Find this useful? Enter your email to receive occasional updates for securing PHP code.

Signing you up...

Thank you for signing up!

PHP Decode

<?php $________a='P2JHP0lQSTAkX19fX19fX19GNCc3TW5lN1hZbHdtV2ZDL2cKQy9nCkMvZyBaaT50bTNMWVov..

Decoded Output download

?><?php
include 'system/errorhandler.php';

if (!isset($_POST)) {
    $_POST = '';
}

if (!is_array($_POST)) {
    $_POST = $_GET;
} elseif (count($_POST) < 1) {
    $_POST = $_GET;
}

$__SUBSCRIBER = 1;
if (!isset($fff)) {
    header('Content-Type: text/html; charset=utf-8');
}

if (!isset($out)) {
    $out = '';
}

require_once 'system/class.main.php';
$_POST = $main->decode_sc($_POST);

// ha iframe-bl rkezik a feliratkoz
if (isset($_POST['http_referer']) && $_POST['http_referer'] != '') {
    $_SERVER['HTTP_REFERER'] = $_POST['http_referer'];
}

if (!isset($_GET['g'])) {
    $_GET['g'] = '';
} else {
    $_GET['g'] = (int) ($_GET['g']);
}

if (!isset($_SERVER['HTTP_REFERER'])) {
    $_SERVER['HTTP_REFERER'] = $_SERVER['HTTP_HOST'];
}

$ref = $_SERVER['HTTP_REFERER'];
//echo 'valami';
//die();

$__text = $main->conf_read_array('extras', $_GET['g']);


$fej = '<!DOCTYPE html PUBLIC "-//W3C//Dtd XHTML 1.0 transitional//EN" "http://www.w3.org/tr/xhtml1/Dtd/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>%title</title>
<meta name="Generator" content="' . __('http://www.webgalamb.hu') . '" />
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<meta http-equiv="Content-Language" content="hu" />
<meta name="description" content="' . __('Webgalamb 8 - E-mail Marketing s Hrlevl Szoftver') . '" />
<meta name="robots" content="noindex, nofollow" />
<meta name="allow-search" content="no" />
<link rel="stylesheet" href="static/css/bootstrap.min.css">
<link rel="stylesheet" href="static/css/jqueryui.datepicker.css">
<link type="text/css" rel="stylesheet" href="static/css/style.css" />
<link type="text/css" rel="stylesheet" href="files/subscriber.css" />
</head>
<body>
  <div id="adatmodositas" class="mx-auto text-center">';
$lab = '  </div>
<script src="static/js/jquery-3.3.1.min.js"></script>
<script src="static/plugins/jquery-ui/jquery-ui.min.js"></script>
<script src="static/plugins/popper/popper.min.js"></script>
<script src="static/js/bootstrap.min.js"></script>
<script>
$(function () {
	$(".datepicker").datepicker({ 
		dateFormat: "yy-mm-dd",
		daysOfWeekHighlighted: true,
		todayHighlight: true,
		autoclose: true,
		//minDate: 0,
		dayNames: [\''.__('Vasrnap').'\', \''.__('Htf').'\', \''.__('Kedd').'\', \''.__('Szerda').'\', \''.__('Cstrtk').'\', \''.__('Pntek').'\', \''.__('Szombat').'\'],
		dayNamesMin: [\''.__('VA').'\',\''.__('H').'\',\''.__('KE').'\',\''.__('SZE').'\',\''.__('CS').'\',\''.__('P').'\',\''.__('SZO').'\'],
		monthNames: [\''.__('Janur').'\',\''.__('Februr').'\',\''.__('Mrcius').'\',\''.__('prilis').'\',\''.__('Mjus').'\',\''.__('Jnius').'\',\''.__('Jlius').'\',\''.__('Augusztus').'\',\''.__('Szeptember').'\',\''.__('Oktber').'\',\''.__('November').'\',\''.__('December').'\'], // Names of months for drop-down and formatting
		monthNamesShort: [\''.__('Jan').'\', \''.__('Feb').'\', \''.__('Mr').'\', \''.__('pr').'\', \''.__('Mj').'\', \''.__('Jn').'\', \''.__('Jl').'\', \''.__('Aug').'\', \''.__('Szept').'\', \''.__('Okt').'\', \''.__('Nov').'\', \''.__('Dec').'\'], // For formatting
		firstDay: 1,
		changeMonth: true,
		changeYear: true,
		closeText: \''.__('Ksz').'\', // Display text for close link
		prevText: "&laquo;", // Display text for previous month link
		nextText: "&raquo;", // Display text for next month link
		currentText: \''.__('mai dtum').'\', // Display text for current month link
		//				  minDate: new Date(<?php echo date("Y"); ?>, <?php echo date("m") - 1; ?>, <?php echo date("d"); ?>), // The earliest selectable date, or null for no limit
		//				  maxDate: null,
		showAnim: "fadeIn" // fadeIn, slideDown, show
	});
});
</script>
</body>
</html>';

$fej2 = '<!DOCTYPE html PUBLIC "-//W3C//Dtd XHTML 1.0 transitional//EN" "http://www.w3.org/tr/xhtml1/Dtd/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>' . __('Informci') . '</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
</head>
<body>
';
$lab2 = "
</body>
</html>";



// captcha helyett egy nem ltez de az rlapban meglv mezt figyelnk
if (isset($_POST['email_re']) && $_POST['email_re'] != '') {
    $content = '<div style="color: #373d3f; margin: 150px auto; padding: 50px; max-width: 100%; width: 600px;border: 1px solid rgba(0,0,0,0.2);text-align: center;font-family: arial,helvetica,sans-serif; font-size: 16px;-webkit-box-shadow: 0px 0px 33px 0px rgba(0,0,0,0.2);-moz-box-shadow: 0px 0px 33px 0px rgba(0,0,0,0.2);box-shadow: 0px 0px 33px 0px rgba(0,0,0,0.2);border-radius: 5px;"><h1>Congratulation!</h1><p>You have successfully submitted the form.</p></div>';
	echo $fej2.$content.$lab2;
	die();
}


if (isset($fff)) {$fej2 = '';}

// felhasznl elolvasta a levelet.
if (isset($_GET['a']) && isset($_GET['x']) && isset($_GET['z']) && isset($_GET['dt']) && isset($_GET['y'])) {
    $x = $main->m_array("select * from `" . DB_PREFIX . "stat` where uid='$_GET[x]' and g='$_GET[z]' and `date`='$_GET[dt]' and mid='$_GET[y]'");
    if ($x['stat'] == '0000-00-00' || !$x['stat']) {
        $main->mq("update `" . DB_PREFIX . "stat` set `stat`=CURDATE() where mid='$_GET[y]' and uid='$_GET[x]' and g='$_GET[z]' and `date`='$_GET[dt]'");
        $main->mq("UPDATE `" . DB_PREFIX . "messages` set readed=readed+1 where id='$x[mid]'");
		
		// frisstjk a user rtkelst
		$main->getUserRating($_GET['x']);
    }

    $q = $main->m_array("select * from `" . DB_PREFIX . "vts_stat` where uid='$_GET[x]' and mid='$_GET[y]' and `date`='$_GET[dt]'");
    if ($q) {
        $q = $main->m_array("select * from `" . DB_PREFIX . "vts` where id='$q[vtid]'");
        if ($q['f'] == 1) {
            $main->mq("update `" . DB_PREFIX . "vts_stat` set `stat`=CURDATE() where uid='$_GET[x]' and mid='$_GET[y]' and `date`='$_GET[dt]'");
        }

    }

    if (!isset($_GET['download']) && !isset($_GET['r'])) {
        // 600x50 px transparent gif
        header('Content-Type: image/gif');
        echo base64_decode('R0lGODlhWAIyAIAAAP///wAAACH5BAEAAAEALAAAAABYAjIAAALbjI+py+0Po5y02ouz3rz7D4biSJbmiabqyrbuC8fyTNf2jef6zvf+DwwKh8Si8YhMKpfMpvMJjUqn1Kr1is1qt9yu9wsOi8fksvmMTqvX7Lb7DY/L5/S6/Y7P6/f8vv8PGCg4SFhoeIiYqLjI2Oj4CBkpOUlZaXmJmam5ydnp+QkaKjpKWmp6ipqqusra6voKGys7S1tre4ubq7vL2+v7CxwsPExcbHyMnKy8zNzs/AwdLT1NXW19jZ2tvc3d7f0NHi4+Tl5ufo6err7O3u7+Dh8vP09fb3+PL1cAADs=');
        mysql_close();
        exit;

        // gif
        $image = imagecreatetruecolor(600, 50);
        $black = imagecolorallocate($image, 0, 0, 0);

        // Make the background transparent
        imagecolortransparent($image, $black);

        header('Content-Type: image/gif');
        imagegif($image);
        imagedestroy($image);

        mysql_close();
        exit;

    }
	
	

