}
}
unset($a_field);
if (empty($fcatalog['nodurat'])) {
foreach (array('startdate', 'enddate') as $var) {
$farchiveadd[$var] = trim($farchiveadd[$var]);
$farchiveadd[$var] = !isdate($farchiveadd[$var]) ? 0 : strtotime($farchiveadd[$var]);
$sqlcommon .= ",{$var}='" . max(0, intval($farchiveadd[$var])) . "'";
}
}
$db->query("INSERT INTO {$tblprefix}farchives SET " . $sqlcommon);
if (!($aid = $db->insert_id())) {
$c_upload->closure(1);
mcmessage('msgsaveerr', axaction(2, M_REFERER));
} else {
$c_upload->closure(1, $aid, 'farchives');
$sqlcustom = "aid={$aid}" . ($sqlcustom ? ',' . $sqlcustom : '');
$db->query("INSERT INTO {$tblprefix}farchives_{$chid} SET " . $sqlcustom);
$aedit = new cls_farcedit();
$aedit->set_aid($aid);
$fcatalog['autocheck'] && $aedit->arc_check(1, 0);
$aedit->updatedb();
unset($aedit);
}
$c_upload->saveuptotal(1);
mcmessage('freeinfoaddfinish', axaction(10, $forward));
}
} else {
include M_ROOT . $fcatalog['ucadd'];
}
}
$email = stripslashes($memcertnew[$k]);
$confirm = random(6);
$certdata['codes'][$k] = array('e' => 0, 'v' => $confirm);
}
if (!empty($flags[$k])) {
unset($certdata['flags'][$k]);
}
}
}
}
$db->query("INSERT INTO {$tblprefix}mcrecords(mid,mname,mcid,needtime,certdata)" . " VALUES({$memberid},'" . addslashes($curuser->info['mname']) . "','{$mcid}',{$timestamp}," . "'" . addslashes(serialize($certdata)) . "')");
if ($crid = $db->insert_id()) {
if (empty($email)) {
mcmessage('memcert_upload_ok', M_REFERER);
} else {
mailto($email, 'memcert_subject', 'memcert_content', array('mid' => $curuser->info['mid'], 'mname' => $curuser->info['mname'], 'url' => "{$cms_abs}tools/memactive.php?action=memcert&crid={$crid}&confirm={$confirm}"));
mcmessage('memcert_email_sent', M_REFERER);
}
} else {
mcmessage('memcert_upload_bad', M_REFERER);
}
}
break;
case 'delete':
if ($db->query("DELETE FROM {$tblprefix}mcrecords WHERE crid='{$crid}' AND mid={$memberid} AND checktime=0")) {
mcmessage('memcert_delete_ok', M_REFERER);
} else {
mcmessage('memcert_delete_bad', M_REFERER);
}
break;
}
$a_field->init();
$a_field->field = $v;
if (!noedit($k, !$curuser->pmbypmids('field', $v['pmid']))) {
$a_field->oldvalue = isset($oldrow[$k]) ? $oldrow[$k] : '';
$a_field->deal('offernew');
if (!empty($a_field->error)) {
$c_upload->rollback();
mcmessage($a_field->error, M_REFERER);
}
$uedit->updatefield($k, $a_field->newvalue);
if ($arr = multi_val_arr($a_field->newvalue, $v)) {
foreach ($arr as $x => $y) {
$uedit->updatefield($k . '_' . $x, $y);
}
}
}
}
}
}
unset($a_field);
$c_upload->closure(1, $cid, 'offers');
$c_upload->saveuptotal(1);
$uedit->updatedb();
mcmessage('offerupdatesucce', axaction(6, M_REFERER));
}
} else {
include M_ROOT . $u_tplname;
}
} else {
include M_ROOT . $commu['umdetail'];
}
tabheader(lang('consultbasemessage'), 'fconsult', "?action=fconsult&aid={$aid}{$forwardstr}", 2, 1, 0, 1);
trbasic(lang('consulttitle'), '', $fcatalog['title'] . ' - ' . $aedit->archive['subject'] . " <a href=\"?action=farchive&aid=" . $aedit->archive['aid'] . "\" onclick=\"return floatwin('open_consult',this)\">>>" . lang('detail') . "</a>", '');
trbasic(lang('addtime'), '', date("{$dateformat} {$timeformat}", $aedit->archive['createdate']), '');
trbasic(lang('qstate'), '', @$qstatearr[$aedit->archive['qstate']], '');
tabfooter();
tabheader(lang('consultcommulist'));
$query = $db->query("SELECT * FROM {$tblprefix}consults WHERE aid='{$aid}' ORDER BY cid");
while ($item = $db->fetch_array($query)) {
$cid = $item['cid'];
trbasic('<b>' . $item['mname'] . '</b> ' . (empty($item['reply']) ? lang('consult') : lang('reply')) . ' :<br>' . date("{$dateformat} {$timeformat}", $item['createdate']), '', '<br>' . $item['content'] . '<br> ', '');
}
tabfooter();
if ($aedit->archive['qstate'] != 'close') {
tabheader(lang('continueconsult'), 'fconsultadd', '?action=consult&aid=' . $aid . '&forward=' . rawurlencode($forward));
trbasic(lang('consultcontent'), 'contentadd', '', 'btextarea');
tabfooter('bfconsultadd');
} else {
tabheader(lang('continueconsult'));
trbasic(lang('consultcontent'), '', lang('overconsult'), '');
tabfooter();
}
} else {
$aedit->archive['qstate'] == 'close' && mcmessage('thconiteclo', axaction(2, M_REFERER));
$contentadd = empty($contentadd) ? '' : trim($contentadd);
empty($contentadd) && mcmessage('datamissing', axaction(2, M_REFERER));
$fcatalog['culength'] && ($contentadd = cutstr($contentadd, $fcatalog['culength']));
$contentadd = mnl2br(mhtmlspecialchars($contentadd));
