function ViewOnlineKFen($showdown_r, $u, $userid, $classid, $id, $pathid, $r) { global $user_tablename, $level_r, $user_group, $user_userid, $class_r, $dbtbpre, $public_r, $user_userdate, $user_userfen, $user_username, $empire, $have_bak, $have_fen; if ($showdown_r[2]) { //下载次数限制 $setuserday = ""; if ($level_r[$u[$user_group]][daydown]) { $setuserday = DoCheckMDownNum($userid, $u[$user_group], 1); } //点数是否足够 $showdown_r[3] = intval($showdown_r[3]); if ($showdown_r[3]) { if ($have_fen == 1) { //去除点数 $usql = $empire->query("update " . $user_tablename . " set " . $user_userfen . "=" . $user_userfen . "-" . $showdown_r[3] . " where " . $user_userid . "='{$userid}'"); } if ($have_bak == 0) { //备份下载记录 $utfusername = doUtfAndGbk($u[$user_username], 1); BakDown($classid, $id, $pathid, $userid, $utfusername, $r[title], $showdown_r[3], 1); } } //更新用户下载次数 if ($setuserday) { $usql = $empire->query($setuserday); } } //总下载数据增一 $usql = $empire->query("update {$dbtbpre}ecms_" . $class_r[$classid][tbname] . " set totaldown=totaldown+1 where id='{$id}'"); }
</tr> </form> </table> <form name="form1" method="post" action="MemberFeedback.php" onsubmit="return confirm('确认要删除?');"> <table width="100%" border="0" align="center" cellpadding="3" cellspacing="1" class=tableborder> <tr class=header> <td width="7%" height="23"><div align="center">ID</div></td> <td width="43%" height="23"><div align="center">标题(点击查看)</div></td> <td width="20%" height="23"><div align="center">空间主人</div></td> <td width="18%" height="23"><div align="center">发布时间</div></td> <td width="12%" height="23"><div align="center">操作</div></td> </tr> <?php while ($r = $empire->fetch($sql)) { $ur = $empire->fetch1("select " . $user_username . " from " . $user_tablename . " where " . $user_userid . "='{$r['userid']}'"); $username = doUtfAndGbk($ur[$user_username], 1); if ($r['uid']) { $r['uname'] = "<a href='../../space/?userid={$r['uid']}' target='_blank'>{$r['uname']}</a>"; } else { $r['uname'] = '游客'; } ?> <tr bgcolor="#FFFFFF" onmouseout="this.style.backgroundColor='#ffffff'" onmouseover="this.style.backgroundColor='#C3EFFF'"> <td height="25"><div align="center"> <?php echo $r[fid]; ?> </div></td> <td height="25"><div align="left"><a href="#ecms" onclick="window.open('MemberShowFeedback.php?fid=<?php echo $r[fid]; ?>
function login1($username, $password, $lifetime, $key, $location) { global $empire, $user_tablename, $user_userid, $user_username, $user_password, $user_dopass, $user_group, $user_groupid, $user_rnd, $public_r, $user_salt, $user_saltnum, $dbtbpre, $eloginurl, $user_checked; if ($eloginurl) { Header("Location:{$eloginurl}"); exit; } $dopr = 1; if ($_POST['prtype']) { $dopr = 9; } if (!trim($username) || !trim($password)) { printerror("EmptyLogin", "history.go(-1)", $dopr); } //验证码 $keyvname = 'checkloginkey'; if ($public_r['loginkey_ok']) { ecmsCheckShowKey($keyvname, $key, $dopr); } $username = RepPostVar($username); $password = RepPostVar($password); //编码转换 $utfusername = doUtfAndGbk($username, 0); $password = doUtfAndGbk($password, 0); //密码 if (empty($user_dopass)) { $password = md5($password); } if ($user_dopass == 3) { $password = substr(md5($password), 8, 16); } //双重md5 $num = 0; if ($user_dopass == 2) { $ur = $empire->fetch1("select " . $user_userid . "," . $user_salt . "," . $user_password . " from " . $user_tablename . " where " . $user_username . "='{$utfusername}' limit 1"); $password = md5(md5($password) . $ur[$user_salt]); $num = 0; if ($password == $ur[$user_password]) { $num = 1; } if (empty($ur[$user_userid])) { $num = 0; } } else { $num = $empire->gettotal("select count(*) as total from " . $user_tablename . " where " . $user_username . "='{$utfusername}' and " . $user_password . "='" . $password . "' limit 1"); } if (!$num) { printerror("FailPassword", "history.go(-1)", $dopr); } $r = $empire->fetch1("select * from " . $user_tablename . " where " . $user_username . "='{$utfusername}' limit 1"); if ($r[$user_checked] == 0) { if ($public_r['regacttype'] == 1) { printerror('NotCheckedUser', '../member/register/regsend.php', 1); } else { printerror('NotCheckedUser', '', 1); } } $time = date("Y-m-d H:i:s"); $rnd = make_password(12); //取得随机密码 //默认会员组 if (empty($r[$user_group])) { $r[$user_group] = $user_groupid; } $r[$user_group] = (int) $r[$user_group]; $usql = $empire->query("update " . $user_tablename . " set " . $user_rnd . "='{$rnd}'," . $user_group . "=" . $r[$user_group] . " where " . $user_userid . "='{$r[$user_userid]}'"); //设置cookie $logincookie = 0; if ($lifetime) { $logincookie = time() + $lifetime; } $set1 = esetcookie("mlusername", $username, $logincookie); $set2 = esetcookie("mluserid", $r[$user_userid], $logincookie); $set3 = esetcookie("mlgroupid", $r[$user_group], $logincookie); $set4 = esetcookie("mlrnd", $rnd, $logincookie); //登录附加cookie AddLoginCookie($r); $location = "../member/cp/"; $returnurl = getcvar('returnurl'); if ($returnurl) { $location = $returnurl; } if (strstr($_SERVER['HTTP_REFERER'], "e/member/iframe")) { $location = "../member/iframe/"; } if (strstr($location, "enews=exit") || strstr($location, "e/member/register") || strstr($_SERVER['HTTP_REFERER'], "e/member/register")) { $location = "../member/cp/"; $_POST['ecmsfrom'] = ''; } ecmsEmptyShowKey($keyvname); //清空验证码 $set6 = esetcookie("returnurl", ""); if ($set1 && $set2) { $location = DoingReturnUrl($location, $_POST['ecmsfrom']); printerror("LoginSuccess", $location, $dopr); } else { printerror("NotCookie", "history.go(-1)", $dopr); } }
function ViewCheckLogin($infor) { global $empire, $public_r, $user_tablename, $user_userid, $user_username, $user_userfen, $user_group, $user_groupid, $user_rnd, $user_zgroup, $user_userdate, $user_checked, $eloginurl, $toreturnurl, $gotourl; $userid = (int) getcvar('mluserid'); $rnd = RepPostVar(getcvar('mlrnd')); if (!$userid) { if (!getcvar('returnurl')) { esetcookie("returnurl", $toreturnurl, 0); } $msg = "您还未登陆,<a href='{$gotourl}'><u>点击这里</u></a>进行登陆操作;注册请<a href='" . $public_r['newsurl'] . "e/member/register/'><u>点击这里</u></a>。"; ShowViewInfoMsg($infor, $msg); } $cr = $empire->fetch1("select " . $user_checked . "," . $user_userid . "," . $user_username . "," . $user_group . "," . $user_userfen . "," . $user_userdate . "," . $user_zgroup . " from " . $user_tablename . " where " . $user_userid . "='{$userid}' and " . $user_rnd . "='{$rnd}' limit 1"); if (!