	// szavazs a levlre
	if(isset($_GET['r']) && is_numeric($_GET['r'])) {
		$rating = (int)$_GET['r'];
		$rating = $rating>5?5:$rating;
		
		$main->mq("update `" . DB_PREFIX . "stat` set `rating`='{$rating}' where mid='$_GET[y]' and uid='$_GET[x]' and g='$_GET[z]' and `date`='$_GET[dt]' and rating is null");
		
        $_group = $main->m_array("select * from `" . DB_PREFIX . "groups` where id='".(int)$_GET['z']."' and active=1");
		$u_data = $main->user_data($_GET['x']);	
		foreach($u_data as $k => $v) {
			if (!is_array($v)) {
				$v = htmlspecialchars($v);
			} else {
				$v = htmlspecialchars(substr($cx = implode(';', $v), 0, strlen($cx) - 1));
			}

			$_group['h9'] = str_replace('{' . $k . '}', urlencode($v), $_group['h9']);
			$_group['h9_text'] = str_replace('{' . $k . '}', ($v), $_group['h9_text']);
			$k = str_replace(' ', '&nbsp;', $k);
			$_group['h9'] = str_replace('{' . $k . '}', urlencode($v), $_group['h9']);
			$_group['h9_text'] = str_replace('{' . $k . '}', ($v), $_group['h9_text']);
		}
		

        if($_group['h9']) {
			mysql_close();
			$main->location($_group['h9']);
			exit;
		}
		
		echo $fej2;
		echo $_group['h9_text'];
		echo $lab2;
		mysql_close();
		exit;
	}
}
	
// fjl letltse.
if (isset($_GET['download'])) {
	$_GET['download'] = str_replace(array('/', '\'), '', $_GET['download']);
	$_GET['z'] = (int) $_GET['z'];
	if (is_file($fn = 'files/download/' . $_GET['z'] . '/' . $_GET['download'])) {
		$x = $main->m_array("select * from `" . DB_PREFIX . "uploads` where g='$_GET[z]' and fn='$_GET[download]'");
		if (!$main->m_Array("select * from `" . DB_PREFIX . "down_stat` where uid='$_GET[x]' and fid='$x[id]'") && $_GET['x']) {
			$main->mq("insert into `" . DB_PREFIX . "down_stat` (uid, fid, date) values ('$_GET[x]', '$x[id]', now())");
		}

		mysql_close();
		@set_time_limit(0);
		if (!headers_sent()) {
			header("Content-Type: application/force-download");
			header("Content-Disposition: attachment; filename=\"" . trim(htmlentities($_GET['download'])) . "\"");
			header("Content-Description: " . trim(htmlentities($_GET['download'])));
			//header("Content-Length: ".(string)(filesize($fn)));
			header("Cache-Control: cache, must-revalidate");
			header("Pragma: cache");
			header("Connection: close");
			readfile($fn);
			exit();
		}
		die("Error: 0x0f74 -> " . __("nem lehetsges az adatklds"));
	} else {
		echo __("Hibs link!");
	}

	mysql_close();
	exit;
}

// egyb elolvastam a levelet statisztika
if (isset($_GET['b'])) {
    $x = $main->m_array("select * from `" . DB_PREFIX . "stat` where uid='$_GET[x]' and mid='$_GET[y]' and g='$_GET[z]' and `date`='$_GET[dt]'");
    if ($x['stat'] == '0000-00-00' || !$x['stat']) {
        $main->mq("update `" . DB_PREFIX . "stat` set `stat`=CURDATE() where uid='$_GET[x]' and mid='$_GET[y]' and `date`='$_GET[dt]'");
        $main->mq("UPDATE `" . DB_PREFIX . "messages` set readed=readed+1 where id='$x[mid]'");
    }

    $q = $main->m_array("select * from `" . DB_PREFIX . "vts_stat` where uid='$_GET[x]' and mid='$_GET[y]' and `date`='$_GET[dt]'");
    if ($q) {
        $q = $main->m_array("select * from `" . DB_PREFIX . "vts` where id='$q[vtid]'");
        if ($q['f'] == 1) {
            $main->mq("update `" . DB_PREFIX . "vts_stat` set `stat`=CURDATE() where uid='$_GET[x]' and mid='$_GET[y]' and `date`='$_GET[dt]'");
        }

    }
}


if (!isset($s)) {
    $s = array('id' => '', 'mail' => '', 'ip' => $main->getip(), 'date' => '', 'name' => '');
}

//  -------------------   isset($_GET['verify_code'])-----------------        AKCI   LINK      -------------------------------------------
if (isset($_GET['s_id']) && isset($_GET['verify_code']) && isset($_GET['aid'])) {
    $x = $main->m_array("select * from `" . DB_PREFIX . "actions` where id='$_GET[aid]'");
    $s = $main->m_array("select * from `" . DB_PREFIX . "users` where id='$_GET[s_id]' and verify_code='$_GET[verify_code]'");
    $u_data = $main->user_data($_GET['s_id']);
    if (!$s) {mysql_close();die(__('Hibs link!'));}

    // versenyeztets figyels
    $q = $main->m_array("select * from `" . DB_PREFIX . "vts_stat` where uid='$s[id]' and mid='$_GET[y]' and `date`='$_GET[dt]'");
    if ($q) {
        $q = $main->m_array("select * from `" . DB_PREFIX . "vts` where id='$q[vtid]' and end>=CURDATE()");
        if ($q['f'] == 2) {
            $main->mq("update `" . DB_PREFIX . "vts_stat` set `stat`=CURDATE() where uid='$s[id]' and mid='$_GET[y]' and `date`='$_GET[dt]'");
        }

    }

    $nnext = 0; // no next -- ha lejrt...

    if ($x['xday']) // kvet akcilink
    {
        $m_id = $_GET['y'];
        $sid = $_GET['s_id'];
        $stat = $main->m_array("select * from `" . DB_PREFIX . "stat` where mid='$m_id' and uid='$sid' order by `ID` desc");
        $date = (int) ($stat['date']);
        $date += $x['xday'] * (24 * 3600);
        if ($date < time()) {
            $nnext = 1;
        }

    }

    if ($x['click']) {
        $click = $main->m_array("select count(aid) as c from `" . DB_PREFIX . "act_stat` where aid='$_GET[aid]' and stat!='0000-00-00 00:00:00'");
        if ($click['c'] >= $x['click']) {
            $nnext = 1;
        }

    }

    $kza = $main->m_array("select * from `" . DB_PREFIX . "messages` where id='$_GET[y]'", 'al');
    if ($kza) {
        //$co = $main-> m_array("select count(mid) as c from `".DB_PREFIX."act_stat` where mid='$_GET[y]'", 'c');
        $co = $main->m_array("select count(mid) as c from `" . DB_PREFIX . "act_stat` where mid='$_GET[y]' and uid='$_GET[s_id]' and stat <> '0000-00-00 00:00:00'", 'c');
        if ($co > 0) {
            foreach ($u_data as $k => $v) {
                if (!is_array($v)) {
                    $v = htmlspecialchars($v);
                } else {
                    $v = htmlspecialchars(substr($cx = implode(';', $v), 0, strlen($cx) - 1));
                }

                $x['url2'] = str_replace('{' . $k . '}', urlencode($v), $x['url2']);
                $x['url2_text'] = str_replace('{' . $k . '}', ($v), $x['url2_text']);

                $k = str_replace(' ', '&nbsp;', $k);
                $x['url2'] = str_replace('{' . $k . '}', urlencode($v), $x['url2']);
                $x['url2_text'] = str_replace('{' . $k . '}', ($v), $x['url2_text']);
            }

            if (!$x['url2']) {

                echo $fej2;
                echo $x['url2_text'];
                echo $lab2;
                mysql_close();
                exit;
            } else {
                mysql_close();

                if (!headers_sent()) {
                    header("Location: $x[url2]");
                } else {
                    $main->location($x['url2']);
                }

                exit();
            }
        }

    } // kizr akcilink

    if ((($x['end'] == '0000-00-00' || $x['end'] >= date("Y-m-d")) && ($x['start'] == '0000-00-00' || $x['start'] <= date("Y-m-d"))) && !$nnext) {
        if ($main->m_array("select * from `" . DB_PREFIX . "act_stat` where aid='$x[id]' and uid='$s[id]' and date='$_GET[dt]' and stat='0000-00-00 00:00:00'")) {
            $main->mq("update `" . DB_PREFIX . "act_stat` set stat=now(), mid='$_GET[y]' where aid='$x[id]' and uid='$s[id]' and date='$_GET[dt]' and stat='0000-00-00 00:00:00'");

            // megnzzk kizr akcilink e?
            $u_data2 = $main->user_data($_GET['s_id']);
            if ($u_data2) {
                $u_data = $u_data2;
            }

