rotator

system · February 14, 2015, 11:56am

hi i have a free rotator script, but it is picking urls randomly is there any way i can get it to pick the first one then pick each one down the list. any help would be great.

<?php /* Free URL Rotator Script Version: 1.2 © iTechDev and LJScripts.com */ /* Your configuration file location */ $inc_file = "configuration.php"; /* DO NOT EDIT BELOW THIS LINE */ if (phpversion() <= '4.0.6') {$_SERVER=$HTTP_SERVER_VARS;$_POST=$HTTP_POST_VARS;$_GET=$HTTP_GET_VARS;$_ENV=$HTTP_ENV_VARS;$_COOKIE=$HTTP_COOKIE_VARS;} require($inc_file); if (empty($_SERVER['QUERY_STRING'])) { $urls = file($url_file); $url = ''; $cnt = 0; while (empty($url) and $cnt < 5) { $url = trim($urls[mt_rand(0, sizeof($urls) - 1)]); $cnt++; if ($cnt == 3) optimizeURLS(); } if (empty($url)) { echo("Could not find a URL to display. Please add one first."); exit; } header("Location: $url"); exit; } if (!empty($_SERVER['QUERY_STRING']) or strcmp($_POST['admin'], 'edurls') == 0 or strcmp($_POST['page'], 'edadmin') == 0 or strcmp($_GET['admin'], 'edurls') == 0 or strcmp($_GET['admin'], 'edadmin') == 0) { @session_start(); checkInvasion(); chkConfig($url_file, true); if (strcmp($_SERVER['QUERY_STRING'], 'LOGOUT') == 0) { $_SESSION = array(); @session_destroy(); header("Location: index.php?admin=edurls"); exit; } if (!empty($_POST['usern']) and !empty($_POST['passwd'])) { $_SESSION['admin_user'] = trim($_POST['usern']); $_SESSION['admin_pass'] = md5(trim($_POST['passwd'])); header("Location: ".$_SERVER['PHP_SELF'] . "?".$_SERVER['QUERY_STRING']); exit; } if (!isset($_SESSION['admin_user']) or !isset($_SESSION['admin_pass'])) { $_SESSION = array(); @session_destroy(); loginScreen(); exit; } else { if (strcmp($_SESSION['admin_user'], $login_username) != 0 or strcmp($_SESSION['admin_pass'], md5($login_password)) != 0) { $_SESSION = array(); @session_destroy(); loginScreen(); echo(""); exit; } } } ?> LJScripts Free Rotator Admin

LJScripts Free Rotator Admin

Your Rotator - Click to test or Right-Click and choose Add to Favorites.

<?php if (strcmp($_GET['admin'], 'edadmin') == 0 or strcmp($_POST['admin'], 'edadmin') == 0) { chkConfig($inc_file, false); if (!empty($_POST['adminuser']) and strcmp(md5($_POST['cpass']), $_SESSION['admin_pass']) == 0) { if (!empty($_POST['adminpass']) and strcmp(trim($_POST['adminpass']), trim($_POST['adminpass2'])) == 0) $newpass = trim($_POST['adminpass']); else $newpass = $login_password; $newuser = trim($_POST['adminuser']); $content = "<?php \$login_username = \"$newuser\"; \$login_password = \"$newpass\"; \$url_file = \"$url_file\"; ?>"; file_writer("$inc_file",$content); echo "

Admin details were changed successfully!

"; $_SESSION['admin_pass'] = md5($newpass); } else { ?>

Change Admin Username
Admin username:

New admin password:
Re-enter your new admin password:

Current password:

<?php } } elseif (strcmp($_GET['admin'], 'edurls') == 0 or strcmp($_POST['admin'], 'edurls') == 0) { if (!empty($_POST['addnewurl'])) { $newurl = trim($_POST['addnewurl']); $newURLs = getURLs($newurl); if (count($newURLs) > 0) { $fp = fopen($url_file, "a"); for ($i = 0; $i < count($newURLs); $i++) @fwrite($fp, "$newURLs[$i]\n"); @fclose($fp); echo "

".count($newURLs)." New URL(s) successfully added.

"; } echo "

Edit/Add more URL's

"; } else if (count($_POST['del_url']) > 0) { $results = ""; $fp = @fopen($url_file, "r"); $read = @fread($fp, filesize($url_file)); @fclose($fp); $read = str_replace("\r", "", $read); $up_tot = 0; for ($i = 0; $i < count($_POST['del_url']); $i++) { $cur_url = trim($_POST['del_url'][$i]); if (!empty($cur_url)) { $read = str_replace("$cur_url\n", "", $read); $results .= "The URL \"$cur_url\" has been deleted
"; $up_tot++; } }

