if (strlen($form_password2) < 6 || strlen($form_password2) > 20) { callmsg("“确认新密码”请控制在2~20字节以内。", "-1"); } if ($form_password1 != $form_password2) { callmsg("两次密码输入不一样,请重试!", "-1"); } $password = trimm($form_password1); $password = md5($password); $old_password = md5($old_password); $rt = $db->query("SELECT id FROM " . __TBL_MAIN__ . " WHERE id='{$cook_userid}' AND password='******'"); if (!$db->num_rows($rt)) { callmsg("旧密码验证错误,提交失败!", "-1"); } $db->query("UPDATE " . __TBL_MAIN__ . " SET password='******' WHERE id='{$cook_userid}'"); setcookie("cook_password", $password, null, "/", $Global['m_cookdomain']); callmsg("修改成功!", "-1"); } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_titile']; ?> </title> <link href="my.css" rel="stylesheet" type="text/css"> <style type="text/css"> ul {width:754px;height:28px;margin-left:28px;margin-top:15px;background-image:url(images/sontgg.gif);padding-left:16px;display:block;} ul li {float:left;width:68px;height:26px;border:#CCE1B5 1px solid;margin-right:11px;text-align:center;line-height:26px;} ul li a:link,li a:active,li a:visited{width:68px;display:block;text-decoration:none;color:#333;background:#fff;}
if ($db->num_rows($rt)) { $ifnext = false; $varmsg .= "�� ���û����Ѿ���ע�ᣬ��ѡ�������û�����"; } if (!$ifnext) { unset($_SESSION["supdesverify"]); setcookie("cook_userid", "", null, "/", $Global['m_cookdomain']); setcookie("cook_username", "", null, "/", $Global['m_cookdomain']); setcookie("cook_nickname", "", null, "/", $Global['m_cookdomain']); setcookie("cook_password", "", null, "/", $Global['m_cookdomain']); setcookie("cook_grade", "", null, "/", $Global['m_cookdomain']); setcookie("cook_sex", "", null, "/", $Global['m_cookdomain']); setcookie("cook_photo_s", "", null, "/", $Global['m_cookdomain']); setcookie("cook_if2", "", null, "/", $Global['m_cookdomain']); setcookie("cook_stealth", "", null, "/", $Global['m_cookdomain']); callmsg($varmsg, "-1"); } else { $form_username = trim($form_username); $password = trimm($form_password1); $password = md5($password); $regtime = date("Y-m-d H:i:s"); $regip = getip(); $db->query("INSERT INTO " . __TBL_MAIN__ . " (username,nickname,password,loveb,regtime,regip,logintime,loginip,sex,birthday,love,kind,area1,area2,email,yctel) VALUES ('{$form_username}','{$form_username}','{$password}','" . $Global['m_regloveb'] . "','{$regtime}','{$regip}','{$regtime}','{$regip}','{$form_sex}','{$form_birthday}','{$form_love}','{$form_kind}','{$province}','{$city}','{$form_email}','{$yctel}')"); $tmpid = $db->insert_id(); if (empty($stealth)) { $stealth = 0; } setcookie("cook_userid", $tmpid, null, "/", $Global['m_cookdomain']); setcookie("cook_username", $form_username, null, "/", $Global['m_cookdomain']); setcookie("cook_nickname", $form_username, null, "/", $Global['m_cookdomain']); setcookie("cook_grade", 1, null, "/", $Global['m_cookdomain']);
} } // if ($submitok == "jc") { if (!ereg("^[0-9]{1,10}\$", $classid) || empty($classid)) { callmsg("Forbidden!", "-1"); } $rt = $db->query("SELECT senduserid FROM " . __TBL_FRIEND__ . " WHERE id=" . $classid); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $tmpsenduserid = $row[0]; } else { callmsg("Forbidden!", "-1"); } if ($cook_userid !== $tmpsenduserid) { callmsg("Forbidden!", "-1"); } $db->query("DELETE FROM " . __TBL_FRIEND__ . " WHERE id=" . $classid); header("Location: b_blacklist.php"); } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"><head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_titile']; ?> </title> <link href="my.css" rel="stylesheet" type="text/css"> <style type="text/css"> /* main1 */
imagefill($nimage, 0, 0, $white); switch ($iinfo[2]) { case 1: $simage = imagecreatefromgif($destination); break; case 2: $simage = imagecreatefromjpeg($destination); break; case 3: $simage = imagecreatefrompng($destination); break; case 6: $simage = imagecreatefromwbmp($destination); break; default: callmsg("不支持的文件类型", "-1"); } imagecopy($nimage, $simage, 0, 0, 0, 0, $image_size[0], $image_size[1]); $simage1 = imagecreatefrompng($waterimg); imagecopy($nimage, $simage1, $image_size[0] - 160, $image_size[1] - 70, 0, 0, 160, 70); imagedestroy($simage1); switch ($iinfo[2]) { case 1: imagegif($nimage, $destination); break; case 2: imagejpeg($nimage, $destination); break; case 3: imagepng($nimage, $destination); break;
