VeltronNET/Misdew
1
0
Fork 0
Code Issues Pull requests Projects Releases Packages Wiki Activity Actions

Add files via upload

Browse source
This commit is contained in:
Justin 2022-07-20 09:41:11 -04:00 committed by GitHub
commit cd37907066
No known key found for this signature in database
GPG key ID: 4AEE18F83AFDEB23
4 changed files with 776 additions and 0 deletions
Download patch file Download diff file Expand all files Collapse all files

257
join/index.php
View file

@ -1 +1,258 @@
<?php
require_once("../inc/conx.php");
if($logged_in == true) {
header("location: /");
exit();
}
$mdds_tstamp = time();
$mdds_loc = "reg misdew join";
mysqli_query($conx, "INSERT INTO mdds (tstamp, location) VALUES ('$mdds_tstamp','$mdds_loc')");
?>
<!DOCTYPE html>
<html>
<head>
<title>Misdew</title>
<meta charset="utf-8">
<meta name="description" content="We are a fairly cool social network.">
<meta name="keywords" content="Misdew, MD, Social, Network, Communication, 3DS, DSi, Nintendo">
<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1">
<meta name="google" value="notranslate">
<meta name="theme-color" content="#a64ca6">
<link rel="stylesheet" type="text/css" href="/css/consistent.css">
<link rel="icon" type="image/png" href="/img/favicon.png">
<link rel="apple-touch-icon" href="/img/logo.png">
</head>
<body>
<center>
<?php
session_start();
$back_button = yes;
$linebreak = true;
require_once("../inc/header.php");
// possible session messages
if (isset($_SESSION['m']) == 'all_req') {
echo "<div class=\"error_msg\">All fields are required.</div> <br>";
unset($_SESSION['m']);
}
elseif (isset($_SESSION['m4']) == 'user_leng') {
echo "<div class=\"error_msg\">Your username must not be greater than 13 characters.</div> <br>";
unset($_SESSION['m4']);
}
elseif (isset($_SESSION['m5']) == 'user_exi') {
echo "<div class=\"error_msg\">That username already exists.</div> <br>";
unset($_SESSION['m5']);
}
elseif (isset($_SESSION['m3']) == 'pdnm_aumna') {
echo "<div class=\"error_msg\">Your username must be alphanumeric and the passwords you entered did not match.</div> <br>";
unset($_SESSION['m3']);
}
elseif (isset($_SESSION['m2']) == 'user_alnum') {
echo "<div class=\"error_msg\">Your username must be alphanumeric.</div> <br>";
unset($_SESSION['m2']);
}
elseif (isset($_SESSION['m1']) == 'chec_yapass') {
echo "<div class=\"error_msg\">The passwords you entered did not match.</div> <br>";
unset($_SESSION['m1']);
}
elseif (isset($_SESSION['m6']) == 'gen_error') {
echo "<div class=\"error_msg\">There was an error.</div> <br>";
unset($_SESSION['m6']);
}
session_destroy();
?>
<span style="color: #888; font-size: 12px; font-family: 'Dosis', sans-serif;">By joining, you are agreeing to our <a href="/privacy-policy.html" target="_blank" style="color: #888;">privacy policy.</a></span> <br>
<span style="color: #888; font-size: 12px; font-family: 'Dosis', sans-serif;">You will be asked to verify your email address to use Misdew.</span><br>
<span style="color: #888; font-size: 12px; font-family: 'Dosis', sans-serif;">Please note that passwords and emails are case sensitive.</span> <br>
<span style="color: #888; font-size: 12px; font-family: 'Dosis', sans-serif;">If you experience any issues or need help, email: <b>me@justa.us</b></span> <br><br>
<form action="join.php" method="post" autocomplete="off">
<table class="form_tble">
<tr>
<td>
<input name="username" maxlength="13" type="text" placeholder="username" class="form_input">
</td>
</tr>
<tr>
<td>
<input name="email" type="text" placeholder="email address" class="form_input">
</td>
</tr>
<tr>
<td>
<input autocomplete="new-password" name="password" type="password" placeholder="password" class="form_input">
</td>
</tr>
<tr>
<td>
<input name="confirm_password" type="password" placeholder="confirm password" class="form_input">
</td>
</tr>
<tr>
<td class="form_tdpad">
<input type="submit" value="join" class="form_submit" onclick="this.disabled=true;this.value='joining...';this.form.submit();">
</td>
</tr>
</table>
</form>
<table class="form_btap" onclick="window.location='/';">
<tr>
<td>
<span style="font-size: 20px !important;">tap to login</span>
</td>
</tr>
</table> <br>
<div style="font-size: 13px; text-align: left; width: 95%; max-width: 500px; color: #808080; font-family: 'Dosis', sans-serif; padding-bottom: 10px;">
<span style="font-size: 25px; font-weight: bold;">What is Misdew?</span> <br>
We are a small social network with a relaxed community. We appreciate each and every one of our members. If you haven't already signed up for an account, why not give us a try?<br><br>Members have access to a variety of apps: Canvas [user profiles], Feed [public status], Chat [public chatroom], Mail [private messaging], Draw [create and share drawings], Cloud [uploading files], Alerts [site notifications], and Settings [alter site experience and security options].
