<?php
if (is_file("conn.lock")) {
DB_PrintError("系统正在升级,无法连接数据库!请稍后重试!");
}
include "command/mysql_command.php";
include "command/mysql_conn.php";
function DB_PrintError($message)
{
Header("Location: /error_page/disconn.php?message=" . urlencode($message));
exit;
}
<?php
include "class_include.php";
$id = $_POST["id"];
$user = $_POST['user'];
$message = $_POST['message'];
$to = $_POST['to'];
$location = $_POST['location'];
if (strlen($message) > 280) {
System_messagebox("想说的话超过140字,请修改后重新提交!", "message", "/admin/index.php?mod=" . $location);
exit;
}
//过滤器(含转码)
$user = Xss_replace($user);
$message = Xss_replace($message);
$to = Xss_replace($to);
//写入
$sql = DB_Update("ticket_view", array("user" => $user, "message" => $message, "to" => $to));
$result = DB_Query($sql, $con);
if ($result) {
System_messagebox("操作成功!", "success", "/admin/index.php?mod=" . $location);
} else {
DB_PrintError(DB_Error($con));
}
function DB_Query($query_string, $bProcessError = true, $bCritical = false)
{
// --- Abort in this case!
if (GetConfigSetting("UserDBEnabled", false) == false) {
return;
}
// ---
global $userdbconn, $querycount;
$query_id = mysql_query($query_string, $userdbconn);
if (!$query_id && $bProcessError) {
DB_PrintError("Invalid SQL: " . $query_string, $bCritical);
}
// For the Stats ;)
$querycount++;
return $query_id;
}
<?php
if (!($con = mysqli_connect(DB_HOST, DB_USER, DB_PASSWORD, DB_NAME))) {
DB_PrintError('Could not connect: ' . mysqli_error());
exit;
}
mysqli_query($con, "SET NAMES UTF8");