if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $title = $row[0]; $kind = $row[1]; $hdtime = $row[2]; $address = $row[3]; $jtlx = $row[4]; $num_n = $row[5]; $num_r = $row[6]; $rmb_n = $row[7]; $rmb_r = $row[8]; $tbsm = $row[9]; $jzbmtime = $row[10]; $content = stripslashes($row[11]); } else { callmsg("该活动不存在或已被删除!", "-1"); exit; } } ?> <script language="javascript" src="/gyleditor/gyleditor.js"></script> <script language="javascript"> function chkform(){ if(document.FORM.title.value.length<6 || document.FORM.title.value.length>100) { alert('活动名称请控制 6~100 字节!'); document.FORM.title.focus(); return false; } if(document.FORM.kind.value.length<2 || document.FORM.kind.value.length>100) {
if (strlen($c10) < 2 || strlen($c10) > 250) { callmsg("“什么比较能调动你的兴致”请控制在2~127字内。", "-1"); } if (strlen($c11) < 2 || strlen($c11) > 250) { callmsg("“你能够接受(和你的伴侣):”请控制在2~127字内。", "-1"); } $rt = $db->query("SELECT userid FROM " . __TBL_MAIN_DATA__ . " WHERE userid=" . $cook_userid); if (!$db->num_rows($rt)) { $db->query("INSERT INTO " . __TBL_MAIN_DATA__ . " (userid,c1,c2,c3,c4,c5,c6,c7,c8,c9,c10,c11) VALUES ('{$cook_userid}','{$c1}','{$c2}','{$c3}','{$c4}','{$c5}','{$c6}','{$c7}','{$c8}','{$c9}','{$c10}','{$c11}')"); } else { $db->query("UPDATE " . __TBL_MAIN_DATA__ . " SET c1='{$c1}',c2='{$c2}',c3='{$c3}',c4='{$c4}',c5='{$c5}',c6='{$c6}',c7='{$c7}',c8='{$c8}',c9='{$c9}',c10='{$c10}',c11='{$c11}',ifmod=0 WHERE userid='{$cook_userid}'"); } callmsg("修改成功!", "a8.php"); } elseif ($submitok == "emptyupdate") { $db->query("UPDATE " . __TBL_MAIN_DATA__ . " SET c1=0,c2=0,c3=0,c4=0,c5=0,c6=0,c7=0,c8='',c9='',c10='',c11='' WHERE userid=" . $cook_userid); callmsg("已经清空,你的个人主页将不再显示此类型资料,想要恢复显示请重新修改!", "a7.php"); } $rt = $db->query("SELECT c1,c2,c3,c4,c5,c6,c7,c8,c9,c10,c11 FROM " . __TBL_MAIN_DATA__ . " WHERE userid=" . $cook_userid); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_titile']; ?> </title> <link href="my.css" rel="stylesheet" type="text/css">
if (!$rows) { break; } $uid = $rows[0]; $ugrade = $rows[1]; $uif2 = $rows[2]; if (($uif2 == 2 || $uif2 == 3 || $uif2 == 4) && $ugrade >= 3) { $content = "上传了一张照片<a href=" . $Global['up_2domain'] . "/photo/" . $path_b . " target=_blank class=uDF2C91><img src=" . $Global['up_2domain'] . "/photo/" . $path_s . " width=40 height=30 align=absmiddle hspace=5>点击查看</a>"; $addtime = strtotime("now"); $db->query("INSERT INTO " . __TBL_FRIEND_NEWS__ . " (userid,senduserid,content,addtime) VALUES ({$uid},{$cook_userid},'{$content}',{$addtime})"); } } } } //upload end callmsg("上传成功!请等待客服审核,通过后方可设置形象照和在个人主页显示。", "c_photo_list.php"); } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_sitetitle']; ?> </title> <link href="my.css" rel="stylesheet" type="text/css"> <style type="text/css"> /* main1 */ .main1 {width:754px;height:28px;margin-left:28px;overflow:hidden;margin-top:15px;background-image:url(images/sontgg.gif);padding-left:16px;z-index: 100;} .main1_tselect {float:left;width:74px;height:27px;background:#F0FAE9;border-left:#CCE1B5 1px solid;border-top:#CCE1B5 1px solid;border-right:#CCE1B5 1px solid;margin-right:11px;text-align:center;line-height:26px;color:#6F9F00;}
<?php require_once '../sub/init.php'; require_once wrzc_net . 'sub/conn.php'; if (!ereg("^[0-9]{1,9}\$", $uid) || empty($uid)) { callmsg("Forbidden", "-1"); } if (!ereg("^[0-9]{1,9}\$", $cook_userid) || empty($cook_userid)) { callmsg("Forbidden", "-1"); } $db->query("DELETE FROM " . __TBL_CHATIF__ . " WHERE (senduserid={$cook_userid} AND userid={$uid}) OR (senduserid={$uid} AND userid={$cook_userid})"); callmsg("已经成功拒绝了Ta的这次聊天请求!", "0"); exit; ob_end_flush();
