guvenlik.php"); include ("sorclar/fonks.php"); include ("sorclar/hafaza.php"); yuklemesetim(); if(isset($_SERVER['QUERY_STRING'])) { $haynsnet = $_SERVER['QUERY_STRING']; $haynsnetguvenlik = array('chr(', 'wget', 'cmd=', 'rush=', 'union', 'UNION', 'echr(', 'esystem(', 'cp%20', 'mdir%20', 'mcd%20', 'mrd%20', 'rm%20', 'mv%20', 'rmdir%20', 'chmod(', 'chmod%20', 'chown%20', 'chgrp%20', 'locate%20', 'grep%20', 'diff%20', 'kill%20', 'kill(', 'killall', 'passwd%20', 'telnet%20', 'vi(', 'vi%20', 'INSERT%20INTO','insert%20into','select%20', 'SELECT%20', 'nigga', 'fopen', 'fwrite', '$_REQUEST', '$_GET'); $guvenlik = str_replace($haynsnetguvenlik, '*', $haynsnet); if ($haynsnet != $guvenlik) { $hadegit = $_SERVER['REMOTE_ADDR']; $bilgiler = $_SERVER['HTTP_USER_AGENT']; $ipadres = GETENV("REMOTE_ADDR"); if($hayseti["sys_shmacik"]=="1"){ $gmes="Yanlış işlem Ip:$ipadres $i$bilgiler"; $gmestur="goster Sayfa"; include("yonetim/hatagonder.php");} die( "Yanlış işlem Ip:$ipadres $i$bilgiler" ); } } $yildiz=guvenliks($_GET["hayns"]); $adnan=guvenliks($_GET["yazilim"]); $turk=guvenliks($_GET["osmanli"]); $turko=guvenliks($_GET["alfabim"]); $turk=$turk=="" ? $turko:$turk; $akbid=guvenliks($_GET["anid"]); $board=guvenliks($_GET["board"]); $alide=guvenliks($_GET["alide"]); if (isset($adnan)) { if (ereg("http", $adnan)) { if($hayseti["sys_shmacik"]=="1"){ $gmestur="goster protokol"; $bilgiler = $_SERVER['HTTP_USER_AGENT']; $gmes=htmlspecialchars($_GET["yazilim"])." adli degisken ".$ipcontrol." sahibi tarafindan denendi. Kullandigi explorer : ".$bilgiler; include("yonetim/hatagonder.php");} die(" hata! Saldırı algılama işlemi durum rapor edildi."); } } include ("sorclar/sifre_kontrol.php"); //include ("sorclar/doviz_kontrol.php"); grpizinler($infom['grup_kim'],$uye_bilgileri_array['ytipi']); $snsyf_sy= @mysql_query("select * from {$prefix}sayfalar where girismi='1'",$vtyol); $sy_sy=@mysql_fetch_array($snsyf_sy); @mysql_free_result($snsyf_sy); tema_yukle($sy_sy['sid']); if(file_exists($hayseti['themes']['tema_dir']."/tema.php")) { $hayseti['atema']= $hayseti['themes']['tema_dir']."/tema.php"; }else{ $hayseti['atema'] = "tema/tema_hayns/tema.php"; echo "Tema dizininde yanlışlık var "; } $selamis=$board=="" ? $alide:$board; $result = @mysql_query("SELECT anaid FROM {$prefix}board WHERE md5(id) = '$selamis' LIMIT 1", $vtyol); list ($modu_id) = @mysql_fetch_row($result); @mysql_free_result($result); if($modu_id!=""){ $result = db_querys(" SELECT logoid FROM {$prefix}modules WHERE mid = '$modu_id' LIMIT 1", false, false); list ($gozum) = @mysql_fetch_row($result); @mysql_free_result($result); } if($gozum=="" || $gozum=="0"){ $gozum=$hayseti["sys_anabaner"]; } include($hayseti['atema']); $titlem=""; if(guvenliks($_GET["titlem"])!=""){ $titlem=guvenliks($_GET["titlem"]); } $kimem=guvenliks($_GET["kmen"]); switch ( $kimem ) { case "2" : // case "3" : //kongöster case "12" : case "22" : $msgne=guvenliks($_GET["msgn"]); $result = @mysql_query("select subject from {$prefix}megages where ID_MSG=".$msgne,$vtyol); list ($titlem) = @mysql_fetch_row($result); @mysql_free_result($result); break; case "1" ://konulu case "5" : // case "7" : $result = @mysql_query("select baslik from {$prefix}board where md5(id)='".$board."'",$vtyol); list ($titlem) = @mysql_fetch_row($result); @mysql_free_result($result); break; case "6" : case "11" : $result = @mysql_query("select baslik from {$prefix}board where md5(id)='".$board."'",$vtyol); list ($titlem) = @mysql_fetch_row($result); @mysql_free_result($result); break; case "227" : // case "77" : case "11" : $alider=guvenliks($_GET["alide"]); $result = @mysql_query("select baslik from {$prefix}board where md5(id)='".$alider."'",$vtyol); list ($titlem) = @mysql_fetch_row($result); @mysql_free_result($result); break; default: } include ("ybeskoy/atelye/ustheader.php"); ustumfonk(duzeduz($titlem),$ziyaretci_bilgileri_array["gid"]); include("tema/default/soltar.php");?>