$query = 'REPLACE ' . substr($query, 6); } $db->query($query) or error('Failure to import Data', __FILE__, __LINE__, $db->error()); $query = ''; } else { $query .= $value; } } $fc = $filename . $ctlt . ".sql"; $ctlt++; refer("" . $fc . "已被成功导入,程序将自动导入余下部分。", "db_recovery.php?action=backin&ctlt=" . $ctlt . "&num=" . $num . "&filename=" . $filename . ""); } elseif ($action == 'del' && !empty($sql) && !empty($num)) { for ($i = 1; $i <= intval($num); $i++) { unlink(ROOT_PATH . 'bakup/' . $sql . $i . '.sql') or error('Unable to delete FILE', __FILE__, __LINE__); } refer('' . $num . '卷已被删除', 'db_recovery.php'); } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css" media="all" /> </head> <body topmargin="10" leftmargin="10" > <form method="post" name="table" action="db_recovery.php?action=del"> <table class="tableborder2" cellspacing="1" cellpadding="5" width="70%" align="center"> <tr class="head"> <td colspan="7" align="center">数据恢复</td> </tr> <tr align="center">
$Select = "<select name=\"p_pinpai\"><option value=\"\">请选择...</option>"; break; } foreach ($Sort as $v) { if ($Deep == $v['Deep']) { $Select .= "<option value=\"{$v['Sort']['id']}\">{$v['Sort']['name']}</option>"; } } $Select .= "</select>"; return $Select; } if ($action == 'del' && !empty($uid)) { $check[] = $uid; $ids = implode(",", $check[0]); $db->query("DELETE FROM `cdb_members` WHERE uid IN ({$ids})"); refer('删除记录成功', 'member_manager.php'); } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css" media="all" /> <script language="JavaScript"> ifcheck = true; function CheckAll(form) { for (var i=0;i<form.elements.length-2;i++) { var e = form.elements[i]; e.checked = ifcheck; } ifcheck = ifcheck == true ? false : true;
$uppic = $pic[0] ? get_basename($pic[0]) : 'NULL'; $img = new image(ROOT_PATH . 'video-upimg/' . $uppic); $img->thumbnail(128, 72, ROOT_PATH . 'video-upimg/' . $uppic); } $db->query("INSERT INTO `video` VALUES (NULL,'{$title}','{$intro}','{$uppic}','{$url}',now())") or error('Unable to add advertising', __FILE__, __LINE__, $db->error()); refer('添加视频成功'); } if ($action == 'del' && isset($id)) { $query_id = $db->query("SELECT img FROM `video` WHERE id = {$id}"); $result = $db->fetch_array($query_id); $img = $result['img']; if ($img) { @unlink(ROOT_PATH . '/video-upimg/' . $img); } $db->query("DELETE FROM `video` WHERE id = {$id}") or error('Unable to delete advertising', __FILE__, __LINE__, $db->error()); refer('删除视频成功!'); } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css" media="all" /> </head> <body topmargin="10" leftmargin="10" > </br> <table class="tableborder2" cellspacing="1" cellpadding="0" width="99%" align="center" > <tr class="head"> <td align="center" height="22">视频列表</td> </tr> <tr><td>
$passwd = md5($passwd); $result = $db->getOne("SELECT id FROM `{$tablepre}admin` WHERE username='******' AND password='******' LIMIT 1"); if ($result) { $_SESSION['webmaster'] = true; $_SESSION['adminname'] = $username; $_SESSION['uid'] = $result; refer("欢迎您回来,{$username}。现在将转入系统管理面板。", 'index.php'); } else { refer('用户名无效或密码错误,请返回。'); } } elseif ($_GET['action'] == 'logout') { unset($_SESSION); refer('安全退出', 'login.php'); } if ($_SESSION['webmaster']) { refer("您已经登录成功,如果要退出请<a href=login.php?action=logout><b>点击退出</b></a>", "index.php"); } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <title>系统管理登陆</title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css"> </head> <body topmargin="10" leftmargin="10" > <form action="login.php?action=login" method="post"> <table class="tableborder2" cellspacing="1" cellpadding="4" width="30%" align="center" > <tr class="head"> <td colspan="2" align="center">后台管理</td> </tr>