} // end ugrade } } // header("Location: my"); } } elseif ($submitok == "checkuseradmin") { if (!ereg("^[0-9]{1,9}\$", $uid) || $uid == 0) { callmsg("Forbidden1!", "-1"); } $password = trim($pwd); require_once wrzc_net . 'sub/conn.php'; $rt = $db->query("SELECT id,username,nickname,grade,password,sex,logintime,photo_s,if2 FROM " . __TBL_MAIN__ . " WHERE id=" . $uid . " AND password='******' AND flag>0"); if (!$db->num_rows($rt)) { callmsg("● 用户名/密码错误!\\n● 或用户名不存在或已被删除或锁定!", "-1"); } else { $row = $db->fetch_array($rt); setcookie("cook_userid", $row[0], null, "/", $Global['m_cookdomain']); setcookie("cook_username", $row[1], null, "/", $Global['m_cookdomain']); setcookie("cook_nickname", $row[2], null, "/", $Global['m_cookdomain']); setcookie("cook_grade", $row[3], null, "/", $Global['m_cookdomain']); setcookie("cook_password", $row[4], null, "/", $Global['m_cookdomain']); setcookie("cook_sex", $row[5], null, "/", $Global['m_cookdomain']); setcookie("cook_photo_s", $row[7], null, "/", $Global['m_cookdomain']); setcookie("cook_if2", $row[8], null, "/", $Global['m_cookdomain']); setcookie("cook_stealth", 0, "/", $Global['m_cookdomain']); setcookie("m_sitename", $Global['m_sitename'], null, "/", $Global['m_cookdomain']); setcookie("home_2domain", $Global['home_2domain'], null, "/", $Global['m_cookdomain']); $tmpurl = empty($tmpurl) ? '' : $tmpurl; header("Location: my/?{$tmpurl}");
} else { $cook_password = trimm($cook_password); $rt = $db->query("SELECT aboutus FROM " . __TBL_MAIN__ . " WHERE id='{$cook_userid}' AND password='******' AND flag>0"); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); } else { header("Location: " . $Global['www_2domain'] . "/login.php"); exit; } } if ($submitok == "modupdate") { if (strlen($aboutus) > 500 || strlen($aboutus) < 20) { callmsg("内心独白(长度限20~500个字节之间或10~250个汉字之间)", "-1"); } $db->query("UPDATE " . __TBL_MAIN__ . " SET aboutus='{$aboutus}',ifmod=0 WHERE id='{$cook_userid}'"); callmsg("修改成功!", "a4.php"); } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_titile']; ?> </title> <link href="my.css" rel="stylesheet" type="text/css"> <style type="text/css"> /* main1 */ .main1 {width:754px;height:28px;margin-left:28px;overflow:hidden;margin-top:15px;background-image:url(images/sontgg.gif);padding-left:16px;} .main1_tselect {float:left;width:70px;height:27px;background:#F0FAE9;border-left:#CCE1B5 1px solid;border-top:#CCE1B5 1px solid;border-right:#CCE1B5 1px solid;margin-right:11px;text-align:center;line-height:26px;color:#6F9F00;}
if ($submitok == "mod") { if (!ereg("^[0-9]{1,8}\$", $fid) || empty($fid)) { callmsg("请求错误,该贴子不存在或已被删除!", "-1"); } $rt = $db->query("SELECT bkid,title,content,userid FROM " . __TBL_GROUP_WZ__ . " WHERE id=" . $fid); if ($db->num_rows($rt)) { $row_wz = $db->fetch_array($rt); $userid_wz = $row_wz[3]; if ($userid_wz !== $cook_userid && $authority_main == "NO") { callmsg("请求错误,没有操作权限!", "-1"); } $bkid_wz = $row_wz[0]; $title_wz = $row_wz[1]; $content_wz = $row_wz[2]; } else { callmsg("请求错误,该贴子不存在或已被删除1!", "-1"); exit; } } ?> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $maintitle; if ($submitok == "mod") { echo " >> 修改贴子"; } else { echo " >> 发表贴子"; } ?>
<br /> <?php if ($submitok == "mod") { if (!ereg("^[0-9]{1,8}\$", $fid) || $fid == 0) { callmsg("Forbidden!", "-1"); } else { $rt = $db->query("SELECT * FROM " . __TBL_DATING__ . " WHERE id='{$fid}'"); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $year8 = date_format2($row['yhtime'], '%Y'); $month8 = date_format2($row['yhtime'], '%m'); $day8 = date_format2($row['yhtime'], '%d'); $hour8 = date_format2($row['yhtime'], '%H'); $minute8 = date_format2($row['yhtime'], '%M'); } else { callmsg("����Ϣ�����ڻ��ѱ�ɾ����", "./"); exit; } } ?> <table width="495" border="0" align="center" cellpadding="8" cellspacing="0" bgcolor="#FFFFFF" style="color:#666;"> <form action="e_dating_list.php" method="post" name=www_wrzc_net_com onsubmit="return chkform()" > <tr> <td height="30" colspan="2" align="left" valign="bottom" style="border-bottom:#ddd 1px solid;"><b><font color="DF2C91">�ҵ�Լ�ᰲ��</font></b></td> </tr> <tr> <td width="77" align="right"><span class="dt3">Լ������:</span></td> <td width="386" align="left"><span class="col"> <select name="kind" id="kind"> <option value="0" <?php if ($row['kind'] == 0) {
