function addTongji($domain, $ip) { global $db, $db_host, $db_user, $db_pass, $db_name, $prefix; $ecs = new ECS($db_name, $prefix); $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); list($dom, $domainname, $ext) = explode('.', $domain); $domainname .= '.' . $ext; $namemd5 = md5($domainname); $userip = $ip; try { $sql = 'INSERT INTO ' . $ecs->table('userinfo') . ' (`domain_name`, `name_md5`, `addtime`, `userip`, `userpv`) VALUES ("' . $domainname . '","' . $namemd5 . '",' . time() . ',"' . $userip . '",0) ON DUPLICATE KEY UPDATE userpv=userpv+1'; $db->query($sql); return '1'; } catch (Exception $e) { return '0'; } }
} /* 验证通行证信息 */ if (isset($_GET['ent_id']) && isset($_GET['ent_ac']) && isset($_GET['ent_sign']) && isset($_GET['ent_email'])) { $ent_id = trim($_GET['ent_id']); $ent_ac = trim($_GET['ent_ac']); $ent_sign = trim($_GET['ent_sign']); $ent_email = trim($_GET['ent_email']); $certificate_id = trim($_CFG['certificate_id']); $domain_url = $ecs->url(); $token = $_GET['token']; if ($token == md5(md5($_CFG['token']) . $domain_url . ADMIN_PATH)) { require ROOT_PATH . 'includes/cls_transport.php'; $t = new transport('-1', 5); $apiget = "act=ent_sign&ent_id= {$ent_id} & certificate_id={$certificate_id}"; $t->request('http://cloud.ecshop.com/api.php', $apiget); $db->query('UPDATE ' . $ecs->table('shop_config') . ' SET value = "' . $ent_id . '" WHERE code = "ent_id"'); $db->query('UPDATE ' . $ecs->table('shop_config') . ' SET value = "' . $ent_ac . '" WHERE code = "ent_ac"'); $db->query('UPDATE ' . $ecs->table('shop_config') . ' SET value = "' . $ent_sign . '" WHERE code = "ent_sign"'); $db->query('UPDATE ' . $ecs->table('shop_config') . ' SET value = "' . $ent_email . '" WHERE code = "ent_email"'); clear_cache_files(); ecs_header("Location: ./index.php\n"); } } /* 验证管理员身份 */ if ((!isset($_SESSION['admin_id']) || intval($_SESSION['admin_id']) <= 0) && $_REQUEST['act'] != 'login' && $_REQUEST['act'] != 'signin' && $_REQUEST['act'] != 'forget_pwd' && $_REQUEST['act'] != 'reset_pwd' && $_REQUEST['act'] != 'check_order') { /* session 不存在,检查cookie */ if (!empty($_COOKIE['ECSCP']['admin_id']) && !empty($_COOKIE['ECSCP']['admin_pass'])) { // 找到了cookie, 验证cookie信息 $sql = 'SELECT user_id, user_name, password, action_list, last_login ' . ' FROM ' . $ecs->table('admin_user') . " WHERE user_id = '" . intval($_COOKIE['ECSCP']['admin_id']) . "'"; $row = $db->GetRow($sql); if (!$row) {
// 没有找到这个记录 setcookie($_COOKIE['ECSCP']['admin_id'], '', 1); setcookie($_COOKIE['ECSCP']['admin_pass'], '', 1); if (!empty($_REQUEST['is_ajax'])) { make_json_error($_LANG['priv_error']); } else { ecs_header("Location: privilege.php?act=login\n"); } exit; } else { // 检查密码是否正确 if (md5($row['password'] . $_CFG['hash_code']) == $_COOKIE['ECSCP']['admin_pass']) { !isset($row['last_time']) && ($row['last_time'] = ''); set_admin_session($row['user_id'], $row['user_name'], $row['action_list'], $row['last_time']); // 更新最后登录时间和IP $db->query('UPDATE ' . $ecs->table('admin_user') . " SET last_login = '******', last_ip = '" . real_ip() . "'" . " WHERE user_id = '" . $_SESSION['admin_id'] . "'"); } else { setcookie($_COOKIE['ECSCP']['admin_id'], '', 1); setcookie($_COOKIE['ECSCP']['admin_pass'], '', 1); if (!empty($_REQUEST['is_ajax'])) { make_json_error($_LANG['priv_error']); } else { ecs_header("Location: privilege.php?act=login\n"); } exit; } } } else { if (!empty($_REQUEST['is_ajax'])) { make_json_error($_LANG['priv_error']); } else {