case 3: $cacheContent['rank'][] = $a; break; case 4: $cacheContent['class'][] = $a; break; case 5: $cacheContent['publish'][] = $a; break; case 6: $cacheContent['article'][] = $a; break; } } writetofile(ROOT_PATH . 'data/cate.php', '$category = ' . var_export($cacheContent, true)); refer('更新缓存成功'); default: break; } } $action = in_array($action, array('bank', 'func', 'rank', 'class', 'publish', 'article')) ? $action : "bank"; $parent_id = empty($parent_id) ? 0 : $parent_id; $do = empty($do) ? 'add' : $do; if (!empty($id)) { $EV = $db->getRow("SELECT * FROM `{$tablepre}category` WHERE cid='{$id}'"); } $C; ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head>
// copyright (c)2007 millken@gmail.com //==================================================== session_start(); if (!$_SESSION['webmaster']) { header("location:login.php"); } require_once '../common.inc.php'; if ($_GET['action'] == "phpinfo") { die(phpinfo()); } elseif ($_GET['action'] == 'changepwd') { if ($_POST['confirmpasswd'] != $_POST['passwd'] || $_POST['confirmpasswd'] == "") { refer("两次密码输入的密码不同或为空"); } $password = $_POST['confirmpasswd']; $db->query("UPDATE `admin` SET `password` = md5('{$password}') WHERE `username` = '" . $_SESSION['adminname'] . "'"); refer("密码更改成功,请使用新密码重新登录。", "login.php?action=logout"); } $fileupload = @ini_get("file_uploads") ? "文件 " . ini_get("upload_max_filesize") : "<font color=\"red\">禁止</font>"; if (function_exists(gd_info)) { $gd = gd_info(); $gd_version = $gd['GD Version']; } else { $gd_version = '不清楚'; } $globals = get_cfg_var('register_globals') ? '打开' : '关闭'; $safemode = get_cfg_var('safe_mode') ? '打开' : '关闭'; //获取数据大小 $dbsize = 0; $result = $db->query("SHOW TABLE STATUS"); while ($table = $db->fetch_array($result)) { $dbsize += $table['Data_length'] + $table['Index_length'];
// Summary: 邮件发送系统 // Author: millken(迷路林肯) // LastModifed:2007-08-23 // copyright (c)2007 millken@gmail.com //==================================================== session_start(); if (!$_SESSION['webmaster']) { header("location:login.php"); } require_once '../common.php'; require_once '../include/xajax.inc.php'; require_once '../include/smtp.inc.php'; if ($action == 'send') { //die("$mailto\t$subject\t$mailbody"); send_mail($mailto, $subject, $mailbody); refer('邮件已发送成功...'); } /*xajax function start */ function getUsermail() { global $db; $resp = new xajaxResponse(); $query = $db->query("SELECT DISTINCT `email` FROM `cdb_members` WHERE `adminid`=0") or error('Unable to fetch email list', __FILE__, __LINE__, $db->error()); while ($result = $db->fetch_array($query)) { if (is_email($result['email'])) { $mails[] = $result['email']; } } $mail = implode(",", $mails); $resp->addAssign("mailto", "value", $mail); $resp->addAssign("getmail", "disabled", true);