$db->query("UPDATE " . __TBL_GROUP_WZ__ . " SET ifjh=0 WHERE id=" . $fid); header("Location: read" . $fid . ".html"); break; case 'delupdate': $rt = $db->query("SELECT COUNT(*) FROM " . __TBL_GROUP_WZ_BBS__ . " WHERE fid=" . $fid); $row = $db->fetch_array($rt); $tmpcnt = $row[0]; $db->query("DELETE FROM " . __TBL_GROUP_WZ_BBS__ . " WHERE fid=" . $fid); $db->query("DELETE FROM " . __TBL_GROUP_WZ__ . " WHERE id=" . $fid); $deloveb = $Global['m_group_add']; $db->query("UPDATE " . __TBL_GROUP_MAIN__ . " SET wznum=wznum-1,bbsnum=bbsnum-" . $tmpcnt . ",qloveb=qloveb-" . $deloveb . " WHERE id=" . $mainid); header("Location: article.php?mainid=" . $mainid . "&bkid=" . $bkid . "&bktitle=" . $bktitle); break; case 'flag1': $db->query("UPDATE " . __TBL_GROUP_WZ__ . " SET flag=1 WHERE id=" . $fid); header("Location: read" . $fid . ".html"); break; case 'bbsdelupdate': $deloveb = $Global['m_group_bbsadd']; $db->query("UPDATE " . __TBL_GROUP_WZ_BBS__ . " SET flag=0,content='' WHERE id=" . $bbsid); $db->query("UPDATE " . __TBL_GROUP_MAIN__ . " SET qloveb=qloveb-" . $deloveb . " WHERE id=" . $mainid); header("Location: read.php?fid=" . $fid . "&p=" . $p); break; case 'bbsclubdelupdate': $db->query("UPDATE " . __TBL_GROUP_CLUB_BBS__ . " SET flag=0,content='' WHERE id=" . $bbsid); header("Location: partyshow.php?fid=" . $fid . "&p=" . $p); break; } } callmsg("请求错误,没有操作权限!", "-1");
<?php require_once "../sub/init.php"; if (!ereg("^[0-9]{1,8}\$", $mainid) && !empty($mainid)) { callmsg("请求错误,该群组不存在或已被锁定或已被删除1!", "-1"); } if (!ereg("^[0-9]{1,8}\$", $fid) || empty($fid)) { callmsg("请求错误,该信息不存在或已被删除!", "-1"); } require_once wrzc_net . 'sub/conn.php'; $rt = $db->query("SELECT mainid,title,flag,bmnum FROM " . __TBL_GROUP_CLUB__ . " WHERE flag>0 AND id=" . $fid); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $mainid = $row['mainid']; $title = htmlout(stripslashes($row['title'])); $flag = $row['flag']; $bmnum = $row['bmnum']; } else { echo " <font color='#999999' style='font-size: 9pt'>" . $Global['m_sitename'] . "( <a href=" . $Global['www_2domain'] . ">" . $Global['www_2domain'] . "</a> )提示:</FONT><BR><BR> <font color='#FF0000' style='font-size: 9pt'>请求错误,该信息不存在或已被删除!</FONT><BR><BR><p align=center><input onclick='history.back();' type='button' value='返回'></p>"; exit; } $rt = $db->query("SELECT mbkind,title FROM " . __TBL_GROUP_MAIN__ . " WHERE id=" . $mainid . " AND flag=1"); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $mbkind = $row['mbkind']; $maintitle = stripslashes($row['title']); } else { echo " <font color='#999999' style='font-size: 9pt'>" . $Global['m_sitename'] . "( <a href=" . $Global['www_2domain'] . ">" . $Global['www_2domain'] . "</a> )提示:</FONT><BR><BR> <font color='#FF0000' style='font-size: 9pt'>请求错误,该群组不存在或已被锁定或已被删除!</FONT><BR><BR><p align=center><input onclick='history.back();' type='button' value='返回'></p>"; exit; } ?>
callmsg("Forbidden", "-1"); } $addtime = date("Y-m-d H:i:s"); $rt = $db->query("SELECT userid,xsloveb FROM " . __TBL_ASK__ . " WHERE flag=1 AND id=" . $fid); if (!$db->num_rows($rt)) { callmsg("该问题不存在或已被删除或已被处理!", "-1"); } $row = $db->fetch_array($rt); if ($row[0] !== $cook_userid) { callmsg("Forbidden", "-1"); } $addbestloveb = $row[1]; $addbestloveb = $addbestloveb + $Global['m_askloveb']; $rt = $db->query("SELECT userid FROM " . __TBL_ASK_BBS__ . " WHERE id=" . $bbsid); if (!$db->num_rows($rt)) { callmsg("该回答不存在或已被删除!", "0"); } $row = $db->fetch_array($rt); $adduserid = $row[0]; //$addnickname = $row[1]; $db->query("UPDATE " . __TBL_ASK__ . " SET flag=2 WHERE id=" . $fid); $db->query("UPDATE " . __TBL_ASK_BBS__ . " SET ifbest=1 WHERE id=" . $bbsid); $db->query("UPDATE " . __TBL_MAIN__ . " SET loveb=loveb+" . $addbestloveb . " WHERE id=" . $adduserid); $db->query("INSERT INTO " . __TBL_LOVEBHISTORY__ . " (userid,username,content,num,addtime) VALUES ('{$adduserid}','{$addnickname}','回答被评最佳答案+系统奖励{$tmploveb}','{$addbestloveb}','{$addtime}')"); header("Location: detail_bbs.php?fid=" . $fid . "&p=" . $p); break; default: $rt = $db->query("SELECT userid,xsloveb,flag FROM " . __TBL_ASK__ . " WHERE id=" . $fid); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $userid = $row[0];
