show_message('url_error', './');
exit;
}
} elseif ($command == 'answer_response') {
$aid = intval($_POST['aid']);
$query = $dblink->query("select * from {$tablepre}answer where aid={$aid}");
if (!$dblink->num_rows($query)) {
show_message('action_error', './');
exit;
}
if (!$cyask_uid) {
$referer = get_referer();
show_message('user_nologin', $referer);
exit;
}
if (check_submit($_POST['dosubmit'], $_POST['formhash'])) {
$days = strtotime(date("Y-m-d"));
if (empty($_POST['content'])) {
show_message('response_null', '');
exit;
}
if ($cyask_user) {
$query = $dblink->query("SELECT count(*) FROM {$tablepre}res WHERE aid={$aid} AND uid={$cyask_uid} AND days={$days}");
} else {
$query = $dblink->query("SELECT count(*) FROM {$tablepre}res WHERE aid={$aid} AND uip='{$onlineip}' AND days={$days}");
}
if ($dblink->result($query, 0) > 3) {
show_message('response_more', '');
exit;
} else {
$content = filters_content($_POST['content']);
$i = 1;
while ($row = $dblink->fetch_array($query)) {
$row['id'] = $i;
$query_c = $dblink->query("select * from {$tablepre}answer_1 where aid='{$row['aid']}'");
$row_c = $dblink->fetch_array($query_c);
$row = array_merge($row, $row_c);
$row['content'] = cut_str($row['content'], 200);
$answer_list[$i] = $row;
$i++;
}
include template('handle_ques_setvote');
} elseif ($command == 'ques_vote_submit') {
$query = $dblink->query("SELECT count(*) FROM {$tablepre}question WHERE qid={$qid}");
if (!$dblink->result($query, 0)) {
show_message('action_error', './');
exit;
}
if (check_submit($_POST['quesvotesubmit'], $_POST['formhash'])) {
$dblink->query("UPDATE {$tablepre}question SET status=3 WHERE qid={$qid}");
$vote_list = explode("|", $_POST[vote_list]);
$vote_count = count($vote_list);
for ($i = 0; $i < $vote_count; $i++) {
$dblink->query("UPDATE {$tablepre}answer SET joinvote=1 WHERE aid={$vote_list[$i]}");
}
header("location:signal.php?resultno=104&url={$url}");
exit;
} else {
show_message('url_error', './');
exit;
}
}
/*
[CYASK] (C)2009 Cyask.com
Revision: 3.2
Date: 2009-12-20
Author: zhaoshunyao
QQ: 240508015
*/
define('CURSCRIPT', 'login');
require './include/common.inc.php';
$url = empty($_GET['url']) ? $_POST['url'] : $_GET['url'];
if ($command == 'login') {
if ($cyask_uid) {
$url = empty($url) ? './' : $url;
show_message('login_succeed', $url);
}
if (check_submit($_POST['loginsubmit'], $_POST['formhash'])) {
$cyask_user = trim($_POST['username']);
$cyask_user = daddslashes($cyask_user);
$md5passwd = md5($_POST['password']);
$query = $dblink->query("SELECT uid,password FROM {$tablepre}member WHERE username='******'");
$rows = $dblink->num_rows($query);
if ($rows) {
$members = $dblink->fetch_array($query);
$cyask_uid = $members['uid'];
$cyask_pw = $members['password'];
if ($cyask_pw == $md5passwd) {
$dblink->query("UPDATE {$tablepre}member SET lastlogin='******' WHERE uid='{$members['uid']}'");
$url = empty($url) ? './' : $url;
$cookietime = $_POST['cookietime'] ? 86400 * 30 : 0;
set_cookie('compound', authcode("{$cyask_uid}\t{$cyask_user}\t{$cyask_pw}", 'ENCODE', $cyask_key), $cookietime);
set_cookie('styleid', $styleid, $cookietime);
