function GetOptionList($selid=0,$userCatalog=0,$channeltype=0)
{
global $OptionArrayList,$channels,$dsql;
if(!is_object($dsql)) $dsql = new DedeSql(false);
$dsql->SetQuery("Select ID,typename From #@__channeltype ");
$dsql->Execute();
$channels = Array();
while($row = $dsql->GetObject()) $channels[$row->ID] = $row->typename;
$OptionArrayList = "";
$query = "Select ID,typename,ispart,channeltype,issend From #@__arctype where ispart<>2 And reID=0 order by sortrank asc ";
$dsql->SetQuery($query);
$dsql->Execute();
while($row=$dsql->GetObject())
{
if($row->channeltype==$channeltype && $row->issend==1){
if($row->ispart==0) $OptionArrayList .= "<option value='".$row->ID."' class='option3'>".$row->typename."</option>\r\n";
else if($row->ispart==1) $OptionArrayList .= "<option value='".$row->ID."' class='option2'>".$row->typename."</option>\r\n";
}
LogicGetOptionArray($row->ID,"─",$channeltype,$dsql);
}
return $OptionArrayList;
}
function GetRankName($arcrank)
{
global $arcArray,$dsql;
if(!is_array($arcArray)){
$dsql = new DedeSql(false);
$dsql->SetQuery("Select * from #@__arcrank");
$dsql->Execute('rn1');
while($row = $dsql->GetObject('rn1')){ $arcArray[$row->rank]=$row->membername; }
}
if(isset($arcArray[$arcrank])) return $arcArray[$arcrank];
else return "不限";
}
}
else if($dbptype==3){
$dsql = new DedeSql(false,false);
$dsql->SetSource($dbhost,$dbuser,$dbpwd,$dbname,'');
$dsql->Open(false);
}
if(!$dsql->linkID){
ShowMsg("连接数据源的数据库失败!","javascript:;");
exit();
}
$fieldsql = '';
$fieldsql = "$userfield,$pwdfield";
if($emailfield!='') $fieldsql .= ",$emailfield";
if($unamefield!='') $fieldsql .= ",$unamefield";
if($sexfield!='') $fieldsql .= ",$sexfield";
$dsql->SetQuery("Select $fieldsql From $exptable ");
$dsql->Execute();
$cfg_db_language = $oldchar;
$dsql2 = new DedeSql(false);
$c = 0;
while($row = $dsql->GetArray()){
$userid = addslashes($row[$userfield]);
if($tgtype=='none') $pwd = GetEncodePwd($row[$pwdfield]);
else if($tgtype=='md5'){
if($cfg_md5len < $tgmd5len) $pwd = substr($row[$pwdfield],0,$cfg_md5len);
else $pwd = $row[$pwdfield];
}else if($tgtype=='md5m16'){
$pwd = $row[$pwdfield];
$endtime = GetMkTime($endtime);
$voteitems = "";
$j=0;
for($i=1;$i<=15;$i++)
{
if(!empty(${"voteitem".$i})){
$j++;
$voteitems .= "<v:note id=\\'$j\\' count=\\'0\\'>".${"voteitem".$i}."</v:note>\r\n";
}
}
$dsql = new DedeSql(false);
$inQuery = "
insert into #@__vote(votename,starttime,endtime,totalcount,ismore,votenote)
Values('$votename','$starttime','$endtime','0','$ismore','$voteitems');
";
$dsql->SetQuery($inQuery);
if(!$dsql->ExecuteNoneQuery())
{
$dsql->Close();
ShowMsg("增加投票失败,请检查数据是否非法!","-1");
exit();
}
$dsql->Close();
ShowMsg("成功增加一组投票!","vote_main.php");
exit();
}
$startDay = time();
$endDay = AddDay($startDay,30);
$startDay = GetDateTimeMk($startDay);
$endDay = GetDateTimeMk($endDay);
<?php
require_once(dirname(__FILE__)."/config.php");
CheckPurview('plus_站内新闻发布');
if(empty($dopost)) $dopost = "";
$aid = ereg_replace("[^0-9]","",$aid);
$dsql = new DedeSql(false);
if($dopost=="del")
{
$dsql->SetQuery("Delete From #@__mynews where aid='$aid';");
$dsql->ExecuteNoneQuery();
$dsql->Close();
ShowMsg("成功删除一条站内新闻!","mynews_main.php");