$cr[$user_userid]) { EmptyEcmsCookie(); if (!getcvar('returnurl')) { esetcookie("returnurl", $toreturnurl, 0); } $msg = "同一帐号只能一人在线,<a href='{$gotourl}'><u>点击这里</u></a>重新登陆;注册请<a href='" . $public_r['newsurl'] . "e/member/register/'><u>点击这里</u></a>。"; ShowViewInfoMsg($infor, $msg); } if ($cr[$user_checked] == 0) { EmptyEcmsCookie(); if (!getcvar('returnurl')) { esetcookie("returnurl", $toreturnurl, 0); } $msg = "您的帐号还未审核通过,<a href='{$gotourl}'><u>点击这里</u></a>重新登陆;注册请<a href='" . $public_r['newsurl'] . "e/member/register/'><u>点击这里</u></a>。"; ShowViewInfoMsg($infor, $msg); } //默认会员组 if (empty($cr[$user_group])) { $usql = $empire->query("update " . $user_tablename . " set " . $user_group . "='{$user_groupid}' where " . $user_userid . "='" . $cr[$user_userid] . "'"); $cr[$user_group] = $user_groupid; } //是否过期 if ($cr[$user_userdate]) { if ($cr[$user_userdate] - time() <= 0) { OutTimeZGroup($cr[$user_userid], $cr[$user_zgroup]); $cr[$user_userdate] = 0; if ($cr[$user_zgroup]) { $cr[$user_group] = $cr[$user_zgroup]; $cr[$user_zgroup] = 0; } } } $re[userid] = $cr[$user_userid]; $re[username] = doUtfAndGbk($cr[$user_username], 1); $re[userfen] = $cr[$user_userfen]; $re[groupid] = $cr[$user_group]; $re[userdate] = $cr[$user_userdate]; $re[zgroupid] = $cr[$user_zgroup]; return $re; }
function EditFriend($add) { global $empire, $dbtbpre, $user_tablename, $user_username; //是否登陆 $user_r = islogin(); $fid = (int) $add['fid']; $fname = RepPostVar(trim($add['fname'])); if (!$fname || !$fid) { printerror("EmptyFriend", "", 1); } //加自己为好友 if ($fname == $user_r['username']) { printerror("NotAddFriendSelf", "", 1); } $utfusername = doUtfAndGbk($fname, 0); $num = $empire->gettotal("select count(*) as total from " . $user_tablename . " where " . $user_username . "='{$utfusername}' limit 1"); if (!$num) { printerror("NotFriendUsername", "", 1); } //重复提交 if ($fname != $add['oldfname']) { $num = $empire->gettotal("select count(*) as total from {$dbtbpre}enewshy where fname='{$fname}' and userid='{$user_r['userid']}' limit 1"); if ($num) { printerror("ReAddFriend", "", 1); } } $cid = (int) $add['cid']; $fsay = RepPostStr($add['fsay']); $sql = $empire->query("update {$dbtbpre}enewshy set fname='" . addslashes($fname) . "',cid={$cid},fsay='" . addslashes($fsay) . "' where fid={$fid} and userid='{$user_r['userid']}'"); if ($sql) { printerror("EditFriendSuccess", "../member/friend/?cid={$add['fcid']}", 1); } else { printerror("DbError", "", 1); } }
function GetSofturl($classid, $id, $pathid, $p, $pass, $onlinetime, $onlinepass) { global $empire, $public_r, $class_r, $emod_r, $level_r, $user_tablename, $user_userid, $user_username, $user_rnd, $user_group, $user_userfen, $user_userdate, $dbtbpre, $realplayertype, $mediaplayertype; //验证IP eCheckAccessDoIp('onlineinfo'); $classid = (int) $classid; $id = (int) $id; $pathid = (int) $pathid; $onlinetime = (int) $onlinetime; $p = RepPostVar($p); if (!