$db->query("INSERT INTO {$tblprefix}consults SET\n\t\t\t\t aid='{$aid}', \n\t\t\t\t content='{$contentadd}', \n\t\t\t\t mid='{$memberid}', \n\t\t\t\t mname='" . $curuser->info['mname'] . "', \n\t\t\t\t createdate='{$timestamp}'\n\t\t\t\t ");
$db->query("UPDATE {$tblprefix}farchives SET qstate='new',updatedate='{$timestamp}' WHERE aid='{$aid}'");
mcmessage('addconsultsucceed', axaction(6, "?action=fconsult&aid={$aid}"));
}
}
if (in_array('edit', $u_lists)) {
$itemstr .= "<td class=\"item\">{$editstr}</td>\n";
}
$itemstr .= "</tr>\n";
}
$counts = $db->result_one("SELECT count(*) {$fromsql} {$wheresql}");
$multi = multi($counts, $mrowpp, $page, "?action=farchives{$filterstr}");
echo $itemstr;
tabfooter();
echo $multi;
echo "<br><br><input class=\"btn\" type=\"submit\" name=\"barcsedit\" id=\"barcsedit\" value=\"" . lang('delete') . "\">";
m_guide(@$u_guide);
} else {
include M_ROOT . $u_tplname;
}
} else {
if (empty($selectid)) {
mcmessage('mselectmes', "?action=farchives{$filterstr}&page={$page}");
}
$aedit = new cls_farcedit();
foreach ($selectid as $aid) {
$aedit->set_aid($aid);
$aedit->arc_delete(1);
}
unset($aedit, $arc);
mcmessage('messagefinish', "?action=farchives{$filterstr}&page={$page}");
}
} else {
include M_ROOT . $u_tplname;
}
$query = $db->query("SELECT cu.*,cu.createdate AS ucreatedate,a.sid,a.createdate,a.caid,a.chid,a.customurl,a.subject AS asubject {$fromsql} {$wheresql} ORDER BY cu.updatedate DESC LIMIT " . ($pagetmp - 1) * $mrowpp . ",{$mrowpp}");
$pagetmp--;
} while (!$db->num_rows($query) && $pagetmp);
$itemstr = '';
while ($item = $db->fetch_array($query)) {
$aid = $item['aid'];
$cid = $item['cid'];
$arcurl = view_arcurl($item);
$updatedate = date("{$dateformat}", $item['updatedate']);
$catalogstr = @$catalogs[$item['caid']]['title'];
$channelstr = @$channels[$item['chid']]['cname'];
$editstr = "<a href=\"?action=report&aid={$item['aid']}&cid={$cid}{$forwardstr}\">" . lang('edit') . "</a>";
$itemstr .= "<tr><td align=\"center\" class=\"item1\" width=\"30\"><input class=\"checkbox\" type=\"checkbox\" name=\"selectid[{$cid}]\" value=\"{$cid}\"></td>\n" . "<td class=\"item2\"><a href=\"{$arcurl}\" target=\"_blank\">" . mhtmlspecialchars($item['asubject']) . "</td>\n" . "<td align=\"center\" class=\"item1\">{$item['mname']}</td>\n" . "<td align=\"center\" class=\"item2\">{$catalogstr}</td>\n" . "<td align=\"center\" class=\"item1\">{$channelstr}</td>\n" . "<td align=\"center\" class=\"item2\" width=\"70\">{$updatedate}</td>\n" . "<td align=\"center\" class=\"item1\" width=\"30\">{$editstr}</td></tr>\n";
}
$counts = $db->result_one("SELECT count(*) {$fromsql} {$wheresql}");
$multi = multi($counts, $mrowpp, $page, "?action=reports&aid={$aid}");
tabheader(lang('reportlist'), 'arcsedit', "?action=reports&aid={$aid}&page={$page}", 8);
trcategory(array("<input class=\"checkbox\" type=\"checkbox\" name=\"chkall\" onclick=\"checkall(this.form, 'selectid', 'chkall')\">", lang('reportobject'), lang('member'), lang('catalog'), lang('channel'), lang('updatedate'), lang('edit')));
echo $itemstr;
tabfooter();
echo $multi;
tabfooter('breportsedit', lang('delete'));
} else {
if (empty($selectid)) {
mcmessage('confirmselectreport', "?action=reports&aid={$aid}&page={$page}{$filterstr}");
}
$db->query("UPDATE {$tblprefix}archives_sub SET reports=GREATEST(0,reports-" . count($selectid) . ") WHERE aid='{$aid}'");
$db->query("DELETE FROM {$tblprefix}reports WHERE cid " . multi_str($selectid), 'UNBUFFERED');
mcmessage('reportsucceed', $forward);
}
}
$fields =& $initfields;
foreach ($fields as $k => $field) {
if ($field['available'] && $field['issearch']) {
$a_field->init(1);
$a_field->field = $field;
$a_field->trsearch();
}
}
unset($a_field);
}
mtrbasic(lang('indays'), 'indays', $indays);
mtrbasic(lang('outdays'), 'outdays', $outdays);
mtabfooter('searchsubmit', lang('search'));
if (submitcheck('searchsubmit')) {
if ($search_repeat) {
empty($m_cookie['08cms_search_time']) ? msetcookie('08cms_search_time', '1', $search_repeat) : mcmessage('searchoverquick');
}
$pagetmp = $page;
do {
$query = $db->query("SELECT a.* {$fromstr} {$wherestr} {$orderstr} LIMIT " . ($pagetmp - 1) * $mrowpp . ",{$mrowpp}");
$pagetmp--;
} while (!$db->num_rows($query) && $pagetmp);
$itemarchive = '';
$no = $pagetmp * $mrowpp;
while ($archive = $db->fetch_array($query)) {
$no++;
$archive['arcurl'] = view_arcurl($archive);
$archive['subject'] = "<a href=\"{$archive['arcurl']}\" target=\"_blank\">" . mhtmlspecialchars($archive['subject']) . "</a>";
