2020-12-26 01:42:23 +08:00
< ? php
2021-01-13 19:32:26 +08:00
require " ../include/bittorrent.php " ;
2020-12-26 01:42:23 +08:00
dbconn ();
require_once ( get_langfile_path ());
2025-04-21 11:57:24 +07:00
//require_once(get_langfile_path("",true));
2020-12-26 01:42:23 +08:00
loggedinorreturn ();
if ( ! isset ( $CURUSER ))
stderr ( $lang_subtitles [ 'std_error' ], $lang_subtitles [ 'std_must_login_to_upload' ]);
stdhead ( $lang_subtitles [ 'head_subtitles' ]);
2020-12-28 20:52:54 +08:00
$in_detail = $_POST [ 'in_detail' ] ? ? '' ;
2021-01-06 02:19:03 +08:00
$detail_torrent_id = intval ( $_POST [ 'detail_torrent_id' ] ? ? 0 );
2020-12-28 20:52:54 +08:00
$torrent_name = $_POST [ 'torrent_name' ] ? ? '' ;
2020-12-26 01:42:23 +08:00
function isInteger ( $n )
{
if ( preg_match ( " /[^0-^9]+/ " , $n ) > 0 )
{
return false ;
}
return true ;
}
2021-01-06 02:19:03 +08:00
$act = intval ( $_GET [ " act " ] ? ? 0 );
2020-12-28 20:52:54 +08:00
$search = trim ( $_GET [ 'search' ] ? ? '' );
$letter = trim ( $_GET [ " letter " ] ? ? '' );
2020-12-26 01:42:23 +08:00
if ( strlen ( $letter ) > 1 )
die ;
if ( $letter == " " || strpos ( " abcdefghijklmnopqrstuvwxyz " , $letter ) === false )
$letter = " " ;
2021-01-06 02:19:03 +08:00
$lang_id = intval ( $_GET [ 'lang_id' ] ? ? 0 );
2020-12-26 01:42:23 +08:00
if ( ! is_valid_id ( $lang_id ))
$lang_id = '' ;
$query = " " ;
if ( $search != '' )
{
$query = " subs.title LIKE " . sqlesc ( " % $search % " ) . " " ;
if ( $search )
$q = " search= " . rawurlencode ( $search );
}
elseif ( $letter != '' )
{
$query = " subs.title LIKE " . sqlesc ( " $letter % " );
$q = " letter= $letter " ;
}
if ( $lang_id )
{
$query .= ( $query ? " AND " : " " ) . " subs.lang_id= " . sqlesc ( $lang_id );
$q = ( $q ? $q . " & " : " " ) . " lang_id= " . sqlesc ( $lang_id );
}
2020-12-29 21:49:37 +08:00
if ( $_SERVER [ " REQUEST_METHOD " ] == " POST " && isset ( $_POST [ " action " ]) && $_POST [ " action " ] == " upload " && ( $in_detail != 'in_detail' ))
2020-12-26 01:42:23 +08:00
{
//start process upload file
$file = $_FILES [ 'file' ];
if ( ! $file || $file [ " size " ] == 0 || $file [ " name " ] == " " )
{
echo ( $lang_subtitles [ 'std_nothing_received' ]);
exit ;
}
if ( $file [ " size " ] > $maxsubsize_main && $maxsubsize_main > 0 )
{
echo ( $lang_subtitles [ 'std_subs_too_big' ]);
exit ;
}
2020-12-29 21:49:37 +08:00
$accept_ext = array ( 'sub' => 'sub' , 'srt' => 'srt' , 'zip' => 'zip' , 'rar' => 'rar' , 'ace' => 'ace' , 'txt' => 'txt' , 'SUB' => 'SUB' , 'SRT' => 'SRT' , 'ZIP' => 'ZIP' , 'RAR' => 'RAR' , 'ACE' => 'ACE' , 'TXT' => 'TXT' , 'ssa' => 'ssa' , 'ass' => 'ass' , 'cue' => 'cue' );
2020-12-26 01:42:23 +08:00
$ext_l = strrpos ( $file [ 'name' ], " . " );
$ext = strtolower ( substr ( $file [ 'name' ], $ext_l + 1 , strlen ( $file [ 'name' ]) - ( $ext_l + 1 )));
if ( ! array_key_exists ( $ext , $accept_ext ))
{
echo ( $lang_subtitles [ 'std_wrong_subs_format' ]);
