ACC SHELL

<?php

#control;
define ("SERVER", "localhost");


$hbhuser=$HTTP_COOKIE_VARS['hbh_user'][login];
$hbhpass=$HTTP_COOKIE_VARS['hbh_user'][password];
define ("USER", $hbhuser);
define ("PASSWORD", $hbhpass);



define ("DBNAME", "hbh");


$link=mysql_connect(SERVER,USER,PASSWORD,DBNAME);
if (!$link) {echo 'Please re-login'; die;}

MySQL_Select_DB("HBH");
mysql_query("SET NAMES 'cp1250'");



$content_up='<div class="contentscroll">';
$content_down='</div>';



function get_data($var_name) {
    global $$var_name;
    $raw = $GLOBALS['HTTP_RAW_POST_DATA'];
    $pairs = explode('(_|_)',$raw);

    for($i=0;$i<sizeof($pairs);$i++) {
             $unencoded = urldecode($pairs[$i]);
          if (strstr($unencoded,$var_name)) $$var_name=substr($unencoded,strpos($unencoded,"=")+1);



    }

}

function decode($string)
{
$res=$string;
 $res=str_replace("%u011B","�",$res);
 $res=str_replace("%u011A","�",$res);
 $res=str_replace("%u0161","�",$res);
 $res=str_replace("%u0160","�",$res);



 $res=str_replace("%u010D","�",$res);
 $res=str_replace("%u010C","�",$res);
 $res=str_replace("%u0159","�",$res);
 $res=str_replace("%u0158","�",$res);
 $res=str_replace("%u017E","�",$res);
 $res=str_replace("%u017D","�",$res);
 $res=str_replace("%u016F","�",$res);
 $res=str_replace("%u016E","�",$res);
 $res=str_replace("%u010F","�",$res);
 $res=str_replace("%u010E","�",$res);
 $res=str_replace("%u0165","�",$res);
 $res=str_replace("%u0164","�",$res);
 $res=str_replace("%u0148","�",$res);
 $res=str_replace("%u0147","�",$res);


 return $res;
}

get_data('day');
get_data('month');
get_data('year');
get_data('header');
get_data('content');


$datum=$year.'-'.$month.'-'.$day;







$query="INSERT INTO HBH.news (`Date`, `Header`, `Content`)
                         VALUES ('".$datum."','".decode($header)."','".decode($content)."');";



#echo $query;

$seznam=mysql_query($query);




#header('Referer:e1.ru');


?>