$archive['catalog'] = $catalogs[$archive['caid']]['title'];
$archive['createdate'] = date("{$dateformat} {$timeformat}", $archive['createdate']);
$itemarchive .= "<tr><td class=\"item\" width=\"40\">{$no}</td>\n" . "<td class=\"item2\">{$archive['subject']}</td>\n" . "<td align=\"center\" class=\"item\">{$archive['catalog']}</td>\n" . "<td align=\"center\" class=\"item\">{$archive['mname']}</td>\n" . "<td align=\"center\" class=\"item\" width=\"110\">{$archive['createdate']}</td></tr>\n";
$poid = $pays[$paynew['poid']];
$pay = new pay_base($paynew['poid']);
$pay->account = $poid[0];
$pay->keyt = $poid[1];
$paynew['poid'] == 'alipay' && ($pay->partner = $poid[2]);
$pay->by = 'pays';
$pay->dataok = 1;
$pay->order_id = $pid;
$pay->status = 0;
$pay->totalfee = $paynew['amount'];
$pay->send($ordersn, lang('account_plaza', $hostname), '');
} else {
mcmessage('systemerror');
}
} elseif ($deal == 'receive') {
empty($pid) && mcmessage('confirmchoosepays');
if (!($item = $db->fetch_one("SELECT * FROM {$tblprefix}pays WHERE pid={$pid}"))) {
mcmessage('choosepayrecord');
}
$flagarr = array(0 => lang('member cash pay saving succeed !'), 2 => lang('from online pay interface goback pay failed message'), 3 => lang('pay mount and record not same , please wait administrator deal !'), 4 => lang('arrived pay record , please dont repeat operate'), 5 => lang('cash arrived , member currency auto saving not succeed , please notice administrator !'), 6 => lang('cash arrived , auto saving function closed , please wait administrator check !'));
tabheader(lang('online pay message look'));
trbasic(lang('pay result state'), '', $flagarr[$flag], '');
trbasic(lang('pay amount ( rmbi )'), '', $item['amount'], '');
trbasic(lang('handfee ( rmbi )'), '', $item['handfee'], '');
trbasic(lang('pay interface'), '', $item['poid'] ? $poids[$item['poid']] : '-', '');
trbasic(lang('pay orders idsn'), '', $item['ordersn'] ? $item['ordersn'] : '-', '');
trbasic(lang('message send time'), '', date("{$dateformat} {$timeformat}", $item['senddate']), '');
trbasic(lang('cash arrive time'), '', $item['receivedate'] ? date("{$dateformat} {$timeformat}", $item['receivedate']) : '-', '');
trbasic(lang('currency saving time'), '', $item['transdate'] ? date("{$dateformat} {$timeformat}", $item['transdate']) : '-', '');
tabfooter();
}
}
unset($a_field);
$omchid = $curuser->info['mchid'];
//原模型
if ($mproject['autocheck']) {
$curuser->updatefield('mchid', $mchid, 'main');
//在更新会员资料之前一定要将原模型表中的记录删除,插入新模型表中的记录。
$db->query("DELETE FROM {$tblprefix}members_{$omchid} WHERE mid='{$memberid}'");
$db->query("INSERT INTO {$tblprefix}members_{$mchid} SET mid='{$memberid}'");
$curuser->gtidbymchid();
//检查因模型改变是否有不生效会员组
$curuser->updatedb();
if ($isold) {
$db->query("UPDATE {$tblprefix}mtrans SET toid='{$mchid}',fromid='{$omchid}',contentarr='',remark='',reply='',checked='1' WHERE mid='{$memberid}' AND checked='0'");
} else {
$db->query("INSERT INTO {$tblprefix}mtrans SET mid='{$memberid}',mname='" . $curuser->info['mname'] . "',toid='{$mchid}',fromid='{$omchid}',contentarr='',remark='',checked='1',createdate='{$timestamp}'");
}
} else {
$mtran['remark'] = trim($mtran['remark']);
$mtran['contentarr'] = empty($minfosnew) ? '' : addslashes(serialize($minfosnew));
if ($isold) {
$db->query("UPDATE {$tblprefix}mtrans SET fromid='{$omchid}',toid='{$mchid}',contentarr='{$mtran['contentarr']}',remark='{$mtran['remark']}' WHERE mid='{$memberid}' AND checked='0'");
} else {
$db->query("INSERT INTO {$tblprefix}mtrans SET mid='{$memberid}',mname='" . $curuser->info['mname'] . "',fromid='{$omchid}',toid='{$mchid}',contentarr='{$mtran['contentarr']}',remark='{$mtran['remark']}',checked='0',createdate='{$timestamp}'");
}
}
$c_upload->closure(1, $memberid, 'members');
$c_upload->saveuptotal(1);
mcmessage($mproject['autocheck'] ? 'membertypealter' : 'waitcheck', "?action=mtrans");
}
}
mcmessage('safecodeerr');
}
$mname = trim($mname);
$email = trim($email);
if (strlen($mname) < 3 || strlen($mname) > 15) {
mcmessage('membernamelenillegal');
}
$guestexp = '\\xA1\\xA1|^Guest|^\\xD3\\xCE\\xBF\\xCD|\\xB9\\x43\\xAB\\xC8';
if (preg_match("/^\\s*\$|^c:\\con\\con\$|[%,\\*\"\\s\t\\<\\>\\&]|{$guestexp}/is", $mname)) {
mcmessage('membercnameillegal');
}
if (!$email || !isemail($email)) {
mcmessage('emailillegal');
}
$cmember = $db->fetch_one("SELECT mid,mname,email FROM {$tblprefix}members WHERE mname='{$mname}' AND email='{$email}'");
if (!$cmember) {