exit ;
}
/*
if (file_exists("$SUBSPATH/$file[name]"))
{
echo($lang_subtitles['std_file_already_exists']);
exit;
}
*/
2022-02-20 21:50:03 +08:00
2020-12-26 01:42:23 +08:00
//end process upload file
//start process torrent ID
if ( ! $_POST [ " torrent_id " ])
{
2023-05-20 00:17:17 +08:00
echo ( $lang_subtitles [ 'std_missing_torrent_id' ] . htmlspecialchars ( $file [ 'name' ]) . " </b></font> ! " );
2020-12-26 01:42:23 +08:00
exit ;
}
else
{
$torrent_id = $_POST [ " torrent_id " ];
if ( ! is_numeric ( $_POST [ " torrent_id " ]) || ! isInteger ( $_POST [ " torrent_id " ]))
{
echo ( $lang_subtitles [ 'std_invalid_torrent_id' ]);
exit ;
}
$r = sql_query ( " SELECT * from torrents where id = " . sqlesc ( $torrent_id )) or sqlerr ( __FILE__ , __LINE__ );
if ( ! mysql_num_rows ( $r ))
{
echo ( $lang_subtitles [ 'std_invalid_torrent_id' ]);
exit ;
}
else
{
$r_a = mysql_fetch_assoc ( $r );
2022-08-20 19:11:28 +08:00
if ( $r_a [ " owner " ] != $CURUSER [ " id " ] && ! user_can ( 'uploadsub' ))
2020-12-26 01:42:23 +08:00
{
echo ( $lang_subtitles [ 'std_no_permission_uploading_others' ]);
exit ;
}
}
}
//end process torrent ID
//start process title
$title = trim ( $_POST [ " title " ]);
if ( $title == " " )
{
$title = substr ( $file [ " name " ], 0 , strrpos ( $file [ " name " ], " . " ));
if ( ! $title )
$title = $file [ " name " ];
$file [ " name " ] = str_replace ( " " , " _ " , htmlspecialchars ( " $file[name] " ));
}
/*
$r = sql_query("SELECT id FROM subs WHERE title=" . sqlesc($title)) or sqlerr(__FILE__, __LINE__);
if (mysql_num_rows($r) > 0)
{
echo($lang_subtitles['std_file_same_name_exists']."<font color=red><b>" . htmlspecialchars($title) . "</b></font> ");
exit;
}
*/
//end process title
//start process language
if ( $_POST [ 'sel_lang' ] == 0 )
{
echo ( $lang_subtitles [ 'std_must_choose_language' ]);
exit ;
}
else
{
$lang_id = $_POST [ 'sel_lang' ];
}
//end process language
2022-08-20 19:11:28 +08:00
if ( isset ( $_POST [ 'uplver' ]) && $_POST [ 'uplver' ] == 'yes' && user_can ( 'beanonymous' )) {
2020-12-26 01:42:23 +08:00
$anonymous = " yes " ;
$anon = " Anonymous " ;
}
else {
$anonymous = " no " ;
$anon = $CURUSER [ " username " ];
}
2022-02-20 21:50:03 +08:00
2020-12-26 01:42:23 +08:00
//$file["name"] = str_replace("", "_", htmlspecialchars("$file[name]"));
//$file["name"] = preg_replace('/[^a-z0-9_\-\.]/i', '_', $file[name]);
2022-02-20 21:50:03 +08:00
2020-12-26 01:42:23 +08:00
//make_folder($SUBSPATH."/",$detail_torrent_id);
//stderr("",$file["name"]);
2022-02-20 21:50:03 +08:00
2020-12-26 01:42:23 +08:00
$r = sql_query ( " SELECT lang_name from language WHERE sub_lang=1 AND id = " . sqlesc ( $lang_id )) or sqlerr ( __FILE__ , __LINE__ );
$arr = mysql_fetch_assoc ( $r );
$filename = $file [ " name " ];
$added = date ( " Y-m-d H:i:s " );
$uppedby = $CURUSER [ " id " ];
$size = $file [ " size " ];
