function lfdata_connect($data_host,$data_user,$data_pass,$db) { /* starts or stops database connection */ if ($mysql_link=mysql_connect($data_host,$data_user,$data_pass)){ lfquery("use `".$db."`"); if (mysql_error($mysql_link)=="Unknown database '".$db."'") { lfquery("CREATE DATABASE ".$db); lfquery("use `".$db."`"); }; } else {$lferror="Can not connect to database";}; if ((!(mysql_error($mysql_link)=="")) AND (mysql_error($mysql_link)<>"Unknown database '".$db."'")) { echo "lfdata_connect.php,"._LINE.": ".mysql_error($mysql_link); }; include "config.php"; lfquery("SET NAMES '".$lfconf_db['encoding']."'", $mysql_link); return $mysql_link;};
function lfdb($theme) { include "config.php"; include "lfparts.php"; foreach ($lfpart as $part) { // List all the files $dir = "parts/".$part."/lfdb";; include $lfpath."system/lf_filelist.php"; // Restarting Varibles $i1="1"; while ($lf_file[$i1]<>"") { $i4=$i3=$i2="1"; $db=""; $tablename=""; include $lfpath."parts/".$part."/lfdb/".$lf_file[$i1]; // Changing table name if needed ($tablename taken from the lfdb file) if ($lfconf_db['change_tables']=="yes") { if (($tablename<>str_replace(".php","",$lf_file[$i1])) AND ($tablename<>"" )) { lfquery("RENAME TABLE `".str_replace(".php","",$lf_file[$i1])."` TO `".$tablename."`"); rename( "parts/".$part."/lfdb/".$lf_file[$i1] , "parts/".$part."/lfdb/".$tablename.".php"); } else { $tablename = str_replace(".php","",$lf_file[$i1]); }; }; $db['0']['name'] = $dbid; // Creating table if ($lfconf_db['create_tables']=="yes") { $q="CREATE TABLE IF NOT EXISTS `".$tablename."` (\n"." `".$dbid."` int (11) NOT NULL auto_increment ,\n PRIMARY KEY (`".$dbid."`) ) \n TYPE=MyISAM AUTO_INCREMENT=1 ;\n\n"; $db["0"]['name'] = $dbid; // needed For Adding first table lfquery($q); }; if ($lfconf_db['update_culmus']=="yes") { // Renaming id if needed $query=lfquery("SHOW COLUMNS IN `".$tablename."`"); $row=mysql_fetch_array($query); if ($row["Field"]<>$dbid) { $q="ALTER TABLE ".$tablename." CHANGE ".$row["Field"]." ".$dbid ." ".$row['Type']; lfquery($q); }; // Deleting Columns that not in the config file $i4="1"; $query=lfquery("SHOW COLUMNS IN `".$tablename."`"); $row=mysql_fetch_array($query); // Skipping the id line while ($row=mysql_fetch_array($query)) { if (empty($db[$i4]['name'])) { $q="ALTER TABLE `".$tablename."` DROP `". $row["Field"] . "`" ; lfquery($q); }; $i4++; }; // Updating Columns $i4="1"; $query=lfquery("SHOW COLUMNS IN `".$tablename."`"); $row=mysql_fetch_array($query); // Skipping the id line while ($row=mysql_fetch_array($query)) { // Updating db info if (($db[$i4]['name']<>$row["Field"]) OR ($db[$i4]['type'] <>$row["Type"] )) { $q="ALTER TABLE ".$tablename." CHANGE ".$row["Field"]." ".$db[$i4]['name']." ".$db[$i4]['type']; lfquery($q); }; $i4++; }; }; // Creating Columns if ($lfconf_db['create_culomns']=="yes") { while ($db[$i2]["name"]<>"") { $query=lfquery("desc `".$tablename."` `".$db[$i2]["name"]."`"); if (mysql_fetch_array($query)=="") { $q = "ALTER TABLE `".$tablename."` ADD `".$db[$i2]["name"]."` ".$db[$i2]["type"]/*." DEFAULT '".$db[$i2]["default"]*/." NOT NULL AFTER `".$db[$i2-1]["name"]."` ; ;\n"; $q = str_replace("default 'auto_increment'","auto_increment",$q); $q = str_replace("DEFAULT ''","",$q); lfquery($q); //echo "<div dir=ltr>".$q."</div>"; } $i2++; }; }; // Checking for non-existent tables (for deleting non existing tables later) if ($lfconf_db['delete_tables']=="yes") { $q="SHOW TABLES"; $query=lfquery($q); while ($row=mysql_fetch_array($query)) { if ($row['0'] == $tablename) { $table_exists[$tablename]="yes";}; /*echo $row['0']."<br>";*/}; } // Checking for actions $db_action['1']['action']=""; $i1++; // Going to the next file }; // Deleting non exists tables if ($lfconf_db['delete_tables']=="yes") { $q="SHOW TABLES"; $query=lfquery($q); while ($row=mysql_fetch_array($query)) { if ($table_exists[$row['0']] <> "yes") { $q="DROP TABLE `".$row['0']."`"; lfquery($q); };}; }; }; // Finishing lfdb return $theme; };