mcmessage('nomemberemail');
}
$actuser = new cls_userinfo();
$actuser->activeuser($cmember['mid']);
if ($actuser->isadmin()) {
mcmessage('mastercannotuse');
}
unset($actuser);
$confirmid = random(6);
$confirmstr = "{$timestamp}\t1\t{$confirmid}";
$db->query("UPDATE {$tblprefix}members_sub SET confirmstr='{$confirmstr}' WHERE mid='{$cmember['mid']}'");
mailto("{$mname} <{$email}>", 'member_getpwd_subject', 'member_getpwd_content', array('mid' => $cmember['mid'], 'mname' => $mname, 'url' => "{$cms_abs}tools/lostpwd.php?action=getpwd&mid={$cmember['mid']}&id={$confirmid}", 'onlineip' => $onlineip));
mcmessage('lostpwd_send', $forward);
}
}
echo $multi;
tabheader(lang('operateitem'));
trbasic(lang('choose_item'), '', "<input class=\"checkbox\" type=\"checkbox\" name=\"frienddeal[delete]\" value=\"1\"> " . lang('delete') . $listname . " <input class=\"checkbox\" type=\"checkbox\" name=\"frienddeal[pass]\" value=\"1\"> " . lang('check') . $listname, '');
tabfooter('bfriendsedit');
} else {
if (empty($frienddeal)) {
mcmessage('selectoperateitem', M_REFERER);
}
if (empty($selectid)) {
mcmessage('chooseoperatemember', M_REFERER);
}
if (!empty($frienddeal['delete'])) {
$db->query("DELETE FROM {$tblprefix}mfriends WHERE cid in (" . join(',', $selectid) . ") AND mid={$memberid}");
} else {
if (!empty($frienddeal['pass'])) {
$db->query("UPDATE {$tblprefix}mfriends SET checked='1' WHERE cid in (" . join(',', $selectid) . ") AND mid={$memberid}");
}
}
mcmessage('friendneedadminok', M_REFERER);
}
} elseif ($deal == 'delete' && $cid) {
if (empty($confirm)) {
mcmessage('delfriendconfirm', '', "<a href=\"?action={$action}&deal={$deal}&cid={$cid}&confirm=1&{$forwardstr}\">", '</a>', "<a href=\"{$forward}\">", '</a>');
} else {
$db->query("DELETE FROM {$tblprefix}mfriends WHERE cid={$cid} AND mid={$memberid}");
mcmessage('succeeddelfriend', $forward, $db->affected_rows());
}
} elseif ($deal == 'agree' && $cid) {
$db->query("UPDATE {$tblprefix}mfriends SET checked='1' WHERE cid={$cid} AND mid={$memberid}");
mcmessage('sagreefriendadd', $forward, $db->affected_rows());
}
}
if (!empty($arcdeal['delete'])) {
$uedit->delete(1);
continue;
}
if ($curuser->pmbypmids('cuadd', $uedit->commu['setting']['apmid'])) {
if (!empty($arcdeal['readd'])) {
$uedit->updatefield('refreshdate', $timestamp);
$uedit->updatefield('enddate', empty($uedit->commu['setting']['vdays']) ? 0 : $timestamp + 86400 * $uedit->commu['setting']['vdays']);
}
if (isset($itemsnew[$cid]['oprice'])) {
//更新报价算一次重发
$uedit->updatefield('oprice', max(0, round($itemsnew[$cid]['oprice'], 2)));
$uedit->updatefield('refreshdate', $timestamp);
$uedit->updatefield('enddate', empty($uedit->commu['setting']['vdays']) ? 0 : $timestamp + 86400 * $uedit->commu['setting']['vdays']);
}
}
if (isset($itemsnew[$cid]['storage'])) {
$uedit->updatefield('storage', max(-1, intval($itemsnew[$cid]['storage'])));
}
if (!empty($arcdeal['ucid'])) {
$uedit->updatefield('ucid', $arcucid);
}
$uedit->updatedb();
$uedit->init();
}
mcmessage('offopesucce', "?action=offers{$filterstr}&page={$page}");
}
} else {
include M_ROOT . $u_tplname;
}
include M_ROOT . $u_tplname;
}
} else {
if (empty($arcdeal)) {
mcmessage('selectopeitem', M_REFERER);
}
if (empty($selectid)) {
mcmessage('conoffer', M_REFERER);
}
$uedit = new cls_cuedit();
foreach ($selectid as $cid) {
if ($errno = $uedit->read($cid, 'reply')) {
continue;
}
if (!empty($arcdeal['delete'])) {
$uedit->delete(0);
continue;
}
if (!empty($arcdeal['check'])) {
$uedit->updatefield('checked', 1);
} elseif (!empty($arcdeal['uncheck'])) {
$uedit->updatefield('checked', 0);
}
$uedit->updatedb();
$uedit->init();
}
mcmessage('replysetsucceed', "?action=areplys{$filterstr}&page={$page}");
}
} else {
include M_ROOT . $u_tplname;
}
$selectid = array();
$npage = empty($npage) ? 1 : $npage;
if (empty($pages)) {
$itemcount = $db->result_one("SELECT COUNT(*) FROM {$tblprefix}subscribes s LEFT JOIN {$tblprefix}archives a ON a.aid=s.aid {$wheresql}");
$pages = @ceil($itemcount / $mrowpp);
}
if ($npage <= $pages) {
$fromstr = empty($fromid) ? "" : "s.id<{$fromid}";
$nwheresql = !$wheresql ? $fromstr ? "WHERE {$fromstr}" : "" : $wheresql . ($fromstr ? " AND " : "") . $fromstr;
$query = $db->query("SELECT s.id FROM {$tblprefix}subscribes s LEFT JOIN {$tblprefix}archives a ON a.aid=s.aid {$nwheresql} ORDER BY s.id DESC LIMIT 0,{$mrowpp}");
while ($item = $db->fetch_array($query)) {
$selectid[] = $item['id'];
}
}
}