$classid || empty($id) || empty($p)) { exit; } $p_r = explode(":::", $p); $userid = $p_r[0]; $rnd = $p_r[1]; //验证码 $cpass = md5(ReturnDownSysCheckIp() . "wm_chief" . $public_r[downpass] . $userid); if ($cpass != $pass) { exit; } //验证验证码 CheckOnlinePass($onlinetime, $onlinepass); //表不存在 if (empty($class_r[$classid][tbname])) { exit; } $mid = $class_r[$classid][modid]; $tbname = $class_r[$classid][tbname]; $r = $empire->fetch1("select * from {$dbtbpre}ecms_" . $tbname . " where id='{$id}' and classid='{$classid}'"); if (empty($r[id])) { exit; } //副表 if ($emod_r[$mid]['tbdataf'] && $emod_r[$mid]['tbdataf'] != ',') { $selectdataf = substr($emod_r[$mid]['tbdataf'], 1, -1); $finfor = $empire->fetch1("select " . $selectdataf . " from {$dbtbpre}ecms_" . $tbname . "_data_" . $r[stb] . " where id='{$r['id']}'"); $r = array_merge($r, $finfor); } //区分下载地址 $path_r = explode("\r\n", $r[onlinepath]); if (!$path_r[$pathid]) { exit; } $showdown_r = explode("::::::", $path_r[$pathid]); $downgroup = $showdown_r[2]; //下载权限 if ($downgroup) { $userid = (int) $userid; //取得会员资料 $u = $empire->fetch1("select * from " . $user_tablename . " where " . $user_userid . "='{$userid}' and " . $user_rnd . "='{$rnd}'"); if (empty($u[$user_userid])) { exit; } //下载次数限制 $setuserday = ""; if ($level_r[$u[$user_group]][daydown]) { $setuserday = DoCheckMDownNum($userid, $u[$user_group], 1); } if ($level_r[$downgroup][level] > $level_r[$u[$user_group]][level]) { exit; } //点数是否足够 $showdown_r[3] = intval($showdown_r[3]); if ($showdown_r[3]) { //---------是否有历史记录 $bakr = $empire->fetch1("select id,truetime from {$dbtbpre}enewsdownrecord where id='{$id}' and classid='{$classid}' and userid='{$userid}' and pathid='{$pathid}' and online=1 order by truetime desc limit 1"); if ($bakr[id] && time() - $bakr[truetime] <= $public_r[redodown] * 3600) { } else { //包月卡 if ($u[$user_userdate] - time() > 0) { } else { if ($showdown_r[3] > $u[$user_userfen]) { exit; } //去除点数 $usql = $empire->query("update " . $user_tablename . " set " . $user_userfen . "=" . $user_userfen . "-" . $showdown_r[3] . " where " . $user_userid . "='{$userid}'"); } //备份下载记录 $utfusername = doUtfAndGbk($u[$user_username], 1); BakDown($classid, $id, $pathid, $userid, $utfusername, $r[title], $showdown_r[3], 1); } } //更新用户下载次数 if ($setuserday) { $usql = $empire->query($setuserday); } } //总下载数据增一 $usql = $empire->query("update {$dbtbpre}ecms_" . $class_r[$classid][tbname] . " set totaldown=totaldown+1 where id='{$id}'"); //选择播放器 $ftype = GetFiletype($showdown_r[1]); if (strstr($realplayertype, ',' . $ftype . ',')) { Header("Content-Type: audio/x-pn-realaudio"); } else { Header("Content-Type: video/x-ms-asf"); } $downurl = stripSlashes($showdown_r[1]); $downurlr = ReturnDownQzPath($downurl, $showdown_r[4]); $downurl = $downurlr['repath']; //防盗链 @(include "../class/enpath.php"); $downurl = DoEnOnlinepath($downurl); db_close(); $empire = null; echo $downurl; exit; }
function DoRegSend($add) { global $empire, $dbtbpre, $public_r, $user_tablename, $user_username, $user_userid, $user_email, $user_password, $user_dopass, $user_salt, $user_checked; if ($public_r['regacttype'] != 1) { printerror('CloseRegAct', '', 1); } $username = trim($add[username]); $password = trim($add[password]); $email = trim($add[email]); $newemail = trim($add[newemail]); if (!$username || !$password || !