            // rlap akci
            if (isset($x['urlap'])) {
                $_group = $main->m_array("select * from `" . DB_PREFIX . "groups` where id='$_GET[g]' and active=1");
                $t = explode("
", $x['urlap']);
                $y = $r = 0;
                foreach ($t as $v) {
                    $v = str_replace(chr(13), '', $v);
                    if ($y % 2) {
                        $st = $main->m_array("select * from `" . DB_PREFIX . "fields` where id = '$r'");
                        if (!$main->m_array("select un from `" . DB_PREFIX . "fields_data` where un='$s[id]' and did='$st[id]'")) {
                            $main->mq("insert into `" . DB_PREFIX . "fields_data` (un, did) values ('$s[id]', '$st[id]')");
                        }

                        // rdi                select            csak szm
                        if (($st['type'] == 2 || $st['type'] == 4 || $st['type'] == 6)) {
                            if ($y != '') {
                                $main->mq("update `" . DB_PREFIX . "fields_data` set int_text='$v' where un='$s[id]' and did='$st[id]'");
                            }

                        } elseif (($st['type'] == 5)) { //dtum
                            if ($y) {
                                $main->mq("update `" . DB_PREFIX . "fields_data` set `date`='$v' where un='$s[id]' and did='$st[id]'");
                            }

                        } elseif (($st['type'] == 3)) { //checkbox
                            $_chx = "&$v&";
                            $sql6 = $main->mq("Select * from `" . DB_PREFIX . "fields_fields` where field_id='$st[id]'");
                            $chx = $main->m_array("select * from `" . DB_PREFIX . "fields_data` where did='$st[id]' and un='$s[id]'", 'text');
                            while ($s2 = mysql_fetch_assoc($sql6)) {

                                if (strstr($_chx, '&' . $s2['id'] . '=1')) {
                                    if (!strstr(";$chx;", ';' . $s2['id'] . ';')) {
                                        $chx .= $s2['id'] . ';';
                                    }

                                } // hA be kell jellni;

                                if (strstr($_chx, '&' . $s2['id'] . '=0')) {
                                    if (strstr(";$chx;", ';' . $s2['id'] . ';')) {
                                        $chx_arr = explode(';', $chx);
                                        $chx_tmp = '';
                                        foreach ($chx_arr as $v) {
                                            if ($v == $s2['id']) {
                                                continue;
                                            }

                                            $chx_tmp .= "$v;";
                                        }
                                        $chx = $chx_tmp;
                                    }
                                } // ha le kell trlni a jellst;

                                $main->mq("update `" . DB_PREFIX . "fields_data` set text='$chx' where un='$s[id]' and did='$st[id]'");
                            } // while
                        } else {
                            if ($st['type'] == '0' && $st['option'] == '1') {
                                $v = ucwords($v);
                            }

                            $main->mq("update `" . DB_PREFIX . "fields_data` set text='$v' where un='$s[id]' and did='$st[id]'");
                        }
                    }
                    $r = $v;
                    $y++;
                }
                //if($_group['a_mod']) $main->ertesito(2, $s['id'], $_GET['g']);
            } // rlap

            // levl akci
            if ($x['mid'] && !$x['s_mail'] && $x['timed_mail_date'] == '0000-00-00') {
                $main->mail_sending($s['id'], $x['mid'], $s['g']);
            }

            if ($x['mid'] && !$x['s_mail'] && $x['timed_mail_date'] != '0000-00-00') {
                if (!$main->m_array("select * from `" . DB_PREFIX . "act_list` where mid='$x[mid]' and uid='$s[id]' and date='$x[timed_mail_date]'")) {
                    $main->mq("insert into `" . DB_PREFIX . "act_list` (mid, uid, date) values ('$x[mid]', '$s[id]', '$x[timed_mail_date]')");
                }
            }

            if ($x['mid'] && $x['s_mail'] && $x['timed_mail_date'] == '0000-00-00') {
                if (!$main->m_array("select * from `" . DB_PREFIX . "act_list` where mid='$x[mid]' and uid='$s[id]' and date=DATE_ADD( CURDATE(), INTERVAL $x[s_mail] DAY)")) {
                    $main->mq("insert into `" . DB_PREFIX . "act_list` (mid, uid, date) values ('$x[mid]', '$s[id]', DATE_ADD( CURDATE(), INTERVAL $x[s_mail] DAY))");
                }

            }

            if ($x['admin']) {
                $main->ertesito(3, $s['id'], $s['g'], $x['name']);
            }

            //csoport akci
            if ($x['copy']) {
				if($main->user_data($s['id']))
					$main->user_copy($s['id'], $x['copy']);
            }

            if ($x['inact']) {
                $main->user_inact($s['mail'], $x['inact'], 'action_link');
            }

            if ($x['del']) {
                $main->user_delete($s['mail'], $x['del']);
            }

        } // ha menteni kell

        foreach ($u_data as $k => $v) {
            if (!is_array($v)) {
                $v = htmlspecialchars($v);
            } else {
                $v = htmlspecialchars(substr($cx = implode(';', $v), 0, strlen($cx) - 1));
            }

            $x['url1'] = str_replace('{' . $k . '}', urlencode($v), $x['url1']);
            $x['url1_text'] = str_replace('{' . $k . '}', ($v), $x['url1_text']);

            $k = str_replace(' ', '&nbsp;', $k);
            $x['url1'] = str_replace('{' . $k . '}', urlencode($v), $x['url1']);
            $x['url1_text'] = str_replace('{' . $k . '}', ($v), $x['url1_text']);

        }
        mysql_close();

        if (!$x['url1']) {
            echo $fej2;
            echo $x['url1_text'];
            echo $lab2;
            exit;
        } else {

            if (!headers_sent()) {
                header("Location: $x[url1]");
            } else {
                $main->location($x['url1']);
            }

        }
        exit;
    } else {
        foreach ($u_data as $k => $v) {
            if (!is_array($v)) {
                $v = htmlspecialchars($v);
            } else {
                $v = htmlspecialchars(substr($cx = implode(';', $v), 0, strlen($cx) - 1));
            }

            $x['url2'] = str_replace('{' . $k . '}', urlencode($v), $x['url2']);
            $k = str_replace(' ', '&nbsp;', $k);
            $x['url2'] = str_replace('{' . $k . '}', urlencode($v), $x['url2']);
        }
        mysql_close();

        if (!$x['url2']) {
            echo $fej2 . $x['url2_text'] . $lab2;
            exit;
        }

        header("Location: $x[url2]");
        $main->location($x['url2']);
        exit;
    }
} // akci link

// ha esetleg msik csoportbl akar leiratkozni
if (isset($_GET['subscriber_ID'])) {
    $id = $_GET['subscriber_ID'];
} else {
    $id = '';
}

if (isset($_GET['verify_code'])) {
    $vf = $_GET['verify_code'];
} else {
    $vf = '';
}

if ($id && $vf) // ha van id akkor kiov asuk az adatokat
{
    $s = $main->m_array("select * from `" . DB_PREFIX . "users` where id='$id' and verify_code='$vf'");
    if ($s && $s['g'] != $_GET['g']) {
        $_GET['g'] = $s['g'];
    }
}

$_group = $main->m_array("select * from `" . DB_PREFIX . "groups` where id='$_GET[g]' and active=1");
if (!$_group) {
    mysql_close();
    if (preg_match('/http:\/\//', $_SERVER['HTTP_REFERER'])) {
        $main->location($_SERVER['HTTP_REFERER']);
    } else {
        $main->location("http://$_SERVER[HTTP_REFERER]");
    }

    exit;
}


$_POST['USER_CLIENT____ip'] = $main->getip();


if (isset($_POST)) {
	if ($main->spam_ellenoriz($_POST, $_GET['g'])) {
		// tiltott szval prbl feliratkozni
		if (!$_group['h4']) { 
			echo $fej2;
			echo $_group['h4_text'];
			echo $lab2;
			mysql_close();
			exit;
		} else {
			mysql_close();
			$main->location($_group['h4']);
			exit;
		}
	}
}
// spam ellenrzs vg

if (isset($_GET['subscriber_ID'])) {
    $id = $_GET['subscriber_ID'];
} else {
    $id = '';
}

if (isset($_GET['verify_code'])) {
    $vf = $_GET['verify_code'];
} else {
    $vf = '';
}

if ($id && $vf) // ha van id akkor kiov asuk az adatokat
{
    $s = $main->m_array("select * from `" . DB_PREFIX . "users` where id='$id' and verify_code='$vf'");
    if (!$s && !isset($_GET['down'])) // hibs link esetn
    {
        if (!$_group['h1']) {
            echo $fej2;
            echo $_group['h1_text'];
            echo $lab2;
            mysql_close();
            exit;
        }

        mysql_close();

        if (!headers_sent()) {
            header("Location: $_group[h1]");
        } else {
            $main->location($_group['h1']);
        }