$selectid && $db->query("DELETE FROM {$tblprefix}subscribes WHERE id " . multi_str($selectid), 'UNBUFFERED');
if (!empty($select_all)) {
$npage++;
if ($npage <= $pages) {
$fromid = min($selectid);
$transtr = '';
$transtr .= "&select_all=1";
$transtr .= "&pages={$pages}";
$transtr .= "&npage={$npage}";
$transtr .= "&barcsedit=1";
$transtr .= "&fromid={$fromid}";
mcmessage('operating' . "<br>\n\t\t\t\t\t" . lang('all') . " {$pages} " . lang('page0') . "," . lang('dealing') . " {$npage} " . lang('page0') . "<br><br>\n\t\t\t\t\t<a href=\"{$forward}\">>>" . lang('pause') . "</a>", "?action=subscribes{$transtr}&forward=" . urlencode($forward), 500);
}
}
mcmessage('subscribedelsucceed', "?action=subscribes&page={$page}{$filterstr}");
}
foreach ($fields as $k => $v) {
if (!$v['isfunc'] && !$v['isadmin']) {
$a_field->init();
$a_field->field = $v;
if ($curuser->pmbypmids('field', $v['pmid'])) {
$a_field->oldvalue = '';
$a_field->deal('communew');
if (!empty($a_field->error)) {
$c_upload->rollback();
$uedit->delete();
mcmessage($a_field->error, axaction(2, M_REFERER));
}
$uedit->updatefield($k, $a_field->newvalue);
if ($arr = multi_val_arr($a_field->newvalue, $v)) {
foreach ($arr as $x => $y) {
$uedit->updatefield($k . '_' . $x, $y);
}
}
}
}
}
unset($a_field);
$c_upload->saveuptotal(1);
$uedit->updatedb();
}
$c_upload->closure(1, $cid, 'mflinks');
mcmessage('submitsucceed', axaction(10, $forward));
}
} else {
include M_ROOT . $mcommu['ucadd'];
}
unset($a_field);
tabfooter('bmarchive');
check_submit_func($submitstr);
} else {
$c_upload = new cls_upload();
$fields = fields_order($fields);
$a_field = new cls_field();
foreach ($fields as $k => $v) {
if ($v['available'] && !$v['isadmin'] && !$v['isfunc']) {
$a_field->init();
$a_field->field = $v;
$a_field->oldvalue = isset($aedit->archive[$k]) ? $aedit->archive[$k] : '';
$a_field->deal('marchivenew');
if (!empty($a_field->error)) {
$c_upload->rollback();
mcmessage($a_field->error, M_REFERER);
}
$aedit->updatefield($k, $a_field->newvalue);
if ($arr = multi_val_arr($a_field->newvalue, $v)) {
foreach ($arr as $x => $y) {
$aedit->updatefield($k . '_' . $x, $y);
}
}
}
}
unset($a_field);
$aedit->updatedb();
$c_upload->closure(1, $maid, 'marchives');
$c_upload->saveuptotal(1);
mcmessage('marceditfinish', $forward);
}
}
}
$c_upload->closure(1, $oid, 'orders');
$c_upload->saveuptotal(1);
unset($a_field, $c_upload);
$db->query("UPDATE {$tblprefix}orders SET {$sqlstr} WHERE oid='{$oid}'");
mcmessage('ordersmodifyfinish', $forward);
} elseif (submitcheck('borderdelete')) {
$order['state'] < 0 || mcmessage('cheordcanmod', $forward);
//取消或完成的订单才能删除
$sql = $order['delstate'] ? "DELETE FROM {$tblprefix}orders WHERE oid='{$oid}'" : "UPDATE {$tblprefix}orders SET delstate=2 WHERE oid='{$oid}'";
//卖家还未删除,只设定状态;1为卖家
$db->query($sql);
$order['delstate'] && $order['state'] == -2 && $db->query("DELETE FROM {$tblprefix}purchases WHERE oid='{$oid}'");
//删除购物记录
mcmessage('orddelfin', $forward);
} else {
tabheader(lang('ordersbasedset'), 'orderdetail', '?action=orders&oid=' . $oid . '&forward=' . urlencode($forward));
trbasic(lang('orderssncode'), '', $order['ordersn'], '');
trbasic(lang('ordersstate'), '', $statearr[$order['state']], '');
trbasic(lang('seller'), '', $order['tomname'], '');
trbasic(lang('goodsfeeyuan'), '', $order['orderfee'], '');
trbasic(lang('shipfeeyuan'), '', $order['shipingfee'], '');
trbasic(lang('orderfeeamountyuan'), '', $order['totalfee'], '');
trbasic(lang('payedcashyuan'), '', $order['payed'], '');
trbasic(lang('shiping'), '', lang($order['shipingmode'] ? "shipingfee{$order['shipingmode']}" : 'noshiping'), '');
tabfooter();
tabheader(lang('ordersgoodslist'), '', '', 5);
trcategory(array(lang('goodscname'), lang('catalog'), lang('channel'), lang('price'), lang('amount')));
$query = $db->query("SELECT cu.*,cu.createdate AS ucreatedate,a.sid,a.createdate,a.caid,a.chid,a.customurl,a.subject AS asubject FROM {$tblprefix}purchases cu LEFT JOIN {$tblprefix}archives a ON (a.aid=cu.aid) WHERE oid='{$oid}'");
while ($item = $db->fetch_array($query)) {
}
if (in_array('subsite', $u_lists)) {
$itemstr .= "<td class=\"item\">{$subsitestr}</td>\n";
}
$itemstr .= "</tr>\n";
}
$counts = $db->result_one("SELECT count(*) {$fromsql} {$wheresql}");
$multi = multi($counts, $mrowpp, $page, "?action=loadold&aid={$aid}{$param_suffix}{$filterstr}");
echo $itemstr;
tabfooter();
echo $multi;
echo '<br><br>' . strbutton('bloadold', lang('load')) . '</form>';
m_guide(@$u_guide);
} else {
include M_ROOT . $u_tplname;