sql_query ( " INSERT INTO subs (torrent_id, lang_id, title, filename, added, uppedby, anonymous, size, ext) VALUES ( " . implode ( " , " , array_map ( " sqlesc " , array ( $torrent_id , $lang_id , $title , $filename , $added , $uppedby , $anonymous , $size , $ext ))) . " ) " ) or sqlerr ();
2022-02-20 21:50:03 +08:00
2020-12-26 01:42:23 +08:00
$id = mysql_insert_id ();
2022-02-20 21:50:03 +08:00
2020-12-26 01:42:23 +08:00
//stderr("",make_folder($SUBSPATH."/",$torrent_id). "/" . $id . "." .$ext);
if ( ! move_uploaded_file ( $file [ " tmp_name " ], make_folder ( $SUBSPATH . " / " , $torrent_id ) . " / " . $id . " . " . $ext ))
echo ( $lang_subtitles [ 'std_failed_moving_file' ]);
2022-02-20 21:50:03 +08:00
2020-12-26 01:42:23 +08:00
KPS ( " + " , $uploadsubtitle_bonus , $uppedby ); //subtitle uploader gets bonus
2022-02-20 21:50:03 +08:00
2020-12-26 01:42:23 +08:00
write_log ( " $arr[lang_name] Subtitle $id ( $title ) was uploaded by $anon " );
$msg_bt = " $arr[lang_name] Subtitle $id ( $title ) was uploaded by $anon , Download: " . get_protocol_prefix () . " $BASEURL /downloadsubs.php/ " . $file [ " name " ] . " " ;
}
2022-08-20 19:11:28 +08:00
if ( user_can ( 'delownsub' ))
2020-12-26 01:42:23 +08:00
{
2021-01-06 02:19:03 +08:00
$delete = intval ( $_GET [ " delete " ] ? ? 0 );
2020-12-26 01:42:23 +08:00
if ( is_valid_id ( $delete ))
{
$r = sql_query ( " SELECT id,torrent_id,ext,lang_id,title,filename,uppedby,anonymous FROM subs WHERE id= " . sqlesc ( $delete )) or sqlerr ( __FILE__ , __LINE__ );
if ( mysql_num_rows ( $r ) == 1 )
{
$a = mysql_fetch_assoc ( $r );
2022-08-20 19:11:28 +08:00
if ( user_can ( 'submanage' ) || $a [ " uppedby " ] == $CURUSER [ " id " ])
2020-12-26 01:42:23 +08:00
{
2021-01-06 02:19:03 +08:00
$sure = intval ( $_GET [ " sure " ] ? ? 0 );
2020-12-26 01:42:23 +08:00
if ( $sure == 1 )
{
$reason = $_POST [ " reason " ];
2022-05-14 16:01:28 +08:00
$filename = getFullDirectory ( " $SUBSPATH / $a[torrent_id] / $a[id] . $a[ext] " );
do_log ( " Going to delete subtitle: $filename ... " );
if ( !@ unlink ( $filename )) {
do_log ( " Delete subtitle: $filename fail. " , 'error' );
2020-12-26 01:42:23 +08:00
stdmsg ( $lang_subtitles [ 'std_error' ], $lang_subtitles [ 'std_this_file' ] . " $a[filename] " . $lang_subtitles [ 'std_is_invalid' ]);
stdfoot ();
die ;
2022-05-14 16:01:28 +08:00
} else {
sql_query ( " DELETE FROM subs WHERE id= $delete " ) or sqlerr ( __FILE__ , __LINE__ );
KPS ( " - " , $uploadsubtitle_bonus , $a [ " uppedby " ]); //subtitle uploader loses bonus for deleted subtitle
2020-12-26 01:42:23 +08:00
}
if ( $CURUSER [ 'id' ] != $a [ 'uppedby' ]){
2025-04-21 02:53:56 +07:00
$locale = get_user_locale ( $a [ 'uppedby' ]);
$msg = $CURUSER [ 'username' ] . nexus_trans ( " subtitle.msg_deleted_your_sub " , [], $locale ) . $a [ 'title' ] . ( $reason != " " ? nexus_trans ( " subtitle.msg_reason_is " , [], $locale ) . $reason : " " );
$subject = nexus_trans ( " subtitle.msg_your_sub_deleted " , [], $locale );
