if (($searchCoursePacketsNameDesc = check_name($_GET["searchCoursePacketsNameDesc"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($statusCheckbox = check_number($_GET["statusCheckbox"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchCoursePacketsfrom1 = check_range_begin($_GET["searchCoursePacketsfrom1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchCoursePacketsto1 = check_range_end($_GET["searchCoursePacketsto1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
//link
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
return;
}
//----- query -----
//***Step16 页面搜索SQl语句 起始
$str_query1 = "\n select *\n from CoursePacket where status";
if ($statusCheckbox == 1) {
if (($searchpptsNameDesc = check_name($_GET["searchpptsNameDesc"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($statusCheckbox = check_number($_GET["statusCheckbox"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchpptsfrom1 = check_range_begin($_GET["searchpptsfrom1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchpptsto1 = check_range_end($_GET["searchpptsto1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
//link
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
return;
}
//----- query -----
//***Step16 页面搜索SQl语句 起始
$str_query1 = "\n select *\n from ppts where status";
if ($statusCheckbox == 1) {
if (($searchTrainingsfrom1 = check_range_begin($_GET["searchTrainingsfrom1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchTrainingsto1 = check_range_end($_GET["searchTrainingsto1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchTrainingsfrom2 = check_range_begin($_GET["searchTrainingsfrom2"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchTrainingsto2 = check_range_end($_GET["searchTrainingsto2"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
function get_employ_id_from_usernames($userids)
{
if (strlen($userids) > 0) {
$userids = substr($userids, 1);
$userids = substr($userids, 0, -1);
$userids = str_replace(",,", ",", $userids);
}
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
if (($searchRollCallsName = check_name($_GET["searchRollCallsName"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($statusCheckbox = check_number($_GET["statusCheckbox"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchRollCallsfrom12 = check_range_begin($_GET["searchRollCallsfrom12"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchRollCallsto12 = check_range_end($_GET["searchRollCallsto12"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
//link
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
return;
}
//----- query -----
//***Step16 页面搜索SQl语句 起始
$str_query1 = "select ti.TrainingName as TrainingName, us.UserName as UserName, rc.IssueDate as IssueDate, rc.Status as Status, rc.Reason as Reason, u.UserName as CreatedUser, ti.ApproreLevel \nfrom rollcall rc left join trainings ti on rc.TrainingId = ti.TrainingId \nleft join users us on rc.UserId = us.UserId left join wutian.users u on rc.CreatedUser = u.UserId where rc.status";
if ($statusCheckbox == 1) {
if (($searchQuestionsNameDesc = check_name($_GET["searchQuestionsNameDesc"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($QuestionstatusCheckbox = check_number($_GET["QuestionstatusCheckbox"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchQuestionsfrom15 = check_range_begin($_GET["searchQuestionsfrom15"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchQuestionsto15 = check_range_end($_GET["searchQuestionsto15"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
//link
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
return;
}
//----- query -----
//***Step16 页面搜索SQl语句 起始
$str_query1 = "\n select *\n from Question where QuestionId > 0 AND status";
if ($QuestionstatusCheckbox == 1) {
if (($statusCheckbox = check_number($_GET["statusCheckbox"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchPrivilegesRadio = check_number($_GET["searchPrivilegesRadio"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchPrivilegesfrom1 = check_range_begin($_GET["searchPrivilegesfrom1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchPrivilegesto1 = check_range_end($_GET["searchPrivilegesto1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
//link
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
return;
}
//----- query -----
//***Step16 页面搜索SQl语句 起始
$str_query1 = "\n select U.UserId, U.UserName, U.Email, U.Status, U.CanApprove, U.EditTime, D.DeptName, U.EmployeeId\n from Users U left join Depts D on U.deptId=D.deptId Where U.status";
if ($statusCheckbox == 1) {
if (($searchNewsfrom1 = check_range_begin($_GET["searchNewsfrom1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchNewsto1 = check_range_end($_GET["searchNewsto1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchNewsfrom2 = check_range_begin($_GET["searchNewsfrom2"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchNewsto2 = check_range_end($_GET["searchNewsto2"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
//link
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
return;
}
//----- query -----
//***Step16 页面搜索SQl语句 起始
$str_query1 = "\n select *\n from News where status";
if ($statusCheckbox == 1) {
if (($searchCategoriesName = check_name($_GET["searchCategoriesName"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($statusCheckbox = check_number($_GET["statusCheckbox"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchCategoriesfrom1 = check_range_begin($_GET["searchCategoriesfrom1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchCategoriesto1 = check_range_end($_GET["searchCategoriesto1"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
//link
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
return;
}
function CategoryNameList($CategoryId)
{
$strlink = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
$str_categorie = "select CategoryName, ParentId from categories where CategoryId={$CategoryId}";
if (($statusCheckbox = check_number($_GET["statusCheckbox"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchType = check_number($_GET["searchType"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchExamsfrom1 = check_range_begin($_GET["range_begin"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchExamsto1 = check_range_end($_GET["range_end"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
//link
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
return;
}
//----- query -----
//***Step16 页面搜索SQl语句 起始
$str_query1 = "\r\n select *\r\n from exams where ExamId > 0 ";
if ($statusCheckbox == 1) {
if (($searchProduct = check_number($_GET["searchProduct"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($statusCheckbox = check_number($_GET["statusCheckbox"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchProblemsfrom18 = check_range_begin($_GET["searchProblemsfrom18"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchProblemsto18 = check_range_end($_GET["searchProblemsto18"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
//link
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
return;
}
$funcs_id_name_mapping = get_all_funcs_id_name_mapping();
//----- query -----
//***Step16 页面搜索SQl语句 起始
$str_query1 = "\r\n select *\r\n from problems where ProblemId > 0 ";
if (($searchFunctionsName = check_name($_GET["searchFunctionsName"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($statusCheckbox = check_number($_GET["statusCheckbox"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchFunctionsfrom17 = check_range_begin($_GET["searchFunctionsfrom17"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
if (($searchFunctionsto17 = check_range_end($_GET["searchFunctionsto17"])) == SYMBOL_ERROR) {
sleep(DELAY_SEC);
echo SYMBOL_ERROR;
return;
}
//link
$link = @mysqli_connect(DB_HOST, ADMIN_ACCOUNT, ADMIN_PASSWORD, CONNECT_DB);
if (!$link) {
sleep(DELAY_SEC);
echo DB_ERROR;
return;
}
//----- query -----
//***Step16 页面搜索SQl语句 起始
$str_query1 = "\n select *\n from Functions where FunctionType ";
if ($statusCheckbox == 1) {