exit();
}
else if($dopost=="editsave")
{
$dsql->SetQuery("Update #@__mynews set title='$title',typeid='$typeid',writer='$writer',senddate='".GetMKTime($sdate)."',body='$body' where aid='$aid';");
$dsql->ExecuteNoneQuery();
$dsql->Close();
ShowMsg("成功更改一条站内新闻!","mynews_main.php");
exit();
}
$myNews = $dsql->GetOne("Select #@__mynews.*,#@__arctype.typename From #@__mynews left join #@__arctype on #@__arctype.ID=#@__mynews.typeid where #@__mynews.aid='$aid';");
require_once(dirname(__FILE__)."/templets/mynews_edit.htm");
ClearAllLink();
?>
<?php
require(dirname(__FILE__)."/config.php");
CheckPurview('sys_MakeHtml');
$dsql = new DedeSql(false);
$cids = '';
$dsql->SetQuery("Select ID From `#@__channeltype` ");
$dsql->Execute();
while($row = $dsql->GetArray())
{
$cids .= ($cids=='' ? $row[0] : ','.$row[0]);
}
if($cids!='')
{
$rs = $dsql->ExecuteNoneQuery("Delete From `#@__arctype` where NOT (channeltype in ($cids));");
if($rs>0){
$dsql->ExecuteNoneQuery("OPTIMIZE TABLE `#@__arctype`;");
UpDateCatCache($dsql);
}
$rs = $dsql->ExecuteNoneQuery("Delete From `#@__full_search` where NOT (channeltype in ($cids));");
if($rs>0) $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `#@__full_search`;");
$rs = $dsql->ExecuteNoneQuery("Delete From `#@__archives` where NOT (channel in ($cids));");
if($rs>0) $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `#@__archives`;");
$rs = $dsql->ExecuteNoneQuery("Delete From `#@__archivesspec` where NOT (channel in ($cids));");
if($rs>0) $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `#@__archivesspec`;");
}
}
}
foreach($topsectors as $topsector){
$sectors[] = $topsector;
foreach($subsectors as $key => $subsector){
if($subsector['reid'] == $topsector['id']){
$sectors[] = $subsector;
unset($subsectors[$key]);
}
}
}
//////////////////////地区数据处理s/////////////////////////////
$sql = "select * from #@__area order by disorder asc,id asc";
$dsql->SetQuery($sql);
$dsql->Execute();
$toparea = $subarea = array();
while($sector = $dsql->GetArray())
{
$areas[$sector['id']] = $sector['name'];
if($sector['reid'] == 0)
{
$toparea[] = $sector;
}else
{
$subarea[] = $sector;
}
}
$areacache = "toparea=new Array();\n\n";
empty($_COOKIE['ENV_GOBACK_URL']) ? $ENV_GOBACK_URL = "article_keywords_main.php" : $ENV_GOBACK_URL=$_COOKIE['ENV_GOBACK_URL'];
if(!isset($aids)){
ShowMsg("你没有选择要更改的东东!",$ENV_GOBACK_URL);
exit();
}
$dsql = new DedeSql(false);
foreach($aids as $aid)
{
$rpurl = ${'rpurl_'.$aid};
$rpurlold = ${'rpurlold_'.$aid};
$keyword = ${'keyword_'.$aid};
//删除项目
if(!empty(${'isdel_'.$aid}))
{
$query = "update #@__full_search set keywords = Replace(keywords,' $keyword ',' ')";
$dsql->SetQuery($query);
$dsql->ExecuteNoneQuery();
$dsql->SetQuery("Delete From #@__keywords where aid='$aid'");
$dsql->ExecuteNoneQuery();
continue;
}
//禁用项目
$staold = ${'staold_'.$aid};
if(!empty(${'isnouse_'.$aid})) $sta = 0;
else $sta = 1;
if($staold!=$sta)
{
$query1 = "update #@__keywords set sta='$sta',rpurl='$rpurl' where aid='$aid' ";
$dsql->SetQuery($query1);
$dsql->ExecuteNoneQuery();
if($sta==0)
}
/*--------------------
function DelChapter()
删除章节信息
-------------------*/
else if($action=='delChapter')
{
$dsql = new DedeSql();