// FileName: article_manager.php // Summary: 文章管理 // Author: millken(迷路林肯) // LastModifed:2008-7-16 // copyright (c)2008 millken@gmail.com //==================================================== session_start(); if (!$_SESSION['webmaster']) { header("location:login.php"); } include '../common.inc.php'; include_once ROOT_PATH . 'include/card.func.php'; if ($do == 'del' && !empty($id)) { $ids = implode(",", $id); $db->query("DELETE FROM `{$tablepre}article` WHERE aid IN ('{$ids}')"); refer("删除成功", 'article_manager.php'); } $arr['title'] = empty($name) ? '' : $name; $arr['cid'] = $cid > 0 ? $cid : 0; $sql = getarticlesql($arr); $countnum = $db->getOne("SELECT count(*) FROM ({$sql})a"); $per = empty($per) ? 15 : $per; $pages = page($count, $per, 20); extract($pages); $articlelist = $db->getAll("{$sql} LIMIT {$page},{$limit}"); ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css" media="all" />
$bakupdata = $bakuptable ? $bakuptable . $bakupdata : $bakupdata; if ($stop == 1) { $i++; $tableid = $i; $startfrom = $start; $start = 0; $files = $step - 1; if (trim($bakupdata)) { writetofile(ROOT_PATH . 'data/sql/' . $filename, $bak . $bakupdata, 1, 'ab'); } refer('正在备份数据库表' . $table[$tableid - 1] . ': 共' . $rows . ' 条记录,已经备份至' . $startfrom . '条记录<br><br>已生成' . $f_num . '个备份文件,程序将自动备份余下部分', "db_backup.php?action=backup&start={$startfrom}&tableid={$tableid}&sizelimit={$sizelimit}&step={$step}&pre={$pre}&tabledata={$tabledata}&rows={$rows}"); } else { if (trim($bakupdata)) { writetofile(ROOT_PATH . 'data/sql/' . $filename, $bak . $bakupdata, 1, 'ab'); } refer('备份完毕', 'db_backup.php'); } } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css" media="all" /> <script language=javascript> function checkAll(obj) { if(typeof(obj)=="undefined") { return; }
$config = array(); if ($_GET['edit'] == 'yes') { $config['webname'] = htmlspecialchars(addslashes(trim($_POST['webname']))); $config['seotitle'] = addslashes(trim($_POST['seotitle'])); $config['seokeyword'] = addslashes(trim($_POST['seokeyword'])); $config['seodescription'] = addslashes(trim($_POST['seodescription'])); $config['seomode'] = addslashes(trim($_POST['seomode'])); $config['close'] = addslashes(trim($_POST['close'])); $config['template'] = addslashes(trim($_POST['template'])); $config['weektop1'] = trim($weektop1); $config['weektop2'] = trim($weektop2); foreach ($config as $key => $value) { $db->query("REPLACE INTO `{$tablepre}config` (name,value) VALUES('{$key}','{$value}')"); } updatecachefile('config'); refer('更新完成'); } $result = $db->query("SELECT * FROM `{$tablepre}config`"); while ($row = $db->fetch_array($result)) { $config[$row['name']] = $row['value']; } $dir = searchdir(ROOT_PATH . 'templates/'); ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css" media="all" /> </head> <body topmargin="10" leftmargin="10" > <form method="post" name="setting" action="setting.php?edit=yes">
$xajax->registerFunction("add"); $xajax->registerFunction("addV"); $xajax->registerFunction("editvote"); $xajax->processRequests(); if ($action == 'del' && !empty($id)) { $db->query("DELETE FROM `vote` WHERE id={$id} or pid={$id}"); refer('删除记录成功', 'vote_manager.php'); } elseif ($action == 'invisable') { //$order = $s ==1?0:1; $db->query("UPDATE `vote` SET `order` = 0"); $db->query("UPDATE `vote` SET `order` = 1 WHERE id={$id}"); updateVoteCache(); refer('已将投票设为首页显示', 'vote_manager.php'); } elseif ($action == 'update') { updateVoteCache(); refer('更新投票成功', 'vote_manager.php'); } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css" media="all" /> <script language="JavaScript"> ifcheck = true; function CheckAll(form) { for (var i=0;i<form.elements.length-2;i++) { var e = form.elements[i]; e.checked = ifcheck; } ifcheck = ifcheck == true ? false : true;