}; for ($i="2"; $i <= count($if_cookie_fields); $i++) { $q .= " AND ".$if_cookie_fields[$i-1]." = '".$_COOKIE[$if_cookie_fields[$i-1]]."'"; // echo $q."<br>"; }; // echo $if_name.":<div dir=ltr align=center>".$q."<div>"; } elseif ($if_check[$if_name]['type'] == "sql") { $q = $if_check[$if_name]['sql']; //echo $if_name."<br />"; }; // echo $q."<br><br>"; if (($if_check[$if_name]['type'] == "cookie") OR ($if_check[$if_name]['type'] == "sql")) { if ($q<>"") { if ($query = lfquery($q)) { $result = mysql_fetch_array($query); // echo "<b>";print_r($result);echo "</b><br><br>"; } else { $result=""; }; } else { $result = ""; }; } elseif ($if_check[$if_name]['type'] == "true") { if ($if_check[$if_name]['check']=="1") { $result="yes"; }
$dv=$value; $_GET[$varName] = mysql_escape_string($dv); }; // Starting Connection to Database $lf_connection= lfdata_connect($lfconf_db['host'],$lfconf_db['user'],$lfconf_db['pass'],$lfconf_db['db']); // Getting the tables list $q="SHOW TABLES"; $table_query=lfquery($q); while ($table_result=mysql_fetch_row($table_query)) { // echo $table_result['0']; // Getting the columns list $q="SHOW COLUMNS IN ".$table_result['0']; $query=lfquery($q); // Making the lfdb file $file = "<?\n". '$tablename="'.$table_result['0'].'";'."\n". '$column=0; // Don\'t touch'."\n\n"; while ($result=mysql_fetch_row($query)) { $file .= "\t//".$result['0']."\n\n"; $file .= '$column++;'."\n"; $file .= '$db[$column][\'name\'] = "'.$result['0'].'"'.";\n"; $file .= '$db[$column][\'type\'] = "'.$result['1'].'"'.";\n\n"; if ($result['5']=="auto_increment") { $file .= '$dbid = "'.$result['0'].'";'."\n"; }; }
// getting the id include $table_file[$_GET['table']]; $q = "SELECT * FROM " . $_GET['table'] . " WHERE " . $dbid . " = '".$_GET['id']."'"; $query = lfquery($q); $result = mysql_fetch_array($query); // Checking for action if ($_POST['do']=="edit") { $q2 = "UPDATE " . $_POST['table'] . " SET `" . $_POST['field'] . "` = '" . $_POST['value'] . "' WHERE " . $_POST['id_name'] . " = '".$_POST['id_value']."'"; lfquery($q2); header('Location: index.php'); } elseif ($_POST['do']=="del") { $q2 = "DELETE FROM `" . $_POST['table'] . "` WHERE " . $_POST['id_name'] . " = '".$_POST['id_value']."'"; lfquery($q2); header('Location: index.php'); }; // Showing edit options ?> <form enctype="multipart/form-data" action="lfadmin.php" method="post" id="artwork_form" target="_self"> <input type=hidden name="table" value="<? echo $_GET['table']; ?>"> <input type=hidden name="field" value="<? echo $_GET['field']; ?>"> <input type=hidden name="do" value="del"> <input type=hidden name="id_name" value="<? echo $dbid; ?>"> <input type=hidden name="id_value" value="<? echo $_GET['id']; ?>"> <div align=center><input type=submit value="delete row '<? echo $_GET['id']?>' from <? echo $_GET['table']?> (no way to undo!)"></div> </form>
<? // tips //count how many tips there are $q_tip = "SELECT COUNT(*) FROM tips"; $query_tip = lfquery($q_tip); if ($query_tip<>"") { $tip_result = mysql_fetch_row($query_tip); }; $counted_tips=$tip_result['0']; // Random Tip $_GET['tipid']=rand(1, $counted_tips); // product of the week $_GET['prodid']="1"; ?>
