function &db() { include_once 'db.php'; static $db = null; if ($db === null) { $cfg = parse_url(DB_CONFIG); if ($cfg['scheme'] == 'mysql') { if (empty($cfg['pass'])) { $cfg['pass'] = ''; } else { $cfg['pass'] = urldecode($cfg['pass']); } $cfg['user'] = urldecode($cfg['user']); if (empty($cfg['path'])) { trigger_error('Invalid database name.', E_USER_ERROR); } else { $cfg['path'] = str_replace('/', '', $cfg['path']); } $charset = 'utf8'; $db = new cls_mysql(); //$db->cache_dir = ROOT_PATH. '/temp/query_caches/'; $db->connect($cfg['host'] . ':' . $cfg['port'], $cfg['user'], $cfg['pass'], $cfg['path'], $charset); } else { trigger_error('Unkown database type.', E_USER_ERROR); } } return $db; }
function get_waterMark() { require_once ROOT_PATH . '/data/config.php'; require_once ROOT_PATH . '/includes/cls_mysql.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name, EC_CHARSET, 0, 1); $sql = 'select value from ecs_shop_config where code = "watermark"'; $watermark = $db->getOne($sql); $sql = 'select value from ecs_shop_config where code = "watermark_place"'; $watermark_place = $db->getOne($sql); $sql = 'select value from ecs_shop_config where code = "watermark_alpha"'; $watermark_alpha = $db->getOne($sql); return array('watermark' => $watermark, 'watermark_place' => $watermark_place, 'watermark_alpha' => $watermark_alpha); }
function addTongji($domain, $ip) { global $db, $db_host, $db_user, $db_pass, $db_name, $prefix; $ecs = new ECS($db_name, $prefix); $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); list($dom, $domainname, $ext) = explode('.', $domain); $domainname .= '.' . $ext; $namemd5 = md5($domainname); $userip = $ip; try { $sql = 'INSERT INTO ' . $ecs->table('userinfo') . ' (`domain_name`, `name_md5`, `addtime`, `userip`, `userpv`) VALUES ("' . $domainname . '","' . $namemd5 . '",' . time() . ',"' . $userip . '",0) ON DUPLICATE KEY UPDATE userpv=userpv+1'; $db->query($sql); return '1'; } catch (Exception $e) { return '0'; } }
/** * 数据库控制器 * * @author Hyber * @usage none */ function dump_escape_string($str) { if ($str === null) { return null; } else { if ($str == '') { return ''; } else { return cls_mysql::escape_string($str); } } }
<?php error_reporting(0); //error_reporting(2047); define('M_COM', TRUE); define('M_ROOT', ''); $timestamp = time(); include_once M_ROOT . './base.inc.php'; include_once M_ROOT . './include/general.fun.php'; load_cache('sitemaps'); empty($sitemaps['google']) && exit; $sitemap = $sitemaps['google']; $cachefile = M_ROOT . './google.xml'; if (empty($sitemap['setting']['life']) || $timestamp - @filemtime($cachefile) > $sitemap['setting']['life'] * 3600 || !($datastr = file2str($cachefile))) { require M_ROOT . './dynamic/cache/mconfigs.cac.php'; @extract($mconfigs_0); include_once M_ROOT . './include/mysql.cls.php'; $db = new cls_mysql(); $db->connect($dbhost, $dbuser, $dbpw, $dbname, $pconnect, true, $dbcharset); include_once M_ROOT . './include/common.fun.php'; include_once M_ROOT . './include/sitemap.inc.php'; str2file($datastr, $cachefile); } echo $datastr; header("Content-type: application/xml"); exit;
} $_COOKIE = addslashes_deep($_COOKIE); $_REQUEST = addslashes_deep($_REQUEST); } /* 对路径进行安全处理 */ if (strpos(PHP_SELF, '.php/') !== false) { ecs_header("Location:" . substr(PHP_SELF, 0, strpos(PHP_SELF, '.php/') + 4) . "\n"); exit; } /* 创建 ECSHOP 对象 */ $ecs = new ECS($db_name, $prefix); define('DATA_DIR', $ecs->data_dir()); define('IMAGE_DIR', $ecs->image_dir()); /* 初始化数据库类 */ require ROOT_PATH . 'includes/cls_mysql.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $db_host = $db_user = $db_pass = $db_name = NULL; /* 创建错误处理对象 */ $err = new ecs_error('message.htm'); /* 初始化session */ require ROOT_PATH . 