// Author: millken(迷路林肯) // LastModifed:2007-06-20 // copyright (c)2007 millken@gmail.com //==================================================== require_once '../common.php'; session_start(); if (!$_SESSION['webmaster']) { header("location:login.php"); } if ($_GET['action'] == 'update') { updatecachefile('config'); updatecachefile('psort'); updatecachefile('asort'); updateVoteCache(); updateLinkCache(); refer("缓存更新成功"); } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css" media="all" /> </head> <body topmargin="10" leftmargin="10" > <form action="updatecache.php?action=update" method="post"> <table class="tableborder2" cellspacing="1" cellpadding="4" width="40%" align="center" > <tr class="head"> <td colspan="2" align="center">更新系统缓存</td> </tr> <tr class="b">
refer("添加图片成功"); break; case 'hide': $db->query("UPDATE `{$tablepre}productpic` SET hide=abs(hide-1) WHERE pid='{$pid}'"); refer("更新状态成功"); break; case 'recommend': $db->query("UPDATE `{$tablepre}productpic` SET recommend=abs(recommend-1) WHERE pid='{$pid}'"); refer("更新状态成功"); break; case 'del': $img = $db->getOne("SELECT img FROM `{$tablepre}productpic` WHERE id='{$id}'"); @unlink(ROOT_PATH . $img); $sql = "DELETE FROM `{$tablepre}productpic` WHERE id='{$id}'"; $db->query($sql); refer('删除图片成功'); break; } } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css" media="all" /> </head> <body leftmargin="10" topmargin="10"> <table width="100%" border="0" cellpadding="2" cellspacing="6"> <?php if ($do != 'edit') { ?>
// FileName: card_manager.php // Summary: 产品管理 // Author: millken(迷路林肯) // LastModifed:2008-7-1 // copyright (c)2008 millken@gmail.com //==================================================== session_start(); if (!$_SESSION['webmaster']) { header("location:login.php"); } include '../common.inc.php'; include_once ROOT_PATH . 'include/card.func.php'; if ($do == 'del' && !empty($id)) { $ids = implode(",", $id); $db->query("DELETE FROM `{$tablepre}product` WHERE id IN ('{$ids}')"); refer("删除成功", 'card_manager.php'); } $arr['name'] = empty($name) ? '' : $name; $arr['bankid'] = $bank > 0 ? $bank : 0; $arr['rankid'] = $rank > 0 ? $rank : 0; $arr['publishid'] = $publish > 0 ? $publish : 0; $arr['classid'] = $class > 0 ? $class : 0; $arr['funcid'] = $func > 0 ? $func : 0; $sql = getcardsql($arr); $countnum = $db->getOne("SELECT count(*) FROM ({$sql})a"); $per = empty($per) ? 15 : $per; $pages = page($count, $per, 20); extract($pages); $cardlist = $db->getAll("{$sql} LIMIT {$page},{$limit}"); ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
refer('您选择的是图片广告,但您未选择上传图片!'); } $db->query("INSERT INTO `advertising` VALUES (NULL,'{$adlocation}','{$title}','{$img}','{$isimgad}','{$url}',now(),'{$exptime}')") or error('Unable to add advertising', __FILE__, __LINE__, $db->error()); updateAdsCache(); refer('添加成功'); } if ($action == 'del' && isset($id)) { $query_id = $db->query("SELECT img FROM `advertising` WHERE id = {$id}"); $result = $db->fetch_array($query_id); $img = $result['img']; if ($img) { @unlink(ROOT_PATH . '/adsimg/' . $img); } $db->query("DELETE FROM `advertising` WHERE id = {$id}") or error('Unable to delete advertising', __FILE__, __LINE__, $db->error()); updateAdsCache(); refer('删除成功!'); } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8"> <link rel="stylesheet" href="admin.css" type="text/css" media="all" /> <script language="JavaScript"> function isimg() { var S = document.getElementById("isimgad").checked; if(S){ document.getElementById("img").style.display = 'block'; }else{ document.getElementById("img").style.display = 'none'; }