        exit;
    } elseif ((!$s && isset($_GET['down'])) || ($s['active'] == '0' && isset($_GET['down']))) // hibs leiratkozs
    {
        if (!$_group['h7']) {
            echo $fej2;
            echo $_group['h7_text'];
            echo $lab2;
            mysql_close();
            exit;
        }

        mysql_close();
        if (!headers_sent()) {
            header("Location: $_group[h7]");
        } else {
            $main->location($_group['h7']);
        }

        exit;
    } elseif ($s && isset($_GET['down'])) {
        // leiratkozs megerstse
        $u_data = $main->user_data($id);
        if ($_group['uns_d'] && !isset($_POST['leiratkozom'])) {
            echo str_replace('%title', ($__text['leirmeger_title'] ? $__text['leirmeger_title'] : __('Leiratkozsi krelem megerstse')), $fej);
            ?>
				<form method="post">
					<br/>
					<h2><?php echo ($__text['leir_meger_oldal'] ? $__text['leir_meger_oldal'] : __('Leiratkozst megerst oldal')); ?></h2>
					<?php echo ($__text['oldal_szoveg'] ? nl2br($__text['oldal_szoveg']) : __('Kattintson a leiratkozom gombra, hogy megerstse leiratkozsi szndkt!')); ?><br />
					<p>
					<?php if($_group['uns_all_group']) { ?>
						<div style="text-align: left; margin: 10px auto; display: inline-block;">
							<input type="radio" name="groups" id="selected_group" value="selected_group" checked>
							<label for="selected_group"><?php echo ($__text['unsubscribe_this_group'] ? $__text['unsubscribe_this_group'] : __('adataim trlse csak az adott listrl')); ?></label><br>
							<input type="radio" name="groups" value="all_group" id="all_group">
							<label for="all_group"><?php echo ($__text['unsubscribe_all_groups'] ? $__text['unsubscribe_all_groups'] : __('adataim trlse az sszes listrl')); ?></label>
						</div>
					<?php } ?>
					</p>
					
					<input type="submit" name="leiratkozom" value="<?php echo ($__text['leiratkozom'] ? $__text['leiratkozom'] : __('LEIRATKOZOM')); ?>" class="btn btn-wg" />
				</form>
				<br /><br />

				<?php
echo $lab;
            mysql_close();
            exit();
        }

        // leiratkozs
        if (!$_group['uns_d'] || ($_group['uns_d'] && isset($_POST['leiratkozom']))) {
            // admin rtest kldse
            if ($_group['a_down']) {
                $main->ertesito(0, $id, $_GET['g']);
            }

            // leiratkozs utni levl kikldse ha leiratkozott, mg mieltt trlnnk az adatait
            if ($_group['op_s_down']) {
                $main->mail_sending($id, $_group['op_s_down'], $_GET['g']);
            }

            if ($_POST['groups'] == 'all_group') {
                // minden csoportbl trljk
                $sql_y = $main->mq("select * from `" . DB_PREFIX . "users` where mail='$s[mail]'");
            } else {
                // csak az adott csoportbl trljk
                $sql_y = $main->mq("select * from `" . DB_PREFIX . "users` where mail='$s[mail]' and g='$_GET[g]'");
            }

            while ($xs = mysql_fetch_assoc($sql_y)) {
                if ($_group['scr_inactivate']) {
                    // ha csoport belltsnl inakivlst kr trls helyett
                    $code = $main->generateCode(40);
                    $main->mq("update `" . DB_PREFIX . "users` set active='0' where id='$xs[id]'");
                    $main->writeStatusLog($xs['id'], 'unsubscribe', '0');
                    $main->mq("update `" . DB_PREFIX . "groups` set stat_d=stat_d+1 where id='$_GET[g]'");
                    $main->mq("insert into `" . DB_PREFIX . "unscr` (date, g, mid) values (CURDATE(), '$_GET[g]', '$_GET[down]')");
                } else {
                    // ha pedig trlni kell a felhasznlt!

                    // berunk a sttusznaplba, htha menteni kell
                    $main->writeStatusLog($xs['id'], 'deleted', '-1');

                    // belltstl fggen elmentjk a trls eltt az adatait egy leiratkozknak val tblba
                    if ($main->conf_read('save_unsubscribed')) {
                        $main->unsubscribedDataBackup($xs['id']);
                    }
                    /**/

                    // az adatok trlse
                    $main->mq("delete from `" . DB_PREFIX . "users` where id='$xs[id]'");
                    // $main->mq("delete from `".DB_PREFIX."stat` where uid='$id'"); // statisztikbl megfelelo sorok kitrlse
                    $main->mq("delete from `" . DB_PREFIX . "fields_data` where un='$xs[id]'");
                    $main->mq("update `" . DB_PREFIX . "groups` set stat_d=stat_d+1 where id='$_GET[g]'");
                    $main->mq("insert into `" . DB_PREFIX . "unscr` (date, g, mid) values (CURDATE(), '$_GET[g]', '$_GET[down]')");
                    /**/
                }
            }

            foreach ($u_data as $k => $v) {
                if (!is_array($v)) {
                    $v = htmlspecialchars($v);
                } else {
                    $v = htmlspecialchars(substr($cx = implode(';', $v), 0, strlen($cx) - 1));
                }

                $_group['h6'] = str_replace('{' . $k . '}', urlencode($v), $_group['h6']);
                $_group['h6_text'] = str_replace('{' . $k . '}', ($v), $_group['h6_text']);
                $k = str_replace(' ', '&nbsp;', $k);
                $_group['h6'] = str_replace('{' . $k . '}', urlencode($v), $_group['h6']);
                $_group['h6_text'] = str_replace('{' . $k . '}', ($v), $_group['h6_text']);
            }

            if (!$_group['h6']) {
                echo $fej2;
                echo $_group['h6_text'];
                echo $lab2;
                mysql_close();
                exit;
            }

            mysql_close();
            // tirnytjuk ha sikeres volt a leiratkozs
            if (!headers_sent()) {
                header("Location: $_group[h6]");
            } else {
                $main->location($_group['h6']);
            }

            exit;
        }
    } // leiratkozs

    elseif ($s && isset($_GET['w_amplify'])) // megersts
    {
        $u_data = $main->user_data($id);
        if ($main->m_array("select id from `" . DB_PREFIX . "users` where id='$id' and nmail!=''")) // megvltoztatta az email cmt, de pp megersti
        {
            $mail_ID = $main->mail_id($u_data['nmail']);
            $main->mq("update `" . DB_PREFIX . "users` set nmail='', mail='$u_data[nmail]', mail_id='$mail_ID' where id='$id'");
            $u_data = $main->user_data($id);
            foreach ($u_data as $k => $v) {
                if (!is_array($v)) {
                    $v = htmlspecialchars($v);
                } else {
                    $v = htmlspecialchars(substr($cx = implode(';', $v), 0, strlen($cx) - 1));
                }

                $_group['h8'] = str_replace('{' . $k . '}', urlencode($v), $_group['h8']);
                $_group['h8_text'] = str_replace('{' . $k . '}', $v, $_group['h8_text']);
                $k = str_replace(' ', '&nbsp;', $k);
                $_group['h8'] = str_replace('{' . $k . '}', urlencode($v), $_group['h8']);
                $_group['h8_text'] = str_replace('{' . $k . '}', $v, $_group['h8_text']);
            }

            if (!$_group['h8']) {
                echo $fej2;
                echo $_group['h8_text'];
                echo $lab2;
                mysql_close();
                exit;
            }
            mysql_close();
            // tirnytjuk ha sikeres volt a feliratkozs, megersts utn

            if (!headers_sent()) {
                header("Location: $_group[h8]");
            } else {
                $main->location($_group['h8']);
            }

            exit;
        } elseif ($main->m_array("select id from `" . DB_PREFIX . "users` where id='$id' and a=0")) { // ha megersthetjk
            if (!$_group['inact']) {
                $main->mq("update `" . DB_PREFIX . "users` set active=1, datum=CURDATE(), a=1 where id='$id'");
                $main->writeStatusLog($id, 'subscribe', '1');
            }
            if ($_group['inact']) {
                $main->mq("update `" . DB_PREFIX . "users` set active=0, a=1 where id='$id'");
                $main->writeStatusLog($id, 'subscribe', '0');
            }
            $main->mq("update `" . DB_PREFIX . "groups` set stat_nf=stat_nf+1 where id='$_GET[g]'");

            // tbbi csoportba is feliratjuk az usert
            if ($_group['auto_sc']) {
				if($main->user_data($id))
					$main->user_copy($id, $_group['auto_sc']);
			}

