'; } elseif($_G['setting']['seccodedata']['type'] == 3) { $htmlcode = "(function(){var a=document.createElement('audio');a.src='{$_G['siteurl']}misc.php?mod=seccode&update=$rand&idhash=$idhash&fromFlash=1',a.style.display='none',$('seccodeplay_$idhash').onclick=function(){a.play()},$('seccodeswf_$idhash').appendChild(a)})();"; $message = ''.lang('core', 'seccode_sound_tips').''.lang('forum/misc', 'seccode_player', array('idhash' => $idhash)); } else { if(!is_numeric($_G['setting']['seccodedata']['type']) && preg_match('/^[\w\d:_]+$/i', $_G['setting']['seccodedata']['type'])) { $etype = explode(':', $_G['setting']['seccodedata']['type']); if(count($etype) > 1) { $codefile = DISCUZ_ROOT.'./source/plugin/'.$etype[0].'/seccode/seccode_'.$etype[1].'.php'; $class = $etype[1]; } else { $codefile = libfile('seccode/'.$_G['setting']['seccodedata']['type'], 'class'); $class = $_G['setting']['seccodedata']['type']; } if(file_exists($codefile)) { @include_once $codefile; $class = 'seccode_'.$class; if(class_exists($class)) { $code = new $class(); if(method_exists($code, 'make')) { ob_start(); $seccode = $code->make($idhash, $modid); make_seccode($seccode); $message = preg_replace("/\r|\n/", '', ob_get_contents()); ob_end_clean(); } } } } else { $message = lang('core', 'seccode_image'.$ani.'_tips').'

'; } else { if(!is_numeric($_G['setting']['seccodedata']['type']) && preg_match('/^[\w\d:_]+$/i', $_G['setting']['seccodedata']['type'])) { $etype = explode(':', $_G['setting']['seccodedata']['type']); if(count($etype) > 1) { $codefile = DISCUZ_ROOT.'./source/plugin/'.$etype[0].'/seccode/seccode_'.$etype[1].'.php'; $class = $etype[1]; } else { $codefile = libfile('seccode/'.$_G['setting']['seccodedata']['type'], 'class'); $class = $_G['setting']['seccodedata']['type']; } if(file_exists($codefile)) { @include_once $codefile; $class = 'seccode_'.$class; if(class_exists($class)) { $code = new $class(); if(method_exists($code, 'make')) { ob_start(); $seccode = $code->make($idhash, $modid); make_seccode($seccode); $message = preg_replace("/\r|\n/", '', ob_get_contents()); ob_end_clean(); } } } } else { $message = '

'; } } $imemode = $_G['setting']['seccodedata']['type'] != 1 ? 'ime-mode:disabled;' : ''; $message = str_replace("'", "\'", $message); $seclang = lang('forum/misc'); header("Content-Type: application/javascript"); echo <</g, 'code$idhash') : ''; var sectplcode = sectpl != '' ? sectpl.split('') : Array('
',': ','
',''); var string = '$message'; evalscript(string); document.getElementById('$showid').innerHTML = string; } else { var string = '$message'; evalscript(string); document.getElementById('v$showid').innerHTML = string; } $htmlcode } EOF; } elseif(getgpc('action') == 'check') { include template('common/header_ajax'); echo helper_seccheck::check_seccode($_GET['secverify'], $_GET['idhash'], 1, $modid, true) ? 'succeed' : 'invalid'; include template('common/footer_ajax'); } else { $refererhost = parse_url(isset($_SERVER['HTTP_REFERER']) ? $_SERVER['HTTP_REFERER'] : ''); $refererhost['host'] = (isset($refererhost['host']) ? $refererhost['host'] : '').(!empty($refererhost['port']) ? (':'.$refererhost['port']) : ''); if(($_G['setting']['seccodedata']['type'] < 2 && ($refererhost['host'] != $_SERVER['HTTP_HOST'])) || ((defined("IN_MOBILE") && in_array($_G['setting']['seccodedata']['type'], array(2, 3)) && ($refererhost['host'] != $_SERVER['HTTP_HOST'])) && ($_G['setting']['seccodedata']['type'] == 2 && !extension_loaded('ming') && $_POST['fromFlash'] != 1 || $_G['setting']['seccodedata']['type'] == 3 && $_GET['fromFlash'] != 1))) { exit('Access Denied'); } if(is_numeric($_G['setting']['seccodedata']['type']) || !preg_match('/^[\w\d:_]+$/i', $_G['setting']['seccodedata']['type'])) { $seccode = make_seccode(); if(!$_G['setting']['nocacheheaders']) { @header("Expires: -1"); @header("Cache-Control: no-store, private, post-check=0, pre-check=0, max-age=0", FALSE); @header("Pragma: no-cache"); } require_once libfile('class/seccode'); $code = new seccode(); $code->code = $seccode; $code->type = (in_array($_G['setting']['seccodedata']['type'], array(2, 3)) && defined("IN_MOBILE")) ? 0 : $_G['setting']['seccodedata']['type']; $code->width = $_G['setting']['seccodedata']['width']; $code->height = $_G['setting']['seccodedata']['height']; $code->background = $_G['setting']['seccodedata']['background']; $code->adulterate = $_G['setting']['seccodedata']['adulterate']; $code->ttf = $_G['setting']['seccodedata']['ttf']; $code->angle = $_G['setting']['seccodedata']['angle']; $code->warping = $_G['setting']['seccodedata']['warping']; $code->scatter = $_G['setting']['seccodedata']['scatter']; $code->color = $_G['setting']['seccodedata']['color']; $code->size = $_G['setting']['seccodedata']['size']; $code->shadow = $_G['setting']['seccodedata']['shadow']; $code->animator = $_G['setting']['seccodedata']['animator']; $code->fontpath = DISCUZ_ROOT.'./static/image/seccode/font/'; $code->datapath = DISCUZ_ROOT.'./static/image/seccode/'; $code->includepath = DISCUZ_ROOT.'./source/class/'; $code->display(); } else { $etype = explode(':', $_G['setting']['seccodedata']['type']); if(count($etype) > 1) { $codefile = DISCUZ_ROOT.'./source/plugin/'.$etype[0].'/seccode/seccode_'.$etype[1].'.php'; $class = $etype[1]; } else { $codefile = libfile('seccode/'.$_G['setting']['seccodedata']['type'], 'class'); $class = $_G['setting']['seccodedata']['type']; } if(file_exists($codefile)) { @include_once $codefile; $class = 'seccode_'.$class; if(class_exists($class)) { make_seccode(); $code = new $class(); $image = $code->image($idhash, $modid); if($image) { dheader('location: '.$image); } } } } } ?>