$pic = $uf->move(ROOT_PATH . 'article_upimg', 2); $uppic = $pic[0] ? get_basename($pic[0]) : 'NULL'; $img = new image(ROOT_PATH . 'article_upimg/' . $uppic); //$img->thumbnail(150,150,ROOT_PATH . 'article_upimg/'.$uppic); $img->watermark(ROOT_PATH . 'include/watermark.png', '', '', ROOT_PATH . 'article_upimg/' . $uppic); } else { $uppic = $_POST['pic']; } $date = date('Y-m-j H:i:s'); if ($_GET['action'] == 'save') { $db->query("INSERT INTO `article` (`a_sort`,`a_ztid`,`aid`,`title`,`author`,`suggest`,`date`,`pic`,`content`) values ({$a_sort},{$a_ztid},{$aid},'{$title}','{$author}',{$suggest},now(),'{$uppic}','{$content}')"); refer('添加成功', 'article_edit.php'); } else { $id = $_POST['updateid']; $db->query("UPDATE `article` SET `p_xilie` = {$p_xilie},`p_sort` = {$p_sort},`p_pinpai` = {$p_pinpai},`name` = '{$name}',`size` = {$size},`xixiang` = '{$xixiang}',`price` = {$price},`p_num` = {$p_num},`suggest` = {$suggest},`pic` = '{$uppic}',`content` = '{$content}' WHERE `id` = {$id}"); refer('更新成功', 'article_manager.php'); } } $query = $db->query("SElECT * FROM `cdb_members` WHERE `uid` = {$uid}"); $result = $db->fetch_array($query); ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <link href="admin.css" rel="stylesheet" type="text/css"> </head> <body topmargin="10" leftmargin="10"> <form method="post" name="edit" id="edit" action="member_edit.php?action=save" enctype="multipart/form-data"> <input type="hidden" name="uid" value="<?php echo $uid;
function comments($key) { /* Select all comments */ $res = mysql_query("SELECT * FROM comments WHERE idkey = '{$key}' ORDER BY date DESC"); ?> <p><span class="serif"> <strong>Comments</strong><br /> </span></p> <?php while ($row = mysql_fetch_assoc($res)) { ?> <p> <strong><span class="sans"><?php echo $row['name'] . ' - ' . date("l, jS of F, Y; H:i:s", $row['date']); ?> </strong> <br /> <?php echo stripslashes($row['comment']); ?> </span> </p> <?php } ?> <p> <span class="sans"><a target="new" href="add_comment.php?key=<?php echo $key; ?> ">Add comment</a></span> </p> <br /> <br /> <?php refer(); }
include '../common.inc.php'; include_once ROOT_PATH . 'include/card.func.php'; $detail = parse_ini_file(ROOT_PATH . 'data/detail.ini', true); switch ($do) { case 'add': $xxxx_array = array('USE' => $USE, 'FEE' => $FEE, 'OUT' => $OUT); $xxxx = serialize($xxxx_array); $sql = "INSERT INTO `{$tablepre}product` (name,bankid,rankid,publishid,classid,funcid,mnfyh,jbgn,tsgn,sqtj,xxxx,hkfs) VALUES ('{$name}','{$bank}','{$rank}','{$publish}','{$class}','{$func}','{$mnfyh}','{$jbgn}','{$tsgn}','{$sqtj}','{$xxxx}','{$hkfs}')"; $db->query($sql); refer("添加成功"); case 'edit': $xxxx_array = array('USE' => $USE, 'FEE' => $FEE, 'OUT' => $OUT); $xxxx = serialize($xxxx_array); $sql = "UPDATE `{$tablepre}product` SET name='{$name}',bankid='{$bank}',rankid='{$rank}',publishid='{$publish}',classid='{$class}',funcid='{$func}',mnfyh='{$mnfyh}',jbgn='{$jbgn}',tsgn='{$tsgn}',sqtj='{$sqtj}',hkfs='{$hkfs}',xxxx='{$xxxx}' WHERE id='{$id}'"; $db->query($sql); refer('更新成功', 'card_manager.php'); break; } if ($act == 'edit' && !empty($id)) { $card = cardinfo($id); } else { $card = array(); } ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN"> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=UTF-8"> <link href="admin.css" rel="stylesheet" type="text/css"> <script type="text/javascript" language="javascript"> <!--