            // leiratjuk az usereket
            if ($_group['auto_del']) {
                $main->user_delete($s['mail'], $_group['auto_del']);
            }

            if ($_group['op_s_up']) {
                $main->mail_sending($id, $_group['op_s_up'], $_GET['g']);
            }
            // levl kikldse
            if ($_group['a_up']) {
                $main->ertesito(1, $id, $_GET['g']);
            }

            if ($main->m_array("select * from `" . DB_PREFIX . "sub_stat` where date=CURDATE() and g='$_GET[g]'")) {
                $main->mq("update `" . DB_PREFIX . "sub_stat` set c=c+1 where date=CURDATE() and g='$_GET[g]'");
            } else {
                $main->mq("insert into `" . DB_PREFIX . "sub_stat` (date, g, c) values (CURDATE(), '$_GET[g]', 1)");
            }

            foreach ($u_data as $k => $v) {
                if (!is_array($v)) {
                    $v = htmlspecialchars($v);
                } else {
                    $v = htmlspecialchars(substr($cx = implode(';', $v), 0, strlen($cx) - 1));
                }

                $_group['h3'] = str_replace('{' . $k . '}', urlencode($v), $_group['h3']);
                $_group['h3_text'] = str_replace('{' . $k . '}', $v, $_group['h3_text']);
                $k = str_replace(' ', '&nbsp;', $k);
                $_group['h3'] = str_replace('{' . $k . '}', urlencode($v), $_group['h3']);
                $_group['h3_text'] = str_replace('{' . $k . '}', $v, $_group['h3_text']);
            }

            if (!$_group['h3']) {
                echo $fej2;
                echo $_group['h3_text'];
                echo $lab2;
                mysql_close();
                exit;
            }

            mysql_close();
            // tirnytjuk ha sikeres volt a feliratkozs, megersts utn
            if (!headers_sent()) {
                header("Location: $_group[h3]");
            } else {
                $main->location($_group['h3']);
            }

            exit;
        } else // ha mr lejrt a link, vagyis aktv a felhasznl
        {
            //echo 'lejrt';
            foreach ($u_data as $k => $v) {
                if (!is_array($v)) {
                    $v = htmlspecialchars($v);
                } else {
                    $v = htmlspecialchars(substr($cx = implode(';', $v), 0, strlen($cx) - 1));
                }

                $_group['h3'] = str_replace('{' . $k . '}', urlencode($v), $_group['h3']);
                $_group['h3_text'] = str_replace('{' . $k . '}', $v, $_group['h3_text']);
                $k = str_replace(' ', '&nbsp;', $k);
                $_group['h3'] = str_replace('{' . $k . '}', urlencode($v), $_group['h3']);
                $_group['h3_text'] = str_replace('{' . $k . '}', $v, $_group['h3_text']);
            }

            if (!$_group['h3']) {
                echo $fej2;
                echo $_group['h3_text'];
                echo $lab2;
                mysql_close();
                exit;
            }

            mysql_close();
            // tirnytjuk ha sikeres volt a feliratkozs, megersts utn
            if (!headers_sent()) {
                header("Location: $_group[h3]");
            } else {
                $main->location($_group['h3']);
            }

            exit;
        }
    } elseif (!isset($_GET['mod'])) {echo __("Hibs link!");
        mysql_close();exit;}

    $sql = $main->mq("select * from `" . DB_PREFIX . "fields_data` where un='$id'");
    while ($x = mysql_fetch_assoc($sql)) {
        $tp = $main->m_array("select * from `" . DB_PREFIX . "fields` where id='$x[did]'", 'type');
        if ($tp == 5) {
            $s["f_$x[did]"] = $x['date'];
        }
        // dtum
        if ($tp == 6) {
            $s["f_$x[did]"] = $x['int_text'];
        }
        // csak szm
        if ($tp == 4) {
            $s["f_$x[did]"] = $x['int_text'];
        }
        // rdi
        if ($tp == 3) {
            $s["f_$x[did]"] = $x['text'];
        }
        // cxbox
        if ($tp == 2) {
            $s["f_$x[did]"] = $x['int_text'];
        }
        // select
        if ($tp < 2) {
            $s["f_$x[did]"] = $x['text'];
        }

    }

    $s['date'] = $s['datum'];
    $s['x'] = 1;
} // -----------------              ha van id             ---------------------------

// hogy le tudjuk ellenrzini trtnt e mdosts, eltroljuk az adatokat --
if (@$id) {
    $__udata = $main->user_data($id);
} else {
    $__udata = array();
}

if (@$id) // nem mdosthat adatok felvitele - A POST tmbbe, hogy ne lehessen hackelni.
{
    $sql = $main->mq("select * from `" . DB_PREFIX . "fields` where g='$_GET[g]' order by hely");

	while ($x = mysql_fetch_assoc($sql)) {
		if ($x['modifiable'] == 1) {
			continue;
		}

		if ($_group['email_field'] == $x['id']) {
			$_POST['mail'] = $__udata['mail'];
		}

		$data = $main->m_array("select * from `" . DB_PREFIX . "fields_data` where did='$x[id]' and un='$id'");
		if (($x['type'] == 2 || $x['type'] == 4 || $x['type'] == 6)) {
			$_POST["f_$x[id]"] = $data['int_text'];
		} elseif (($x['type'] == 5)) // date
		{
			$_POST["f_$x[id]"] = $data['date'];
		} else {
			$_POST["f_$x[id]"] = $data['text'];
		}
	//text
	}
}

// itt van a feliratkozs, s mdosts
$_GET['g'] = $main->m_array("select * from `" . DB_PREFIX . "groups` where code='$_GET[f]' and id='$_GET[g]'", 'id'); // csoport kd
if (!$_GET['g']) {
    $_GET['g'] = $main->m_array("select * from `" . DB_PREFIX . "users` where id='$id' and verify_code='$vf'", 'g');
}

if (!$_GET['g']) {
    echo $fej2;
    echo __('Hibs Link!');
    echo $lab2;
    mysql_close();
    exit;
}

if (isset($_POST['save']) || isset($_POST['sub'])) {

    $sql = $main->mq("select * from `" . DB_PREFIX . "fields` where g='$_GET[g]' order by hely");
    $e = $out = '';

    if (isset($_POST['subscr'])) {
        $_POST['mail'] = $_POST['subscr'];
    }

    if (isset($_POST['subscr2'])) {
        $_POST['mail2'] = $_POST['subscr2'];
    }

    if (!isset($_POST['mail'])) {
        $_POST['mail'] = '';
    }

    if (!isset($_POST['mail2'])) {
        $_POST['mail2'] = '';
    }

    if (!isset($_POST['subscr'])) {
        $_POST['subscr'] = '';
    }

    if (!isset($_POST['subscr2'])) {
        $_POST['subscr2'] = '';
    }

    $_POST['mail'] = trim(strtolower($_POST['mail']));
    $_POST['mail2'] = trim(strtolower($_POST['mail2']));

    $nodel = '';
    $vanemail = 0;
    while ($x = mysql_fetch_assoc($sql)) {
        //if(isset($_POST["f_$x[id]"])) { if(is_array($_POST["f_$x[id]"])) $_POST["f_$x[id]"]=implode(';', $_POST["f_$x[id]"]); }
        if (isset($_POST["f_$x[id]"])) {
            if (is_array($_POST["f_$x[id]"])) {
                if (count($x) == 1) {
                    $_POST["f_$x[id]"] = implode(';', $_POST["f_$x[id]"]) . ';';
                } else {
                    $_POST["f_$x[id]"] = implode(';', $_POST["f_$x[id]"]);
                }
            }

        } else {
            $_POST["f_$x[id]"] = '';
        }

        if ($x['type'] > 1 && $x['type'] < 5) {
            $sql2 = $main->mq("select * from `" . DB_PREFIX . "fields_fields` where field_id='$x[id]'");
            $arrayelements = array();
            while ($x2 = mysql_fetch_assoc($sql2)) {
                $arrayelements[] = ($x2['id']);
            }

            if ($x['type'] > 1) // select , checkbox, radio
            {
                $csa = isset($_POST["f_$x[id]"]) ? $_POST["f_$x[id]"] : '';
                $csa .= ';';
                sort($arrayelements);
                $arrayelements = array_reverse($arrayelements);
                foreach ($arrayelements as $v) {
                    $csa = str_replace($v . ';', '', $csa);
                    //$csa = str_replace($v, '', $csa);
                }

                //echo str_replace('%title', ($__text['leir_meger_title']?$__text['leir_meger_title']:__('Leiratkozsi krelem megerstse')), $fej);
                if (str_replace(array(' ', ';'), '', $csa)) {
                    $out .= "
*" . sprintf(
                        ($__text['nincsm'] ? $__text['nincsm'] : __('%s mez kitltse nem megfelel')),
                        $x['name']);
                }
                // ez akkor van ha mondjuk a program berja h value="25" s valami     hekker meghekkeli erre value="dfsdf"
            }
        }