2020-12-26 01:42:23 +08:00
$time = date ( " Y-m-d H:i:s " );
2025-09-16 20:14:51 +08:00
\App\Models\Message :: add ([
'sender' => 0 ,
'receiver' => $a [ 'uppedby' ],
'added' => now (),
'msg' => $msg ,
'subject' => $subject ,
]);
2020-12-26 01:42:23 +08:00
}
$res = sql_query ( " SELECT lang_name from language WHERE sub_lang=1 AND id = " . sqlesc ( $a [ " lang_id " ])) or sqlerr ( __FILE__ , __LINE__ );
$arr = mysql_fetch_assoc ( $res );
write_log ( " $arr[lang_name] Subtitle $delete ( $a[title] ) was deleted by " . (( $a [ " anonymous " ] == 'yes' && $a [ " uppedby " ] == $CURUSER [ " id " ]) ? " Anonymous " : $CURUSER [ 'username' ]) . ( $a [ " uppedby " ] != $CURUSER [ " id " ] ? " , Mod Delete " : " " ) . ( $reason != " " ? " ( " . $reason . " ) " : " " ));
}
else
{
stdmsg ( $lang_subtitles [ 'std_delete_subtitle' ], $lang_subtitles [ 'std_delete_subtitle_note' ] . " <br /><form method=post action=subtitles.php?delete= $delete &sure=1> " . $lang_subtitles [ 'text_reason_is' ] . " <input type=text style= \" width: 200px \" name=reason><input type=submit value= \" " . $lang_subtitles [ 'submit_confirm' ] . " \" ></form> " );
stdfoot ();
die ;
}
}
}
}
}
if ( get_user_class () >= UC_PEASANT )
{
//$url = $_COOKIE["subsurl"];
begin_main_frame ();
?>
<div align=center>
<?php
if (!$size = $Cache->get_value('subtitle_sum_size')){
$res = sql_query("SELECT SUM(size) AS size FROM subs");
$row5 = mysql_fetch_array($res);
$size = $row5['size'];
$Cache->cache_value('subtitle_sum_size', $size, 3600);
}
begin_frame($lang_subtitles['text_upload_subtitles'].mksize($size)."", true,10,"100%","center");
?>
</div>
<?php
print("<p align=left><b><font size=5>".$lang_subtitles['text_rules']."</font></b></p>\n");
print("<p align=left>       ".$lang_subtitles['text_rule_one']."</p>\n");
print("<p align=left>       ".$lang_subtitles['text_rule_two']."</p>\n");
print("<p align=left>       ".$lang_subtitles['text_rule_three']."</p>\n");
print("<p align=left>       ".$lang_subtitles['text_rule_four']."</p>\n");
print("<p align=left>       ".$lang_subtitles['text_rule_five']."</p>\n");
print("<p align=left>       ".$lang_subtitles['text_rule_six']."</p>\n");
2022-02-20 21:50:03 +08:00
2020-12-26 01:42:23 +08:00
print($lang_subtitles['text_red_star_required']);
if($in_detail != "")
{
print("<p >".$lang_subtitles['text_uploading_subtitles_for_torrent']."<b>$torrent_name</b></p>\n");
print("<br />");
}
print("<form enctype=multipart/form-data method=post action=?>\n");
print("<input type=hidden name=action value=upload>");
print("<table class=main border=1 cellspacing=0 cellpadding=5>\n");
print("<tr><td class=rowhead>".$lang_subtitles['row_file']."<font color=red>*</font></td><td class=rowfollow align=left><input type=file name=file>");
if ($maxsubsize_main > 0)
print("<br />(".$lang_subtitles['text_maximum_file_size'].mksize($maxsubsize_main).".)");
print("</td></tr>\n");
if($in_detail == "")
2025-04-19 02:06:51 +07:00
