function checkuptoadmin($CK) { Add_S($CK); global $db, $manager; if (is_array($manager) && CkInArray($CK[1], $manager)) { global $manager_pwd; $v_key = array_search($CK[1], $manager); if (!SafeCheck($CK, PwdCode($manager_pwd[$v_key]))) { $rt = $db->get_one("SELECT uid,username,groupid,groups,password FROM pw_members WHERE username="******"SELECT uid,username,groupid,groups,password FROM pw_members WHERE username=" . pwEscape($CK[1])); if (!SafeCheck($CK, PwdCode($rt['password']))) { return false; } } return true; } else { return false; } }
function GdConfirm($code, $t = 1) { Cookie('cknum', '', 0); if (!$code || !SafeCheck(explode("\t", StrCode(GetCookie('cknum'), 'DECODE')), strtoupper($code), 'cknum', 300)) { global $basename, $admin_file; $t && Cookie('AdminUser', '', 0); $basename = $admin_file; adminmsg('check_error'); } }
function wap_GdConfirm($code) { Cookie('cknum', '', 0); if (!$code || !SafeCheck(explode("\t", StrCode(GetCookie('cknum'), 'DECODE')), strtoupper($code), 'cknum', 1800)) { wap_msg('check_error'); } }
<?php !function_exists('readover') && exit('Forbidden'); $bbsclose = true; $AdminUser = GetCookie('AdminUser'); $CK = $AdminUser ? explode("\t", StrCode(GetCookie('AdminUser'), 'DECODE')) : array(); if (S::inArray($CK[1], $manager)) { $v_key = array_search($CK[1], $manager); SafeCheck($CK, PwdCode($manager_pwd[$v_key])) && ($bbsclose = false); } if (!$db_bbsifopen) { if ($_GET['logined'] && !$bbsclose) { Cookie('logined', 1, $timestamp + 1800); } elseif (!GetCookie('logined') || $bbsclose) { $skin = $skinco ? $skinco : $db_defaultstyle; $groupid = ''; Showmsg($db_whybbsclose, $bbsclose ? NULL : 'bbsclose'); } } elseif ($db_bbsifopen == 2) { if ($db_visitopen) { $tmpAllowvisit = false; if ($db_visitips && $onlineip != 'Unknown') { $tmpIP = ip2long($onlineip); if ($tmpIP != -1 && $tmpIP !== FALSE) { $tmpVisitips = explode(',', $db_visitips); foreach ($tmpVisitips as $value) { if (!trim($value)) { continue; } $tmpSIP = ip2long(str_replace('*', '1', $value)); $tmpEIP = ip2long(str_replace('*', '255', $value));
/** * 校验验证问题 * @param $anser 答案 * @param $question 问题 * @return int */ function checkQanswer($answer, $question) { global $db_answer; if (!$question || $question > 0 && $answer != $db_answer[$question] || $question < 0 && !SafeCheck(explode("\t", StrCode(GetCookie('ckquestion'), 'DECODE')), $answer, 'ckquestion', 1800, false, false)) { return 1; } else { return 0; } }
} } if ($e_check == 1) { echo 5; ajax_footer(); } } require_once R_P . 'uc_client/uc_client.php'; if (uc_user_get($email, 2)) { echo 2; } else { echo 0; } } elseif ($type == 'reggdcode') { InitGP('gdcode', 'P'); if (!$gdcode || !SafeCheck(explode("\t", StrCode(GetCookie('cknum'), 'DECODE')), strtoupper($gdcode), 'cknum', 1800)) { echo 1; } else { echo 0; } } elseif ($type == 'qanswer') { InitGP(array('answer', 'question'), 'P'); if ($db_question && (!isset($db_answer[$question]) || $answer != $db_answer[$question])) { echo 1; } else { echo 0; } } elseif ($type == 'invcode') { InitGP('invcode', 'P'); if (empty($invcode)) { echo 1;
/** * 校验问题 * * @global string $db_question * @global array $db_answer * @param string $answer 答案 * @param string $qkey */ function Qcheck($answer, $qkey, $return = false) { global $db_question, $db_answer; $answer = trim($answer); if ($qkey < 0) { //机选问题 //Cookie('ckquestion', '', 0); if (!is_string($answer) || $answer === '' || !SafeCheck(explode("\t", StrCode(GetCookie('ckquestion'), 'DECODE')), $answer, 'ckquestion', 1800, false, false)) { if ($return) { return false; } Showmsg('qcheck_error'); } } elseif ($db_question && (!isset($db_answer[$qkey]) || $answer != $db_answer[$qkey])) { if ($return) { return false; } Showmsg('qcheck_error'); } if ($return) { return true; } }