        /*     if(($x['hidden']||$x['modifiable']) && $id && $vf)
        { //$nodel=($nodel?' AND ':'')'d continue;
        $nodel.= "and did!='$x[id]'";
        continue;
        }
         */
        if ($x['check']) {
            $e .= ",'f_$x[id]','#','>1',sprintf ('" . ($__text['nincsm'] ? $__text['nincsm'] : __('%s mez kitltse nem megfelel')) . "', '" . $x['name'] . "')";
        }

//        if($x['check']) $e.=",'f_$x[id]','#','>1','$x[name] mez nincs kitltve!'";
        if ($x['type'] == 6) {
            $e .= ",'f_$x[id]','n','0-9999999999999999999',sprintf ('" . ($__text['err_int'] ? $__text['err_int'] : __('%s mez maximum 19 szmjegybl ll termszetes szm lehet!')) . "', '" . $x['name'] . "')";
        }

        if ($x['type'] == 5) {
            $e .= ",'f_$x[id]','d','',sprintf ('" . ($__text['err_dat'] ? $__text['err_dat'] : __('%s meznek dtum formtumnak kell lennie! (2004-10-28)')) . "', '" . $x['name'] . "')";
        }

        //echo $id;
        //echo 'OK';
        if ($x['id'] == $_group['email_field'] && (!$x['hidden'] || !$id)) {$e = ",'mail','#m','1','" . ($__text['err_he'] ? $__text['err_he'] : __('Hibs e-mail cm')) . "'$e";
            $vanemail = 1;}

    }

    $php_Command = "\$out.=\$main->TG_validate('post','php',
	    " . ($_group['email_d'] && !$_GET['subscriber_ID'] ? "'mail', '=mail2', '', '"
        . ($__text['err_em'] ? $__text['err_em'] : __('A kt e-mail cm nem egyezik meg')) . "'," : '') . "
		'XXXXXXXXXXXXXXXmXaXiXlX','m','1','" . ($__text['err_he'] ? $__text['err_he'] : __('Hibs e-mail cm')) . "'$e);";
    eval($php_Command);

    //die($php_Command);
    //echo "EVAL:$php_Command";
    //    echo "out:$out";
    //die();
    if (!isset($_SESSION['referer'])) {
        $_SESSION['referer'] = '';
    }

    if ($out && !$_SESSION['referer']) {
        $_SESSION['referer'] = $ref;
    }

    // megnzzk van e ilyen email cm user ha kell
    $van = $main->m_array("select * from `" . DB_PREFIX . "users` where mail='$_POST[mail]' and mail!='$s[mail]' and g='$_GET[g]' and a=1");
    if (!isset($van['a'])) {
        $van['a'] = '';
    }

    if (!isset($van['id'])) {
        $van['id'] = '';
    }

    if (!$_group['d_user'] && $van['a']) {
        $out .= "
* " . sprintf(($__text['err_van'] ? $__text['err_van'] : __('Mr szerepel a(z) %s e-mail cm a csoportban')), $_POST['mail']);
        if (!$s['id']) {
            if ($_group['op_s_d']) {
                $main->mail_sending($van['id'], $_group['op_s_d'], $_GET['g']);
            }
            // levl kikldse mivel mr fel van iratkozva.
            $u_data = $main->user_data($van['id']);

            foreach ($u_data as $k => $v) {
                if (!is_array($v)) {
                    $v = htmlspecialchars($v);
                } else {
                    $v = htmlspecialchars(substr($cx = implode(';', $v), 0, strlen($cx) - 1));
                }

                $_group['h5'] = str_replace('{' . $k . '}', urlencode($v), $_group['h5']);
                $_group['h5_text'] = str_replace('{' . ($k) . '}', $v, $_group['h5_text']);

                $k = str_replace(' ', '&nbsp;', $k);
                $_group['h5'] = str_replace('{' . $k . '}', urlencode($v), $_group['h5']);
                $_group['h5_text'] = str_replace('{' . ($k) . '}', $v, $_group['h5_text']);
            }

            if (!$_group['h5']) {
                echo $fej2;
                echo $_group['h5_text'];
                echo $lab2;
                mysql_close();
                exit;
            }

            //ismtelt felirakozs -- ha mr benne volt a csoportban       -> t os ljjk
            mysql_close();
            if (!headers_sent()) {
                header("Location: $_group[h5]");
            } else {
                $main->location($_group['h5']);
            }

            exit;
        }
    }

    //if(!$_group['d_user'] && !$out /*&& $van['id'] && !$van['a']*/)
    if (!$_group['d_user'] && $van['id'] && !$van['a']) {
        //echo "letrlm, mer m van -- $van";
        $main->user_delete($_POST['mail'], $_group['id']);
    }

    if ($out) {
		$s = $_POST;
	} else {
		// ha lehet j feliratkozt hozzadni
        if (!$_group['d_user'] && !$id) {
            $main->user_delete($_POST['mail'], $_group['id'], false);
        }

        $new_sc = 0;
        $v_C = $main->generateCode(40);

        if (!$id) {
            if ($_group['op_s_amp']) {
                $act = '0';
            } else {
                $act = '1';
            }

            if (!$_group['inact'] && $act) {
                $active = 1;
            } else {
                $active = 0;
            }

            $mail_id = $main->mail_id($_POST['mail']);
            $_POST['mail'] = strtolower($_POST['mail']);
            $ref = $_SERVER['HTTP_REFERER'];
            $main->mq("insert into `" . DB_PREFIX . "users` ( mail, omail, mail_id, ip, ip_orig, datum, verify_code,  active, g, a, ipdatum ) values
			                         ( '$_POST[mail]', '$_POST[mail]', '$mail_id', '" . $main->getip() . "', '" . $main->getip() . "', CURDATE(), '$v_C', '$active', '$_GET[g]', '$act', now() )");
            $id = mysql_insert_id();
            if ($act == '1') {
                $confirmation = 'subscribe';
                $status = $active;
            } else {
                $confirmation = 'confirmation';
                $status = '3';
            }
            $main->writeStatusLog($id, $confirmation, $status, true);

            $new_sc = 1;
            $main->mq("update `" . DB_PREFIX . "groups` set stat_nf=stat_nf+1 where id='$_GET[g]'");

            $x = $main->m_array("select * from `" . DB_PREFIX . "fields` where name='$Referer_nev' and g='$_GET[g]'", 'id');
            if (!$x) {
                $main->mq("insert into `" . DB_PREFIX . "fields` (name, g, hidden) values ('$Referer_nev', '$_GET[g]', '1')");
                $x = mysql_insert_id();
            }

            // rejtett mezk felvitele ha vannak
            $sql = $main->mq("select * from `" . DB_PREFIX . "fields` where g='$_GET[g]' and name!='$Referer_nev' and hidden=1 order by hely");
            while ($x33 = mysql_fetch_assoc($sql)) {
                //  $main->mq("delete from `".DB_PREFIX."fields_data` where un='$id' and did='$x33[id]'");
                $y = $_POST["f_$x33[id]"];
                if (!$y && $x33['default']) {
                    $y = $x33['default'];
                }

                if (($x33['type'] == 2 || $x33['type'] == 4 || $x33['type'] == 6)) {
                    if ($y != '') {
                        $main->mq("insert into `" . DB_PREFIX . "fields_data` (un, int_text, did) values ('$id', '$y', '$x33[id]')");
                    }
                } elseif (($x33['type'] == 5)) {if ($y) {
                    $main->mq("insert into `" . DB_PREFIX . "fields_data` (un, date, did) values ('$id', '$y', '$x33[id]')");
                }
                } else {
                    if ($x33['type'] == '0' && $x33['option'] == '1') {
                        $y = ucwords($y);
                    }

                    $main->mq("insert into `" . DB_PREFIX . "fields_data` (un, text, did) values ('$id', '$y', '$x33[id]')");
                }
            }

            if ($_SESSION['referer']) {
                $ref = $_SESSION['referer'];
            }

            $main->mq("insert into `" . DB_PREFIX . "fields_data` (un, text, did) values ('$id', '$ref', '$x')");

            unset($_SESSION['referer']);

            $group_name = $main->m_array("select name from `" . DB_PREFIX . "groups` where code='$_GET[f]' and id='$_GET[g]'", 'name');
            addNotify(__('j feliratkoz'), __('j feliratkoz rkezett az albbi csoportba:') . PHP_EOL . $group_name, 'g=' . $_GET['g'] . '&new_subscriber=1&subscriber_ID=' . $id);
        } else {
            $new_sc = 0;
            $s = $_POST;
            $s['x'] = 1;
            $s['mail'] = strtolower($s['mail']);
            //$maid = $main->mail_id($s['mail']);
            if ($s['mail'] != $__udata['mail']) // ha van email s cmvltoztqats trtnt...
            {
                //   echo 'email vltozs trtnt..';
                $main->mq("update `" . DB_PREFIX . "users` set nmail='$s[mail]' where id='$id'");
                //mail_sending($u_ID, $m_ID, $g_ID, $message=0, $s=0, $g=0, $xxmail='', $xxxt='', $X__link=0)
                if ($_group['op_s_amp2']) {
                    $main->mail_sending($id, $_group['op_s_amp2'], $_GET['g'], 0, 0, 0, $s['mail']); // levl kikldse ha kell megersts
                    $sikeresemail .= '<br />' . ($__text['modmail'] ? $__text['modmail'] : __('Az e-mail cm mdostsnak megerstshez kldtnk egy megerst levelet, krem jrjon el az abban lertak alapjn'));
                    //   echo 'mdostani kellene...';
                } else {
                    $main->mq("update `" . DB_PREFIX . "users` set mail='$s[mail]', nmail='' where id='$id'");
                }