$row = $dsql->GetOne("Select c.bookid,b.booktype From #@__story_chapter c left join #@__story_books b on b.id=c.bookid where c.id='$cid' ");
$bookid = $row['bookid'];
$booktype = $row['booktype'];
$dsql->ExecuteNoneQuery("Delete From #@__story_chapter where id='$cid' ");
//删除图片
if($booktype==1)
{
$dsql->SetQuery("Select bigpic From #@__story_content where bookid='$bookid' ");
$dsql->Execute();
while($row = $dsql->GetArray()){
$bigpic = $row['bigpic'];
if( $bigpic!="" && !eregi('^http://',$bigpic) ) @unlink($cfg_basedir.$bigpic);
}
}
$dsql->ExecuteNoneQuery("Delete From #@__story_content where chapterid='$cid' ");
//更新图书记录
$row = $dsql->GetOne("Select count(id) as dd From #@__story_content where bookid='$bookid' ");
$dsql->ExecuteNoneQuery("Update #@__story_books set postnum='{$row['dd']}' where id='$bookid' ");
$dsql->Close();
ShowMsg("成功删除指定章节!",$ENV_GOBACK_URL);
exit();
exit();
}
header("Content-Type: text/html; charset=utf-8");
$dsql = new DedeSql(false);
$cfg_templets_dir = $cfg_basedir . $cfg_templets_dir;
$channellist = '';
$newartlist = '';
$channellistnext = '';
if (empty($action)) {
$action = 'index';
} elseif ($action != 'list' && $action != 'index' && $action != 'article' && $action != 'allArticle' && $action != 'allList') {
die('action error');
}
//$hostName = '/m';
$hostName = $action == 'index' ? '.' : '..';
//用相对地址
//顶级导航列表
$dsql->SetQuery("Select id,typename From `#@__arctype` where reid=0 And channeltype=1 And ishidden=0 And ispart<>2 order by sortrank limit 0,10");
$dsql->Execute();
$channellist = '<li><a href="' . $hostName . '">首页</a></li>';
while ($row = $dsql->GetObject()) {
$channellist .= "<li><a href='{$hostName}/list/{$row->id}.html'>{$row->typename}</a></li>";
}
//当前时间
$curtime = strftime("%Y-%m-%d %H:%M:%S", time());
//站点名称
$cfg_webname = ConvertStr($cfg_webname);
//主页
if ($action == 'index') {
//最新文章10篇
$dsql->SetQuery("Select id,title,pubdate From `#@__archives` where channel=1 And arcrank = 0 order by pubdate desc limit 0,10");
$dsql->Execute();
while ($row = $dsql->GetObject()) {
ClearAllLink();
ShowMsg("你修改的是系统专用类型的数据,禁止操作!","-1");
exit();
}
//检测数据库是否存在附加表,不存在则新建一个
$tabsql = "CREATE TABLE IF NOT EXISTS `{$row['addtable']}`( `aid` int(11) NOT NULL default '0',\r\n `typeid` int(11) NOT NULL default '0',\r\n ";
if($mysql_version < 4.1)
$tabsql .= " PRIMARY KEY (`aid`), KEY `".$trueTable."_index` (`typeid`)\r\n) TYPE=MyISAM; ";
else
$tabsql .= " PRIMARY KEY (`aid`), KEY `".$trueTable."_index` (`typeid`)\r\n) ENGINE=MyISAM DEFAULT CHARSET=".$cfg_db_language."; ";
$dsql->ExecuteNoneQuery($tabsql);
//检测附加表里含有的字段
$fields = array();
$rs = $dsql->SetQuery("show fields from `{$row['addtable']}`");
$dsql->Execute('a');
while($nrow = $dsql->GetArray('a',MYSQL_ASSOC)){
$fields[ strtolower($nrow['Field']) ] = $nrow['Type'];
}
//修改字段配置信息
$dfvalue = $vdefault;
$isnull = ($isnull==1 ? "true" : "false");
$mxlen = $maxlength;
$fieldname = strtolower($fname);
//检测被修改的字段类型,并更新数据表
$fieldinfos = GetFieldMake($dtype,$fieldname,$dfvalue,$mxlen);
}
}
/*----------------
function __AddMoney()
会员充值
----------------*/
else if($dopost=="addmoney")
{
CheckPurview('member_Edit');
if($fmdo=="yes")
{