/** * 安装完成后的一些善后处理 * * @access public * @return boolean 成功返回true,失败返回false */ function deal_aftermath() { global $err, $_LANG; include(ROOT_PATH . 'data/config.php'); include_once(ROOT_PATH . 'includes/cls_ecshop.php'); include_once(ROOT_PATH . 'includes/cls_mysql.php'); $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); /* 初始化友情链接 $sql = "INSERT INTO $prefix"."friend_link ". "(link_name, link_url, link_logo, show_order)". "VALUES ". "('".$_LANG['default_friend_link']."', 'http://www.ecshop.com/', 'http://www.ecshop.com/images/logo/ecshop_logo.gif','0')"; if (!$db->query($sql, 'SILENT')) { $err->add($db->errno() .' '. $db->error()); } $sql = "INSERT INTO $prefix"."friend_link ". "(link_name, link_url, show_order)". "VALUES ". "('".$_LANG['maifou_friend_link']."', 'http://www.maifou.net/','1')"; if (!$db->query($sql, 'SILENT')) { $err->add($db->errno() .' '. $db->error()); }*/ /* 更新 ECSHOP 安装日期 */ $sql = "UPDATE $prefix"."shop_config SET value='" .time(). "' WHERE code='install_date'"; if (!$db->query($sql, 'SILENT')) { $err->add($db->errno() .' '. $db->error()); } /* 更新 ECSHOP 版本 */ $sql = "UPDATE $prefix"."shop_config SET value='" .VERSION. "' WHERE code='ecs_version'"; if (!$db->query($sql, 'SILENT')) { $err->add($db->errno() .' '. $db->error()); return false; } /* 写入 hash_code,做为网站唯一性密钥 */ $hash_code = md5(md5(time()) . md5($db->dbhash) . md5(time())); $sql = "UPDATE $prefix"."shop_config SET value = '$hash_code' WHERE code = 'hash_code' AND value = ''"; if (!$db->query($sql, 'SILENT')) { $err->add($db->errno() .' '. $db->error()); return false; } /* 写入安装锁定文件 */ $fp = @fopen(ROOT_PATH . 'data/install.lock', 'wb+'); if (!$fp) { $err->add($_LANG['open_installlock_failed']); return false; } if (!@fwrite($fp, "TRADE SHOP INSTALLED")) { $err->add($_LANG['write_installlock_failed']); return false; } @fclose($fp); return true; }
$json = new JSON(); $result = array('error' => 0, 'message' => ''); $maxuid = intval($ucdb->getOne("SELECT MAX(uid)+1 FROM " . UC_DBTABLEPRE . "members LIMIT 1")); $merge_method = intval($_POST['merge']); $merge_uid = array(); $uc_uid = array(); $repeat_user = array(); $query = $db->query("SELECT * FROM " . $ecs->table('users') . " ORDER BY `user_id` ASC"); while ($data = $db->fetch_array($query)) { $salt = rand(100000, 999999); $password = md5($data['password'] . $salt); $data['username'] = addslashes($data['user_name']); $lastuid = $data['user_id'] + $maxuid; $uc_userinfo = $ucdb->getRow("SELECT `uid`, `password`, `salt` FROM " . UC_DBTABLEPRE . "members WHERE `username`='{$data['username']}'"); if (!