$email) { printerror("EmptyRegAct", "history.go(-1)", 1); } //ÑéÖ¤Âë $key = $add['key']; $keyvname = 'checkregsendkey'; ecmsCheckShowKey($keyvname, $key, 1); $username = RepPostVar($username); $password = RepPostVar($password); $username = RepPostStr($username); $email = RepPostStr($email); $newemail = RepPostStr($newemail); if (!chemail($email)) { printerror("EmailFail", "history.go(-1)", 1); } if ($newemail) { if (!chemail($newemail)) { printerror("EmailFail", "history.go(-1)", 1); } $sendemail = $newemail; } else { $sendemail = $email; } //±àÂëת»» $utfusername = doUtfAndGbk($username, 0); $password = doUtfAndGbk($password, 0); //ÃÜÂë if (empty($user_dopass)) { $password = md5($password); } if ($user_dopass == 3) { $password = substr(md5($password), 8, 16); } //Ë«ÖØmd5 $num = 0; if ($user_dopass == 2) { $ur = $empire->fetch1("select " . $user_userid . "," . $user_salt . "," . $user_password . " from " . $user_tablename . " where " . $user_username . "='{$utfusername}' limit 1"); $password = md5(md5($password) . $ur[$user_salt]); $num = 0; if ($password == $ur[$user_password]) { $num = 1; } if (empty($ur[$user_userid])) { $num = 0; } } else { $num = $empire->gettotal("select count(*) as total from " . $user_tablename . " where " . $user_username . "='{$utfusername}' and " . $user_password . "='" . $password . "' limit 1"); } if (!$num) { printerror("ErrorRegActUser", "history.go(-1)", 1); } $r = $empire->fetch1("select * from " . $user_tablename . " where " . $user_username . "='{$utfusername}' limit 1"); $utfemail = doUtfAndGbk($r[$user_email], 1); if (!$r[$user_userid] || $utfemail != $email) { printerror("ErrorRegActUser", "history.go(-1)", 1); } if ($r[$user_checked]) { printerror("HaveRegActUser", '', 1); } $addr = $empire->fetch1("select userid,authstr from {$dbtbpre}enewsmemberadd where userid='" . $r[$user_userid] . "' limit 1"); $ar = explode('||', $addr['authstr']); if (!$addr['userid'] || !$addr['authstr'] || $ar[1] != 2) { printerror("HaveRegActUser", '', 1); } ecmsEmptyShowKey($keyvname); //Çå¿ÕÑéÖ¤Âë SendActUserEmail($r[$user_userid], $username, $sendemail); }
function AddPl($username, $password, $nomember, $key, $saytext, $id, $classid, $repid, $add) { global $empire, $public_r, $class_r, $user_userid, $user_username, $user_password, $user_dopass, $user_tablename, $user_salt, $user_checked, $user_group, $dbtbpre, $level_r; //验证IP eCheckAccessDoIp('pl'); $id = (int) $id; $repid = (int) $repid; $classid = (int) $classid; //验证码 $keyvname = 'checkplkey'; if ($public_r['plkey_ok']) { ecmsCheckShowKey($keyvname, $key, 1); } $username = RepPostVar($username); $password = RepPostVar($password); $muserid = (int) getcvar('mluserid'); $musername = RepPostVar(getcvar('mlusername')); $mgroupid = (int) getcvar('mlgroupid'); if ($muserid) { $username = $musername; } else { if (empty($nomember)) { //编码转换 $utfusername = doUtfAndGbk($username, 0); $password = doUtfAndGbk($password, 0); //密码 if (empty($user_dopass)) { $password = md5($password); } if ($user_dopass == 3) { $password = substr(md5($password), 8, 16); } //双重md5 if ($user_dopass == 2) { $ur = $empire->fetch1("select " . $user_userid . "," . $user_salt . "," . $user_password . "," . $user_checked . "," . $user_group . " from " . $user_tablename . " where " . $user_username . "='{$utfusername}' limit 1"); $password = md5(md5($password) . $ur[$user_salt]); $cuser = 0; if ($password == $ur[$user_password]) { $cuser = 1; } if (empty($ur[$user_userid])) { $cuser = 0; } } else { $ur = $empire->fetch1("select " . $user_userid . "," . $user_checked . "," . $user_group . " from " . $user_tablename . " where " . $user_username . "='{$utfusername}' and " . $user_password . "='{$password}' limit 1"); $cuser = 0; if ($ur[$user_userid]) { $cuser = 1; } } if (empty($cuser)) { printerror("FailPassword", "history.go(-1)", 1); } if ($ur[$user_checked] == 0) { printerror("NotCheckedUser", '', 1); } $muserid = $ur[$user_userid]; $mgroupid = $ur[$user_group]; } else { $muserid = 0; } } if ($public_r['plgroupid']) { if (!$muserid) { printerror("GuestNotToPl", "history.go(-1)", 1); } if ($level_r[$mgroupid][level] < $level_r[$public_r['plgroupid']][level]) { printerror("NotLevelToPl", "history.go(-1)", 1); } } if (!trim($saytext) || !$id || !$classid) { printerror("EmptyPl", "history.go(-1)", 1); } //表存在 if (empty($class_r[$classid][tbname])) { printerror("ErrorUrl", "history.go(-1)", 1); } if (strlen($saytext) > $public_r[plsize]) { printerror("PlSizeTobig", "history.go(-1)", 1); } $saytime = date("Y-m-d H:i:s"); $time = time(); $pltime = getcvar('lastpltime'); if ($pltime) { if ($time - $pltime < $public_r[pltime]) { printerror("PlOutTime", "history.go(-1)", 1); } } //是否关闭评论 $r = $empire->fetch1("select classid,closepl from {$dbtbpre}ecms_" . $class_r[$classid][tbname] . " where id='{$id}' and classid='{$classid}'"); if (empty($r[classid])) { printerror("ErrorUrl", "history.go(-1)", 1); } if ($class_r[$r[classid]][openpl]) { printerror("CloseClassPl", "history.go(-1)", 1); } //单信息关闭评论 if ($r['closepl']) { printerror("CloseInfoPl", "history.go(-1)", 1); } $sayip = egetip(); $username = RepPostStr($username); $username = str_replace("\r\n", "", $username); $saytext = nl2br(RepFieldtextNbsp(RepPostStr($saytext))); $pr = $empire->fetch1("select plclosewords,plf,plmustf,pldeftb from {$dbtbpre}enewspublic limit 1"); if ($repid) { if (trim($saytext) == "[quote]" . $repid . "[/quote]") { printerror("EmptyPl", "history.go(-1)", 1); } $saytext = RepPlTextQuote($repid, $saytext, $pr); } //过滤字符 $saytext = ReplacePlWord($pr['plclosewords'], $saytext); //审核 if ($class_r[$classid][checkpl]) { $checked = 1; } else { $checked = 0; } $ret_r = ReturnPlAddF($add, $pr, 0); //主表 $sql = $empire->query("insert into {$dbtbpre}enewspl(username,sayip,saytime,id,classid,checked,zcnum,fdnum,userid,isgood,stb) values('" . $username . "','{$sayip}','{$saytime}','{$id}','{$classid}','{$checked}',0,0,'{$muserid}',0,'{$pr['pldeftb']}');"); $plid = $empire->lastid(); //副表 $fsql = $empire->query("insert into {$dbtbpre}enewspl_data_" . $pr['pldeftb'] . "(plid,classid,id,saytext" . $ret_r['fields'] . ") values('{$plid}','{$classid}','{$id}','" . addslashes($saytext) . "'" . $ret_r['values'] . ");"); //信息表加1 $usql = $empire->query("update {$dbtbpre}ecms_" . $class_r[$classid][tbname] . " set plnum=plnum+1 where id='{$id}'"); //设置最后发表时间 $set1 = esetcookie("lastpltime", time(), time() + 3600 * 24); ecmsEmptyShowKey($keyvname); //清空验证码 if ($sql) { $reurl = DoingReturnUrl("../pl/?classid={$classid}&id={$id}", $_POST['ecmsfrom']); printerror("AddPlSuccess", $reurl, 1); } else { printerror("DbError", "history.go(-1)", 1); } }
