Ejemplo n.º 1
0
         $ActionMessage = $strNickLengMax;
         $check_info = false;
     }
     //检测验证码
     if (!empty($_POST['validate'])) {
         $_POST['validate'] = safe_convert($_POST['validate']);
     }
     if ($check_info && (empty($_POST['validate']) || $_POST['validate'] != $_SESSION['backValidate']) && $settingInfo['isValidateCode'] == 1) {
         $ActionMessage = $strGuestBookValidError;
         $check_info = false;
     } else {
         $_SESSION['backValidate'] = "";
         //把验证码清除
     }
     //过滤名称与IP
     if ($check_info && ($filter_name = replace_filter($_POST['message'])) != "") {
         //$ActionMessage=$strGuestBookFilter;
         $ActionMessage = $strGuestBookFilter . $filter_name;
         $check_info = false;
     }
     //检测是否在规定的时候内发言
     if (!empty($_SESSION['replytime']) && $_SESSION['replytime'] > time() - $settingInfo['commTimerout']) {
         $ActionMessage = $strUserCommentTime;
         $check_info = false;
     }
 }
 if ($check_info && $_POST['message'] == "") {
     $ActionMessage = "{$strGuestBookBlankError}";
     $check_info = false;
 }
 //檢查用戶在此處登錄
Ejemplo n.º 2
0
if ($url == "") {
    tb_xml_error("Invalid URL.");
}
if ($excerpt == "") {
    tb_xml_error("We require all Trackbacks to provide an excerption.");
} else {
    if (strlen($excerpt) > 100) {
        $excerpt = substr($excerpt, 100) . " ...";
    }
    $excerpt = encode($excerpt);
}
//检查过滤
if (!filter_ip($userdetail['ip'])) {
    tb_xml_error("Your IP address is banned from sending trackbacks.");
}
if (replace_filter($excerpt) || replace_filter($title) || replace_filter($blog_name)) {
    tb_xml_error("The trackback content contains some words that are not welcomed on our site. You may edit your post and send it again. Sorry for the inconvenience.");
}
$trytb = $DMF->numRows($DMF->query("SELECT * FROM " . $DBPrefix . "trackbacks WHERE ip='" . getip() . "' AND postTime+30>='" . time() . "'"));
if ($trytb > 0) {
    tb_xml_error("Error.");
}
$spam = $settingInfo['isTbApp'];
// 1为开启审核
if ($spam == 0 or strpos($url, ";" . $settingInfo['ttSiteList']) >= 1) {
    $isApp = 1;
} else {
    $isApp = 0;
}
@fopen_url($url);
$sql = "INSERT INTO " . $DBPrefix . "trackbacks (logId,tbTitle,blogSite,blogUrl,content,postTime,ip,isApp) VALUES ('{$tid}',\"{$title}\",\"{$blog_name}\",\"{$url}\",\"{$excerpt}\"," . time() . ",'" . getip() . "','{$isApp}')";