</div>
<div style="font-size: 13px; text-align: left; width: 95%; max-width: 500px; color: #808080; font-family: 'Dosis', sans-serif; padding-bottom: 10px;">
<span style="font-size: 25px; font-weight: bold;">Feed</span> <br>
This is an area where our members can post about anything that they desire. We enable others with the options to like, dislike, or comment on a post. Two of our most recent posts are below.
</div>
<?php
if($u_emoji_type == '') {
$u_emoji_type = 'facebook';
}
# SELECT TEN POSTS FROM FEED
$feed_q = mysqli_query($conx, "SELECT id,uid,post,tstamp,random_str,visibility,edited,img FROM feed ORDER BY id DESC LIMIT 2");
while($feed_r = mysqli_fetch_assoc($feed_q)) {
// Feed data
$feed_id = $feed_r['id'];
$feed_uid = $feed_r['uid'];
$string = $feed_r['post'];
$feed_tstamp = $feed_r['tstamp'];
$feed_randomstr = $feed_r['random_str'];
$feed_visibility = $feed_r['visibility'];
$feed_edited = $feed_r['edited'];
$feed_img = $feed_r['img'];
// Emoji+ replacement
include("../inc/replace.php");
# SELECT ACCOUNT DATA FOR FEED POSTS
$usr_q = mysqli_query($conx, "SELECT username,picture,online_time FROM accounts WHERE uid='$feed_uid'");
while($usr_r = mysqli_fetch_assoc($usr_q)) {
// Account data
$feed_username = $usr_r['username'];
$feed_picture = $usr_r['picture'];
$feed_onltime = $usr_r['online_time'];
// Activity Dot
$new_time = time() - $feed_onltime;
$mens = round($new_time / 60);
if($mens <= 1) { $cv_activeness = "#00FF00"; } // Active within one minute
elseif($mens <= 2) { $cv_activeness = "#FFA500"; } // Active within two minutes
elseif($mens < 5) { $cv_activeness = "#FFA500"; } // Active within five minutes
else { $cv_activeness = "#FF0000"; } // Active over five minutes
# SELECT THEME COLORS FOR ACCOUNTS
$usri_q = mysqli_query($conx, "SELECT username_color,text_color FROM user_theme_colors WHERE uid='$feed_uid' && theme_id='1'");
while($usri_r = mysqli_fetch_assoc($usri_q)) {
// Theme data
$username_color = $usri_r['username_color'];
$feed_tcolor = $usri_r['text_color'];
}
// Styling for the comment placeholders of each account attached to a post.
echo "<style type=\"text/css\">";
echo ".comment_$feed_username";
echo "[placeholder]:empty:before {";
echo "content: attr(placeholder);";
echo "color: $feed_tcolor; }</style>";
}
// If a post has more than one comment, set an 's' variable
$comcnt_q = mysqli_query($conx, "SELECT id FROM feed_comments WHERE post_id='$feed_id'");
$comcnt_r = number_format(mysqli_num_rows($comcnt_q));
if($comcnt_r != '1') { $cs = "s"; } // comment(s)
// If a post has more than one like, set an 's' variable
$likcnt_q = mysqli_query($conx, "SELECT id FROM feed_likes WHERE post_id='$feed_id'");
$likcnt_r = number_format(mysqli_num_rows($likcnt_q));
if($likcnt_r != '1') { $ls = "s"; } // like(s)
// If a post has more than one dislike, set an 's' variable
$dlikcnt_q = mysqli_query($conx, "SELECT id FROM feed_dislikes WHERE post_id='$feed_id'");
$dlikcnt_r = number_format(mysqli_num_rows($dlikcnt_q));
if($dlikcnt_r != '1') { $dls = "s"; } // dislike(s)
# BEGIN ECHOING THE FEED POSTS
echo "<div class=\"feed_post\" id=\"fp_1\" style=\"background-color: $username_color;\">";
echo "<table class=\"post_table1\"><tr>";
echo "<td class=\"ptb1_td1\" style=\"color: $feed_tcolor; width: 0%;\">";
echo "<div style=\"position: relative; width: 36px; height: 36px; border-radius: 50px;\">";
echo "<div style=\"background-color: $cv_activeness; border: 2px solid $username_color; position: absolute; width: 8px; height: 8px; border-radius: 50px; display: inline-block; bottom: 0; right: 0; z-index: 3;\"></div>";
echo "<img onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\" src=\"$feed_picture\" class=\"list_picture\"></div></td>";
echo "<td class=\"ptb1_td1\" style=\"text-align: left; color: $feed_tcolor;\">";
echo "<a onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\" style=\"text-decoration: none; color: $feed_tcolor; font-weight: bold;\">$feed_username</a></td>";
echo "<td class=\"ptb1_td2\" style=\"color: $feed_tcolor;\">";
echo "<i class=\"fa fa-angle-down\" aria-hidden=\"true\" onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\"></i></td></tr></table></div>";
echo "<div class=\"feed_post\" id=\"fp_2\">";
echo "<div class=\"fp_3\">";
// Echo the post content.
echo bbc(atname(nl2br($string)));
echo "</div><table class=\"post_table2\"><tr>";
echo "<td class=\"ptb2_td1\">";
// Like count within the post.