'includes/cls_session.php'; $sess = new cls_session($db, $ecs->table('sessions'), $ecs->table('sessions_data'), 'ECSCP_ID'); /* 初始化 action */ if (!isset($_REQUEST['act'])) { $_REQUEST['act'] = ''; } elseif (($_REQUEST['act'] == 'login' || $_REQUEST['act'] == 'logout' || $_REQUEST['act'] == 'signin') && strpos(PHP_SELF, '/privilege.php') === false) { $_REQUEST['act'] = ''; } elseif (($_REQUEST['act'] == 'forget_pwd' || $_REQUEST['act'] == 'reset_pwd' || $_REQUEST['act'] == 'get_pwd') && strpos(PHP_SELF, '/get_password.php') === false) { $_REQUEST['act'] = ''; } /* 载入系统参数 */
$userinfos['password'] = md5($userdb['password']); $userinfos['email'] = addslashes($userdb['email']); $ckinfos['time'] = $userdb['time']; } $userinfos['mname'] = preg_replace("/(c:\\con\\con\$|[%,\\*\"\\s\t\\<\\>\\&])/i", "", $userinfos['mname']); if (strlen($userinfos['mname']) > 15) { $userinfos['mname'] = substr($userinfos['mname'], 0, 15); } if (empty($ckinfos['time']) || empty($userinfos['mname']) || empty($userinfos['password'])) { empty($_GET['forward']) || header("Location: {$_GET['forward']}"); exit('member data missing!'); } elseif ($timestamp - $ckinfos['time'] > $pptin_expire) { empty($_GET['forward']) || header("Location: {$_GET['forward']}"); exit('member data expired!'); } $db = new cls_mysql(); $db->connect($dbhost, $dbuser, $dbpw, $dbname, $pconnect, true, $dbcharset); if ($cmember = $db->fetch_one("SELECT mid,checked FROM {$tblprefix}members WHERE mname='{$userinfos['mname']}'")) { $cmember['password'] != $userinfos['password'] && $db->query("UPDATE {$tblprefix}members SET password='******'password']}' WHERE mid={$cmember['mid']}"); msetcookie('msid', '', -86400 * 365); msetcookie('userauth', authcode("{$userinfos['password']}\t{$cmember['mid']}", 'ENCODE')); } else { //只是写入会员资料记录,当第一次登录时需要激活,将checked设为2。 $sqlstr = ''; $userinfos['regip'] = empty($userinfos['regip']) ? onlineip() : $userinfos['regip']; $userinfos['regdate'] = empty($userinfos['regdate']) ? $timestamp : $userinfos['regdate']; foreach (array('mname', 'password', 'email', 'regip', 'regdate') as $var) { $sqlstr .= (empty($sqlstr) ? '' : ',') . "{$var}='{$userinfos[$var]}'"; } $sqlstr .= ",checked='2'"; $db->query("INSERT INTO {$tblprefix}members SET {$sqlstr}");
/** * 获得spt代码 * * @access public * @return string spt代码 */ function get_spt_code() { include(ROOT_PATH . 'data/config.php'); include_once(ROOT_PATH . 'includes/cls_ecshop.php'); include_once(ROOT_PATH . 'includes/cls_mysql.php'); $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $ecs = new ECS($db_name, $prefix); $hash_code = $db->getOne("SELECT value FROM " . $ecs->table('shop_config') . " WHERE code='hash_code'"); $spt = '<script type="text/javascript" src="http://api.ecshop.com/record.php?'; $spt .= "url=" .urlencode($ecs->url()). "&mod=install&version=" .VERSION. "&hash_code=" . $hash_code . "&charset=" .EC_CHARSET. "&language=" . $GLOBALS['installer_lang'] . "\"></script>"; return $spt; }
$sysmsg[] = __('uc_dbtablepre_error'); } if (!trim($settings['uc_key'])) { $error = true; $sysmsg[] = __('uc_key_error'); } if (!trim($settings['uc_api'])) { $error = true; $sysmsg[] = __('uc_api_error'); } if (!$settings['uc_appid']) { $error = true; $sysmsg[] = __('uc_appid_error'); } if ($settings['connect_uc'] && !$error) { $dbuc = new cls_mysql(); $dbuc->connect($settings['uc_dbhost'], $settings['uc_dbuser'], $settings['uc_dbpwd'], $settings['uc_dbname'], $settings['uc_pconnect']); $username = @$dbuc->result_first("select username from `{$settings['uc_dbname']}`.{$settings['uc_dbtablepre']}members where username='******'uc_admin']}' limit 1"); if ($q) { $dbuc->free($q); } $dbuc->close(); if (!$username) { $error = true; $sysmsg[] = __('uc_admin_error'); } } if (!$error) { $charset_arr = array('gbk' => 'gbk', 'utf-8' => 'utf8'); $settings['uc_dbcharset'] = $charset_arr[strtolower($settings['uc_charset'])]; settings_cache($settings);