$ID = ereg_replace("[^0-9]","",$ID);
$money = ereg_replace("[^0-9]","",$money);
$dsql = new DedeSql(false);
$dsql->SetQuery("update #@__member set money=money+$money where ID='$ID'");
$dsql->ExecuteNoneQuery();
$dsql->Close();
ShowMsg("成功给一个会员充值!",$ENV_GOBACK_URL);
exit();
}
if(empty($upmoney)) $upmoney = 500;
$wintitle = "会员管理-会员充值";
$wecome_info = "<a href='".$ENV_GOBACK_URL."'>会员管理</a>::会员充值";
$win = new OxWindow();
$win->Init("member_do.php","js/blank.js","POST");
$win->AddHidden("fmdo","yes");
$win->AddHidden("dopost",$dopost);
$win->AddHidden("ID",$ID);
$win->AddTitle("会员充值:");
$win->AddMsgItem("请输入充值点数:<input type='text' name='money' size='10' value='$upmoney'>",60);
function upRank()
------------------------*/
else if($dopost=="upRank")
{
//检查权限许可
CheckPurview('t_Edit,t_AccEdit');
//检查栏目操作许可
CheckCatalog($cid,"你无权更改本栏目!");
$dsql = new DedeSql(false);
$row = $dsql->GetOne("Select reID,sortrank From #@__arctype where ID='$cid'");
$reID = $row['reID'];
$sortrank = $row['sortrank'];
$row = $dsql->GetOne("Select sortrank From #@__arctype where sortrank<=$sortrank And reID=$reID order by sortrank desc ");
if(is_array($row)){
$sortrank = $row['sortrank']-1;
$dsql->SetQuery("update #@__arctype set sortrank='$sortrank' where ID='$cid'");
$dsql->ExecuteNoneQuery();
}
$dsql->Close();
ShowMsg("操作成功,返回目录...","catalog_main.php");
exit();
}
else if($dopost=="upRankAll")
{
//检查权限许可
CheckPurview('t_Edit');
$dsql = new DedeSql(false);
$row = $dsql->GetOne("Select ID From #@__arctype order by ID desc");
if(is_array($row))
{
$maxID = $row['ID'];
</td>
</tr>
<tr bgcolor="#FFFFFF">
<td colspan="2" align="center" class="mma">
<table width="98%" border="0" cellspacing="0" cellpadding="0">
<?php
if(!isset($dsql) || !is_object($dsql)){
$dsql = new DedeSql(false);
}
$addQuery = "";
if(!empty($channelid)){
$channelid = ereg_replace("[^0-9]","",$channelid);
$addQuery = " And channelid='$channelid' ";
}
$userNumID = ereg_replace("[^0-9]","",$userNumID);
$dsql->SetQuery("Select * From #@__member_arctype where memberid='$userNumID' $addQuery order by rank desc; ");
$dsql->Execute();
while($menurow = $dsql->GetArray())
{
if($menurow['channelid']==1) $tf = '<img src="img/dd/exe.gif" width="16" height="16">';
else $tf='<img src="img/dd/image.gif" width="16" height="16">';
?>
<tr>
<td align="right" class="mmbb" height="24" width="30%" style="padding-right:6px"><?php echo $tf?></td>
<td class="mmbb">
<a href='member_archives.php?uid=<?php echo $uid?>&channelid=<?php echo $menurow['channelid']?>&mtype=<?php echo $menurow['aid']?>'><?php echo $menurow['typename']?></a>
</td>
</tr>
<?php
}
?>
function pr_str_replace($str)
{
$dsql = new DedeSql(false);
$dsql->SetQuery("SELECT * FROM `#@__str_replace`");
$dsql->Execute();
while ($row = $dsql->GetArray()) {
if ($row['interconvert'] == 1) {
$str = str_replace($row['find'], "@@@@", $str);
$str = str_replace($row['replace'], $row['find'], $str);
$str = str_replace("@@@@", $row['replace'], $str);
} else {
if ($row['interconvert'] == 0) {
$str = str_replace($row['find'], $row['replace'], $str);
}
}
}
return $str;
}
if(!$rs){
$dsql->Close();
ShowMsg("新增变量失败,可能有非法字符!","sys_info.php?gp=$vargroup");
exit();
}