echo "<span id=\"likecnt_$feed_id\">";
echo "$likcnt_r like$ls";
echo "</span> &nbsp;&nbsp; ";
// Dislike count within the post.
echo "<span id=\"dlikecnt_$feed_id\">";
echo "$dlikcnt_r dislike$dls";
echo "</span></td><td id=\"ccmt_cnt\" class=\"ptb2_td2\">";
// Comment count within the post.
echo "<span id=\"mpcomment_count\">";
echo "$comcnt_r comment$cs";
echo "</span></td></tr></table>";
echo "<center><table class=\"post_table3\"><tr>";
echo "<td onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\" id=\"post_id_$feed_id\" class=\"ptb3_td1\">";
echo "<i class='fa fa-thumbs-up'></i> like";
echo "</td><td id=\"$feed_randomstr\" class=\"ptb3_td2\" onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\">";
echo "<i class=\"fa fa-comment\" aria-hidden=\"true\"></i> ";
echo "<span id=\"cmtbtn_$feed_randomstr\">comment</span></td>";
echo "<td onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\" id=\"dpost_id_$feed_id\" class=\"ptb3_td3\">";
echo "<i class=\"fa fa-thumbs-down\" aria-hidden=\"true\"></i> dislike";
echo "</td></tr></table>";
echo "</div>";
echo "<br>";
}
?>
<div style="font-size: 13px; text-align: left; width: 95%; max-width: 500px; color: #808080; font-family: 'Dosis', sans-serif; padding-bottom: 10px;">
<span style="font-size: 25px; font-weight: bold;">Chat</span> <br>
A location within us that members can speak to each other in. It is like a giant group conversation that anyone can be a part of. We also offer a secret messaging feature which can be used by tapping a username. Below is a snippet of the four most recent messages.
</div>
<?php
echo "<div style=\"background-color: #fff; width: 95%; max-width: 500px; padding: 10px; text-align: left; overflow: hidden; -webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;\">";
$chat_q = mysqli_query($conx, "SELECT id,uid,tstamp,message,pmuid,msgtype,display_name,mtype,imgurl FROM chat WHERE msgtype!='pm' ORDER BY id DESC LIMIT 4");
while($chat_r = mysqli_fetch_assoc($chat_q)) {
$chat_id = $chat_r['id'];
$chat_uid = $chat_r['uid'];
$chat_tstamp = $chat_r['tstamp'];
$string = $chat_r['message'];
$pmuid = $chat_r['pmuid'];
$msg_type = $chat_r['msgtype'];
$displayname = $chat_r['display_name'];
$mtype = $chat_r['mtype'];
$c_imgurl = $chat_r['imgurl'];
include("../inc/replace.php");
$usr_q = mysqli_query($conx, "SELECT username FROM accounts WHERE uid='$chat_uid'");
while($usr_r = mysqli_fetch_assoc($usr_q)) {
$chat_username = $usr_r['username'];
$usri_q = mysqli_query($conx, "SELECT username_color,text_color FROM user_theme_colors WHERE uid='$chat_uid' && theme_id='1'");
while($usri_r = mysqli_fetch_assoc($usri_q)) {
$username_color = $usri_r['username_color'];
$chat_tcolor = $usri_r['text_color'];
}
}
if($displayname == 'no') {
$chat_username = "";
}
echo "<div onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\" style=\"display:block\"><table style=\"float: left; width: 100%; text-align: left;\"><tr><td style=\"color: $username_color; font-family: 'Dosis', sans-serif; font-weight: bold;\"><span>$chat_username</span></td></tr></table>";
// if message is an image
if($mtype == 'img') {
echo "<div style=\"word-wrap: break-word; border-radius: 20px; font-family: 'Dosis', sans-serif; display: inline-block; float: left; max-width: 60%; -webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;\"><img src=\"$c_imgurl\" alt=\"\" width=\"100%\" style=\"display: block; height: auto;\"></div>";
}
// if message is normal
else {
echo "<div style=\"word-wrap: break-word; background-color: $username_color; padding: 10px; padding-left: 25px; padding-right: 25px; border-radius: 20px; color: $chat_tcolor; font-family: 'Dosis', sans-serif; display: inline-block; float: left; max-width: 90%; -webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;\">" . $string . "</div>";
}
echo "</div>";
}
echo "</div>";
require_once("../inc/footer.php");
?>
</center>
</body>
</html>

204
join/join.php Normal file
View file

@ -0,0 +1,204 @@
<?php
session_start();
require_once("../inc/conx.php");
if($logged_in == true) {
header("location: /join");
exit();
}
# POST DATA
$username_p = safe($_POST['username']);
$password_p = safe($_POST['password']);
$confirm_password_p = safe($_POST['confirm_password']);
$email_addr = safe($_POST['email']);
# EMAIL VERIFICATION
// filter banned usernames
$username_p = str_ireplace("misdew","","$username_p");