if ($memberid !== $cook_userid) { callmsg("Forbidden!", "-1"); } } else { callmsg("Forbidden!", "-1"); } if (!ereg("^[0-9]{1,5}\$", $jjloveb) && !empty($jjloveb)) { callmsg("竞价love币必须填5位数以内的正整数或0", "-1"); } $jjloveb = intval(abs($jjloveb)); if ($jjloveb > $data_loveb) { callmsg("抱歉!你的Love币不足,竞价失败!请先获取Love币后再来申请!", "k_getloveb.php"); } else { $db->query("UPDATE " . __TBL_DATING__ . " SET jjloveb=" . $jjloveb . " WHERE id=" . $fid); } callmsg("恭喜!竞价成功。你出的价为:" . $jjloveb . "个Love币", "e_dating_price.php"); } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_sitetitle']; ?> </title> <link href="my.css" rel="stylesheet" type="text/css"> <style type="text/css"> /* .main1 */ .main1 {width:754px;height:28px;margin-left:28px;overflow:hidden;margin-top:15px;background-image:url(images/sontgg.gif);padding-left:16px;z-index: 100;} .main1_tselect {float:left;width:84px;height:27px;background:#F0FAE9;border-left:#CCE1B5 1px solid;border-top:#CCE1B5 1px solid;border-right:#CCE1B5 1px solid;margin-right:11px;text-align:center;line-height:26px;color:#6F9F00;}
if ($submitok == 'addupdate') { // if (!ereg("^[0-9]{1,8}\$", $cook_userid) || empty($cook_userid)) { header("Location: " . $Global['www_2domain'] . "/login.php"); exit; } else { $cook_password = trimm($cook_password); $rt = $db->query("SELECT id FROM " . __TBL_MAIN__ . " WHERE id='{$cook_userid}' AND password='******' AND flag>0"); if (!$db->num_rows($rt)) { header("Location: " . $Global['www_2domain'] . "/login.php"); exit; } } // if (strlen($content) < 2 || strlen($content) > 500) { callmsg("“祝福内容”请控制在2~500字节以内。", "-1"); } $addtime = date("Y-m-d H:i:s"); $nicknamesexgradephoto_s = $cook_nickname . "|" . $cook_sex . "|" . $cook_grade . "|" . $cook_photo_s; $db->query("INSERT INTO " . __TBL_STORY_BBS__ . " (fid,content,userid,nicknamesexgradephoto_s,addtime) VALUES ('{$fid}','{$content}','{$cook_userid}','{$nicknamesexgradephoto_s}','{$addtime}')"); $db->query("UPDATE " . __TBL_STORY__ . " SET bbsnum=bbsnum+1 WHERE id='{$fid}'"); //header("Location: detail.php?fid=".$fid); header("Location: detail.php?fid=" . $fid . "&p=" . $redirectpage . "#content"); } $rt = $db->query("SELECT userid,nicknamesexgradephoto_s,userid2,nicknamesexgradephoto_s2,sussflag,title,content,addtime,bbsnum,picurl_s FROM " . __TBL_STORY__ . " WHERE flag=1 AND id=" . $fid); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $title = htmlout(stripslashes($row['title'])); $content = htmlout(stripslashes($row['content'])); $bbsnum = $row['bbsnum']; $sussflag = $row['sussflag'];
imagedestroy($simage); } //大图水结束 $addtime = date("Y-m-d H:i:s"); $db->query("INSERT INTO " . __TBL_STORY_PHOTO__ . " (fid,title,path_s,path_b,addtime) VALUES ('{$fid}','{$title}','{$path_s}','{$path_b}','{$addtime}')"); $tmpphotoid = $db->insert_id(); $rt = $db->query("SELECT picurl_s FROM " . __TBL_STORY__ . " WHERE id=" . $fid); $total = $db->num_rows($rt); if ($total > 0) { $row = $db->fetch_array($rt); if (empty($row[0])) { $db->query("UPDATE " . __TBL_STORY__ . " SET picurl_s='{$path_s}' WHERE id='{$fid}'"); $db->query("UPDATE " . __TBL_STORY_PHOTO__ . " SET ifmain=1 WHERE id='{$tmpphotoid}'"); } } else { callmsg("成功故事参数错误1!!", "-1"); } } //upload end header("Location: g_story_photo_list.php?fid=" . $fid . "&storytitle=" . $storytitle); } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_titile']; ?> </title> <link href="my.css" rel="stylesheet" type="text/css">