print("<tr><td class=rowhead>".$lang_subtitles['row_torrent_id']."<font color=red>*</font></td><td class=rowfollow align=left><input type=text name=torrent_id style=\"width:300px\"><br />".sprintf($lang_subtitles['text_torrent_id_note'], getSchemeAndHttpHost())."</td></tr>\n");
2020-12-26 01:42:23 +08:00
else
{
print("<tr><td class=rowhead>".$lang_subtitles['row_torrent_id']."<font color=red>*</font></td><td class=rowfollow align=left><input type=text name=torrent_id value=$detail_torrent_id style=\"width:300px\"><br />".$lang_subtitles['text_torrent_id_note']."</td></tr>\n");
$in_detail = "";
}
print("<tr><td class=rowhead>".$lang_subtitles['row_title']."</td><td class=rowfollow colspan=3 align=left><input type=text name=title style=\"width:300px\"><br />".$lang_subtitles['text_title_note']."</td></tr>\n");
$s = "<tr><td class=rowhead>".$lang_subtitles['row_language']."<font color=red>*</font></td><td class=rowfollow align=left><select name=\"sel_lang\"><option value=\"0\">".$lang_subtitles['select_choose_one']."</option>\n";
$langs = langlist("sub_lang");
foreach ($langs as $row)
{
$s .= "<option value=\"" . $row["id"] . "\">" . htmlspecialchars($row["lang_name"]) . "</option>\n";
}
$s .= "</select></td></tr>";
print($s);
2022-08-20 19:11:28 +08:00
if(user_can('beanonymous'))
2020-12-26 01:42:23 +08:00
{
tr($lang_subtitles['row_show_uploader'], "<input type=checkbox name=uplver value=yes>".$lang_subtitles['hide_uploader_note'], 1);
}
2022-02-20 21:50:03 +08:00
2020-12-26 01:42:23 +08:00
print("<tr><td class=toolbox colspan=2 align=center><input type=submit class=btn value=".$lang_subtitles['submit_upload_file']."> <input type=reset class=btn value=\"".$lang_subtitles['submit_reset']."\"></td></tr>\n");
print("</table>\n");
print("</form>\n");
end_frame();
end_main_frame();
}
if(get_user_class() >= UC_PEASANT)
{
print("<form method=get action=?>\n");
print("<br /><br />");
print("<input type=text style=\"width:200px\" name=search>\n");
$s = "<select name=\"lang_id\"><option value=\"0\">".$lang_subtitles['select_all_languages']."</option>\n";
$langs = langlist("sub_lang");
foreach ($langs as $row)
{
$s .= "<option value=\"" . $row["id"] . "\">" . htmlspecialchars($row["lang_name"]) . "</option>\n";
}
$s .= "</select>";
print($s);
print("<input type=submit class=btn value=\"".$lang_subtitles['submit_search']."\">\n");
print("</form>\n");
for ($i = 97; $i < 123; ++$i)
{
$l = chr($i);
$L = chr($i - 32);
if ($l == $letter)
print("<b><font class=gray>$L</font></b>\n");
else
print("<a href=?letter=$l><b>$L</b></a>\n");
}
$perpage = 30;
$query = ($query ? " WHERE ".$query : "");
$res = sql_query("SELECT COUNT(*) FROM subs $query") or sqlerr(__FILE__, __LINE__);
$arr = mysql_fetch_row($res);
$num = $arr[0];
if (!$num)
{
stdmsg($lang_subtitles['text_sorry'],$lang_subtitles['text_nothing_here']);
stdfoot();
die;
}
list($pagertop, $pagerbottom, $limit) = pager($perpage, $num, "subtitles.php?".$q."&");