function DoSendMsg($add, $ecms = 0, $userid, $username) { global $empire, $dbtbpre, $user_userid, $user_username, $user_havemsg, $user_group, $user_tablename, $user_groupid, $user_email; $start = (int) $add['start']; $line = (int) $add['line']; $title = $add['title']; $msgtext = $add['msgtext']; if (empty($title) || empty($msgtext)) { printerror("EmptySendMsg", "history.go(-1)"); } if ($ecms == 1) { $enews = "SendEmail"; $mess = "SendEmailSuccess"; $returnurl = "SendEmail.php"; $pr = $empire->fetch1("select sendmailtype,smtphost,fromemail,loginemail,emailusername,emailpassword,smtpport,emailname from {$dbtbpre}enewspublic limit 1"); //发送初使化 $mailer = FirstSendMail($pr, $title, $msgtext); } else { $enews = "SendMsg"; $mess = "SendMsgSuccess"; $returnurl = "SendMsg.php"; } //会员组 $gr = ReturnSendMemberGroup($add['groupid']); $a = " and " . $gr[0]; $b = 0; $msgtime = date("Y-m-d H:i:s"); $sql = $empire->query("select " . $user_userid . "," . $user_username . "," . $user_havemsg . "," . $user_group . "," . $user_email . " from " . $user_tablename . " where " . $user_userid . ">{$start}" . $a . " order by " . $user_userid . " limit " . $line); while ($r = $empire->fetch($sql)) { $b = 1; $newstart = $r[$user_userid]; if ($ecms == 1) { $mailer->AddAddress($r[$user_email]); } else { $r[$user_username] = doUtfAndGbk($r[$user_username], 1); //编码转换 $ititle = str_replace("[!--username--]", $r[$user_username], $title); $imsgtext = str_replace("[!--username--]", $r[$user_username], $msgtext); SendSiteMsg($ititle, $imsgtext, $msgtime, $r[$user_userid], $r[$user_username], $r[$user_havemsg]); } } if (empty($b)) { //操作日志 insert_dolog("title={$title}"); printerror($mess, $returnurl); } if ($ecms == 1) { if (!$mailer->Send()) { echo $mailer->ErrorInfo; } } //输出下一组提交表单 EchoSendMsgForm($enews, $returnurl, $newstart, $line, $gr[1], $add); }
function admin_ClearMember($add, $logininid, $loginin) { global $empire, $user_tablename, $user_username, $user_userid, $dbtbpre, $level_r, $user_group, $user_email, $user_checked, $user_registertime, $user_register, $user_group, $user_userfen, $user_money; CheckLevel($logininid, $loginin, $classid, "member"); //验证权限 //变量处理 $username = RepPostVar($add['username']); $email = RepPostStr($add['email']); $startuserid = (int) $add['startuserid']; $enduserid = (int) $add['enduserid']; $groupid = (int) $add['groupid']; $startregtime = RepPostVar($add['startregtime']); $endregtime = RepPostVar($add['endregtime']); $startuserfen = (int) $add['startuserfen']; $enduserfen = (int) $add['enduserfen']; $startmoney = (int) $add['startmoney']; $endmoney = (int) $add['endmoney']; $checked = (int) $add['checked']; $where = ''; if ($username) { $where .= " and " . $user_username . " like '%{$username}%'"; } if ($email) { $where .= " and " . $user_email . " like '%{$email}%'"; } if ($enduserid) { $where .= ' and ' . $user_userid . ' BETWEEN ' . $startuserid . ' and ' . $enduserid; } if ($groupid) { $where .= " and " . $user_group . "='{$groupid}'"; } if ($startregtime && $endregtime) { if ($user_register) { $startregtime = to_time($startregtime); $endregtime = to_time($endregtime); } $where .