} if (!empty($car)) { $tempsql .= " car='{$car}' AND "; } if (!empty($edu)) { $tempsql .= " edu='{$edu}' AND "; } if (!empty($pay)) { $tempsql .= " pay='{$pay}' AND "; } if (!empty($field)) { $tempsql .= " field='{$field}' AND "; } if (!empty($job)) { $tempsql .= " job='{$job}' AND "; } if (!empty($smoking)) { $tempsql .= " smoking='{$smoking}' AND "; } if (!empty($drink)) { $tempsql .= " drink='{$drink}' AND "; } $searchsql .= $tempsql . " flag > 0 ORDER BY rand() LIMIT 1"; $rt = $db->query($searchsql); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $userid = $row[0]; header("Location: " . $Global['home_2domain'] . "/" . $userid); } else { callmsg("没有找到符合你条件的Ta!", "0"); }
<?php require_once "../sub/init.php"; if (!ereg("^[0-9]{1,8}\$", $mainid) || empty($mainid)) { callmsg("请求错误,该圈子不存在或已被锁定或已被删除1!", "-1"); } require_once wrzc_net . 'sub/conn.php'; $rt = $db->query("SELECT mbkind,title,userid,userid1,userid2,userid3 FROM " . __TBL_GROUP_MAIN__ . " WHERE id=" . $mainid . " AND flag=1"); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $mbkind = $row['mbkind']; $maintitle = stripslashes($row['title']); $userid_main = $row['userid']; $userid1_main = $row['userid1']; $userid2_main = $row['userid2']; $userid3_main = $row['userid3']; } else { echo " <font color='#999999' style='font-size: 9pt'>" . $Global['m_sitename'] . "( <a href=" . $Global['www_2domain'] . ">" . $Global['www_2domain'] . "</a> )提示:</FONT><BR><BR> <font color='#FF0000' style='font-size: 9pt'>请求错误,该圈子不存在或已被锁定或已被删除!</FONT><BR><BR><p align=center><input onclick='history.back();' type='button' value='返回'></p>"; exit; } ?> <html> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /><title><?php echo $maintitle; ?> 圈子成员</title><link href="images/<?php echo $mbkind; ?> /group.css" rel="stylesheet" type="text/css"><meta http-equiv="Content-Type" content="text/html; charset=gb2312"></head><body leftmargin="0" topmargin="0" marginwidth="0" marginheight="0"><table width="980" height="62" border="0" align="center" cellpadding="0" cellspacing="0" style="border-top:#cccccc 1px solid;"><tr><td valign="bottom" style="padding-top:2px;color:#cccccc;" class=tdbg2><img src="images/home.gif" hspace="5" vspace="2" align="absmiddle"><a href="<?php echo $Global['www_2domain'];
echo "<img src=images/ding.gif alt=固顶贴>"; } ?> <?php $userid_bk = "NO"; if ($ifin == 0) { $rtbk = $db->query("SELECT userid FROM " . __TBL_GROUP_BK__ . " WHERE id=" . $rows['bkid']); if ($db->num_rows($rtbk)) { $rowbk = $db->fetch_array($rtbk); $userid_bk = $rowbk[0]; if (!ereg("^[0-9]{1,8}\$", $userid_bk) || empty($userid_bk)) { $userid_bk = "NO"; } } else { callmsg("版块验证失败!", "-1"); } if ($authority_main == "OK" || $userid_bk == $cook_userid) { echo "<a href=read" . $rows['id'] . ".html class=333333>"; echo "<img src=images/dian.gif hspace=6 align=absmiddle border=0>" . $wztitle; echo "</a>"; } else { $rt2 = $db->query("SELECT COUNT(*) FROM " . __TBL_GROUP_USER__ . " WHERE userid='{$cook_userid}' AND mainid=" . $mainid . " AND flag=1"); $row2 = $db->fetch_array($rt2); if ($row2[0] == 1) { echo "<a href=read" . $rows['id'] . ".html class=333333>"; echo "<img src=images/dian.gif hspace=6 align=absmiddle border=0>" . $wztitle; echo "</a>"; } else { echo "<img src=images/dian.gif hspace=6 align=absmiddle border=0><font color=#999999>" . $wztitle; }
callmsg("Forbidden!", "-1"); } if (!ereg("^[0-9]{1,2}\$", $field) && !empty($field)) { callmsg("Forbidden!", "-1"); } if (!ereg("^[0-9]{1,2}\$", $job) && !empty($job)) { callmsg("Forbidden!", "-1"); } if (!ereg("^[0-9]{1,2}\$", $smoking) && !empty($smoking)) { callmsg("Forbidden!", "-1"); } if (!ereg("^[0-9]{1,2}\$", $drink) && !empty($drink)) { callmsg("Forbidden!", "-1"); } $db->query("UPDATE " . __TBL_REQUEST__ . " SET sex='{$sex}',photo_s='{$photo_s}',video_s='{$video_s}',ifphoto='{$ifphoto}',ifbirthday='{$ifbirthday}',ifheigh='{$ifheigh}',ifedu='{$ifedu}',iflove='{$iflove}',ifpay='{$ifpay}',ifhouse='{$ifhouse}',ifcar='{$ifcar}',birthday1='{$birthday1}',birthday2='{$birthday2}',kind='{$kind}',area1='{$province}',area2='{$city}',area3='{$province2}',area4='{$city2}',love='{$love}',heigh1='{$heigh1}',heigh2='{$heigh2}',weigh1='{$weigh1}',weigh2='{$weigh2}',house='{$house}',car='{$car}',edu='{$edu}',pay='{$pay}',field='{$field}',job='{$job}',smoking='{$smoking}',drink='{$drink}' WHERE userid=" . $cook_userid); callmsg("���óɹ���", "b_request.php"); } $rt = $db->query("SELECT * FROM " . __TBL_REQUEST__ . " WHERE userid=" . $cook_userid); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); } else { if ($cook_sex == 1) { $tmpsex = 2; } if ($cook_sex == 2) { $tmpsex = 1; } $db->query("INSERT INTO " . __TBL_REQUEST__ . " (userid,sex,kind) VALUES ({$cook_userid},{$tmpsex},0)"); header("Location: b_request.php"); } ?