function gethytjupstr($username, $tjupstr)
{
global $db, $db_prefix, $tjupstr;
$sql_up = "select * from {$db_prefix}users where username='******'";
$rs_up = $db->get_one($sql_up);
if (!empty($rs_up["tjrname"])) {
if ($tjupstr != "") {
$tjupstr .= ",";
}
$tjupstr .= $rs_up["tjrname"];
gethytjupstr($rs_up["tjrname"], $tjupstr);
}
}
}
xmlHttp.open("GET",url,true)
xmlHttp.send(null);
}
</script>
<link rel="stylesheet" href="/images/datalist.css" type="text/css">
</head>
<body><br>
<form action="?action=query" method="post" name="form1">
会员编号: <input name="username" type="text" /><input name="Search" type="submit" value="查询" class=button_text onMouseDown="this.className=\'button_onmousedown\'" onMouseOver="this.className=\'button_onmouseover\'" onMouseOut="this.className=\'button_onMouseOut\'"></form>
';
if ($action == "query") {
if ($username != $_SESSION["glo_username"]) {
$tjupstr = "";
gethytjupstr($username, $tjupstr);
$tjupary = explode(",", $tjupstr);
if (!in_array($_SESSION["glo_username"], $tjupary)) {
die("<center>查询会员不在您的推荐网体内</center>");
}
}
if (trim($username) == "") {
$sql1 = "select * from {$db_prefix}users where tjrname='" . $_SESSION["glo_username"] . "'";
} else {
$sql1 = "select * from {$db_prefix}users where username='******'";
}
} else {
$sql1 = "select * from {$db_prefix}users where username='******'";
}
$rs1 = $db->get_one($sql1);
if (empty($rs1["id"])) {
