function _RunMagicQuotes(&$svar) { if (!get_magic_quotes_gpc()) { if (is_array($svar)) { foreach ($svar as $_k => $_v) { $svar[$_k] = _RunMagicQuotes($_v); } } else { $svar = addslashes($svar); } } return $svar; }
function _RunMagicQuotes(&$svar) { if (!get_magic_quotes_gpc()) { if (is_array($svar)) { foreach ($svar as $_k => $_v) { $svar[$_k] = _RunMagicQuotes($_v); } } else { if (strlen($svar) > 0 && preg_match('#^(cfg_|GLOBALS|_GET|_POST|_COOKIE)#', $svar)) { exit('Request var not allow!'); } $svar = addslashes($svar); } } return $svar; }
function _RunMagicQuotes(&$svar) { //PHP5.4已经将此函数移除 if (@(!get_magic_quotes_gpc())) { if (is_array($svar)) { foreach ($svar as $_k => $_v) { $svar[$_k] = _RunMagicQuotes($_v); } } else { if (strlen($svar) > 0 && preg_match('#^(cfg_|GLOBALS|_GET|_POST|_SESSION|_COOKIE)#', $svar)) { exit('不允许请求的变量值!'); } $svar = addslashes($svar); } } return $svar; }
$config_str = str_replace('{apache2}', $apache2, $config_str); $config_str = str_replace('{iis}', $iis, $config_str); $config_str = str_replace('{iis7}', $iis7, $config_str); $config_str = str_replace('{nginx}', $nginx, $config_str); $config_str = str_replace('{webpath}', $webpath, $config_str); //将替换后的内容写入rewriteurl.php文件 if (!Writef('rewriteurl.php', $config_str)) { ShowMsg("文件失败 rewriteurl.php 文件失败,可能是由于没有写入权限,因此不能更新配置!", $gourl); exit; } } //更新变量 if ($action == 'update') { foreach ($_POST as $k => $v) { //统计代码转义 $v = _RunMagicQuotes($v); if (!$dosql->ExecNoneQuery("UPDATE `#@__webconfig` SET `varvalue`='{$v}' WHERE varname='{$k}'")) { ShowMsg('更新变量失败,可能有非法字符!', $gourl); exit; } } WriteConfig(); ShowMsg('成功保存变量并更新配置文件!', $gourl); exit; } //增加新变量 if ($action == 'add') { if ($varname == '' || preg_match('/[^a-z_]/', $varname)) { ShowMsg('变量名不能为空并必须为[a-z_]组成!', $gourl); exit; }
function ContAutoPage($body, $spsize, $sptag = '<hr style="page-break-after:always;" class="ke-pagebreak" />') { //判断是否符合分页条件 if (strlen($body) < $spsize) { return $body; } $body = stripslashes($body); $body = str_replace($sptag, '', $body); $bodyarr = explode('<', $body); //初始化参数 $body = ''; $pagebody = ''; $istable = 0; foreach ($bodyarr as $i => $v) { if ($i == 0) { $pagebody .= $bodyarr[$i]; continue; } $bodyarr[$i] = '<' . $bodyarr[$i]; if (strlen($bodyarr[$i]) > 6) { $tname = substr($bodyarr[$i], 1, 5); if (strtolower($tname) == 'table') { $istable++; } else { if (strtolower($tname) == '/tabl') { $istable--; } } if ($istable > 0) { $pagebody .= $bodyarr[$i]; continue; } else { $pagebody .= $bodyarr[$i]; } } else { $pagebody .= $bodyarr[$i]; } if (strlen($pagebody) > $spsize) { $body .= $pagebody . $sptag; $pagebody = ''; } } if ($pagebody != '') { $body .= $pagebody; } return _RunMagicQuotes($body); }
define('BASE_DATA', BASE_ROOT . '/data'); define('BASE_BACKUP', BASE_DATA . '/backup'); define('DOCUMENT_ROOT', preg_replace("/[\\/\\\\]{1,}/", '/', $_SERVER['DOCUMENT_ROOT'])); define('SHIHAI', TRUE); require DOCUMENT_ROOT . '/config/config.php'; //全局配置文件 require BASE_INC . '/config.cache.php'; //全局配置文件 require BASE_INC . '/Net.php'; //采集类 require BASE_INC . '/global.func.php'; //全局方法 require BASE_INC . '/mysql.class.php'; //数据库类 require BASE_INC . '/common.func.php'; //公共函数 require BASE_INC . '/subpage.class.php'; //分页类 require BASE_INC . '/common.class.php'; //分页类 //实例化采集类 $NET = new Net(); //直接应用变量名称替代 foreach (array('_GET', '_POST') as $_request) { foreach (${$_request} as $_k => $_v) { if (strlen($_k) > 0 && preg_match('#^(GLOBALS|_GET|_POST|_SESSION|_COOKIE)#', $_k)) { exit('不允许请求的变量名!'); } ${$_k} = _RunMagicQuotes($_v); } }