$username_p = str_ireplace("anonymous","","$username_p");
// filter banned emails
$email_addr = str_ireplace("protonmail.com","","$email_addr");
$email_addr = str_ireplace("hornyalwary.top","","$email_addr");
$email_addr = str_ireplace("grr.la","","$email_addr");
$email_addr = str_ireplace("riski.cf","","$email_addr");
$email_addr = str_ireplace("mailscheap.us","","$email_addr");
$email_addr = str_ireplace("rejo.technology","","$email_addr");
$email_addr = str_ireplace("bbhost.us","","$email_addr");
$email_addr = str_ireplace("garasikita.pw","","$email_addr");
$email_addr = str_ireplace("9.fackme.gq","","$email_addr");
$email_addr = str_ireplace("6.fackme.gq","","$email_addr");
$email_addr = str_ireplace("maswae.world","","$email_addr");
$email_addr = str_ireplace("sexyalwasmi.top","","$email_addr");
$email_addr = str_ireplace("vuiy.pw","","$email_addr");
$email_addr = str_ireplace("3.emailfake.ml","","$email_addr");
$email_addr = str_ireplace("mail.bestoption25.club","","$email_addr");
$email_addr = str_ireplace("locantowsite.club","","$email_addr");
$email_addr = str_ireplace("1000rebates.stream","","$email_addr");
$email_addr = str_ireplace("alvinjozz.website","","$email_addr");
$email_addr = str_ireplace("rollindo.agency","","$email_addr");
$email_addr = str_ireplace("two.fackme.gq","","$email_addr");
$email_addr = str_ireplace("8.fackme.gq","","$email_addr");
$email_addr = str_ireplace("inaby.com","","$email_addr");
$email_addr = str_ireplace(".pp.ua","","$email_addr");
$email_addr = str_ireplace("axon7zte.com","","$email_addr");
$email_addr = str_ireplace("kgq701.com","","$email_addr");
$email_addr = str_ireplace("lenovog4.com","","$email_addr");
$email_addr = str_ireplace("alienware13.com","","$email_addr");
$email_addr = str_ireplace("akgq701.com","","$email_addr");
$email_addr = str_ireplace("envy17.com","","$email_addr");
$email_addr = str_ireplace("xperiae5.com","","$email_addr");
$email_addr = str_ireplace("honor-8.com","","$email_addr");
$email_addr = str_ireplace("xperiae5.com","","$email_addr");
$email_addr = str_ireplace("lgxscreen.com","","$email_addr");
$email_addr = str_ireplace("pavilionx2.com","","$email_addr");
$email_addr = str_ireplace("klipschx12.com","","$email_addr");
$email_addr = str_ireplace("alliancewe.us","","$email_addr");
$email_addr = str_ireplace("almondwe.us","","$email_addr");
$email_addr = str_ireplace("acuitywe.us","","$email_addr");
$email_addr = str_ireplace("allaroundwe.us","","$email_addr");
$email_addr = str_ireplace("americaswe.us","","$email_addr");
$email_addr = str_ireplace("interserver.ga","","$email_addr");
$email_addr = str_ireplace("allstarwe.us","","$email_addr");
$email_addr = str_ireplace("analyticswe.us","","$email_addr");
$email_addr = str_ireplace("analyticalwe.us","","$email_addr");
$email_addr = str_ireplace("ambitiouswe.us","","$email_addr");
$email_addr = str_ireplace("aheadwe.us","","$email_addr");
$email_addr = str_ireplace("clearwatermail.info","","$email_addr");
$email_addr = str_ireplace("gsxstring.ga","","$email_addr");
$email_addr = str_ireplace("simscity.cf","","$email_addr");
$email_addr = str_ireplace("allinonewe.us","","$email_addr");
$email_addr = str_ireplace("advantagewe.us","","$email_addr");
$email_addr = str_ireplace("activitywe.us","","$email_addr");
$email_addr = str_ireplace("allegrowe.us","","$email_addr");
$email_addr = str_ireplace("yourtube.ml","","$email_addr");
$email_addr = str_ireplace("abacuswe.us","","$email_addr");
$email_addr = str_ireplace("teleworm.us","","$email_addr");
$email_addr = str_ireplace("armyspy.com","","$email_addr");
$email_addr = str_ireplace("emailure.net","","$email_addr");
$email_addr = str_ireplace("nwytg.com","","$email_addr");
$email_addr = str_ireplace("keromail.com","","$email_addr");
$email_addr = str_ireplace("dispostable.com","","$email_addr");
if (!filter_var($email_addr, FILTER_VALIDATE_EMAIL)) {
$_SESSION['m6'] = "gen_error";
header("location: /join");
exit();
}
# ACCOUNT CREATION
if($username_p && $password_p && $confirm_password_p && $email_addr) {
// define the error variables
$pdnm = '';
$uinan = '';
$unitl = '';
$unae = '';
// if the passwords do not match
if($password_p != $confirm_password_p) {
$pdnm = true;
}
// if the username isn't alphanumeric
if(!ctype_alnum($username_p)) {
$uinan = true;
}
// if username is longer than 13 characters
if(strlen($username_p) > 13) {
$unitl = true;
}
// if username already exists