}
} else {
if (empty($selectid)) {
mcmessage('selectalbum');
}
$aedit = new cls_arcedit();
foreach ($selectid as $k) {
$aedit->set_aid($k);
$aedit->set_album($aid, 1);
$aedit->init();
}
mcmessage('setalbumfinish', "?action=loadold&aid={$aid}{$param_suffix}&page={$page}{$filterstr}");
}
} else {
include M_ROOT . $u_tplname;
}
if (empty($u_lists) || in_array($k, $u_lists)) {
if (!$v['isfunc'] && ($amode || !$v['isadmin'])) {
$a_field->init();
$a_field->field = $v;
if (!noedit($k, !$curuser->pmbypmids('field', $v['pmid']))) {
$a_field->oldvalue = isset($oldrow[$k]) ? $oldrow[$k] : '';
$a_field->deal('communew');
if (!empty($a_field->error)) {
$c_upload->rollback();
mcmessage($a_field->error, M_REFERER);
}
$uedit->updatefield($k, $a_field->newvalue);
if ($arr = multi_val_arr($a_field->newvalue, $v)) {
foreach ($arr as $x => $y) {
$uedit->updatefield($k . '_' . $x, $y);
}
}
}
}
}
}
unset($a_field);
if ($amode) {
$uedit->updatefield('areply', 1);
}
$c_upload->closure(1, $cid, 'mreplys');
$c_upload->saveuptotal(1);
$uedit->updatedb();
mcmessage('updatesucceed', axaction(6, M_REFERER), $mcommu['cname']);
}
}
tabheader($listname . lang('list'), '', '', 11);
trcategory(array("<input class=\"checkbox\" type=\"checkbox\" name=\"chkall\" onclick=\"checkall(this.form, 'selectid', 'chkall')\">", lang('id'), lang('srcmember'), lang('uclass'), lang('check'), lang('addtime'), lang('reply0'), lang('read'), lang('detail')));
echo $itemstr;
tabfooter();
echo $multi;
$ucidsarr = array('0' => lang('cancelcoclass')) + $ucidsarr;
$checkedarr = array('0' => lang('uncheck'), '1' => lang('check'));
tabheader(lang('operateitem'));
trbasic(lang('choose_item'), '', "<input class=\"checkbox\" type=\"checkbox\" name=\"arcdeal[delete]\" value=\"1\"> " . lang('delete') . $listname, '');
trbasic("<input class=\"checkbox\" type=\"checkbox\" name=\"arcdeal[check]\" value=\"1\"> " . lang('check'), 'arcchecked', makeradio('arcchecked', $checkedarr, 1), '');
trbasic("<input class=\"checkbox\" type=\"checkbox\" name=\"arcdeal[ucid]\" value=\"1\"> " . lang('uclass'), 'arcucid', makeoption($ucidsarr), 'select');
tabfooter('barcsedit');
} else {
if (empty($arcdeal)) {
mcmessage('selectoperateitem', "?action=amcomments&page={$page}{$filterstr}");
}
if (empty($selectid)) {
mcmessage('selectcomment', "?action=amcomments&page={$page}{$filterstr}");
}
if (!empty($arcdeal['delete'])) {
$db->query("DELETE FROM {$tblprefix}mcomments WHERE mid='{$memberid}' AND cid " . multi_str($selectid));
} else {
if (!empty($arcdeal['check'])) {
$db->query("UPDATE {$tblprefix}mcomments SET checked='{$arcchecked}' WHERE mid='{$memberid}' AND cid " . multi_str($selectid));
}
if (!empty($arcdeal['ucid'])) {
$db->query("UPDATE {$tblprefix}mcomments SET ucid='{$arcucid}' WHERE mid='{$memberid}' AND cid " . multi_str($selectid));
}
}
mcmessage('commentadminfinish', "?action=amcomments&page={$page}{$filterstr}");
}
$aedit->set_aid($aid);
if (in_array('caid', $coidscp) && ($cpcaids = explode(',', $archiveadd['cpcaids']))) {
foreach ($cpcaids as $k1) {
$aedit->addcopy(0, $k1);
}
}
foreach ($cotypes as $k => $v) {
if (!$v['self_reg'] && empty($v['asmode']) && in_array($k, $coidscp) && (${"cpccids{$k}"} = array_filter(explode(',', $archiveadd["cpccids{$k}"])))) {
foreach (${"cpccids{$k}"} as $k1) {
$aedit->addcopy($k, $k1);
}
}
}
}
unset($aedit);
if ($channel['autostatic']) {
include_once M_ROOT . "./include/arc_static.fun.php";
arc_static($aid);
unset($arc);
}
}
$c_upload->saveuptotal(1);
mcmessage('arcaddfinish', axaction(10, $forward));
}
} else {
include M_ROOT . $channel['ucadd'];
}
mexit();
?>
}
}
}
}
unset($a_field);
$c_upload->closure(1, $cid, 'mreports');
$c_upload->saveuptotal(1);
$db->query("UPDATE {$tblprefix}mreports SET\n\t\t\t{$sqlstr}\n\t\t\tWHERE cid='{$cid}'");
//处理函数字段
$sqlstr = '';
foreach ($mbfields as $k => $v) {
if ($v['isfunc'] && in_array($k, $fieldsarr)) {
//得到原始数据的资料,带上当前文档资料
if (!isset($sourcearr)) {
$sourcearr = $db->fetch_one("SELECT * FROM {$tblprefix}mreports WHERE cid='{$cid}'");
}
$sqlstr .= ($sqlstr ? ',' : '') . "{$k}='" . field_func($v['func'], $sourcearr, $arr2 = '') . "'";
}
}
unset($sourcearr);
$sqlstr && $db->query("UPDATE {$tblprefix}mreports SET {$sqlstr} WHERE cid='{$cid}'");
//处理自定义函数
if (!empty($mcommu['func'])) {
//可以处理所有参数的变更
$sourcearr = $db->fetch_one("SELECT * FROM {$tblprefix}mreports WHERE cid='{$cid}'");
field_func($mcommu['func'], $sourcearr, $arr2 = '');
unset($sourcearr);
}