} /* 初始化JSON对象 */ $json = new JSON(); /* 分析JSON数据 */ parse_json($json, $_POST['Json']); /* 初始化包含文件 */ require ROOT_PATH . 'includes/inc_constant.php'; require ROOT_PATH . 'includes/cls_ecshop.php'; require ROOT_PATH . 'includes/lib_time.php'; require ROOT_PATH . 'includes/lib_main.php'; require ROOT_PATH . 'includes/lib_insert.php'; require ROOT_PATH . 'includes/lib_goods.php'; /* 创建 ECSHOP 对象 */ $ecs = new ECS($db_name, $prefix); /* 初始化数据库类 */ $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $db->set_disable_cache_tables(array($ecs->table('sessions'), $ecs->table('sessions_data'), $ecs->table('cart'))); $db_host = $db_user = $db_pass = $db_name = null; /* 载入系统参数 */ $_CFG = load_config(); /* 载入语言包 */ require ROOT_PATH . 'languages/' . $_CFG['lang'] . '/admin/common.php'; require ROOT_PATH . 'languages/' . $_CFG['lang'] . '/admin/log_action.php'; /* 初始化session */ include ROOT_PATH . 'includes/cls_session.php'; $sess = new cls_session($db, $ecs->table('sessions'), $ecs->table('sessions_data'), 'CL_ECSCP_ID'); define('SESS_ID', $sess->get_session_id()); /* 判断是否登录了 */ if ((!isset($_SESSION['admin_id']) || intval($_SESSION['admin_id']) <= 0) && $_POST['Action'] != 'UserLogin') { client_show_message(110); }
} $_COOKIE = addslashes_deep($_COOKIE); $_REQUEST = addslashes_deep($_REQUEST); } /* 对路径进行安全处理 */ if (strpos(PHP_SELF, '.php/') !== false) { ecs_header("Location:" . substr(PHP_SELF, 0, strpos(PHP_SELF, '.php/') + 4) . "\n"); exit; } /* 创建 ECSHOP 对象 TODO*/ $ecs = new ECS($db_name, $prefix); define('DATA_DIR', $ecs->data_dir()); define('IMAGE_DIR', $ecs->image_dir()); /* 初始化数据库类 */ require ROOT_PATH . 'includes/cls_mysql.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $db_host = $db_user = $db_pass = $db_name = NULL; /* 创建错误处理对象 */ $err = new ecs_error('message.htm'); /* 初始化session */ require ROOT_PATH . 'includes/cls_session.php'; $sess = new cls_session($db, $ecs->table('sessions'), $ecs->table('sessions_data'), 'ECSCP_ID'); /* 载入系统参数 */ // $_CFG = load_config(); $_CFG = array("lang" => "zh_cn", "template" => "default", "hash_code" => "feb0af8dda696ecc1a9ba790973096a8", "captcha" => "0"); /* 初始化 action */ if (!isset($_REQUEST['act'])) { $_REQUEST['act'] = ''; } require ROOT_PATH . 'languages/' . $_CFG['lang'] . '/admin/common.php'; require ROOT_PATH . 'languages/' . $_CFG['lang'] . '/admin/log_action.php';
$dsid = empty($dsid) ? 0 : max(0, intval($dsid)); $dbtable = empty($dbtable) ? '' : trim($dbtable); if ($dsid && empty($dbsources[$dsid])) { amessage('choosedbs', $forward); } if (!$dsid) { $ndb =& $db; $dbsource['cname'] = lang('current_system'); $dbsource['dbname'] = $dbname; } else { $dbsource = $dbsources[$dsid]; $dbsource['dbpw'] && ($dbsource['dbpw'] = authcode($dbsource['dbpw'], 'DECODE', md5($authkey))); if (empty($dbsource['cname']) || empty($dbsource['dbhost']) || empty($dbsource['dbuser']) || empty($dbsource['dbname'])) { amessage('dbdatamis'); } $ndb = new cls_mysql(); if (!$ndb->connect($dbsource['dbhost'], $dbsource['dbuser'], $dbsource['dbpw'], $dbsource['dbname'], 0, false, $dbsource['dbcharset'])) { amessage('dbconerr'); } } $dbtables = array('' => lang('select_table')); $query = $ndb->query("SHOW TABLES FROM {$dbsource['dbname']}"); while ($v = $ndb->fetch_row($query)) { $dbtables[$v[0]] = $v[0]; } $dsidsarr = array(0 => lang('current_system')); foreach ($dbsources as $k => $v) { $dsidsarr[$k] = $v['cname']; } $filterbox = lang('choose_db_src') . ' : '; $filterbox .= "<select style=\"vertical-align: middle;\" name=\"dsid\" onchange=\"redirect('?entry=dbsources&action=viewconfigs&dsid=' + this.options[this.selectedIndex].value);\">";
