exit;
}
if (pc_file_num($link, $pc["UID"], $pid) + 1 > $pc["NLIM"]) {
pc_html_init("gb2312", stripslashes($pc["NAME"]));
html_error_quit("目标文件夹中的文件数已达上限 " . $pc["NLIM"] . " 个!");
exit;
}
if (intval($_COOKIE["BLOGFAVNID"])) {
if ($_COOKIE["BLOGFAVACTION"] == "favcut") {
$query = "UPDATE nodes SET `pid` = '" . $pid . "' WHERE `nid` = '" . intval($_COOKIE["BLOGFAVNID"]) . "';";
} elseif ($_COOKIE["BLOGFAVACTION"] == "favcopy") {
$query = "SELECT * FROM nodes WHERE `nid` = '" . intval($_COOKIE["BLOGFAVNID"]) . "' LIMIT 0 , 1 ;";
$result = mysql_query($query, $link);
$rows = mysql_fetch_array($result);
mysql_free_result($result);
$query = "INSERT INTO `nodes` ( `nid` , `pid` , `type` , `source` , `hostname` , `changed` , `created` , `uid` , `comment` , `commentcount` , `subject` , `body` , `access` , `visitcount` , `tid` , `emote` ,`htmltag`) " . "VALUES ('', '" . $pid . "', '0', '" . addslashes($rows["source"]) . "', '" . addslashes($rows["hostname"]) . "', NOW( ) , '" . addslashes($rows["created"]) . "', '" . $pc["UID"] . "', '" . intval($rows["comment"]) . "', '" . intval($rows["commentcount"]) . "', '" . addslashes($rows["subject"]) . "', '" . addslashes($rows["body"]) . "', '3', '" . intval($rows["visitcount"]) . "', '" . intval($rows["tid"]) . "', '" . intval($rows["emote"]) . "','" . intval($rows["htmltag"]) . "');";
}
mysql_query($query, $link);
}
setcookie("BLOGFAVACTION");
setcookie("BLOGFAVNID");
pc_html_init("gb2312", stripslashes($pc["NAME"]));
pc_update_record($link, $pc["UID"]);
$log_action = "CUT/COPY FAV";
pc_return("pcdoc.php?userid=" . $pc["USER"] . "&tag=3&pid=" . $pid);
}
if (pc_is_groupwork($pc)) {
pc_group_logs($link, $pc, $log_action, $log_content);
}
html_normal_quit();
}
$query = 'UPDATE filter SET state = 2 WHERE fid = ' . $fid . ' LIMIT 1;';
mysql_query($query);
}
}
if (strtolower($_GET['filter']) == 'r') {
if ($node[state] == 4) {
$nid = $node[nid];
$query = 'SELECT * FROM nodes WHERE nid = ' . $nid . ' LIMIT 1;';
$result = mysql_query($query);
$node_o = mysql_fetch_array($result);
if (!$node_o) {
html_error_quit("作者已经将文章删除");
}
if ($node_o[body] != '@ @ 本文已被管理员屏蔽 @ @' && !isset($_GET["or"])) {
html_error_quit("原文已经被修改过<br/><a href='pcadmin_flt.php?filter=r&or=1&fid=" . $fid . "'>强行恢复</a>");
}
$body = addslashes($node[body]);
$query = "UPDATE nodes SET `body` = '" . $body . "', `changed`='" . $node[changed] . "' where `nid` = " . $nid . ";";
if (!mysql_query($query)) {
html_error_quit("修改原文出错");
}
pc_update_record($link, $node[uid]);
$query = "DELETE FROM filter WHERE `fid` = '" . $fid . "' ";
if (!mysql_query($query)) {
html_error_quit("从过滤表删除出错,但是文章已经恢复...");
}
}
}
pc_db_close($link);
pc_return("pcdoc.php?userid=_filter&tag=" . $node[state]);
<?php
require "pcadmin_inc.php";
pc_admin_check_permission();
$link = pc_db_connect();
$nid = intval($_GET["nid"]);
$query = 'SELECT * FROM filter WHERE nid = ' . $nid . ' LIMIT 1;';
$result = mysql_query($query);
$node = mysql_fetch_array($result);
if ($node) {
html_error_quit("文章已经被删除过");
}
$query = 'SELECT * FROM nodes WHERE nid = ' . $nid . ' LIMIT 1;';
$result = mysql_query($query);
$node = mysql_fetch_array($result);
if (!$node) {
html_error_quit("文章不存在");
}
$uid = $node[uid];
$query = "INSERT INTO `filter` ( `pid` , `nid` , `tid` , `type` , `state` , `recuser` , `emote` , `hostname` , `changed` , `created` , `uid` , `username` , `comment` , `commentcount` , `subject` , `body` , `access` , `visitcount` , `htmltag`,`trackback` ,`trackbackcount`,`nodetype`,`theme`,`publisher`) " . "VALUES ( '" . $node[pid] . "' , '" . $node[nid] . "' , '" . $node[tid] . "' , '" . $node[type] . "' , 4 , '" . $currentuser["userid"] . "' , '" . $node[emote] . "' , '" . $node[hostname] . "' , '" . $node[changed] . "' , '" . $node[created] . "' , '" . $node[uid] . "' , '" . addslashes($_GET["userid"]) . "' , '" . $node[comment] . "' , '" . $node[commentcount] . "' , '" . $node[subject] . "' , '" . $node[body] . "' , '" . $node[access] . "' , '" . $node[visitcount] . "' , '" . $node[htmltag] . "','" . $node[trackback] . "' ,'" . $node[trackbackcount] . "','" . $node[nodetype] . "','" . $node[theme] . "','" . $node[publisher] . "');";
if (!mysql_query($query)) {
html_error_quit("插入过滤表出错");
}
$query = "UPDATE nodes SET `body` = '@ @ 本文已被管理员屏蔽 @ @' where `nid` = " . $nid . ";";
if (!mysql_query($query)) {
html_error_quit("修改原文出错");
}
pc_update_record($link, $uid);
pc_db_close($link);
pc_return("pcdoc.php?userid=_filter&tag=4");
</table>
</form></center>
<p align="center">
<?php
/**
* 水木的web代码bbslib和cgi部分是修改于NJUWWWBBS-0.9,此部分
* 代码遵循原有的nju www bbs的版权声明(GPL)。php部分的代码(
* phplib以及php页面)不再遵循GPL,正在考虑使用其他开放源码的版
* 权声明(BSD或者MPL之类)。
*
* 希望使用水木代码的Web站点加上powered by kbs的图标.该图标
* 位于html/images/poweredby.gif目录,链接指向http://dev.kcn.cn
* 使用水木代码的站点可以通过dev.kcn.cn获得代码的最新信息.
*
*/
powered_by_smth();
?>
</p>
<?php
} elseif ($act == "edit2") {
$emote = intval($_POST["emote"]);
$uid = intval($_GET["id"]);
$nid = intval($_GET["nid"]);
$useHtmlTag = $_POST["htmltag"] == 1 ? 1 : 0;
$query = "UPDATE `comments` SET `subject` = '" . addslashes($_POST["subject"]) . "',`changed` = '" . date("YmdHis") . "',`body` = '" . addslashes(html_editorstr_format($_POST["blogbody"])) . "' , `emote` = '" . $emote . "' , `htmltag` = '" . $useHtmlTag . "' WHERE `cid` = '" . $cid . "' AND `username` = '" . $currentuser["userid"] . "' LIMIT 1 ;";
mysql_query($query, $link);
pc_return("pccon.php?id=" . $uid . "&nid=" . $nid . "&s=all");
}
pc_db_close($link);
html_normal_quit();
}