mcmessage('nameadminfin', $forward, $mcommu['cname']);
}
}
mcmessage('chooseanswer');
}
$aedit = new cls_arcedit();
$aedit->set_aid($answer['aid']);
$aedit->basic_data();
if (!$aedit->aid) {
mcmessage('choosearchive');
}
if ($memberid != ($amode ? $aedit->archive['mid'] : $answer['mid'])) {
mcmessage('chooseanswer');
}
$forward = empty($forward) ? M_REFERER : $forward;
$forwardstr = '&forward=' . rawurlencode($forward);
if (!submitcheck('banswerdetail')) {
tabheader(lang('editanswer'), 'answerdetail', "?action=answer&cid={$cid}{$forwardstr}");
trbasic(lang('questiontitle'), '', $aedit->archive['subject'], '');
trbasic(lang('answercontent'), 'answernew[answer]', br2nl($answer['answer']), 'btextarea');
tabfooter($amode ? '' : 'banswerdetail');
} else {
$commu = read_cache('commu', $aedit->channel['cuid']);
($aedit->archive['closed'] || $aedit->archive['finishdate'] < $timestamp) && mcmessage('questionclose', axaction(2, M_REFERER));
$answernew['answer'] = empty($answernew['answer']) ? '' : trim($answernew['answer']);
empty($answernew['answer']) && mcmessage('inputanswer', axaction(2, M_REFERER));
!empty($commu['setting']['minlength']) && strlen($answernew['answer']) < $commu['setting']['minlength'] && mcmessage('answerlength', axaction(2, M_REFERER));
!empty($commu['setting']['maxlength']) && ($answernew['answer'] = cutstr($answernew['answer'], $commu['setting']['maxlength']));
$db->query("UPDATE {$tblprefix}answers SET answer='{$answernew['answer']}' WHERE cid='{$cid}'");
mcmessage('answereditfinish', axaction(6, $forward));
}
} else {
include M_ROOT . $commu['umdetail'];
}
include M_ROOT . $u_tplname;
}
} else {
if (empty($arcdeal)) {
mcmessage('selectopeitem', M_REFERER);
}
if (empty($selectid)) {
mcmessage('conoffer', M_REFERER);
}
$uedit = new cls_cuedit();
foreach ($selectid as $cid) {
if ($errno = $uedit->read($cid, 'reply')) {
continue;
}
if (!empty($arcdeal['delete'])) {
$uedit->delete(0);
continue;
}
if (!empty($arcdeal['check'])) {
$uedit->updatefield('checked', 1);
} elseif (!empty($arcdeal['uncheck'])) {
$uedit->updatefield('checked', 0);
}
$uedit->updatedb();
$uedit->init();
}
mcmessage('replysetsucceed', "?action=inreplys&aid={$aid}{$filterstr}&page={$page}");
}
} else {
include M_ROOT . $u_tplname;
}
} else {
(empty($gtid) || empty($grouptypes[$gtid]) || in_array($mchid, explode(',', $grouptypes[$gtid]['mchids']))) && mcmessage('getgrouptype', M_REFERER);
$grouptype = $grouptypes[$gtid];
$crid = $grouptype['crid'];
$usergroups = read_cache('usergroups', $gtid);
(empty($exchangeugid) || empty($usergroups[$exchangeugid]) || !in_array($mchid, explode(',', $usergroups[$exchangeugid]['mchids']))) && mcmessage('getusergroup', M_REFERER);
$curuser->info['currency' . $crid] < $usergroups[$exchangeugid]['currency'] && mcmessage('noenoughcurrency', M_REFERER);
$usergroup = read_cache('usergroup', $gtid, $exchangeugid);
if ($curuser->info['grouptype' . $gtid] == $exchangeugid) {
//续期
if ($usergroup['limitday'] && $curuser->info['grouptype' . $gtid . 'date']) {
$curuser->updatefield('grouptype' . $gtid . 'date', $curuser->info['grouptype' . $gtid . 'date'] + $usergroup['limitday'] * 86400);
} else {
$curuser->updatefield('grouptype' . $gtid . 'date', 0);
}
} else {
//变更
$curuser->updatefield('grouptype' . $gtid, $exchangeugid);
if ($usergroup['limitday']) {
$curuser->updatefield('grouptype' . $gtid . 'date', $timestamp + $usergroup['limitday'] * 86400);
} else {
$curuser->updatefield('grouptype' . $gtid . 'date', 0);
}
if ($grouptypes[$gtid]['allowance']) {
$curuser->reset_allowance();
}
//如果会员组变更分析限额变化
}
$curuser->updatecrids(array($crid => -$usergroup['currency']), 1, lang('currencyexusergroup'));
mcmessage('cyexusergroupfinish', M_REFERER);
}
if ($fids) {
uc_pm_deleteuser($uid, $fids);
}
if ($pmids) {
uc_pm_delete($uid, 'inbox', $pmids);
}
mcmessage(lang('pm delete operate finish'), "?action=pmbox&box={$box}&page={$page}");
}
} else {
//阅读短信
$days = array(1 => lang('today'), 3 => lang('near3days'), 4 => lang('thisweek'), 5 => lang('all'));
$day = isset($day) && array_key_exists($day, $days) ? $day : 3;
$ucpm = empty($fid) ? uc_pm_view($uid, $pmid, 0, $day) : uc_pm_view($uid, '', $fid, $day);
//$ucpm=uc_pm_view($uid, $pmid, 0, 3);
// exit(var_export($ucpm));
empty($ucpm) && mcmessage(lang('nonenewpm'));
$fuser = '';
foreach ($ucpm as $pm) {
if ($pm['msgfrom'] != $curuser->info['mname']) {
$fuser = $pm['msgfrom'];
break;
}
}
if ($fuser) {
$str = '';
foreach ($days as $k => $v) {