$q = mysqli_query($conx, "SELECT username FROM accounts WHERE username='$username_p'");
$c = mysqli_num_rows($q);
if($c > 0) {
$unae = true;
}
// hash the email
$email_hasher = "make ur own random shit here like ...asfkjfj&*Y$#@JK.asfdHf... i know this shit prob aint too secure maybe but i tried";
$email_hashed = hash("sha256",$email_hasher.$email_addr);
// if email already exists
$qq = mysqli_query($conx, "SELECT username FROM accounts WHERE email_secure='$email_hashed'");
$cc = mysqli_num_rows($qq);
if($cc > 0) {
$_SESSION['m6'] = "gen_error";
header("location: /join");
exit();
}
// if length error
if($unitl == true) {
$_SESSION['m4'] = "user_leng";
header("location: /join");
exit();
}
// if username exists error
if($unae == true) {
$_SESSION['m5'] = "user_exi";
header("location: /join");
exit();
}
// if both username and password error
elseif($pdnm == true && $uinan == true && $unitl == '') {
$_SESSION['m3'] = "pdnm_aumna";
header("location: /join");
exit();
}
// if just password error
elseif($pdnm == true && $uinan == '') {
$_SESSION['m1'] = "chec_yapass";
header("location: /join");
exit();
}
// if just username error
elseif($uinan == true && $pdnm == '') {
$_SESSION['m2'] = "user_alnum";
header("location: /join");
exit();
}
// hash the password
$password_hashed = hash("sha256",$username_p.$password_p);
// generate random strings
function genRand1($length = 50) {
return substr(str_shuffle("0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ"), 0, $length);
}
function genRand2($length = 50) {
return substr(str_shuffle("0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ"), 0, $length);
}
function genRand3($length = 50) {
return substr(str_shuffle("0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ"), 0, $length);
}
function genRand4($length = 10) {
return substr(str_shuffle("0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ"), 0, $length);
}
$genran_str1 = genRand1();
$genran_str2 = genRand2();
$genran_str3 = genRand3();
$gentoken = genRand4();
# ACTUAL ACCOUNT CREATION
$site_locdesc = "attemptin\' verification";
mysqli_query($conx, "INSERT INTO accounts (username, password, email_secure, token, rstringa, rstringb, rstringc, last_ip, current_ip, uagent, joinstamp, site_locdesc) VALUES ('$username_p','$password_hashed','$email_hashed','$gentoken','$genran_str1','$genran_str2','$genran_str3','$ipaddr','$ipaddr','$uagent','$tstamp','$site_locdesc')");
# LOG USER IN TO ACCOUNT
$cs = mysqli_query($conx, "SELECT uid,token,username,rstringa,rstringb,rstringc FROM accounts WHERE username='$username_p'");
$cr = mysqli_fetch_assoc($cs);
$c_userid = $cr['uid'];
$c_username = $cr['username'];
$c_token = $cr['token'];
$c_rstringa = $cr['rstringa'];
$c_rstringb = $cr['rstringb'];
$c_rstringc = $cr['rstringc'];
setcookie("akgnxoPwqlIs", $c_rstringa, time()+3600*24*30, '/', '.misdew.com');
setcookie("LoILilzcnmwe", $c_rstringb, time()+3600*24*30, '/', '.misdew.com');
setcookie("puTtxXvbEkOo", $c_rstringc, time()+3600*24*30, '/', '.misdew.com');
# PUSH OUT EMAIL
$to = $email_addr;
$subject = "misdew.com verification";
$txt = "$c_username, <br>
Thank you for creating an account. Now it's time to verify. <br>
Follow the link below to continue. Please allow it to load completely. <br><br>
<a href=\"https://misdew.com/join/verify.php?k=$c_token\">https://misdew.com/join/verify.php?k=$c_token</a> <br><br>
</span>
</center>";
$headers = "Content-Type: text/html; charset=utf-8";
mail($to,$subject,$txt,$headers);
header("location: /hub");
exit();
}
else {
$_SESSION['m'] = "all_req";
header("location: /join");
exit();
}
?>

248
join/tmp.php Normal file
View file

@ -0,0 +1,248 @@
<?php
require_once("../inc/conx.php");
if($logged_in == true) {
header("location: /");
exit();
}
?>
<!DOCTYPE html>
<html>
<head>
<title>Misdew</title>
<meta charset="utf-8">
<meta name="description" content="We are a fairly cool social network.">
<meta name="keywords" content="Misdew, MD, Social, Network, Communication, 3DS, DSi, Nintendo">
<meta name="viewport" content="width=device-width, initial-scale=1, maximum-scale=1">
<meta name="google" value="notranslate">
<meta name="theme-color" content="#a64ca6">
<link rel="stylesheet" type="text/css" href="/css/consistent.css">
<link rel="icon" type="image/png" href="/img/favicon.png">
<link rel="apple-touch-icon" href="/img/logo.png">
</head>
<body>
<center>
<?php
session_start();