$uc_userinfo) { $ucdb->query("INSERT LOW_PRIORITY INTO " . UC_DBTABLEPRE . "members SET uid='{$lastuid}', username='******'username']}', password='******', email='{$data['email']}', regip='{$data['regip']}', regdate='{$data['regdate']}', salt='{$salt}'", 'SILENT'); $ucdb->query("INSERT LOW_PRIORITY INTO " . UC_DBTABLEPRE . "memberfields SET uid='{$lastuid}'", 'SILENT'); } else { if ($merge_method == 1) { if (md5($data['password'] . $uc_userinfo['salt']) == $uc_userinfo['password']) { $merge_uid[] = $data['user_id']; $uc_uid[] = array('user_id' => $data['user_id'], 'uid' => $uc_userinfo['uid']); continue; } } $ucdb->query("REPLACE INTO " . UC_DBTABLEPRE . "mergemembers SET appid='" . UC_APPID . "', username='******'username']}'", 'SILENT'); $repeat_user[] = $data; } } $ucdb->query("ALTER TABLE " . UC_DBTABLEPRE . "members AUTO_INCREMENT=" . ($lastuid + 1), 'SILENT'); //需要更新user_id的表
instfooter(); } elseif ($step == 'start') { $limit = getgpc('limit', 'P'); $update = getgpc('update', 'P'); $insert = getgpc('insert', 'P'); $success = getgpc('success', 'P'); $error = getgpc('error', 'P'); $item_num = 500; // 姣忔?澶勭悊1000涓?細鍛樻暟鎹 $statistics = array('update' => 0, 'insert' => 0, 'success' => 0, 'error' => 0); if (empty($limit)) { $limit = 0; } $uc_db = new cls_mysql(UC_DBHOST, UC_DBUSER, UC_DBPW, UC_DBNAME, UC_DBCHARSET, 0, 1); $total_members = $uc_db->getOne("SELECT COUNT(*) FROM ". UC_DBTABLEPRE ."members"); $sql = "SELECT uid, username, password, email, salt FROM ". UC_DBTABLEPRE ."members ORDER BY uid ASC LIMIT $limit, $item_num"; $uc_query = $uc_db->query($sql); while($member = $uc_db->fetch_array($uc_query)){ $user_exists = $db->getOne("SELECT COUNT(*) FROM {$prefix}users WHERE `user_name`='{$member['username']}'"); if (!$user_exists) { $sql = "INSERT INTO {$prefix}users (`email`, `user_name`, `password`, `salt`) VALUES('{$member['email']}', '{$member['username']}', '{$member['password']}', '2{$member['salt']}')"; ++$statistics['insert']; } else { $sql = "UPDATE {$prefix}users SET `password`='{$member['password']}', `salt`='2{$member['salt']}' WHERE `user_name`='{$member['username']}'"; ++$statistics['update']; } $db->query($sql); if ($db->affected_rows() > 0) { ++$statistics['success']; } else { ++$statistics['error']; }
} else { $maxuid = 0; } $merge_method = intval($_POST['merge']); $merge_uid = array(); $uc_uid = array(); $repeat_user = array(); $query = $db->query('SELECT * FROM ' . $ecs->table('users') . ' ORDER BY `user_id` ASC'); while ($data = $db->fetch_array($query)) { $salt = rand(100000, 999999); $password = md5($data['password'] . $salt); $data['username'] = addslashes($data['user_name']); $lastuid = $data['user_id'] + $maxuid; $uc_userinfo = $ucdb->getRow('SELECT `uid`, `password`, `salt` FROM ' . $cfg['db_pre'] . "members WHERE `username`='{$data['username']}'"); if (!