	if ($up_tot > 0)
	{
		$read = trim($read);
		if (empty($read)) $results = "You cannot remove all URL's from this rotator!<br />";
		else
		{
			$fp = @fopen($url_file, "w");
			@fwrite($fp, $read."\n");
			@fclose($fp);
		}
	}
	echo "<p>$results</p>";
	echo "<br /><a href=\"{$_SERVER['PHP_SELF']}?admin=edurls\">Edit/Add more URL's</a>";
}
elseif (strcmp($_GET['optim'], 'true') == 0)
{
	optimizeURLS();
	echo "<p>Successfully optimized the $url_file file.</p>";
	echo "<a href=\"{$_SERVER['PHP_SELF']}?admin=edurls\">Go back</a>";
}
else
{
	?>
	<form action="<?=$_SERVER['PHP_SELF']?>?admin=edurls" name="addurlform" method="post">
	<h2>Add New URL(s)</h2>
	<p><b>Separate each URL with a new line. You must Enter http://<br />
      <br />
	  </b>
      <textarea name="addnewurl" rows="10" wrap="off" style="width: 600px;">http://</textarea>
      </p>
	<p>
	  <input type="submit" value="  Add New URL(s)  " />
	  </p>
	</form>
	<br>
	<h2>Delete URL(s)</h2>
	<br><b><font style="color: red;">PLEASE NOTE:</font> There must be at least one site listed in your rotator to function correctly!</b><br /><br />
	<form action="<?=$_SERVER['PHP_SELF']?>?admin=edurls" method="post">
	<input type="hidden" name="delete_url" value="true" />
	<?php
	$urls = file($url_file);
	$overhead = 0;
	for ($i = 0; $i < sizeof($urls); $i++)
	{
		$durl = trim($urls[$i]);
		if (!empty($durl)) echo("<input type=\"checkbox\" name=\"del_url[]\" value=\"".$durl."\" /> ".$durl."<br />\n");
		else $overhead++;
	}
	?>
	<p><input type="submit" value="Delete Selected URL(s)" />
	<?php if ($overhead > 0) { ?>
	<input type="button" value="  Optimize " onclick="top.location.href='<?=$_SERVER['PHP_SELF']?>?admin=edurls&optim=true';" />
	<?php } ?>
	</p>
	</form>
	<?php
}

}
?>

Add/Remove URL’s
| Change Login Details
| Logout

| Free URL Rotator Version 1.2 © LJScripts.com |

<?php exit;

/*
Functions
*/

function file_writer($fileurl,$contents)
{
$file=@fopen($fileurl,‘w’) or die("$fileurl File Doesn’t Exist");
if($contents)
{
if(@fwrite($file,$contents))
{
@fclose($file);
return true;
}
}
}

function loginScreen()
{
?>

Rotator Login

Rotator Administration Login

Username :
Password :

<?php }

function getURLs($url_str)
{
$ret_urls = array();
$url_str = str_replace("\r", ‘’, $url_str);
$tmp_u = explode("\n", $url_str);
for ($i = 0; $i < count($tmp_u); $i++)
{
$uval = trim($tmp_u[$i]);
if (empty($uval)) continue;
if (!empty($uval) and (preg_match(’/http:///i’, $uval) or preg_match(’/https:///i’, $uval)) and preg_match(’/./’, $uval)) $ret_urls[] = $uval;
else echo("
$uval was not a valid URL!");
}
return $ret_urls;
}

function checkInvasion()
{
if (isset($_REQUEST[’_SESSION’]) or isset($_POST[’_SESSION’]) or isset($_GET[’_SESSION’]) or isset($_COOKIE[’_SESSION’]))
{
header(“Location: index.php”);
@session_destroy();
exit;
}
}

function optimizeURLS()
{
global $url_file;
$new_str = “”;
$urls = @file($url_file);
for ($i = 0; $i < @sizeof($urls); $i++)
{
$ourl = trim($urls[$i]);
if (!empty($ourl)) $new_str .= $ourl."\n";
}
$fp = @fopen($url_file, “w”);
@fwrite($fp, $new_str);
@fclose($fp);
}
?>

benanamen · February 14, 2015, 12:32pm

That script is vulnerable to XSS injection. It is poorly written.

ErnieAlex · February 14, 2015, 7:24pm

I agree with Kevin that this code is messy and has some problems. By rotator, do you mean slider?

There are many ways to do this. Where are you getting the URL’s for the images? It appears you are
storing them in a text file? If you just read the file into an array, you can use a simple for-loop or whatever
to go thru the array and display them as needed.

Also, are you saving user info and passwords in a text file, too? That is not secure. Anyone can grab a text
file off your server if they know where it is. Have you thought about using MySQL to store all of your info?
If you did, it would be much more secure and easier to code displaying of the URL’s. Just an idea.

Rotator and Slider code is abundant over the net. I found hundreds in 30 seconds. Perhaps we can locate
a better version for you if we know more about what you are trying to do.

rotator

Admin details were changed successfully!

Change Admin Username

".count($newURLs)." New URL(s) successfully added.