$back_button = yes;
$linebreak = true;
require_once("../inc/header.php");
// possible session messages
if (isset($_SESSION['m']) == 'all_req') {
echo "<div class=\"error_msg\">All fields are required.</div> <br>";
unset($_SESSION['m']);
}
elseif (isset($_SESSION['m4']) == 'user_leng') {
echo "<div class=\"error_msg\">Your username must not be greater than 13 characters.</div> <br>";
unset($_SESSION['m4']);
}
elseif (isset($_SESSION['m5']) == 'user_exi') {
echo "<div class=\"error_msg\">That username already exists.</div> <br>";
unset($_SESSION['m5']);
}
elseif (isset($_SESSION['m3']) == 'pdnm_aumna') {
echo "<div class=\"error_msg\">Your username must be alphanumeric and the passwords you entered did not match.</div> <br>";
unset($_SESSION['m3']);
}
elseif (isset($_SESSION['m2']) == 'user_alnum') {
echo "<div class=\"error_msg\">Your username must be alphanumeric.</div> <br>";
unset($_SESSION['m2']);
}
elseif (isset($_SESSION['m1']) == 'chec_yapass') {
echo "<div class=\"error_msg\">The passwords you entered did not match.</div> <br>";
unset($_SESSION['m1']);
}
elseif (isset($_SESSION['m6']) == 'gen_error') {
echo "<div class=\"error_msg\">There was an error.</div> <br>";
unset($_SESSION['m6']);
}
session_destroy();
?>
<span style="color: #888; font-size: 12px; font-family: 'Dosis', sans-serif;">By joining, you are agreeing to our <a href="/privacy-policy.html" target="_blank" style="color: #888;">privacy policy.</a></span> <br><br>
<form action="join.php" method="post" autocomplete="off">
<table class="form_tble">
<tr>
<td>
<input name="username" maxlength="13" type="text" placeholder="username" class="form_input">
</td>
</tr>
<tr>
<td>
<input name="email" type="text" placeholder="email address" class="form_input">
</td>
</tr>
<tr>
<td>
<input autocomplete="new-password" name="password" type="password" placeholder="password" class="form_input">
</td>
</tr>
<tr>
<td>
<input name="confirm_password" type="password" placeholder="confirm password" class="form_input">
</td>
</tr>
<tr>
<td class="form_tdpad">
<input type="submit" value="join" class="form_submit" onclick="this.disabled=true;this.value='joining...';this.form.submit();">
</td>
</tr>
</table>
</form>
<table class="form_btap" onclick="window.location='/';">
<tr>
<td>
tap to login
</td>
</tr>
</table> <br>
<div style="font-size: 13px; text-align: left; width: 95%; max-width: 500px; color: #808080; font-family: 'Dosis', sans-serif; padding-bottom: 10px;">
<span style="font-size: 25px; font-weight: bold;">Feed</span> <br>
This is an area where our members can post about anything that they desire. We enable others with the options to like, dislike, or comment on a post. Two of our most recent posts are below.
</div>
<?php
if($u_emoji_type == '') {
$u_emoji_type = 'facebook';
}
# SELECT TEN POSTS FROM FEED
$feed_q = mysqli_query($conx, "SELECT id,uid,post,tstamp,random_str,visibility,edited,img FROM feed ORDER BY id DESC LIMIT 2");
while($feed_r = mysqli_fetch_assoc($feed_q)) {
// Feed data
$feed_id = $feed_r['id'];
$feed_uid = $feed_r['uid'];
$string = $feed_r['post'];
$feed_tstamp = $feed_r['tstamp'];
$feed_randomstr = $feed_r['random_str'];
$feed_visibility = $feed_r['visibility'];
$feed_edited = $feed_r['edited'];
$feed_img = $feed_r['img'];
// Emoji+ replacement
include("../inc/replace.php");
# SELECT ACCOUNT DATA FOR FEED POSTS
$usr_q = mysqli_query($conx, "SELECT username,picture,online_time FROM accounts WHERE uid='$feed_uid'");
while($usr_r = mysqli_fetch_assoc($usr_q)) {
// Account data
$feed_username = $usr_r['username'];
$feed_picture = $usr_r['picture'];
$feed_onltime = $usr_r['online_time'];
// Activity Dot
$new_time = time() - $feed_onltime;
$mens = round($new_time / 60);
if($mens <= 1) { $cv_activeness = "#00FF00"; } // Active within one minute
elseif($mens <= 2) { $cv_activeness = "#FFA500"; } // Active within two minutes
elseif($mens < 5) { $cv_activeness = "#FFA500"; } // Active within five minutes
else { $cv_activeness = "#FF0000"; } // Active over five minutes
# SELECT THEME COLORS FOR ACCOUNTS
$usri_q = mysqli_query($conx, "SELECT username_color,text_color FROM user_theme_colors WHERE uid='$feed_uid' && theme_id='1'");
while($usri_r = mysqli_fetch_assoc($usri_q)) {
// Theme data
$username_color = $usri_r['username_color'];
$feed_tcolor = $usri_r['text_color'];
}
// Styling for the comment placeholders of each account attached to a post.