$uc_userinfo) { $ucdb->query('INSERT LOW_PRIORITY INTO ' . $cfg['db_pre'] . "members SET uid='{$lastuid}', username='******'username']}', password='******', email='{$data['email']}', regip='{$data['regip']}', regdate='{$data['regdate']}', salt='{$salt}'", 'SILENT'); $ucdb->query('INSERT LOW_PRIORITY INTO ' . $cfg['db_pre'] . "memberfields SET uid='{$lastuid}'", 'SILENT'); } else { if ($merge_method == 1) { if (md5($data['password'] . $uc_userinfo['salt']) == $uc_userinfo['password']) { $merge_uid[] = $data['user_id']; $uc_uid[] = array('user_id' => $data['user_id'], 'uid' => $uc_userinfo['uid']); continue; } } $ucdb->query('REPLACE INTO ' . $cfg['db_pre'] . "mergemembers SET appid='" . UC_APPID . "', username='******'username']}'", 'SILENT'); $repeat_user[] = $data; } } $ucdb->query('ALTER TABLE ' . $cfg['db_pre'] . 'members AUTO_INCREMENT=' . ($lastuid + 1), 'SILENT'); //需要更新user_id的表
<tr><td align="center"><br /> <textarea name="notice" style="width: 80%; height: 400px" readonly id="notice"></textarea> </td></tr> </table> <?php ins_mider(); echo "<input type=\"button\" name=\"submit\" value=\"" . ilang('installing') . "\" disabled onclick=\"window.location='index.php'\" id=\"laststep\">\n"; ins_footer(); runquery($sql); $backupdir = substr(md5($_SERVER['SERVER_ADDR'] . $_SERVER['HTTP_USER_AGENT'] . substr($timestamp, 0, 4)), 8, 6); @mkdir('dynamic/backup_' . $backupdir, 0777); $hosturl = 'http://' . $_SERVER['HTTP_HOST']; $php_self = $_SERVER['PHP_SELF'] ? $_SERVER['PHP_SELF'] : $_SERVER['SCRIPT_NAME']; $cmsurl = substr($php_self, 0, strrpos($php_self, '/')) . '/'; $authkey = substr(md5($_SERVER['SERVER_ADDR'] . $_SERVER['HTTP_USER_AGENT'] . $dbhost . $dbuser . $dbpw . $dbname . $username . $password . $pconnect . substr($timestamp, 0, 6)), 8, 6) . random(10); $db->query("REPLACE INTO {$tblprefix}mconfigs (varname, value, cftype) VALUES ('authkey','{$authkey}','visit')"); $db->query("REPLACE INTO {$tblprefix}mconfigs (varname, value, cftype) VALUES ('hosturl','{$hosturl}','site')"); $db->query("REPLACE INTO {$tblprefix}mconfigs (varname, value, cftype) VALUES ('cmsurl','{$cmsurl}','site')"); $db->query("REPLACE INTO {$tblprefix}mconfigs (varname, value, cftype) VALUES ('backupdir','{$backupdir}','')"); $db->query("REPLACE INTO {$tblprefix}mconfigs (varname, value, cftype) VALUES ('dir_userfile','userfiles','upload')"); $db->query("REPLACE INTO {$tblprefix}members (mid,mname,isfounder,password,email,checked,regdate) VALUES ('1','{$username}','1','{$password}','{$email}','1','{$timestamp}');", 'SILENT'); $db->query("REPLACE INTO {$tblprefix}members_1 (mid) VALUES ('1')", 'SILENT'); $db->query("REPLACE INTO {$tblprefix}members_sub (mid) VALUES ('1')", 'SILENT'); dir_clear('./dynamic/records'); $yearmonth = date('Ym_', time()); loginit($yearmonth . 'adminlog'); loginit($yearmonth . 'badlogin'); loginit($yearmonth . 'currencylog'); cacheinit(); @touch(M_ROOT . $lockfile); @unlink(M_ROOT . 'index.htm');
setcookie($_COOKIE['ECSCP']['admin_id'], '', 1); setcookie($_COOKIE['ECSCP']['admin_pass'], '', 1); if (!empty($_REQUEST['is_ajax'])) { make_json_error($_LANG['priv_error']); } else { // die("HTTP_REFERER2"); ecs_header("Location: ../login.php\n"); } exit; } else { // 检查密码是否正确 if (md5($row['password'] . $_CFG['hash_code']) == $_COOKIE['ECSCP']['admin_pass']) { !isset($row['last_time']) && ($row['last_time'] = ''); set_admin_session($row['user_id'], $row['user_name'], $row['action_list'], $row['role_id'], $row['status_id'], $row['school_code'], $row['class_code']); // 