echo '<script language="javascript" reload="1">alert(\'' . addslashes($checkmsg) . '\');parent.$(\'cfupload\').action=\'?entry=mconfigs&action=cfupload\';parent.$(\'cfupload\').target=\'_self\'</script>'; } elseif ($action == 'dbcheck') { $checkmsg = ''; $dbsourcenew = mstripslashes($dbsourcenew); if (in_str('********', $dbsourcenew['dbpw'])) { $dbsourcenew['dbpw'] = authcode($dbsourcenew['dbpw0'], 'DECODE', md5($authkey)); } $alertarr = array('add' => array('dbsourceadd', 'dbsourcesedit'), 'edit' => array('dbsourcedetail', 'dbsourcedetail')); $dbsourcenew['cname'] = trim(strip_tags($dbsourcenew['cname'])); $dbsourcenew['dbhost'] = trim(strip_tags($dbsourcenew['dbhost'])); $dbsourcenew['dbuser'] = trim(strip_tags($dbsourcenew['dbuser'])); $dbsourcenew['dbname'] = trim(strip_tags($dbsourcenew['dbname'])); if (empty($dbsourcenew['cname']) || empty($dbsourcenew['dbhost']) || empty($dbsourcenew['dbuser']) || empty($dbsourcenew['dbname'])) { $checkmsg = lang('dbsrc_data_miss'); } else { $s_db = new cls_mysql(); if (!$s_db->connect($dbsourcenew['dbhost'], $dbsourcenew['dbuser'], $dbsourcenew['dbpw'], $dbsourcenew['dbname'], 0, false, $dbsourcenew['dbcharset'])) { $checkmsg = lang('dbsrc_connect_error'); } else { $checkmsg = lang('dbsrc_connect_correct'); } $s_db->close(); } echo '<script language="javascript" reload="1">alert(\'' . addslashes($checkmsg) . '\');parent.$(\'' . $alertarr[$deal][0] . '\').action=\'?entry=dbsources&action=' . $alertarr[$deal][1] . '\';parent.$(\'' . $alertarr[$deal][0] . '\').target=\'_self\'</script>'; } elseif ($action == 'mailcheck') { $mail_to = trim($mconfigsnew['mail_to']); $mail_sign = trim($mconfigsnew['mail_sign']); $mail_smtp = trim($mconfigsnew['mail_smtp']); $mail_mode = trim($mconfigsnew['mail_mode']); $mail_port = trim($mconfigsnew['mail_port']); $mail_auth = trim($mconfigsnew['mail_auth']);
/** * 创建管理员帐号 * * @access public * @param string $admin_name * @param string $admin_password * @param string $admin_password2 * @param string $admin_email * @return boolean 成功返回true,失败返回false */ function create_admin_passport($db_host, $db_user, $db_pass, $db_name, $admin_name, $admin_password, $admin_password2) { include_once ROOT_PATH . 'tools/controllers/includes/cls_mysql.php'; include_once ROOT_PATH . 'tools/controllers/includes/lib_common.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $sql = "INSERT INTO svsys_operators" . "(name,password, created, actions,status)" . "VALUES " . "('{$admin_name}','" . md5($admin_password) . "', " . gmtime() . ", 'all','1')"; $result = $db->query($sql, 'SILENT'); if (!empty($result) && $result === false) { return false; } return true; }
if (empty($_POST['blogname'])) { $error[] = '请填写博客名字'; } if ($error) { echo '<p class="line">错误信息</p>'; foreach ($error as $val) { echo "<p>{$val}</p>"; } exit; } $dbhost = $_POST['host']; $dbuser = $_POST['dbuser']; $dbpw = $_POST['dbpass']; $dbname = $_POST['dbname']; $charset = 'utf8'; $db = new cls_mysql(); if ($db->connect($dbhost, $dbuser, $dbpw, $dbname, $charset, $pconnect)) { $error[] = '数据库连接错误'; } if (empty($_POST['dbprefix'])) { $dbprefix = 'fb_'; } else { $dbprefix = $_POST['dbprefix']; } $admin_user = $_POST['admin_user']; $admin_pass = $_POST['admin_pass']; $blogname = $_POST['blogname']; $blogdesc = $_POST['blogdesc']; $blog_keyword = $_POST['blogkeyword']; $domain = dirname(url()); $domain = str_replace("install", '', $domain);