echo "<style type=\"text/css\">";
echo ".comment_$feed_username";
echo "[placeholder]:empty:before {";
echo "content: attr(placeholder);";
echo "color: $feed_tcolor; }</style>";
}
// If a post has more than one comment, set an 's' variable
$comcnt_q = mysqli_query($conx, "SELECT id FROM feed_comments WHERE post_id='$feed_id'");
$comcnt_r = number_format(mysqli_num_rows($comcnt_q));
if($comcnt_r != '1') { $cs = "s"; } // comment(s)
// If a post has more than one like, set an 's' variable
$likcnt_q = mysqli_query($conx, "SELECT id FROM feed_likes WHERE post_id='$feed_id'");
$likcnt_r = number_format(mysqli_num_rows($likcnt_q));
if($likcnt_r != '1') { $ls = "s"; } // like(s)
// If a post has more than one dislike, set an 's' variable
$dlikcnt_q = mysqli_query($conx, "SELECT id FROM feed_dislikes WHERE post_id='$feed_id'");
$dlikcnt_r = number_format(mysqli_num_rows($dlikcnt_q));
if($dlikcnt_r != '1') { $dls = "s"; } // dislike(s)
# BEGIN ECHOING THE FEED POSTS
echo "<div class=\"feed_post\" id=\"fp_1\" style=\"background-color: $username_color;\">";
echo "<table class=\"post_table1\"><tr>";
echo "<td class=\"ptb1_td1\" style=\"color: $feed_tcolor; width: 0%;\">";
echo "<div style=\"position: relative; width: 36px; height: 36px; border-radius: 50px;\">";
echo "<div style=\"background-color: $cv_activeness; border: 2px solid $username_color; position: absolute; width: 8px; height: 8px; border-radius: 50px; display: inline-block; bottom: 0; right: 0; z-index: 3;\"></div>";
echo "<img onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\" src=\"$feed_picture\" class=\"list_picture\"></div></td>";
echo "<td class=\"ptb1_td1\" style=\"text-align: left; color: $feed_tcolor;\">";
echo "<a onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\" style=\"text-decoration: none; color: $feed_tcolor; font-weight: bold;\">$feed_username</a></td>";
echo "<td class=\"ptb1_td2\" style=\"color: $feed_tcolor;\">";
echo "<i class=\"fa fa-angle-down\" aria-hidden=\"true\" onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\"></i></td></tr></table></div>";
echo "<div class=\"feed_post\" id=\"fp_2\">";
echo "<div class=\"fp_3\">";
// Echo the post content.
echo bbc(atname(nl2br($string)));
echo "</div><table class=\"post_table2\"><tr>";
echo "<td class=\"ptb2_td1\">";
// Like count within the post.
echo "<span id=\"likecnt_$feed_id\">";
echo "$likcnt_r like$ls";
echo "</span> &nbsp;&nbsp; ";
// Dislike count within the post.
echo "<span id=\"dlikecnt_$feed_id\">";
echo "$dlikcnt_r dislike$dls";
echo "</span></td><td id=\"ccmt_cnt\" class=\"ptb2_td2\">";
// Comment count within the post.
echo "<span id=\"mpcomment_count\">";
echo "$comcnt_r comment$cs";
echo "</span></td></tr></table>";
echo "<center><table class=\"post_table3\"><tr>";
echo "<td onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\" id=\"post_id_$feed_id\" class=\"ptb3_td1\">";
echo "<i class='fa fa-thumbs-up'></i> like";
echo "</td><td id=\"$feed_randomstr\" class=\"ptb3_td2\" onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\">";
echo "<i class=\"fa fa-comment\" aria-hidden=\"true\"></i> ";
echo "<span id=\"cmtbtn_$feed_randomstr\">comment</span></td>";
echo "<td onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\" id=\"dpost_id_$feed_id\" class=\"ptb3_td3\">";
echo "<i class=\"fa fa-thumbs-down\" aria-hidden=\"true\"></i> dislike";
echo "</td></tr></table>";
echo "</div>";
echo "<br>";
}
?>
<div style="font-size: 13px; text-align: left; width: 95%; max-width: 500px; color: #808080; font-family: 'Dosis', sans-serif; padding-bottom: 10px;">
<span style="font-size: 25px; font-weight: bold;">Chat</span> <br>
A location within us that members can speak to each other in. It is like a giant group conversation that anyone can be a part of. We also offer a secret messaging feature which can be used by tapping a username. Below is a snippet of the four most recent messages.
</div>
<?php
echo "<div style=\"background-color: #fff; width: 95%; max-width: 500px; padding: 10px; text-align: left; overflow: hidden; -webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;\">";
$chat_q = mysqli_query($conx, "SELECT id,uid,tstamp,message,pmuid,msgtype,display_name,mtype,imgurl FROM chat WHERE msgtype!='pm' ORDER BY id DESC LIMIT 4");
while($chat_r = mysqli_fetch_assoc($chat_q)) {
$chat_id = $chat_r['id'];
$chat_uid = $chat_r['uid'];
$chat_tstamp = $chat_r['tstamp'];
$string = $chat_r['message'];
$pmuid = $chat_r['pmuid'];
$msg_type = $chat_r['msgtype'];
$displayname = $chat_r['display_name'];
$mtype = $chat_r['mtype'];
$c_imgurl = $chat_r['imgurl'];
include("../inc/replace.php");
$usr_q = mysqli_query($conx, "SELECT username FROM accounts WHERE uid='$chat_uid'");
while($usr_r = mysqli_fetch_assoc($usr_q)) {
