function strip_key($array, $deep = 0) { foreach ($array as $k => $v) { if ($deep && !preg_match("/^[a-z0-9_\\-]{1,}\$/i", $k)) { dhttp(403, 0); dalert('HTTP 403 Forbidden', DT_PATH); } if (is_array($v)) { strip_key($v, 1); } } }
function connect($dbhost, $dbuser, $dbpass, $dbname, $dbttl, $dbcharset, $pconnect = 0) { $this->ttl = $dbttl; @(list($dbhost, $dbport) = explode(':', $dbhost)); $dbport or $dbport = 3306; $this->connid = mysqli_init(); if (mysqli_real_connect($this->connid, $dbhost, $dbuser, $dbpass, false, $dbport)) { // } else { $this->linked = 0; $retry = 5; while ($retry-- > 0) { if (mysqli_real_connect($this->connid, $dbhost, $dbuser, $dbpass, false, $dbport)) { $this->linked = 1; break; } } if ($this->linked == 0) { global $DT_BOT; if ($DT_BOT) { dhttp(503); } if ($this->halt) { exit(include template('mysql', 'message')); } else { $this->halt('Can not connect to MySQL server'); } } } $version = $this->version(); if ($version > '4.1' && $dbcharset) { mysqli_query($this->connid, IN_ADMIN ? "SET NAMES '" . $dbcharset . "'" : "SET character_set_connection=" . $dbcharset . ", character_set_results=" . $dbcharset . ", character_set_client=binary"); } if ($version > '5.0') { mysqli_query($this->connid, "SET sql_mode=''"); } if ($dbname && !mysqli_select_db($this->connid, $dbname)) { $this->halt('Cannot use database ' . $dbname); } return $this->connid; }
function connect($dbhost, $dbuser, $dbpass, $dbname, $dbttl, $dbcharset, $pconnect = 0) { $this->ttl = $dbttl; $func = $pconnect == 1 ? 'mysql_pconnect' : 'mysql_connect'; if (!($this->connid = $func($dbhost, $dbuser, $dbpass))) { $this->linked = 0; $retry = 5; while ($retry-- > 0) { if ($this->connid = $func($dbhost, $dbuser, $dbpass)) { $this->linked = 1; break; } } if ($this->linked == 0) { global $DT_BOT; if ($DT_BOT) { dhttp(503); } if ($this->halt) { exit(include template('mysql', 'message')); } else { $this->halt('Can not connect to MySQL server'); } } } $version = $this->version(); /* NOET: IN_ADMIN COMMENT MESSY */ if ($version > '4.1' && $dbcharset) { mysql_query(IN_ADMIN ? "SET NAMES '" . $dbcharset . "'" : "SET character_set_connection=" . $dbcharset . ", character_set_results=" . $dbcharset . ", character_set_client=binary", $this->connid); } if ($version > '5.0') { mysql_query("SET sql_mode=''", $this->connid); } if ($dbname && !mysql_select_db($dbname, $this->connid)) { $this->halt('Cannot use database ' . $dbname); } return $this->connid; }
<?php defined('IN_DESTOON') or exit('Access Denied'); if ($DT_BOT || $_POST) { dhttp(403); } require DT_ROOT . '/module/' . $module . '/common.inc.php'; if (!check_group($_groupid, $MOD['group_search'])) { include load('403.inc'); } require DT_ROOT . '/include/post.func.php'; include load('search.lang'); $CP = $MOD['cat_property'] && $catid && $CAT['property']; $thumb = isset($thumb) ? intval($thumb) : 0; $vip = isset($vip) ? intval($vip) : 0; $typeid = isset($typeid) && isset($TYPE[$typeid]) ? intval($typeid) : 99; if (!$areaid && $cityid && strpos($DT_URL, 'areaid') === false) { $areaid = $cityid; $ARE = $AREA[$cityid]; } $fromdate = isset($fromdate) && is_date($fromdate) ? $fromdate : ''; $fromtime = $fromdate ? strtotime($fromdate . ' 0:0:0') : 0; $todate = isset($todate) && is_date($todate) ? $todate : ''; $totime = $todate ? strtotime($todate . ' 23:59:59') : 0; $sfields = array($L['by_auto'], $L['by_title'], $L['by_content'], $L['by_introduce']); $dfields = array('keyword', 'title', 'content', 'introduce'); $sorder = array($L['order'], $L['order_auto']); $dorder = array($MOD['order'], ''); if (!$MOD['fulltext']) { unset($sfields[2], $dfields[2]); }
function d301($url) { dhttp(301, 0); dheader($url); }