if (!empty($_GET)) { $_GET = addslashes_deep($_GET); } if (!empty($_POST)) { $_POST = addslashes_deep($_POST); } $_COOKIE = addslashes_deep($_COOKIE); $_REQUEST = addslashes_deep($_REQUEST); } /* 创建 对象 */ $ecs = new ECS($db_name, $prefix); define('DATA_DIR', $ecs->data_dir()); define('IMAGE_DIR', $ecs->image_dir()); /* 初始化数据库类 */ require ROOT_PATH . 'includes/cls_mysql.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $db->set_disable_cache_tables(array($ecs->table('sessions'), $ecs->table('sessions_data'), $ecs->table('cart'))); $db_host = $db_user = $db_pass = $db_name = NULL; /* 创建错误处理对象 */ $err = new ecs_error('message.dwt'); /* 载入系统参数 */ $_CFG = load_config(); /* 当前网站地址 */ $present_url = agency_url(); ##### 配置信息(放至所有配置网站一些信息) ##################### $_CFG['o2o_img_url'] = 'http://' . $present_url; //.'/o2o/' define('TMUSER', 'o2o'); /*配置天猫过来的用户名前缀*/ /* 网站图片地址 */ $img_arr = array('http://img1.txd168.com', 'http://img2.txd168.com', 'http://img3.txd168.com');
</p> <p><h4>璇峰厛鍗囩骇鎮ㄧ殑绋嬪簭鍐嶈繘琛屽?鍏ャ€侟/h4></p> EOT; instfooter(); } elseif ($step == 'start') { $limit = getgpc('limit', 'P'); $update = getgpc('update', 'P'); $insert = getgpc('insert', 'P'); $success = getgpc('success', 'P'); $error = getgpc('error', 'P'); $item_num = 500; // 姣忔?澶勭悊1000涓?細鍛樻暟鎹 $statistics = array('update' => 0, 'insert' => 0, 'success' => 0, 'error' => 0); if (empty($limit)) { $limit = 0; } $uc_db = new cls_mysql(UC_DBHOST, UC_DBUSER, UC_DBPW, UC_DBNAME, UC_DBCHARSET, 0, 1); $total_members = $uc_db->getOne("SELECT COUNT(*) FROM ". UC_DBTABLEPRE ."members"); $sql = "SELECT uid, username, password, email, salt FROM ". UC_DBTABLEPRE ."members ORDER BY uid ASC LIMIT $limit, $item_num"; $uc_query = $uc_db->query($sql); while($member = $uc_db->fetch_array($uc_query)){ $user_exists = $db->getOne("SELECT COUNT(*) FROM {$prefix}users WHERE `user_name`='{$member['username']}'"); if (!$user_exists) { $sql = "INSERT INTO {$prefix}users (`email`, `user_name`, `password`, `salt`) VALUES('{$member['email']}', '{$member['username']}', '{$member['password']}', '2{$member['salt']}')"; ++$statistics['insert']; } else { $sql = "UPDATE {$prefix}users SET `password`='{$member['password']}', `salt`='2{$member['salt']}' WHERE `user_name`='{$member['username']}'"; ++$statistics['update']; } $db->query($sql); if ($db->affected_rows() > 0) { ++$statistics['success'];
} if (!empty($_POST)) { $_POST = addslashes_deep($_POST); } $_COOKIE = addslashes_deep($_COOKIE); $_REQUEST = addslashes_deep($_REQUEST); } /* 对路径进行安全处理 */ if (strpos(PHP_SELF, '.php/') !== false) { los_header("Location:" . substr(PHP_SELF, 0, strpos(PHP_SELF, '.php/') + 4) . "\n"); exit; } /* 初始化数据库类 */ require ROOT_PATH . 'includes/cls_mysql.php'; $db_write = new cls_mysql($my_db_host_write, $my_db_user_write, $my_db_pass_write, $my_db_name_write); $db_read = new cls_mysql($my_db_host_read, $my_db_user_read, $my_db_pass_read, $my_db_name_read); /* 初始化 action */ if (!isset($_REQUEST['act'])) { $_REQUEST['act'] = ''; } elseif (($_REQUEST['act'] == 'login' || $_REQUEST['act'] == 'logout' || $_REQUEST['act'] == 'signin') && strpos(PHP_SELF, '/privilege.php') === false) { $_REQUEST['act'] = ''; } elseif (($_REQUEST['act'] == 'forget_pwd' || $_REQUEST['act'] == 'reset_pwd' || $_REQUEST['act'] == 'get_pwd') && strpos(PHP_SELF, '/get_password.php') === false) { $_REQUEST['act'] = ''; } if (!file_exists('temp/caches')) { @mkdir('temp/caches', 0777); @chmod('temp/caches', 0777); } if (!file_exists('temp/compiled')) { @mkdir('temp/compiled', 0777); @chmod('temp/compiled', 0777);