>
} else { callmsg("Forbidden!", "-1"); } $db->query("UPDATE " . __TBL_GROUP_MAIN__ . " SET nicknamesexgradephoto_s='{$nicknamesexgradephoto_s}' WHERE userid=" . $cook_userid); $db->query("UPDATE " . __TBL_GROUP_MAIN__ . " SET nicknamesexgradephoto_s1='{$nicknamesexgradephoto_s}' WHERE userid1=" . $cook_userid); $db->query("UPDATE " . __TBL_GROUP_MAIN__ . " SET nicknamesexgradephoto_s2='{$nicknamesexgradephoto_s}' WHERE userid2=" . $cook_userid); $db->query("UPDATE " . __TBL_GROUP_MAIN__ . " SET nicknamesexgradephoto_s3='{$nicknamesexgradephoto_s}' WHERE userid3=" . $cook_userid); $db->query("UPDATE " . __TBL_GROUP_USER__ . " SET nicknamesexgradephoto_s='{$nicknamesexgradephoto_s}' WHERE userid=" . $cook_userid); $db->query("UPDATE " . __TBL_GROUP_BK__ . " SET nicknamesexgradephoto_s='{$nicknamesexgradephoto_s}' WHERE userid=" . $cook_userid); $db->query("UPDATE " . __TBL_GROUP_WZ__ . " SET nicknamesexgradephoto_s='{$nicknamesexgradephoto_s}' WHERE userid=" . $cook_userid); $db->query("UPDATE " . __TBL_GROUP_WZ__ . " SET endnicknamesexgradephoto_s='{$nicknamesexgradephoto_s}' WHERE enduserid=" . $cook_userid); $db->query("UPDATE " . __TBL_GROUP_WZ_BBS__ . " SET nicknamesexgradephoto_s='{$nicknamesexgradephoto_s}' WHERE userid=" . $cook_userid); $db->query("UPDATE " . __TBL_GROUP_CLUB_USER__ . " SET nicknamesexgradephoto_s='{$nicknamesexgradephoto_s}' WHERE userid=" . $cook_userid); $db->query("UPDATE " . __TBL_GROUP_CLUB_BBS__ . " SET nicknamesexgradephoto_s='{$nicknamesexgradephoto_s}' WHERE userid=" . $cook_userid); //ͬ��end callmsg("�ijɹ���", "a2.php"); } $birthday1 = date_format2($row['birthday'], '%Y'); $birthday2 = date_format2($row['birthday'], '%m'); $birthday3 = date_format2($row['birthday'], '%d'); ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_titile']; ?> </title> <link href="my.css" rel="stylesheet" type="text/css"> <style type="text/css">
echo "selected"; } ?> >500</option> </select> </label> 元 <input name="kind" type="hidden" value="1" /></td> </tr> </table> <?php } else { ?> 确认支付信息<?php if (!ereg("^[1-7]{1}\$", $kind) || empty($kind)) { callmsg("请求错误!", "-1"); } switch ($kind) { case 2: $price = 29; $bz = '诚信会员-包月'; break; case 3: $price = 99; $bz = '诚信会员-包年'; break; case 4: $price = 199; $bz = '诚信会员-永久'; break; case 5:
<?php require_once "../sub/init.php"; if (!ereg("^[0-9]{1,8}\$", $uid)) { callmsg("请求错误,该用户不存在或已被锁定或已被删除!", "-1"); } require_once wrzc_net . 'sub/conn.php'; $rt = $db->query("SELECT username,nickname,grade,loveb,alltime,logincount,mbkind,mbtitle,magic,bgpic,sex,photo_s,click,ifphoto,ifbirthday,ifedu,iflove,ifpay FROM " . __TBL_MAIN__ . " WHERE id=" . $uid . " AND flag=1"); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $username = $row['username']; $nickname = $row['nickname']; $grade = $row['grade']; $loveb = $row['loveb']; $alltime = $row['alltime']; $logincount = $row['logincount']; $mbkind = $row['mbkind']; $mbtitle = $row['mbtitle']; $magic = $row['magic']; $bgpic = $row['bgpic']; $sex = $row['sex']; $photo_s = $row['photo_s']; $click = $row['click']; $ifphoto = $row['ifphoto']; $ifbirthday = $row['ifbirthday']; $ifedu = $row['ifedu']; $iflove = $row['iflove']; $ifpay = $row['ifpay']; $tmpx = 0; if ($ifphoto == 1) { $tmpx = $tmpx + 1;