$str .= ' ' . ($day == $k ? $v : "<a href=\"?action=pmbox&box={$box}&page={$page}&fid={$fid}&day={$k}\">{$v}</a>");
}
tabheader(lang('fupmrecord', $fuser) . $str . ($fuser ? " >><a href=\"?action=pmsend&box={$box}&page={$page}&tonames=" . rawurlencode($pm['msgfrom']) . "\">" . lang('reply') . "</a>" : ''));
tabfooter();
}
$submitstr .= makesubmitstr('npassword', 1, 0, 0, 15);
$submitstr .= makesubmitstr('npassword2', 1, 0, 0, 15);
$submitstr .= tr_regcode('login');
tabfooter('bmemberpwd');
check_submit_func($submitstr);
} else {
if (!regcode_pass('login', empty($regcode) ? '' : trim($regcode))) {
mcmessage('regcodeerror', '?action=memberpwd');
}
$opassword = trim($opassword);
$npassword = trim($npassword);
$npassword2 = trim($npassword2);
if (md5(md5($opassword)) != $curuser->info['password']) {
mcmessage('oldpasserror', '?action=memberpwd');
}
if ($npassword != $npassword2) {
mcmessage('notsamepwd', '?action=memberpwd');
}
if (!$npassword || strlen($npassword) > 15 || $npassword != addslashes($npassword)) {
mcmessage('memberpwdillegal', '?action=memberpwd');
}
if ($enable_uc) {
include_once M_ROOT . './include/ucenter/uc.inc.php';
}
$npassword = md5(md5($npassword));
$curuser->updatefield('password', $npassword, 'main');
$curuser->updatedb();
msetcookie('userauth', authcode("{$npassword}\t{$memberid}", 'ENCODE'));
// msetcookie('userauth',authcode("$npassword\t$memberid",'ENCODE'),31536000);
mcmessage('mempassmodsuc', '?action=memberpwd');
}
<?php
!defined('M_COM') && exit('No Permission');
if (!$memberid) {
$message_class = 'curbox';
echo '<div class="area col"><div class="conBox"><div class="con_con"><div class="main_area">';
empty($handlekey) && ($handlekey = '');
$tmp = empty($infloat) ? '' : " onclick=\"floatwin('close_{$handlekey}');return floatwin('open_login',this)\"";
mcmessage('loginmemcenter', '', ' [<a href="login.php"' . $tmp . '>' . lang('memberlogin') . '</a>] [<a href="register.php" target="_blank">' . lang('register') . '</a>]');
} elseif ($curuser->info['isfounder']) {
mcmessage('foundernomc', '', '[<a href="login.php?action=logout">' . lang('logout') . '</a>]');
}
$aedit->basic_data();
$aedit->archive['checked'] && $aedit->archive['needupdate'] && $aedit->updatefield('needupdate', 0, 'sub');
}
if (!empty($arcdeal['readd'])) {
//重发布
$aedit->readd();
}
if (!empty($arcdeal['abover'])) {
$aedit->updatefield('abover', 1, 'main');
}
if (!empty($arcdeal['unabover'])) {
$aedit->updatefield('abover', 0, 'main');
}
if (!empty($arcdeal['close'])) {
$aedit->updatefield('closed', 1, 'main');
}
if (!empty($arcdeal['validperiod'])) {
$arcvalidperiod = empty($arcvalidperiod) ? 0 : max(0, intval($arcvalidperiod));
$aedit->reset_validperiod($arcvalidperiod);
}
$aedit->updatedb();
}
unset($aedit);
if (!empty($arcdeal['ucid'])) {
$db->query("UPDATE {$tblprefix}archives SET ucid='{$arcucid}' WHERE aid " . multi_str($selectid), 'SILENT');
}
mcmessage('archiveoperatefinish', axaction(2, "?action=archives{$filterstr}&page={$page}"));
}
} else {
include M_ROOT . $u_tplname;
}
trcategory(array("<input class=\"checkbox\" type=\"checkbox\" name=\"chkall\" class=\"category\" onclick=\"checkall(this.form, 'selectid', 'chkall')\">", lang('id'), lang('member'), lang('add time'), lang('operate')));
echo $itemstr;
tabfooter();
echo $multi;
tabheader(lang('operateitem'));
trbasic(lang('choose_item'), '', "<input class=\"checkbox\" type=\"checkbox\" name=\"reportdeal[delete]\" value=\"1\"> " . lang('delete') . $listname, '');
tabfooter('breportsedit');
} else {
if (empty($reportdeal)) {
mcmessage('selectoperateitem', M_REFERER);
}
if (empty($selectid)) {
mcmessage('confirmselectreport', M_REFERER);
}
if (!empty($reportdeal['delete'])) {
$db->query("DELETE FROM {$tblprefix}mreports WHERE cid in (" . join(',', $selectid) . ") AND fromid={$memberid}");
} else {
if (!empty($reportdeal['ucid'])) {
$db->query("UPDATE {$tblprefix}mreports SET ucid='{$reportucid}' WHERE cid in (" . join(',', $selectid) . ") AND fromid={$memberid}");
}
}
mcmessage('reportadminfin', M_REFERER);
}
} elseif ($deal == 'delete' && $cid) {
if (empty($confirm)) {
mcmessage('delreportcon' . '<br /><br /><a href="' . "?action={$action}&deal={$deal}&cid={$cid}&confirm=1&{$forwardstr}" . '">[' . lang('confirm') . ']</a> <a href="' . $forward . '">[' . lang('cancel') . ']</a>');
} else {
$db->query("DELETE FROM {$tblprefix}mreports WHERE cid={$cid} AND fromid={$memberid}");
mcmessage('sucdelete' . $db->affected_rows() . ' piece0 report', $forward);
}
}