$module = 'company'; $MOD = cache_read('module-' . $moduleid . '.php'); include load('company.lang'); require DT_ROOT . '/module/' . $module . '/common.inc.php'; include DT_ROOT . '/module/' . $module . '/init.inc.php'; } else { if ($DT['safe_domain']) { $safe_domain = explode('|', $DT['safe_domain']); $pass_domain = false; foreach ($safe_domain as $v) { if (strpos($DT_URL, $v) !== false) { $pass_domain = true; break; } } $pass_domain or dhttp(404); } if ($DT['index_html']) { $html_file = $CFG['com_dir'] ? DT_ROOT . '/' . $DT['index'] . '.' . $DT['file_ext'] : DT_CACHE . '/index.inc.html'; if (!is_file($html_file)) { tohtml('index'); } if (is_file($html_file)) { exit(include $html_file); } } $AREA or $AREA = cache_read('area.php'); if ($EXT['mobile_enable']) { $head_mobile = $EXT['mobile_url']; } $seo_title = $DT['seo_title'];
defined('IN_DESTOON') or exit('Access Denied'); isset($file) or $file = 'homepage'; if (isset($update) || isset($preview)) { $db->cids = 1; userclean($username); } $COM = userinfo($username); if (!$COM || $COM['groupid'] < 5 && $COM['groupid'] > 1) { userclean($username); $head_title = $L['not_company']; dhttp(404, $DT_BOT); include template('com-notfound', 'message'); exit; } if (!$COM['edittime'] && !$MOD['openall']) { dhttp(404, $DT_BOT); $head_title = $COM['company']; include template('com-opening', 'message'); exit; } $domain = $COM['domain']; if ($domain) { if (!isset($preview) && !isset($update) && !isset($key)) { if ($CFG['com_domain']) { if (strpos($DT_URL, $domain) === false) { $subdomain = userurl($username); if (strpos($DT_URL, $subdomain) === false) { dheader('http://' . $domain . '/'); } else { if ($DT_URL == $subdomain . 'index.php' || $DT_URL == $subdomain) { dheader('http://' . $domain . '/');
function connect($dbhost, $dbuser, $dbpass, $dbname, $dbttl, $dbcharset, $pconnect = 0) { $this->ttl = $dbttl; $func = $pconnect == 1 ? 'mysql_pconnect' : 'mysql_connect'; if (!($this->connid = $func($dbhost, $dbuser, $dbpass))) { $this->linked = 0; $retry = 5; while ($retry-- > 0) { if ($this->connid = $func($dbhost, $dbuser, $dbpass)) { $this->linked = 1; break; } } if ($this->linked == 0) { global $DT_BOT; if ($DT_BOT) { dhttp(503); } if ($this->halt) { exit(include template('mysql', 'message')); } else { $this->halt('Can not connect to MySQL server'); } } } $version = $this->version(); if ($version > '4.1' && $dbcharset) { mysql_query(IN_ADMIN ? "SET NAMES '" . $dbcharset . "'" : "SET character_set_connection=" . $dbcharset . ", character_set_results=" . $dbcharset . ", character_set_client=binary", $this->connid); } if ($version > '5.0') { mysql_query("SET sql_mode=''", $this->connid); } if ($dbname && !mysql_select_db($dbname, $this->connid)) { $this->halt('Cannot use database ' . $dbname); } if (IN_ADMIN) { $this->connrw =& $this->connid; } else { include DT_ROOT . '/file/config/mysqlrw.inc.php'; $num = count($MYSQLRW); if ($num == 1) { $key = 0; } else { $key = abs(crc32($GLOBALS['DT_IP'])) % $num; } if ($this->connrw = $func($MYSQLRW[$key]['host'], $MYSQLRW[$key]['user'], $MYSQLRW[$key]['pass'])) { if ($version > '4.1' && $dbcharset) { mysql_query("SET NAMES '" . $dbcharset . "'", $this->connrw); } if ($version > '5.0') { mysql_query("SET sql_mode=''", $this->connrw); } if ($dbname && !mysql_select_db($dbname, $this->connrw)) { $this->halt('Cannot use database ' . $dbname . '(R)'); } } else { $this->connrw =& $this->connid; } } return $this->connid; }
<?php defined('IN_DESTOON') or exit('Access Denied'); dhttp(403, $DT_BOT); $head_title = lang('message->without_permission'); exit(include template('noright', 'message'));
<?php /* [Destoon B2B System] Copyright (c) 2008-2013 Destoon.COM This is NOT a freeware, use is subject to license.txt */ defined('IN_DESTOON') or exit('Access Denied'); if ($DT['close']) { if ($DT_BOT) { dhttp(503); } message($DT['close_reason'] . ' '); } if ($DT['defend_cc']) { if (!DT_WIN && file_exists('/proc/loadavg')) { if ($fp = @fopen('/proc/loadavg', 'r')) { list($loadaverage) = explode(' ', fread($fp, 6)); fclose($fp); if ($loadaverage > $DT['defend_cc']) { if (defined('DT_TASK')) { exit; } header("HTTP/1.0 503 Service Unavailable"); exit(include DT_ROOT . '/api/503.php'); } } } } if ($DT['defend_reload']) { $lastvisit = intval(decrypt(get_cookie('lastvisit'))); set_cookie('lastvisit', encrypt("{$DT_TIME}"));