$configfile = dirname(__FILE__)."/../include/config_hand.php";
$configfile_bak = dirname(__FILE__)."/../include/config_hand_bak.php";
if(!is_writeable($configfile)){
$dsql->Close();
ShowMsg("成功保存变量,但由于 $configfile 无法写入,因此不能更新配置文件!","sys_info.php?gp=$vargroup");
exit();
}else{
$dsql->SetQuery("Select varname,value From #@__sysconfig order by aid asc");
$dsql->Execute();
if($dsql->GetTotalRow()<=0){
$dsql->Close();
ShowMsg("成功保存变量但从数据库读取所有数据时失败,无法更新配置文件!","sys_info.php?gp=$vargroup");
exit();
}
copy($configfile,$configfile_bak);
$fp = fopen($configfile,"w");
fwrite($fp,"<"."?php\r\n");
while($row = $dsql->GetArray()){
fwrite($fp,"\${$row['varname']} = '".str_replace("'","\\'",$row['value'])."';\r\n");
}
fwrite($fp,"?".">");
fclose($fp);
$dsql->Close();
CheckPurview('sys_User');
require_once(dirname(__FILE__)."/../include/inc_typelink.php");
if(empty($dopost)) $dopost="";
if($dopost=="add")
{
if(ereg("[^0-9a-zA-Z_@!\.-]",$pwd)){
ShowMsg("用户密码不合法!","-1",0,300);
exit();
}
if(ereg("[^0-9a-zA-Z_@!\.-]",$userid)){
ShowMsg("用户名不合法!","-1",0,300);
exit();
}
$dsql = new DedeSql(false);
$dsql->SetQuery("Select * from `#@__admin` where userid='$userid' Or uname='$uname'");
$dsql->Execute();
$ns = $dsql->GetTotalRow();
if($ns>0){
$dsql->Close();
ShowMsg("用户名或笔名已存在,不允许重复使用!","-1");
exit();
}
$ks = Array();
foreach($typeid as $v){
$vs = explode('-',$v);
if(isset($vs[1])) $t = $vs[1];
else $t = $vs[0];
if(!isset($ks[$vs[0]])) $ks[$t] = 1;
}
$typeid = '';
}
$tb1SqlKey = str_replace('(,','(',$tb1SqlKey).")";
$tb1SqlValue = str_replace('(,','(',$tb1SqlValue).");";
$tb1Sql = $tb1SqlKey.$tb1SqlValue;
if($tablename2!="")
{
$tb2SqlKey = str_replace("(,","(",$tb2SqlKey).")";
$tb2SqlValue = str_replace("(,","(",$tb2SqlValue).");";
$tb2Sql = $tb2SqlKey.$tb2SqlValue;
}
//导出数据的SQL操作
//---------------------------------
$totalpage = $totalcc/$pagesize;
$startdd = ($pageno-1) * $pagesize;
$dsql->SetQuery("Select * From #@__courl where nid='$nid' order by aid asc limit $startdd,$pagesize");
$dsql->Execute();
while($row = $dsql->GetObject())
{
$tmpSql1 = $tb1Sql;
$tmpSql2 = $tb2Sql;
$dtp->LoadString($row->result);
$aid = $row->aid;
if(!is_array($dtp->CTags)){ continue; }
$isbreak = false;
$title = '';
$pubdate = 0;
foreach($dtp->CTags as $ctag)
{
if($ctag->GetName()!="field") continue;
$tvalue = str_replace('#@__',$cfg_dbprefix,$ctag->GetAtt("name"));
echo "<script src='{$cfg_plus_dir}/ad_js.php?aid=$aid' language='javascript'></script>";
exit();
}
else if($dopost=="saveedit")
{
$dsql = new DedeSql(false);
$starttime = GetMkTime($starttime);
$endtime = GetMkTime($endtime);
$query = "
Update #@__myad
set
typeid='$typeid',
adname='$adname',
timeset='$timeset',
starttime='$starttime',
endtime='$endtime',
normbody='$normbody',
expbody='$expbody'
where aid='$aid'
";
$dsql->SetQuery($query);
$dsql->ExecuteNoneQuery();
$dsql->Close();
ShowMsg("成功更改一则广告代码!",$ENV_GOBACK_URL);
exit();
}
$dsql = new DedeSql(false);
$row = $dsql->GetOne("Select * From #@__myad where aid='$aid'");
ClearAllLink();
require_once(dirname(__FILE__)."/templets/ad_edit.htm");
?>
<?php
require_once(dirname(__FILE__)."/config.php");
CheckPurview('sys_Data');
//获取系统存在的表信息
$otherTables = Array();
$dedeSysTables = Array();