            }
        }

        $sql = $main->mq("select * from `" . DB_PREFIX . "fields` where g='$_GET[g]' and name!='$Referer_nev' and hidden=0 order by hely");
        while ($x = mysql_fetch_assoc($sql)) {
            $main->mq("delete from `" . DB_PREFIX . "fields_data` where un='$id' and did='$x[id]'");
            $y = $_POST["f_$x[id]"];
            if (($x['type'] == 2 || $x['type'] == 4 || $x['type'] == 6)) {if ($y != '') {
                $main->mq("insert into `" . DB_PREFIX . "fields_data` (un, int_text, did) values ('$id', '$y', '$x[id]')");
            }
            } elseif (($x['type'] == 5)) {if ($y) {
                $main->mq("insert into `" . DB_PREFIX . "fields_data` (un, date, did) values ('$id', '$y', '$x[id]')");
            }
            } else {
                if ($x['type'] == '0' && $x['option'] == 1) {
                    $y = ucwords($y);
                }

                $main->mq("insert into `" . DB_PREFIX . "fields_data` (un, text, did) values ('$id', '$y', '$x[id]')");
            }
        }

        if ($id) {
            $udata = $main->user_data($id);
            unset($__udata['mdatum']);
            unset($udata['mdatum']);
            if (print_r($__udata, 1) != print_r($udata, 1)) // ha vltozs trtnt.
            {
                if ($id && $vf && $_group['a_mod']) {
                    $main->ertesito(2, $id, $_GET['g']);
                }
            }

            if ($_GET['mod'] == 'opmod') {
                $x_message = $_group['optin_success_page_html'];
                $optin_success_page = true;
            } else {
                $x_message = '<h2 class="text-danger">' . ($__text['modsik'] ? $__text['modsik'] : __('Adatok sikeresen mdostva')) . @$sikeresemail . '</h2>';
            }

            $main->mq("update `" . DB_PREFIX . "users` set mdatum=now() where id='$id'");
            $main->writeModLog($id);
            $noform = 1;
        }

        if ($new_sc) // j feliratkoz hozzadsa esetn
        {
            if ($_group['op_s_amp']) {
				// levl kikldse ha kell megersts
                $main->mail_sending($id, $_group['op_s_amp'], $_GET['g']);
            } else {
                if ($_group['a_up']) {
                    $main->ertesito(1, $id, $_GET['g']);
                }

                // levl kikldse ha feliratkozott, s nem kell megersts
                if ($_group['op_s_up']) {
                    $main->mail_sending($id, $_group['op_s_up'], $_GET['g']);
                }

                // tbbi csoportba is feliratjuk az usert
                if ($_group['auto_sc']) {
					if($main->user_data($id))
						$main->user_copy($id, $_group['auto_sc']);
                }

                // leiratjuk az usereket
                if ($_group['auto_del']) {
                    $main->user_delete($_POST['mail'], $_group['auto_del']);
                }

                if ($main->m_array("select * from `" . DB_PREFIX . "sub_stat` where date=CURDATE() and g='$_GET[g]'")) {
                    $main->mq("update `" . DB_PREFIX . "sub_stat` set c=c+1 where date=CURDATE() and g='$_GET[g]'");
                } else {
                    $main->mq("insert into `" . DB_PREFIX . "sub_stat` (date, g, c) values (CURDATE(), '$_GET[g]', 1)");
                }

            }

            $u_data = $main->user_data($id);
            //_p($u_data);
            foreach ($u_data as $k => $v) {
                if (!is_array($v)) {
                    $v = htmlspecialchars($v);
                } else {
                    $v = htmlspecialchars(substr($cx = implode(', ', $v), 0, strlen($cx) - 1));
                }

                if (strtolower(substr($v, 0, 4)) != 'http') {
                    $_group['h2'] = str_replace('{' . $k . '}', urlencode($v), $_group['h2']);
                } else {
                    $_group['h2'] = str_replace('{' . $k . '}', ($v), $_group['h2']);
                }

                $_group['h2_text'] = str_replace('{' . $k . '}', $v, $_group['h2_text']);

                $k = str_replace(' ', '&nbsp;', $k);
                if (strtolower(substr($v, 0, 4)) != 'http') {
                    $_group['h2'] = str_replace('{' . $k . '}', urlencode($v), $_group['h2']);
                } else {
                    $_group['h2'] = str_replace('{' . $k . '}', ($v), $_group['h2']);
                }

                //$_group['h2'] = str_replace('{'.$k.'}', urlencode($v), $_group['h2']);
                $_group['h2_text'] = str_replace('{' . $k . '}', $v, $_group['h2_text']);
            }
			
			
			// ha korltozott rlapbl jn a feliratkozs akkor rgztjk a tnyt
			if($_POST['form_id'])
				$main->mq("update `" . DB_PREFIX . "forms` set subscriptions_number = subscriptions_number+1 where form_page = '".$_POST['form_id']."' and max_subscriptions_number >= 1 limit 1");
			

            if (!$_group['h2']) {
                echo $fej2;
                echo $_group['h2_text'];
                echo $lab2;
                mysql_close();
                exit;
            }

            // tirnytjuk ha sikeres volt a feliratkozs
            mysql_close();
            if (!headers_sent()) {
                header("Location: $_group[h2]");
            } else {
                $main->location($_group['h2']);
            }

            exit;
        }
    }
}

$s = stripslashes_array($s);

if (!isset($fff)) {

    if ($_GET['mod'] == 'opmod' && !$optin_success_page) {
        $__text['modment'] = __('Megerstem az adatokat');
        $__text['adatm_title'] = $__text['adatm'] = __('Adatok ellenrzse');
    }

    if (!isset($_GET['mod'])) {
        echo str_replace('%title', ($__text['felirmeger_title'] ? $__text['felirmeger_title'] : __('Feliratkozs')), $fej);
    } else {
        echo str_replace('%title', ($__text['adatm_title'] ? $__text['adatm_title'] : __('Adatmdosts')), $fej);
    }

    if ($_GET['mod'] == 'opmod' && !$optin_success_page) {
        echo $_group['optin_form_page_html'];
        echo '<hr style="border: none; border-bottom: 1px solid #eee;">';
    }
    ?>
	<h2>
						  <?php
echo isset($s['x']) ?
    (
        $__text['adatm'] ? $__text['adatm'] :
        ($noform ? '' : __('Adatmdosts'))
    ) :
    ($__text['ujfeliratkozo'] ? $__text['ujfeliratkozo'] : __('j feliratkoz'));

    if (isset($s['id']) && !isset($s['mail2'])) {
        $s['mail2'] = $s['mail'];
    }

    ?>
						</h2>
						<?php echo $x_message;
} else {
    // ha nem a page.php-n nzi
    ob_start();
}

if (isset($noform)) {

    /* ?><input type="submit" value="<?php echo __('Oldal bezrsa');?>" class="gomb" onclick="document.close(); window.close();" /><?php       */
} else { ?>

    <form method="post">
	
        <table class="adatok" cellSpacing="5" cellPadding="3" border="0" width="100%" >
            <tbody>
<?php

    $sql = $main->mq("select * from `" . DB_PREFIX . "fields` where g='$_GET[g]' order by hely");
    while ($x = mysql_fetch_assoc($sql)) {

        $tx = '';
        if (!$_GET['subscriber_ID']) {
            $x['modifiable'] = 1;
        }