/* 包含插件语言文件 */ include_once ROOT_PATH . 'languages/' . $_CFG['lang'] . '/convert/' . $config->code . '.php'; /* 取得第一步操作 */ $step = $convert->next_step(''); /* 返回 */ make_json_result($step, $_LANG[$step]); } elseif ($_REQUEST['act'] == 'process') { /* 设置执行时间 */ set_time_limit(0); /* 检查权限 */ check_authz_json('all'); /* 取得参数 */ $step = json_str_iconv($_POST['step']); /* 连接原数据库 */ $config = $_SESSION['convert_config']; $sdb = new cls_mysql($config->host, $config->user, $config->pass, $config->db); $sdb->set_mysql_charset($config->charset); /* 创建插件对象 */ include_once ROOT_PATH . 'includes/modules/convert/' . $config->code . '.php'; $convert = new $config->code($sdb, $config->prefix, $config->path, $config->charset); /* 包含插件语言文件 */ include_once ROOT_PATH . 'languages/' . $_CFG['lang'] . '/convert/' . $config->code . '.php'; /* 执行步骤 */ $result = $convert->process($step); if ($result !== true) { make_json_error($result); } /* 取得下一步操作 */ $step = $convert->next_step($step); /* 返回 */ make_json_result($step, empty($_LANG[$step]) ? '' : $_LANG[$step]);
$_GET = addslashes_deep($_GET); } if (!empty($_POST)) { $_POST = addslashes_deep($_POST); } $_COOKIE = addslashes_deep($_COOKIE); $_REQUEST = addslashes_deep($_REQUEST); } define('REMOTE_ADDR', $_SERVER['REMOTE_ADDR']); /* 创建 ECSHOP 对象 */ $ecs = new ECS($db_name, $prefix); define('DATA_DIR', $ecs->data_dir()); define('IMAGE_DIR', $ecs->image_dir()); /* 初始化数据库类 */ require ROOT_PATH . 'include/cls_mysql.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $db->set_disable_cache_tables(array($ecs->table('sessions'), $ecs->table('sessions_data'), $ecs->table('cart'))); $db_host = $db_user = $db_pass = $db_name = NULL; /* 创建错误处理对象 */ $err = new ecs_error('message.dwt'); /* 载入系统参数 */ $_CFG = load_config(); $_CFG['URL_HTTP_HOST'] = $config['site_url']; /* 载入语言文件 */ require ROOT_PATH . 'lang/' . $_CFG['lang'] . '/common.php'; if ($_CFG['shop_closed'] == 1) { /* 商店关闭了,输出关闭的消息 */ header('Content-type: text/html; charset=' . EC_CHARSET); die('<div style="margin: 150px; text-align: center; font-size: 14px"><p>' . $_LANG['shop_closed'] . '</p><p>' . $_CFG['close_comment'] . '</p></div>'); } if (is_spider()) {
/** * 对mysql敏感字符串转义 * * @access public * @param string $str * * @return string */ function dump_escape_string($str) { return cls_mysql::escape_string($str); }
if (!get_magic_quotes_gpc()) { if (!empty($_GET)) { $_GET = addslashes_deep($_GET); } if (!empty($_POST)) { $_POST = addslashes_deep($_POST); } $_COOKIE = addslashes_deep($_COOKIE); $_REQUEST = addslashes_deep($_REQUEST); } /* 创建 ECSHOP 对象 */ $ecs = new ECS($db_name, $prefix); define('DATA_DIR', '/' . $ecs->data_dir()); /* 初始化数据库类 */ require ROOT_PATH . 'includes/cls_mysql.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $db_host = $db_user = $db_pass = $db_name = NULL; $yhcwebsite = "http://weixin.dream-gardens.com.cn/"; $yhctestdb = new cls_mysql("112.124.110.58", "root", "dream@sh123data", "yhctest"); /* 创建错误处理对象 */ $err = new ecs_error('message.dwt'); /* 载入系统参数 */ $_CFG = load_config(); /* 初始化session */ require ROOT_PATH . 'includes/cls_session.php'; $sess = new cls_session($db, $ecs->table('sessions'), $ecs->table('sessions_data'), 'ecsid'); define('SESS_ID', $sess->get_session_id()); if (!defined('INIT_NO_SMARTY')) { header('Cache-control: private'); header('Content-type: text/html; charset=utf-8'); /* 创建 Smarty 对象。*/