= " and " . $user_registertime . ">='{$startregtime}' and " . $user_registertime . "<='{$endregtime}'"; } if ($enduserfen) { $where .= ' and ' . $user_userfen . ' BETWEEN ' . $startuserfen . ' and ' . $enduserfen; } if ($endmoney) { $where .= ' and ' . $user_money . ' BETWEEN ' . $startmoney . ' and ' . $endmoney; } if ($checked) { $checkval = $checked == 1 ? 1 : 0; $where .= " and " . $user_checked . "='{$checkval}'"; } if (!$where) { printerror("EmptyClearMember", "history.go(-1)"); } $where = substr($where, 5); $sql = $empire->query("select " . $user_userid . "," . $user_username . "," . $user_group . " from " . $user_tablename . " where " . $where); $dh = ''; $inid = ''; while ($r = $empire->fetch($sql)) { $euid = $r[$user_userid]; //删除短信息 $dousername = doUtfAndGbk($r[$user_username], 1); //删除附加表 $fid = GetMemberFormId($r[$user_group]); DoDelMemberF($fid, $euid, $dousername); $empire->query("delete from {$dbtbpre}enewsqmsg where to_username='******'"); //集合 $inid .= $dh . $euid; $dh = ','; } if ($inid) { $addw = $user_userid . " in (" . $inid . ")"; $addaw = "userid in (" . $inid . ")"; $sql = $empire->query("delete from " . $user_tablename . " where " . $addw); //删除收藏 $del = $empire->query("delete from {$dbtbpre}enewsfava where " . $addaw); $del = $empire->query("delete from {$dbtbpre}enewsfavaclass where " . $addaw); //删除购买记录 $del = $empire->query("delete from {$dbtbpre}enewsbuybak where " . $addaw); //删除下载记录 $del = $empire->query("delete from {$dbtbpre}enewsdownrecord where " . $addaw); //删除好友记录 $del = $empire->query("delete from {$dbtbpre}enewshy where " . $addaw); $del = $empire->query("delete from {$dbtbpre}enewshyclass where " . $addaw); //删除留言 $del = $empire->query("delete from {$dbtbpre}enewsmembergbook where " . $addaw); //删除反馈 $del = $empire->query("delete from {$dbtbpre}enewsmemberfeedback where " . $addaw); } insert_dolog(""); //操作日志 printerror("DelMemberSuccess", "ClearMember.php"); }
$where = $user_userid . "='{$userid}'"; $username = ''; } else { $username = RepPostVar($_GET['username']); if (empty($username)) { printerror("NotUsername", "", 1); } $utfusername = doUtfAndGbk($username, 0); $where = $user_username . "='{$utfusername}'"; } $r = $empire->fetch1("select " . $user_userid . "," . $user_username . "," . $user_email . "," . $user_group . "," . $user_userfen . "," . $user_userdate . "," . $user_registertime . " from " . $user_tablename . " where " . $where . " limit 1"); if (empty($r[$user_userid])) { printerror("NotUsername", "", 1); } if (empty($username)) { $username = doUtfAndGbk($r[$user_username], 1); } if ($user_register) { $registertime = date("Y-m-d H:i:s", $r[$user_registertime]); } else { $registertime = $r[$user_registertime]; } $email = doUtfAndGbk($r[$user_email], 1); $addr = $empire->fetch1("select * from {$dbtbpre}enewsmemberadd where userid='" . $r[$user_userid] . "' limit 1"); //取得表单 $formid = GetMemberFormId($r[$user_group]); $formr = $empire->fetch1("select filef,imgf,tobrf,viewenter from {$dbtbpre}enewsmemberform where fid='{$formid}'"); //导入模板 require ECMS_PATH . 'e/template/member/ShowInfo.php'; db_close(); $empire = null;