$channelTables = Array();
$dsql = new DedeSql(false);
$dsql->SetQuery("Select addtable From #@__channeltype");
$dsql->Execute();
while($row = $dsql->GetObject()){
$channelTables[] = $row->addtable;
}
$dsql->SetQuery("Show Tables");
$dsql->Execute('t');
while($row = $dsql->GetArray('t')){
if(ereg("^{$cfg_dbprefix}",$row[0])||in_array($row[0],$channelTables))
{ $dedeSysTables[] = $row[0]; }
else{ $otherTables[] = $row[0]; }
}
function TjCount($tbname,$dsql){
$row = $dsql->GetOne("Select count(*) as dd From $tbname");
return $row['dd'];
}
$mysql_version = $dsql->GetVersion();
$mysql_versions = explode(".",trim($mysql_version));
$mysql_version = $mysql_versions[0].".".$mysql_versions[1];
function checkUser($username,$userpwd)
{
//只允许用户名和密码用0-9,a-z,A-Z,'@','_','.','-'这些字符
$this->userName = ereg_replace("[^0-9a-zA-Z_@\!\.-]",'',$username);
$this->userPwd = ereg_replace("[^0-9a-zA-Z_@\!\.-]",'',$userpwd);
$pwd = substr(md5($this->userPwd),0,24);
$dsql = new DedeSql(false);
$dsql->SetQuery("Select * From #@__admin where userid='".$this->userName."' limit 0,1");
$dsql->Execute();
$row = $dsql->GetObject();
if(!isset($row->pwd)){
$dsql->Close();
return -1;
}
else if($pwd!=$row->pwd){
$dsql->Close();
return -2;
}
else{
$loginip = GetIP();
$this->userID = $row->ID;
$this->userType = $row->usertype;
$this->userChannel = $row->typeid;
$this->userName = $row->uname;
$groupSet = $dsql->GetOne("Select * From #@__admintype where rank='".$row->usertype."'");
$this->userPurview = $groupSet['purviews'];
$dsql->SetQuery("update #@__admin set loginip='$loginip',logintime='".strftime("%Y-%m-%d %H:%M:%S",time())."' where ID='".$row->ID."'");
$dsql->ExecuteNoneQuery();
$dsql->Close();
return 1;
}
}
//如果更改了文件名,删除旧文件
if($oldfilename!=$filename)
{
$oldfilename = $cfg_basedir.$cfg_cmspath."/".$oldfilename;
if(is_file($oldfilename)) unlink($oldfilename);
}
$inQuery = "
update #@__sgpage set
title='$title',
ismake='$ismake',
filename='$filename',
uptime='$uptime',
body='$body'
where aid='$aid';
";
$dsql->SetQuery($inQuery);
if(!$dsql->ExecuteNoneQuery())
{
$dsql->Close();
ShowMsg("更新页面数据时失败,请检查长相是否有问题!","-1");
exit();
}
$dsql->Close();
$filename = $cfg_basedir.$cfg_cmspath."/".$filename;
if($ismake==1){
$pv = new PartView();
$pv->SetTemplet(stripslashes($body),"string");
$pv->SaveToHtml($filename);
$pv->Close();
}
else{
<?php
require_once dirname(__FILE__) . "/include/common.inc.php";
header("Content-Type: text/html; charset=utf-8");
//header("Content-type:text/vnd.wap.wml");
require_once dirname(__FILE__) . "/include/wap.inc.php";
if (empty($action)) {
$action = 'index';
}
$dsql = new DedeSql(false);
$cfg_templets_dir = $cfg_basedir . $cfg_templets_dir;
$channellist = '';
$newartlist = '';
$channellistnext = '';
//顶级导航列表
$dsql->SetQuery("Select id,typename From `#@__arctype` where reid=0 And channeltype=1 And ishidden=0 And ispart<>2 order by sortrank");
$dsql->Execute();
while ($row = $dsql->GetObject()) {
$channellist .= "<a href='wap.php?action=list&id={$row->id}'>{$row->typename}</a> ";
}
//当前时间
$curtime = strftime("%Y-%m-%d %H:%M:%S", time());
$cfg_webname = ConvertStr($cfg_webname);
//主页
/*------------
function __index();
------------*/