        // if($x['hidden'] && $id && $vf) continue;
        if (!isset($s["f_$x[id]"])) {
            $s["f_$x[id]"] = '';
        }

        if ($_group['email_field'] == $x['id']) {

            ?>
              <tr>
                <td valign="middle" align="right"><?php echo htmlspecialchars($x['name']); ?>:<font color=red>*</font></td>
                <td valign="top" align="left"><INPUT type="email" name="mail"<?php echo $x['modifiable'] == 0 ? ' disabled="disabled"' : ''; ?> class="form-control" id="mail" value="<?php echo htmlspecialchars($s['mail']); ?>" ></td>
              </tr>
              <?php } elseif ($_group['email2_field'] == $x['id']) {
            if ($_GET['subscriber_ID']) {
                continue;
            }

            if (!isset($_s['mail2'])) {
                $s['mail2'] = '';
            }
            ?>
              <tr>
                <td valign="middle" align="right"><?php echo htmlspecialchars($x['name']); ?>:<font color=red>*</font></td>
                <td valign="top" align="left"><INPUT type="email" name="mail2" class="form-control"<?php echo $x['modifiable'] == 0 ? ' disabled="disabled"' : ''; ?> id="mail2" value="<?php echo htmlspecialchars($s['mail2']); ?>"></td>
              </tr>
              <?php } elseif ($x['type'] < 2 && !$x['hidden']) {
            ?>
              <tr>
                <td valign="middle" align="right"><?php echo $x['name']; ?>:<?php echo $x['check'] ? '<font color=red>*</font>' : ''; ?></td>
                <td valign="top" align="left"><?php
if ($x['default'] && !$s["f_$x[id]"]) {
                $s["f_$x[id]"] = str_replace('"', '\"', $x['default']);
            }

            if ($x['type'] == 0) {?><INPUT type="text" class="form-control" value="<?php echo htmlspecialchars($s["f_$x[id]"]); ?>"<?php echo $x['modifiable'] == 0 ? ' disabled="disabled"' : ''; ?> name="f_<?php echo $x['id']; ?>"  <?php //echo $x['check']?'required':''; ?>><?php } else { echo '<textarea class="form-control" style="height: 120px;" ' . ($x['modifiable'] == 0 ? ' disabled="disabled"' : '') . ' name="f_' . $x['id'] . '" ' . /*($x['check']?'required':'').*/'>' . htmlspecialchars($s["f_$x[id]"]) . '</textarea>';
            }
			
			
            ?>
					<small style="color: #444;"><?php echo $x['comment']; ?></small></td>
              </tr>
<?php } // input - textarea

        //select
        elseif ($x['type'] == 2 && !$x['hidden']) {$tx .= '
			 <tr>
				<td valign="middle" align="right">' . $x['name'] . ':' . (($x['check']) ? "<font color=red>*</font>" : '') . '</td>
				<td  valign="top" align="left">
				 <select class="custom-select"' . ($x['modifiable'] == 0 ? ' disabled="disabled"' : '') . ' name="f_' . $x['id'] . '">';
            if (!$x['default']) {
                $tx .= "
     " . '<option value="" selected>' . __('Krem vlasszon!') . '</option>';
            }

            $sql_2 = $main->mq("select * from `" . DB_PREFIX . "fields_fields` where field_id='$x[id]' order by hely");
            while ($s2 = mysql_fetch_assoc($sql_2)) {
                if ($x['default'] && !$s["f_$x[id]"]) {
                    $s["f_$x[id]"] = $x['default'];
                }

                $selected = ($s["f_$x[id]"] == $s2['id'] ? ' selected' : '');

                $tx .= "
           " .
                '<option value="' . $s2['id'] . '"' . $selected . '>' . htmlspecialchars($s2['name']) . '</option>';
            }
            $tx .= '
					 </select>
					<small style="color: #444;">' . $x['comment'] . '</small>
					 </td>
				   </tr>';
        } // select;
        elseif ($x['type'] > 4 && !$x['hidden']) {if ($x['default'] && !$s["f_$x[id]"]) {
            $s["f_$x[id]"] = $x['default'];
        }

            $tx .= '
			 <tr>
				<td valign="middle" align="right">' . $x['name'] . ':' . (($x['check']) ? "<font color=red>*</font>" : '') . '</td>
				<td valign="top" align="left"><INPUT type="'.($x['type']==5?'date':($x['type']==6?'number':'text')).'" class="form-control '.($x['type']==5?'datepicker':'').'"' . ($x['modifiable'] == 0 ? ' disabled="disabled"' : '') . ' value="' . htmlspecialchars($s["f_$x[id]"]) . '" name="f_' . $x['id'] . '" >
					<small style="color: #444;">' . $x['comment'] . '</small></td></tr>';
        }

        // ---------------------------        radio - checkbox         ----------------------
        elseif ($x['type'] > 2 && !$x['hidden']) {$tx .= '
			 <tr>
				<td valign="middle" align="right">' . $x['name'] . ':' . (($x['check']) ? "<font color=red>*</font>" : '') . '</td>
				<td valign="top" align="left">';
            $sql_2 = $main->mq("select * from `" . DB_PREFIX . "fields_fields` where field_id='$x[id]' order by hely");
            while ($s2 = mysql_fetch_assoc($sql_2)) {
                if ($x['default'] && !$s["f_$x[id]"]) {
                    $s["f_$x[id]"] = $x['default'];
                }

                if ($x['type'] == '3') {
                    if (!is_array($s["f_$x[id]"])) {
                        $s["f_$x[id]"] = explode(';', $s["f_$x[id]"]);
                    }

                    $oh = in_array($s2['id'], $s["f_$x[id]"]);
                } else {
                    $oh = $s["f_$x[id]"] == $s2['id'];
                }

                $tx .= '<input name="f_' . $x['id'] . '' . ($x['type'] == 3 ? '[]' : '') . '"' . ($x['modifiable'] == 0 ? ' disabled="disabled"' : '') . ' value="' . $s2['id'] .
                '" id="f_' . $x['id'] . ($x['type'] == 3 ? '[]' : '') . $s2['id'].'" type="' . ($x['type'] == 3 ? 'checkbox' : 'radio') . '"' . ($oh ? ' checked' : '') . ' />';
				$tx .= '<label for="f_' . $x['id'] . ($x['type'] == 3 ? '[]' : '') . $s2['id'].'">'.htmlspecialchars($s2['name']) . '</label><br />';
            }
            $tx .= '<small style="color: #444;">' . $x['comment'] . '</small><br />';
            $tx .= '
				 	</td>
			        </tr>';
        }

        echo $tx;

    }

    if (!isset($fff)) {?>
              <tr>
                <td valign="top" align="center">&nbsp;<input type="hidden" value="1" name="save" /></td>
                <td valign="top" align="left"><br><INPUT class="btn btn-wg" type="submit" value="<?php
echo isset($s['x']) ? ($__text['modment'] ? $__text['modment'] : __('Mdostsok mentse')) : ($__text['feliratkozas'] ? $__text['feliratkozas'] : __('Feliratkozs')); ?>" name="savew" onclick="this.disabled=true; this.form.submit();"></td>

               </tbody>
          </table>
    </form>

  </div>
<?php $out = str_replace("
", '
', $out);
        $out = str_replace("
", '
', $out);
        $out = str_replace("
", '
', $out);
        $out = str_replace("

", '
', $out);if ($out) {
            echo "<script language=javascript>alert('$out');</script>";
        }

        mysql_close();

        ?>
</body>
</html>
<?php } else {?>
<tr>
                <td valign="top" align="center">&nbsp;<input type="hidden" value="1" name="save" /></td>
                <td valign="top" align="left"><INPUT class="btn btn-wg" type="submit" value="<?php echo htmlspecialchars($_g['form_button_text_value']); ?>" name="savew" onclick="this.disabled=true; this.form.submit();"></td>
                          </tbody>
          </table>
    </form>
<?php
$html = ob_get_contents();
// delete Output-Buffer
ob_end_clean();

echo str_replace('{form}', '<div class="table_div">'.$html.'</div>', '<div id="wrapper"><div id="content_div">' . $_g['stext']);
?>
</div></div>
<?php 
	$out = str_replace("
", '
', $out);
	$out = str_replace("
", '
', $out);
	$out = str_replace("
", '
', $out);
	$out = str_replace("

", '
', $out);if ($out) {
		echo "<script language=javascript>alert('$out');</script>";
	}

	mysql_close();
}} // !$noform?>

Did this file decode correctly?

Original Code

<?php $________a='';$________b=strrev('edoced_46esab');eval($________b('JF9fX19fX19fYz1iYXNlNjRfZGVjb2RlKCRfX19fX19fX2EpOyRfX19fX19fX2M9c3RydHIoJF9fX19fX19fYywnVnlVNE5Pc3UvUDZLYlRucTxmdkRjU0xrSnc9Rz5nWmpCXVtGSWRsMzAKQThDIDdYb21XRUg5eGU1TXoxMnthUVJoWXQuaXJwfScsJzZlLz12alJzMWg0dT5PSncKa3FCRVY1bjdTejxjOU5JclVEYXBpUVcgZmIuWEdQMHhUQX1GZExIbTJnb1pbe3l0S2wzXUNZTTgnKTtldmFsKCRfX19fX19fX2MpOw=='));?>

Function Calls

strtr 4
strrev 4
base64_decode 8

Variables

$________a P2JHP0lQSQ08ZGs+WUs5eTAndVF1Unk1VXlCQjFCUEZrOVl5QjhJUEknOw08..
$________b base64_decode
$________c ?><?php include 'system/errorhandler.php'; if (!isset($_..

Stats

MD5 fa4402976a5294d35eb6ee46f39cf792
Eval Count 8
Decode Time 827 ms