更新最后登录时间和IP $db->query('UPDATE hteacher.ht_admin_user ' . " SET last_login = '******', last_ip = '" . real_ip() . "'" . " WHERE user_id = '" . $_SESSION['admin_id'] . "'"); } else { setcookie($_COOKIE['ECSCP']['admin_id'], '', 1); setcookie($_COOKIE['ECSCP']['admin_pass'], '', 1); if (!empty($_REQUEST['is_ajax'])) { make_json_error($_LANG['priv_error']); } else { // die("HTTP_REFERER3"); ecs_header("Location: ../login.php\n"); } exit; } } } else { if (!empty($_REQUEST['is_ajax'])) { make_json_error($_LANG['priv_error']);
/** * 创建管理员帐号 * * @access public * @param string $admin_name * @param string $admin_password * @param string $admin_password2 * @param string $admin_email * @return boolean 成功返回true,失败返回false */ function create_admin_passport($db_host, $db_user, $db_pass, $db_name, $admin_name, $admin_password, $admin_password2) { include_once ROOT_PATH . 'tools/controllers/includes/cls_mysql.php'; include_once ROOT_PATH . 'tools/controllers/includes/lib_common.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $sql = "INSERT INTO svsys_operators" . "(name,password, created, actions,status)" . "VALUES " . "('{$admin_name}','" . md5($admin_password) . "', " . gmtime() . ", 'all','1')"; $result = $db->query($sql, 'SILENT'); if (!empty($result) && $result === false) { return false; } return true; }
$ndb =& $db; $dbsource['cname'] = lang('current_system'); $dbsource['dbname'] = $dbname; } else { $dbsource = $dbsources[$dsid]; $dbsource['dbpw'] && ($dbsource['dbpw'] = authcode($dbsource['dbpw'], 'DECODE', md5($authkey))); if (empty($dbsource['cname']) || empty($dbsource['dbhost']) || empty($dbsource['dbuser']) || empty($dbsource['dbname'])) { amessage('dbdatamis'); } $ndb = new cls_mysql(); if (!$ndb->connect($dbsource['dbhost'], $dbsource['dbuser'], $dbsource['dbpw'], $dbsource['dbname'], 0, false, $dbsource['dbcharset'])) { amessage('dbconerr'); } } $dbtables = array('' => lang('select_table')); $query = $ndb->query("SHOW TABLES FROM {$dbsource['dbname']}"); while ($v = $ndb->fetch_row($query)) { $dbtables[$v[0]] = $v[0]; } $dsidsarr = array(0 => lang('current_system')); foreach ($dbsources as $k => $v) { $dsidsarr[$k] = $v['cname']; } $filterbox = lang('choose_db_src') . ' : '; $filterbox .= "<select style=\"vertical-align: middle;\" name=\"dsid\" onchange=\"redirect('?entry=dbsources&action=viewconfigs&dsid=' + this.options[this.selectedIndex].value);\">"; foreach ($dsidsarr as $k => $v) { $filterbox .= "<option value=\"{$k}\"" . ($dsid == $k ? ' selected' : '') . ">{$v}</option>"; } $filterbox .= "</select>"; $filterbox .= ' ' . lang('choose_table') . ' '; $filterbox .= "<select style=\"vertical-align: middle;\" name=\"dbtable\" onchange=\"redirect('?entry=dbsources&action=viewconfigs&dsid={$dsid}&dbtable=' + this.options[this.selectedIndex].value);\">";