function add ($lfaction_set,$_POST,$lfaction_static,$table_file,$lfaction_type,$lfaction_get,$lfaction_file) { // adding the "push" option if (($lfaction_set['action']=="add") AND ($lfaction_set['push']['field']<>"")) { mysql_query("UPDATE `book` SET `" . $lfaction_set['push']['field']."`=`" . $lfaction_set['push']['field'] . "`+" . $lfaction_set['push']['value']." WHERE `place`>=". $_POST[$lfaction_set['push']['field']] . ";"); }; $sql_query="INSERT INTO " . $lfaction_set['table'] . "("; // The begining of the query $q="SHOW COLUMNS IN ".$lfaction_set['table']; $query=lfquery($q); while ($result=mysql_fetch_row($query)) { $sql_query .= "`".$result['0']."`, "; } // The values of the quiery $sql_query .= ") VALUES ("; $q="SHOW COLUMNS IN ".$lfaction_set['table']; $query=lfquery($q); include $table_file[$lfaction_set['table']]; // From "system/list_lfdb_files.php" while ($result=mysql_fetch_row($query)) { if ($dbid<>$lfaction_set['table']) { // not including ID // Check if it is a normal text // echo $lfaction_type[$result['0']]."<br>"; if (($lfaction_type[$result['0']]=="text") OR ($lfaction_type[$result['0']]=="mail")) { if ($lfaction_static[$result['0']]=="") { $sql_query .= "'".$_POST[$result['0']]."', "; }; } // Check if it is a uploaded file elseif ($lfaction_type[$result['0']]=="file") { if ($lfaction_static[$result['0']]=="") { if ($_FILES[$result['0']]['name']<>"") { $sql_query .= "'".$lfaction_file[$result['0']]['upload_loc']."/".$_FILES[$result['0']]['name']."', "; } else { $sql_query .= "'', "; }; }; } elseif ($lfaction_type[$result['0']]=="md5") { if ($lfaction_static[$result['0']]=="") { $sql_query .= "'".md5($_POST[$result['0']])."', "; }; } elseif ($lfaction_type[$result['0']]=="get") { $q55 = "SELECT " . $lfaction_get[$result['0']]['get'] . " FROM " . $lfaction_get[$result['0']]['table'] . " WHERE " . $lfaction_get[$result['0']]['where'] . " = '" . $lfaction_get[$result['0']]['with'] . "'"; $query55 = lfquery ($q55); $get_result = mysql_fetch_row($query55); if ($lfaction_static[$result['0']]=="") { $sql_query .= "'".$get_result['0']."', "; }; } // else inserting a blank value else { if ($lfaction_static[$result['0']]=="") { $sql_query .= "'', "; }; }; // check if it is a static value if ($lfaction_static[$result['0']]<>"") { $sql_query .= "'".$lfaction_static[$result['0']]."', "; }; } } // The end of the query $sql_query .= ") "; $sql_query = str_replace(", )", ")", $sql_query); if ($_POST['lfupdate']=="yes") { if ($lfaction_set['allow_update'] == "yes") { $sql_query_willbe = "UPDATE ".$lfaction_set['table']." SET "; $cutted_qery = split("\(",$sql_query); // splitting into 2 rows $cutted_qery_2_1= split("`",$cutted_qery['1']); // spliting row 1 - for fields $cutted_qery_2_2= split("'",$cutted_qery['2']); // spliting row 1 - for values $update_fileds=split(",",$lfaction_set['update_fields']); // print_r($cutted_qery_2_1);echo "<br><br>"; // print_r($cutted_qery_2_1);echo "<br><br>";exit; // Making a list of allowed fields foreach ($update_fileds as $fieldvalue) { $allow_update[$fieldvalue]="yes"; $allow_update[" ".$fieldvalue]="yes"; }; $cutName=1; while ($cutted_qery_2_1[$cutName]<>"") { //caching allowed fields $cutValue= str_replace(") VALUES ","",$cutValue); // cleaning broken end $cutted_qery_2_2[$cutName]= str_replace("')","'",$cutted_qery_2_2[$cutName]); // cleaning broken end // echo $cutValue.":".$cutted_qery_2_2[$cutName]."<br>"; // print_r($allow_update); if ($allow_update[$cutted_qery_2_1[$cutName]]=="yes") { // If update is allowed if ($cutted_qery_2_1[$cutName]<>$dbid) { // Checking if not empty if (($cutted_qery_2_2[$cutName]<>"") AND ($cutted_qery_2_2[$cutName]<>" ''")){ $sql_query_willbe.=" `". $cutted_qery_2_1[$cutName]. "` = '" . $cutted_qery_2_2[$cutName]."' , "; }; }; }; $cutName=$cutName+2; }; }; //cleaning end and adding key and fit in query $sql_query_willbe.="___"; $sql_query_willbe = str_replace(") VALUES","",$sql_query_willbe); $sql_query=str_replace(", ___"," WHERE `".$dbid."` = '".$_POST['lfupdate_id']."'",$sql_query_willbe); };/* $sql_query = str_replace("||_-","(",$sql_query); $sql_query = str_replace("-_||",")",$sql_query);*/ // Make a fix for multiple // $sql_query=str_replace(";\\')",";')",$sql_query); // $sql_query=str_replace(":\\')",":')",$sql_query); $sql_query=str_replace("\') ","')",$sql_query); return ($sql_query); };