$smarty->assign('noucdb', true); } else { @mysql_close($link); $ucdb = new cls_mysql(UC_DBHOST, UC_DBUSER, UC_DBPW, UC_DBNAME, UC_DBCHARSET); $maxuid = intval($ucdb->getOne("SELECT MAX(uid)+1 FROM " . UC_DBTABLEPRE . "members LIMIT 1")); $smarty->assign('maxuid', $maxuid); } } $smarty->display('usermerge.php'); break; /*将会员数据导入到uc*/ /*将会员数据导入到uc*/ case 'userimporttouc': include ROOT_PATH . 'data/config.php'; include_once ROOT_PATH . 'includes/cls_json.php'; $ucdb = new cls_mysql(UC_DBHOST, UC_DBUSER, UC_DBPW, UC_DBNAME, UC_DBCHARSET); $json = new JSON(); $result = array('error' => 0, 'message' => ''); $maxuid = intval($ucdb->getOne("SELECT MAX(uid)+1 FROM " . UC_DBTABLEPRE . "members LIMIT 1")); $merge_method = intval($_POST['merge']); $merge_uid = array(); $uc_uid = array(); $repeat_user = array(); $query = $db->query("SELECT * FROM " . $ecs->table('users') . " ORDER BY `user_id` ASC"); while ($data = $db->fetch_array($query)) { $salt = rand(100000, 999999); $password = md5($data['password'] . $salt); $data['username'] = addslashes($data['user_name']); $lastuid = $data['user_id'] + $maxuid; $uc_userinfo = $ucdb->getRow("SELECT `uid`, `password`, `salt` FROM " . UC_DBTABLEPRE . "members WHERE `username`='{$data['username']}'"); if (!$uc_userinfo) {
} } else { $class_code = $_SESSION["class_code"]; } if ($school_code == 'super' || $class_code == 'super') { clearstatcache(); ecs_header("Location: ../login.php\n"); exit; } $db_name = $school_code . "_school"; /* 创建 ECSHOP 对象 */ $ecs = new ECS($db_name, $prefix); define('DATA_DIR', $ecs->data_dir()); define('IMAGE_DIR', $ecs->image_dir()); /*重新连接数据库*/ $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $db_host = $db_user = $db_pass = $db_name = NULL; /* 初始化 action */ if (!isset($_REQUEST['act'])) { $_REQUEST['act'] = 'list'; } /* 载入系统参数 */ $_CFG = load_config(); require ROOT_PATH . 'languages/' . $_CFG['lang'] . '/admin/common.php'; require ROOT_PATH . 'languages/' . $_CFG['lang'] . '/admin/log_action.php'; if (file_exists(ROOT_PATH . 'languages/' . $_CFG['lang'] . '/admin/' . basename(PHP_SELF))) { include ROOT_PATH . 'languages/' . $_CFG['lang'] . '/admin/' . basename(PHP_SELF); } if (!file_exists('../temp/caches')) { @mkdir('../temp/caches', 0777); @chmod('../temp/caches', 0777);
require ROOT_PATH . "includes/Smarty.class.php"; if (!get_magic_quotes_gpc()) { if (!empty($_GET)) { $_GET = addslashes_deep($_GET); } if (!empty($_POST)) { $_POST = addslashes_deep($_POST); } $_COOKIE = addslashes_deep($_COOKIE); $_REQUEST = addslashes_deep($_REQUEST); } if (PHP_VERSION >= '5.1' && !empty($timezone)) { date_default_timezone_set($timezone); } require ROOT_PATH . 'includes/cls_mysql.php'; $db = new cls_mysql($db_host, $db_user, $db_password, $db_name); $db_host = $db_user = $db_password = $db_name = NULL; $smarty = new Smarty(); $smarty->debugging = false; $smarty->caching = 2; $smarty->config_load('xjoj.conf'); $login_user = array(); session_start(); ob_start(); if (isset($_COOKIE['user_id']) && !empty($_COOKIE['user_id'])) { $sql = "select * from author where password='******'password']}' and user_id='{$_COOKIE['user_id']}'"; //使用建立缓存的sql查询 $login_user = $db->getRow($sql); if (empty($login_user['user_id'])) { setcookie('user_id', ''); setcookie('password', '');
echo "<tr class=\"header\"><td colspan=\"2\">" . ilang('add founder') . "</td></tr>\n"; trbasic(array(ilang('founder account'), input_str('username', $username, 'text', 30, 0, 15)), 0); trbasic(array(ilang('founder email'), input_str('email', $email, 'text', 30)), 0); trbasic(array(ilang('founder password'), input_str('password1', $password1, 'password', 30, 0, 15)), 0); trbasic(array(ilang('reinput founder password'), input_str('password2', $password2, 'password', 30, 0, 15)), 0); echo "</table>\n"; ins_mider(); hidden_str('step', 6); button_str('submit', ilang('continue')); ins_footer(1); $ierror && ins_message($ierror); } elseif ($step == '7') { $username = htmlspecialchars($_GET['username']); $email = htmlspecialchars($_GET['email']); $password = htmlspecialchars($_GET['password']); $db = new cls_mysql(); $db->connect($dbhost, $dbuser, $dbpw, $dbname, $pconnect, true, $dbcharset); $db->select_db($dbname); $fp = fopen($sqlfile, 'rb'); $sql = fread($fp, filesize($sqlfile)); fclose($fp); ins_header(); ?> <script type="text/javascript"> function showmessage(message) { document.getElementById('notice').value += message + "\r\n"; } </script> <table width="100%" cellspacing="0" border="0" align="center"> <tr><td align="center"><br /> <textarea name="notice" style="width: 80%; height: 400px" readonly id="notice"></textarea>