break; case 3: imagepng($nimage, $destination); break; case 6: imagewbmp($nimage, $destination); break; } imagedestroy($nimage); imagedestroy($simage); //水束 $addtime = strtotime("now"); $db->query("INSERT INTO " . __TBL_ATTESTATION__ . " (rzid,userid,addtime,path_b) VALUES ('{$rzid}','{$cook_userid}','{$addtime}','{$path_b}')"); } //upload end callmsg("您的认证请求已成功发送客服中心,请等待我们工作人员审核......", "k_sfz.php"); } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_titile']; ?> </title> <link href="my.css" rel="stylesheet" type="text/css"> <style type="text/css"> ul {width:754px;height:28px;margin-left:28px;margin-top:15px;background-image:url(images/sontgg.gif);padding-left:16px;display:block;} ul li {float:left;width:70px;height:26px;border:#CCE1B5 1px solid;margin-right:11px;text-align:center;line-height:26px;} ul li a:link,li a:active,li a:visited{width:70px;display:block;text-decoration:none;color:#333;background:#fff;}
require_once '../sub/init.php'; if ((!ereg("^[0-9]{1,8}\$", $cook_userid) || empty($cook_userid)) && $p >= 2) { header("Location: " . $Global['www_2domain'] . "/login.php"); exit; } if ($t != 2) { if ($t == 1 && !empty($k)) { if ($cook_grade < 1) { callmsg("只有本站会员才能搜索!", "../login.php"); } } else { if ($cook_grade < 1) { callmsg("只有本站会员才能搜索!", "../login.php"); } if ((!empty($heigh1) || !empty($weigh1) || !empty($edu) || !empty($pay)) && $cook_grade < 2) { callmsg("只有高级会员才享有此功能!", "../my/?k_vip.php"); } } } $navvar = 11; require_once wrzc_net . 'sub/conn.php'; ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_area2']; ?> 会员搜索结果</title> <link href="../css/main.css" rel="stylesheet" type="text/css">
if ($ifmain == 1) { $db->query("UPDATE " . __TBL_STORY__ . " SET picurl_s='' WHERE id='{$fid}'"); } header("Location: g_story_photo_list.php?fid=" . $fid . "&p=" . $p . "&storytitle=" . $storytitle); } elseif ($submitok == "mainphoto") { if (!ereg("^[0-9]{1,10}\$", $classid) || empty($classid)) { callmsg("error1", "-1"); } $rt = $db->query("SELECT fid,path_s,ifmain FROM " . __TBL_STORY_PHOTO__ . " WHERE id='{$classid}'"); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $fid = $row[0]; $path1 = $row[1]; $ifmain = $row[2]; } else { callmsg("成功故事参数错误3", "-1"); } $db->query("UPDATE " . __TBL_STORY_PHOTO__ . " SET ifmain=0 WHERE fid=" . $fid); $db->query("UPDATE " . __TBL_STORY_PHOTO__ . " SET ifmain=1 WHERE id=" . $classid); $db->query("UPDATE " . __TBL_STORY__ . " SET picurl_s='{$path1}' WHERE id=" . $fid); header("Location: g_story_photo_list.php?fid=" . $fid . "&p=" . $p . "&storytitle=" . $storytitle); } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=gb2312" /> <title><?php echo $Global['m_titile']; ?> </title>
$rt = $db->query("SELECT weather,feel,title,content,diaryopen,stime FROM " . __TBL_DIARY__ . " WHERE id=" . $aid); if ($db->num_rows($rt)) { $row = $db->fetch_array($rt); $weather = $row[0]; $feel = $row[1]; $title = $row[2]; $content = $row[3]; $diaryopen = $row[4]; $stime = $row[5]; $year8 = date_format2($stime, '%Y'); $month8 = date_format2($stime, '%m'); $day8 = date_format2($stime, '%d'); $hour8 = date_format2($stime, '%H'); $minute8 = date_format2($stime, '%M'); } else { callmsg("该日记不存在或已被删除!", "./"); exit; } } ?> <br> <form action="f_diary.php" method="post" name="FORM" onSubmit="return chkform()" onClick="clear2bx()"> <script language="javascript" src="/gyleditor/gyleditor.js"></script> <script language="javascript"> function chkform(){ var year8 = document.FORM.year8.value; var month8 = document.FORM.month8.value; var day8 = document.FORM.day8.value; var hour8 = document.FORM.hour8.value; var minute8 = document.FORM.minute8.value; var dateerr = '请输入正确格式日期!';
<?php require_once '../sub/init.php'; if (!ereg("^[0-9]{1,9}\$", $cook_userid) || empty($cook_userid)) { header("Location: " . $Global['www_2domain'] . "/login.php"); exit; } if ($cook_grade == 1) { callmsg("只有高级会员才可以保存聊天记录!", "-1"); } $content = "<span style='font-size:12px'>" . stripslashes($_GET['savetext']) . '</span>'; $filaname = 'chat' . date("YmdHis") . '.html'; header("Content-type:text/html;charset=GBK"); header("Content-Disposition:attachment;filename=" . $filaname); echo $content;