if ($action == 'index') {
//最新文章
$dsql->SetQuery("Select id,title,pubdate From `#@__archives` where channel=1 And arcrank = 0 order by id desc limit 0,10");
$dsql->Execute();
}
$savesql = new DedeSql(false);
foreach ($_POST as $k => $v) {
if (ereg("^edit___", $k)) {
$v = ${$k};
} else {
continue;
}
$k = ereg_replace("^edit___", "", $k);
if (strlen($v) > 250) {
showmsg("{$k} 太长,不能超过250字节", '-1');
exit;
}
$savesql->ExecuteNoneQuery("Update #@__config set `config_value`='{$v}' where `config_name`='{$k}' ");
}
$savesql->SetQuery("Select `config_name`,`config_value` From `#@__config` order by `id` asc");
$savesql->Execute();
if ($savesql->GetTotalRow() <= 0) {
$savesql->Close();
ShowMsg("成功保存变量但从数据库读取所有数据时失败,无法更新配置文件!", "javascript:;");
exit;
}
@copy($configfile, $configfile_bak);
$fp = @fopen($configfile, 'w');
@flock($fp, 3);
@fwrite($fp, "<" . "?php\r\n") or die("配置文件'{$configfile}'不支持写入,本次操作无效!<a href='system_basic.php'>返回</a>");
while ($row = $savesql->GetArray()) {
$row['value'] = str_replace("'", "\\'", $row['config_value']);
fwrite($fp, "\${$row['config_name']} = '" . $row['config_value'] . "';\r\n");
}
fwrite($fp, "?>");
$pv->SetTemplet($cfg_basedir.$cfg_templets_dir."/".$templet);
$pv->Display();
$pv->Close();
}
else if($dopost=="make")
{
header("Content-Type: text/html; charset={$cfg_ver_lang}");
$homeFile = dirname(__FILE__)."/".$position;
$homeFile = str_replace("\\","/",$homeFile);
$homeFile = str_replace("//","/",$homeFile);
$fp = fopen($homeFile,"w") or die("你指定的文件名有问题,无法创建文件");
fclose($fp);
if($saveset==1)
{
$dsql = new DedeSql(false);
$dsql->SetQuery("update #@__homepageset set templet='$templet',position='$position' ");
$dsql->ExecuteNoneQuery();
$dsql->Close();
}
$templet = str_replace("{style}",$cfg_df_style,$templet);
$pv = new PartView();
$pv->SetTemplet($cfg_basedir.$cfg_templets_dir."/".$templet);
$pv->SaveToHtml($homeFile);
$pv->Close();
echo "成功更新主页HTML:".$homeFile;
echo "<br/><br/><a href='$position' target='_blank'>浏览...</a>";
}
$t2 = ExecTime();
echo "<!-- ".($t2-$t1)." -->";
ClearAllLink();
<?php
require(dirname(__FILE__)."/config.php");
CheckPurview('sys_Data');
if(empty($dopost)) $dopost = "";
header("Content-Type: text/html; charset={$cfg_ver_lang}");
$dsql = new DedeSql(false);
if($dopost=="viewinfo") //查看表结构
{
if(empty($tablename)) echo "没有指定表名!";
else{
$dsql->SetQuery("SHOW CREATE TABLE ".$dsql->dbName.".".$tablename);
$dsql->Execute();
$row2 = $dsql->GetArray();
$ctinfo = $row2[1];
echo "<xmp>".trim($ctinfo)."</xmp>";
}
$dsql->Close();
exit();
}
else if($dopost=="opimize") //优化表
{
if(empty($tablename)) echo "没有指定表名!";
else{
$dsql->ExecuteNoneQuery("OPTIMIZE TABLE `$tablename` ");
$dsql->Close();
echo "执行优化表: $tablename OK!";
}
exit();
}else if($dopost=="repair") //修复表
{
if(empty($tablename)) echo "没有指定表名!";
<?php
require_once(dirname(__FILE__)."/config.php");
empty($_COOKIE['ENV_GOBACK_URL']) ? $ENV_GOBACK_URL = "-1" : $ENV_GOBACK_URL=$_COOKIE['ENV_GOBACK_URL'];
CheckPurview('sys_Keyword');
$keyword = trim($keyword);
$rank = ereg_replace("[^0-9]","",$rank);
if(ereg(" ",$keyword)||$keyword=="")
{
ShowMsg("关键字不能带有空格或为空!",-1);
exit();
}
$dsql = new DedeSql(false);