$chat_username = $usr_r['username'];
$usri_q = mysqli_query($conx, "SELECT username_color,text_color FROM user_theme_colors WHERE uid='$chat_uid' && theme_id='1'");
while($usri_r = mysqli_fetch_assoc($usri_q)) {
$username_color = $usri_r['username_color'];
$chat_tcolor = $usri_r['text_color'];
}
}
if($displayname == 'no') {
$chat_username = "";
}
echo "<div onclick=\"alert('You must fully enter the website in order to perform this action. Create an account to do so if you have not already!')\" style=\"display:block\"><table style=\"float: left; width: 100%; text-align: left;\"><tr><td style=\"color: $username_color; font-family: 'Dosis', sans-serif; font-weight: bold;\"><span>$chat_username</span></td></tr></table>";
// if message is an image
if($mtype == 'img') {
echo "<div style=\"word-wrap: break-word; border-radius: 20px; font-family: 'Dosis', sans-serif; display: inline-block; float: left; max-width: 60%; -webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;\"><img src=\"$c_imgurl\" alt=\"\" width=\"100%\" style=\"display: block; height: auto;\"></div>";
}
// if message is normal
else {
echo "<div style=\"word-wrap: break-word; background-color: $username_color; padding: 10px; padding-left: 25px; padding-right: 25px; border-radius: 20px; color: $chat_tcolor; font-family: 'Dosis', sans-serif; display: inline-block; float: left; max-width: 90%; -webkit-box-sizing: border-box; -moz-box-sizing: border-box; box-sizing: border-box;\">" . $string . "</div>";
}
echo "</div>";
}
echo "</div>";
require_once("../inc/footer.php");
?>
</center>
</body>
</html>

67
join/verify.php Normal file
View file

@ -0,0 +1,67 @@
c<?php
session_start();
require_once("../inc/conx.php");
if($logged_in == true) {
header("location: /");
exit();
}
# POST DATA
$token_p = safe($_GET['k']);
if($token_p) {
$cs = mysqli_query($conx, "SELECT uid,username,token,verified FROM accounts WHERE token='$token_p'");
$ccnt = mysqli_num_rows($cs);
if($ccnt == '0') {
header("location: /");
exit();
}
$crs = mysqli_fetch_assoc($cs);
$c_userid = $crs['uid'];
$rs_username = $crs['username'];
$rs_token = $crs['token'];
$rs_verified = $crs['verified'];
$curr_tst = time();
if($rs_token == $token_p && $rs_verified != 'yes') {
# DEFAULT USERNAME COLORS FOR THEME
$theme_q = mysqli_query($conx, "SELECT id,default_color,default_tcolor FROM themes");
while($theme_r = mysqli_fetch_assoc($theme_q)) {
$theme_id = $theme_r['id'];
$theme_dcolor = $theme_r['default_color'];
$theme_tcolor = $theme_r['default_tcolor'];
mysqli_query($conx, "INSERT INTO user_theme_colors (theme_id, uid, username_color, text_color) VALUES ('$theme_id','$c_userid','$theme_dcolor','$theme_tcolor')");
}
mysqli_query($conx, "INSERT INTO user_apps (uid, app_uqid, arrange) VALUES ('$c_userid','canvas','1')");
mysqli_query($conx, "INSERT INTO user_apps (uid, app_uqid, arrange) VALUES ('$c_userid','feed','2')");
mysqli_query($conx, "INSERT INTO user_apps (uid, app_uqid, arrange) VALUES ('$c_userid','chat','3')");
mysqli_query($conx, "INSERT INTO user_apps (uid, app_uqid, arrange) VALUES ('$c_userid','mail','4')");
mysqli_query($conx, "INSERT INTO user_apps (uid, app_uqid, arrange) VALUES ('$c_userid','draw','5')");
mysqli_query($conx, "INSERT INTO user_apps (uid, app_uqid, arrange) VALUES ('$c_userid','cloud','6')");
mysqli_query($conx, "INSERT INTO user_apps (uid, app_uqid, arrange) VALUES ('$c_userid','alerts','7')");
mysqli_query($conx, "INSERT INTO user_apps (uid, app_uqid, arrange) VALUES ('$c_userid','settings','8')");
mysqli_query($conx, "INSERT INTO account_figures (uid) VALUES ('$c_userid')");
mysqli_query($conx, "INSERT INTO canvas_design (uid) VALUES ('$c_userid')");
mysqli_query($conx, "INSERT INTO notifs (rstring, uid, snoozeable, app_uqid, message, view_link, tstamp) VALUES ('mdwLcm2MdtY4joNN','$c_userid','no','misdew','Welcome to Misdew! Please check with the Cloud app if you would like to upload files.','/cloud','$curr_tst')");
mysqli_query($conx, "UPDATE accounts SET verified='yes' WHERE username='$rs_username'");
# LOG USER IN TO ACCOUNT
$cs = mysqli_query($conx, "SELECT rstringa,rstringb,rstringc FROM accounts WHERE username='$rs_username'");
$cr = @mysqli_fetch_assoc($cs);
$c_rstringa = $cr['rstringa'];
$c_rstringb = $cr['rstringb'];
$c_rstringc = $cr['rstringc'];
setcookie("akgnxoPwqlIs", $c_rstringa, time()+3600*24*30, '/', '.misdew.com');
setcookie("LoILilzcnmwe", $c_rstringb, time()+3600*24*30, '/', '.misdew.com');
setcookie("puTtxXvbEkOo", $c_rstringc, time()+3600*24*30, '/', '.misdew.com');
$kill = '';
setcookie("hwsmnzeiopqm", $kill, time()+3600*24*30, '/', '.misdew.com');
header("location: /hub");
exit();
}
else {
header("location: /");
exit();
}
}
else {
header("location: /");
exit();
}
?>