print($pagertop);
$i = 0;
$res = sql_query("SELECT subs.*, language.flagpic, language.lang_name FROM subs LEFT JOIN language ON subs.lang_id=language.id $query ORDER BY id DESC $limit") or sqlerr();
print("<table width=940 border=1 cellspacing=0 cellpadding=5>\n");
print("<tr><td class=colhead>".$lang_subtitles['col_lang']."</td><td width=100% class=colhead align=center>".$lang_subtitles['col_title']."</td><td class=colhead align=center><img class=\"time\" src=\"pic/trans.gif\" alt=\"time\" title=\"".$lang_subtitles['title_date_added']."\" /></td>
<td class=colhead align=center><img class=\"size\" src=\"pic/trans.gif\" alt=\"size\" title=\"".$lang_subtitles['title_size']."\" /></td><td class=colhead align=center>".$lang_subtitles['col_hits']."</td><td class=colhead align=center>".$lang_subtitles['col_upped_by']."</td><td class=colhead align=center>".$lang_subtitles['col_report']."</td></tr>\n");
2022-08-20 19:11:28 +08:00
$mod = user_can('submanage');
$pu = user_can('delownsub');
2020-12-26 01:42:23 +08:00
while ($arr = mysql_fetch_assoc($res))
{
// the number $start_subid is just for legacy support of prevoiusly uploaded subs, if the site is completely new, it should be 0 or just remove it
$lang = "<td class=rowfollow align=center valign=middle>" . "<img border=\"0\" src=\"pic/flag/". $arr["flagpic"] . "\" alt=\"" . $arr["lang_name"] . "\" title=\"" . $arr["lang_name"] . "\"/>" . "</td>\n";
2022-02-20 21:50:03 +08:00
$title = "<td class=rowfollow align=left><a href=\"" . (isset($start_subid) && $arr['id'] <= $start_subid ? "downloadsubs_legacy.php/" . $arr['filename'] : "downloadsubs.php?torrentid=" . $arr['torrent_id'] ."&subid=" .$arr['id']) . "\"<b>" . htmlspecialchars($arr["title"]) . "</b></a>" .
2020-12-26 01:42:23 +08:00
($mod || ($pu && $arr["uppedby"] == $CURUSER["id"]) ? " <font class=small><a href=?delete=$arr[id]>".$lang_subtitles['text_delete']."</a></font>" : "") ."</td>\n";
$addtime = gettime($arr["added"],false,false);
$added = "<td class=rowfollow align=center><nobr>" . $addtime . "</nobr></td>\n";
$size = "<td class=rowfollow align=center>" . mksize_loose($arr['size']) . "</td>\n";
$hits = "<td class=rowfollow align=center>" . number_format($arr['hits']) . "</td>\n";
2022-08-20 19:11:28 +08:00
$uppedby = "<td class=rowfollow align=center>" . ($arr["anonymous"] == 'yes' ? $lang_subtitles['text_anonymous'] . (user_can('viewanonymous') ? "<br />".get_username($arr['uppedby'],false,true,true,false,true) : "") : get_username($arr['uppedby'])) . "</td>\n";
2020-12-26 01:42:23 +08:00
$report = "<td class=rowfollow align=center><a href=\"report.php?subtitle=$arr[id]\"><img class=\"f_report\" src=\"pic/trans.gif\" alt=\"Report\" title=\"".$lang_subtitles['title_report_subtitle']."\" /></a></td>\n";
print("<tr>".$lang.$title.$added.$size.$hits.$uppedby.$report."</tr>\n");
$i++;
}
print("</table>\n");
print($pagerbottom);
}
stdfoot();
?>