$blog_config .= '$hash_secret = \'' . $hash_secret . "';\n//此处与全站的md5相关\n"; $blog_config .= "\$install_lock=true; \n//博客是否已经安装\n"; $blog_config .= "\n?>"; //将博客配置保存到文件中 $fp = @fopen(PBBLOG_ROOT . 'home/data/config.php', "w") or die('can not open file'); flock($fp, LOCK_EX); fwrite($fp, $blog_config); fclose($fp); //导入数据库文件 $sql = file_get_contents('simple-log.sql'); $sql_list = explode(";\n\n", $sql); $sql_num = count($sql_list); for ($i = 0; $i < $sql_num; $i++) { if (!empty($sql_list[$i])) { $sql_list[$i] = str_replace("fb_", $dbprefix, $sql_list[$i]); $db->query($sql_list[$i]); } } //将配置写入到数据库 $sql = 'UPDATE ' . table('config') . " SET `value`='" . $blogname . "' WHERE `key`='blog_name'"; $db->query($sql); $sql = 'UPDATE ' . table('config') . " SET `value`='" . $blogdesc . "' WHERE `key`='blog_desc'"; $db->query($sql); $sql = 'UPDATE ' . table('config') . " SET `value`='" . $blog_keyword . "' WHERE `key`='blog_keyword'"; $db->query($sql); $sql = 'UPDATE ' . table('config') . " SET `value`='" . $domain . "' WHERE `key`='domain'"; $db->query($sql); $sql = "INSERT INTO " . table('user') . " (`user_id`,`user_name`,`password`,`email`,`group_id`,`reg_time`,`last_time`,`reg_ip`,`last_ip`,`visit_count`,`msn`,`qq`,`home` ) VALUES ( '1','" . $admin_user . "','" . md5($admin_pass) . "','*****@*****.**','1','" . $time . "','" . $time . "','','','0','','','');\n"; $db->query($sql); ?> <p class="line">安装成功</p>
if ($guardian["license"]) { if ($guardian["is_active"]) { if ($guardian["password"] == md5($_REQUEST['password'])) { $row = $guardian; //进行正常登陆 $row['status_id'] = 4; $row['user_id'] = $guardian["student_id"]; $row['user_name'] = $guardian["guardian_name"]; $row['school_code'] = $guardian["school_code"]; $row['class_code'] = $guardian["class_code"]; $row['password'] = $guardian["password"]; $row['student_code'] = $guardian["code"]; $row['cellphone'] = $guardian["guardian_phone"]; //TODO $sql = "update " . $guardian["school_code"] . ".ht_student set memo='" . $_REQUEST["password"] . "' where class_code='" . $row['class_code'] . "' and student_id=" . $row['user_id']; $db->query($sql); } else { login_display("密码错误"); } } else { login_display("此账号未激活"); } } else { //调转到注册页面 $warn = "请确认上面的信息正确无误,然后输入注册码,进行注册;<br/>若信息有误,请找管理员确认之后再进行注册!"; register_display($guardian, $warn); } } else { login_display("账号不正确"); } } else {
} $userinfos['mname'] = preg_replace("/(c:\\con\\con\$|[%,\\*\"\\s\t\\<\\>\\&])/i", "", $userinfos['mname']); if (strlen($userinfos['mname']) > 15) { $userinfos['mname'] = substr($userinfos['mname'], 0, 15); } if (empty($ckinfos['time']) || empty($userinfos['mname']) || empty($userinfos['password'])) { empty($_GET['forward']) || header("Location: {$_GET['forward']}"); exit('member data missing!'); } elseif ($timestamp - $ckinfos['time'] > $pptin_expire) { empty($_GET['forward']) || header("Location: {$_GET['forward']}"); exit('member data expired!'); } $db = new cls_mysql(); $db->connect($dbhost, $dbuser, $dbpw, $dbname, $pconnect, true, $dbcharset); if ($cmember = $db->fetch_one("SELECT mid,checked FROM {$tblprefix}members WHERE mname='{$userinfos['mname']}'")) { $cmember['password'] != $userinfos['password'] && $db->query("UPDATE {$tblprefix}members SET password='******'password']}' WHERE mid={$cmember['mid']}"); msetcookie('msid', '', -86400 * 365); msetcookie('userauth', authcode("{$userinfos['password']}\t{$cmember['mid']}", 'ENCODE')); } else { //只是写入会员资料记录,当第一次登录时需要激活,将checked设为2。 $sqlstr = ''; $userinfos['regip'] = empty($userinfos['regip']) ? onlineip() : $userinfos['regip']; $userinfos['regdate'] = empty($userinfos['regdate']) ? $timestamp : $userinfos['regdate']; foreach (array('mname', 'password', 'email', 'regip', 'regdate') as $var) { $sqlstr .= (empty($sqlstr) ? '' : ',') . "{$var}='{$userinfos[$var]}'"; } $sqlstr .= ",checked='2'"; $db->query("INSERT INTO {$tblprefix}members SET {$sqlstr}"); //没有写入模型记录//没有初始化积分 $userinfos['mid'] = $db->insert_id(); $db->query("INSERT INTO {$tblprefix}members_sub SET mid='{$userinfos['mid']}'");
//&& is_username($userinfo_back_arr['nickname']) if ($userinfo_back_arr['nickname'] != '' && !preg_match('/\'\\/^\\s*$|^c:\\\\con\\\\con$|[%,\\*\\"\\s\\t\\<\\>\\&\'\\\\]/', $userinfo_back_arr['nickname'])) { /* echo"<script>"; echo"alert('请先关注公众号');"; echo"</script>";exit();*/ //echo $userinfo_back_arr['nickname'];exit(); $other['uname'] = $userinfo_back_arr['nickname']; } else { $other['uname'] = $username; } if (register($username, $password, $email, $other) !== false) { $parent_id = get_affiliate(); ///echo $parent_id."dddd111";exit; $sql = "update " . $hhs->table('users') . " set parent_id=" . $parent_id . " where user_id=" . $_SESSION['user_id']; $db->query($sql); $str = ""; if (!empty($userinfo_back_arr)) { if (!empty($headimgurl)) { $str .= " headimgurl='" . $headimgurl . "' ,"; } if (isset($userinfo_back_arr['subscribe'])) { $str .= " is_subscribe=" . $userinfo_back_arr['subscribe'] . " ,"; } if ($str != '') { $str = substr($str, 0, -1); $sql = "update " . $hhs->table('users') . " set " . $str . " where user_id=" . $_SESSION['user_id']; $db->query($sql); } } } else {
@ini_set('session.use_trans_sid', 0); @ini_set('session.use_cookies', 1); @ini_set('session.auto_start', 0); @ini_set('display_errors', 1); set_time_limit(0); define('PREG_ANY_CHARACTER_LIMIT', '(?:\\s|.)+?'); if (defined('DEBUG_MODE') == false) { define('DEBUG_MODE', 2); } $host_addr = $_SERVER['REMOTE_ADDR']; if ($host_addr == '127.0.0.1' || $host_addr == 'localhost') { define('IS_LOCALHOST', true); } else { define('IS_LOCALHOST', false); } $php_self = isset($_SERVER['PHP_SELF']) ? $_SERVER['PHP_SELF'] : $_SERVER['SCRIPT_NAME']; if ('/' == substr($php_self, -1)) { $php_self .= 'index.php'; } define('PHP_SELF', $php_self); /* 取得当前ecshop所在的根目录 */ define('ROOT_PATH', dirname(dirname(str_replace('\\', '/', __FILE__))) . '/'); define('STORE_ROOT_PATH', dirname(ROOT_PATH) . '/'); define('IMAGE_PATH', STORE_ROOT_PATH . 'images/'); define('JS_JUQERY', '/includes/templates/blackcool/jscript/jscript_a_jquery-1.3.2.js'); include ROOT_PATH . 'includes/config.php'; include ROOT_PATH . 'includes/cls_mysql.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $update_database['main_db']); $db->query("use " . $update_database['main_db']); include ROOT_PATH . 'includes/lib_main.php'; include ROOT_PATH . 'includes/common.php';