$row = $dsql->GetOne("Select * From #@__keywords where keyword like '$keyword'");
if(is_array($row))
{
$dsql->Close();
ShowMsg("关键字已存在库中!","-1");
exit();
}
$inquery = "
INSERT INTO #@__keywords(keyword,rank,sta,rpurl) VALUES ('$keyword','$rank','1','$rpurl');
";
$dsql->SetQuery($inquery);
$dsql->ExecuteNoneQuery();
ClearAllLink();
ShowMsg("成功增加一个关键字!",$ENV_GOBACK_URL);
?>
if($status == 1) $whereSql .= " and membertype=0";
if($keyword!=""){
$whereSql .= " And (userid like '%$keyword%' Or uname like '%$keyword%') ";
}
$attform = "";
if(!empty($att)){
if($att=="ad"){
$attform = "<option value='ad'>被推荐会员</option>\r\n";
$whereSql .= " And matt=1 ";
}
}
$MemberTypes = "";
$dsql->SetQuery("Select rank,membername From #@__arcrank where rank>0");
$dsql->Execute();
$MemberTypes[0] = '未审核会员';
while($row = $dsql->GetObject()){
$MemberTypes[$row->rank] = $row->membername;
}
$dsql->SetQuery("Select id,name From #@__area");
$dsql->Execute();
while($row = $dsql->GetObject()){
$Areas[$row->id] = $row->name;
}
function GetMemberName($rank)
{
global $MemberTypes;
if(isset($MemberTypes[$rank])){
return $MemberTypes[$rank];
if($eid!=0) $addquery = " And aid<='$eid' ";
$tjQuery = "Select count(*) as dd From #@__full_search where channelid='{$channel}' $addquery";
$row = $dsql->GetOne($tjQuery);
$totalnum = $row['dd'];
}
if($totalnum > 0){
$addquery = "";
if($sid!=0) $addquery = " And maintable.ID>='$sid' ";
if($eid!=0) $addquery = " And maintable.ID<='$eid' ";
$fquery = "
Select maintable.ID,maintable.title,maintable.description,addtable.{$rpfield} as body
From $maintable maintable left join {$addtable} addtable on addtable.aid=maintable.ID
where maintable.channel='{$channel}' $addquery limit $startdd,$pagesize ;
";
$dsql->SetQuery($fquery);
$dsql->Execute();
while($row=$dsql->GetArray())
{
$body = $row['body'];
$description = $row['description'];
if(strlen($description)>10 || $description=='-') continue;
$bodytext = preg_replace("/#p#|#e#|副标题|分页标题/isU","",Html2Text($body));
if(strlen($bodytext) < $msize) continue;
$des = trim(addslashes(cn_substr($bodytext,$dsize)));
if(strlen($des)<3) $des = "-";
$dsql->ExecuteNoneQuery("Update $maintable set description='{$des}' where ID='{$row['ID']}';");
$dsql->ExecuteNoneQuery("Update #@__full_search set addinfos='{$des}' where aid='{$row['ID']}';");
}
//返回进度信息
$startdd = $startdd + $pagesize;
for(;$startID<=$endID;$startID++)
{
$query = "";
$ID = ${"ID_".$startID};
$name = ${"name_".$startID};
$rank = ${"rank_".$startID};
$money = ${"money_".$startID};
if(isset(${"check_".$startID})){
if($rank>0) $query = "update #@__arcrank set membername='$name',money='$money',rank='$rank' where ID='$ID'";
}
else{
$query = "Delete From #@__arcrank where ID='$ID' And rank<>10";
}
if($query!=""){
$dsql->SetQuery($query);
$dsql->ExecuteNoneQuery();
}
}
if(isset($check_new))
{
if($rank_new>0 && $name_new!="" && $money_new!=""){
$dsql->SetQuery("Insert Into #@__arcrank(rank,membername,adminrank,money) Values('$rank_new','$name_new','5','$money_new')");
$dsql->ExecuteNoneQuery();
}
}
header("Content-Type: text/html; charset={$cfg_ver_lang}");
echo "<script> alert('成功更新会员等级表!'); </script>";
}
require_once(dirname(__FILE__)."/templets/member_rank.htm");