$_GET = addslashes_deep($_GET); } if (!empty($_POST)) { $_POST = addslashes_deep($_POST); } $_COOKIE = addslashes_deep($_COOKIE); $_REQUEST = addslashes_deep($_REQUEST); } //$db_name = 'mescake'; /* 创建 ECSHOP 对象 */ $ecs = new ECS($db_name, $prefix); define('DATA_DIR', $ecs->data_dir()); define('IMAGE_DIR', $ecs->image_dir()); /* 初始化数据库类 */ require ROOT_PATH . 'includes/cls_mysql.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $db->set_disable_cache_tables(array($ecs->table('sessions'), $ecs->table('sessions_data'), $ecs->table('cart'))); $db_host = $db_user = $db_pass = $db_name = NULL; /* 创建错误处理对象 */ $err = new ecs_error('message.dwt'); /* 载入系统参数 */ $_CFG = load_config(); /* 载入语言文件 */ require ROOT_PATH . 'languages/' . $_CFG['lang'] . '/common.php'; if ($_CFG['shop_closed'] == 1) { /* 商店关闭了,输出关闭的消息 */ header('Content-type: text/html; charset=' . EC_CHARSET); die('<div style="margin: 150px; text-align: center; font-size: 14px"><p>' . $_LANG['shop_closed'] . '</p><p>' . $_CFG['close_comment'] . '</p></div>'); } if (is_spider()) { /* 如果是蜘蛛的访问,那么默认为访客方式,并且不记录到日志中 */
if (!empty($_GET)) { $_GET = addslashes_deep($_GET); } if (!empty($_POST)) { $_POST = addslashes_deep($_POST); } $_COOKIE = addslashes_deep($_COOKIE); $_REQUEST = addslashes_deep($_REQUEST); } /* 创建 ECSHOP 对象 */ $ecs = new ECS($db_name, $prefix); define('DATA_DIR', $ecs->data_dir()); define('IMAGE_DIR', $ecs->image_dir()); /* 初始化数据库类 */ require ROOT_PATH . 'includes/cls_mysql.php'; $db = new cls_mysql($db_host, $db_user, $db_pass, $db_name); $db->set_disable_cache_tables(array($ecs->table('sessions'), $ecs->table('sessions_data'), $ecs->table('cart'))); $db_host = $db_user = $db_pass = $db_name = NULL; /* 创建错误处理对象 */ $err = new ecs_error('message.dwt'); /* 载入系统参数 */ $_CFG = load_config(); /* 载入语言文件 */ require ROOT_PATH . 'languages/' . $_CFG['lang'] . '/common.php'; if ($_CFG['shop_closed'] == 1) { /* 商店关闭了,输出关闭的消息 */ header('Content-type: text/html; charset=' . EC_CHARSET); die('<div style="margin: 150px; text-align: center; font-size: 14px"><p>' . $_LANG['shop_closed'] . '</p><p>' . $_CFG['close_comment'] . '</p></div>'); } if (is_spider()) { /* 如果是蜘蛛的访问,那么默认为访客方式,并且不记录到日志中 */
$result['content'] = $_LANG['check_complete']; $result['is_end'] = 1; /* 查找有无重名用户,无重名用户则直接同步,有则查看重名用户 */ $sql = 'SELECT COUNT(*) FROM ' . $ecs->table('users') . ' WHERE flag > 0 '; if ($db->getOne($sql) > 0) { $result['href'] = 'integrate.php?act=modify'; } else { $result['href'] = 'integrate.php?act=sync'; } } die($json->encode($result)); } if ($_REQUEST['act'] == 'import_user') { $cfg = $_SESSION['cfg']; include_once ROOT_PATH . 'includes/cls_json.php'; $ucdb = new cls_mysql($cfg['db_host'], $cfg['db_user'], $cfg['db_pass'], $cfg['db_name'], $cfg['db_charset']); $json = new JSON(); $result = array('error' => 0, 'message' => ''); $query = $db->query("SHOW TABLE STATUS LIKE '" . $GLOBALS['prefix'] . 'users' . "'"); $data = $db->fetch_array($query); if ($data['Auto_increment']) { $maxuid = $data['Auto_increment'] - 1; } else { $maxuid = 0; } $merge_method = intval($_POST['merge']); $merge_uid = array(); $uc_uid = array(); $repeat_user = array(); $query = $db->query('SELECT * FROM ' . $ecs->table('users') . ' ORDER BY `user_id` ASC'); while ($data = $db->fetch_array($query)) {