/*
[CYASK] (C)2007 Cyask.com QQ: 240508015
Revision: 3.0.0 for Discuz
Date: 2007/4/23
*/
define('CURSCRIPT', 'collect');
error_reporting(7);
require_once './include/common.inc.php';
$title = $site_name;
if (!$cyask_uid) {
$url = get_referer();
show_message('user_nologin', '');
exit;
}
if ($command == 'collect') {
if (check_submit($_POST['collectsubmit'], $_POST['formhash'])) {
$collect_url = trim($_POST['collect_url']);
$collect_title = trim($_POST['collect_title']);
$collect_content = empty($_POST['content']) ? '' : filters_content($_POST['content']);
$sortname = $_POST['sortname'];
$ctype = $_POST['ctype'];
$public = $_POST['public'];
$dblink->query("INSERT INTO {$dbprefix}collect SET uid={$cyask_uid},username='******',sortname='{$sortname}',ctype='{$ctype}',title='{$collect_title}',content='{$collect_content}',url='{$collect_url}',public='{$public}',collecttime='{$timestamp}'");
$url = $_POST['url'];
show_message('collect_succeed', $url);
exit;
} else {
show_message('url_error', './');
exit;
}
} else {
<?php
/*
[CYASK] (C)2007 Cyask.com QQ: 240508015
Revision: 3.0.0 for Discuz
Date: 2007/4/23
*/
define('CURSCRIPT', 'register');
require './include/common.inc.php';
$url = empty($_GET['url']) ? $_POST['url'] : $_GET['url'];
if ($command == 'registed') {
if ($cyask_uid) {
show_message('login_succeed', $url);
}
if (check_submit($_POST['registsubmit'], $_POST['formhash'])) {
$cyask_user = trim($_POST['username']);
$cyask_user = strtolower($cyask_user);
$password = trim($_POST['password']);
$email = $_POST['email'];
$username_ok = filters_username($cyask_user);
if (!$username_ok) {
show_message('regist_name_error', '');
}
$email_ok = uc_user_checkemail($email);
if (!$email_ok) {
show_message('regist_email_error' . abs($email_ok), '');
}
$usernum = uc_user_checkname($cyask_user);
if ($usernum != 1) {
show_message('regist_name_used', '');
} else {
<?php
/*
四川省扶贫和移民工作局
*/
define('IN_ADMIN', True);
require 'include/common.php';
$do = getGP('do', 'G');
if (check_submit('dosubmit')) {
$errmsg = array();
initGP(array('username', 'password', 'vdcode', 'remember'), 'P');
if (strlen($username) < 3 || strlen($username) > 50) {
$errmsg[] = '用户名长度必须在3-20字节之间。';
} elseif (!is_username($username)) {
$errmsg[] = '用户名中含有非法字符。';
}
if (strlen($password) < 6) {
$errmsg[] = '密码长度不能小于6个字节。';
}
if (get_config('user', 'login_vdcode')) {
session_start();
if (strtolower($vdcode) != $_SESSION['vdcode']) {
$errmsg[] = '验证码不正确。';
}
unset($_SESSION['vdcode']);
}
if (count($errmsg)) {
show_msg($errmsg, 'login.php');
}
$flag = $_USER->login($username, $password, $remember);
if ($flag == 1) {
$url = 'member.php?uid=' . $uid;
show_message('user_nologin', '');
exit;
}
} elseif ($command == 'sendmsg') {
if (!$cyask_user) {
$backurl = 'member.php?uid=' . $uid;
show_message('user_nologin', '');
exit;
}
if ($cyask_uid == $uid) {
$url = 'member.php?uid=' . $uid;
show_message('sendmsg_self', $url);
exit;
}
if (check_submit($_POST['sendmsg'], $_POST['formhash'])) {
$num = uc_pm_send($cyask_uid, $uid, $_POST['title'], $_POST['content'], 1, 0, 0);
if ($num > 0) {
$url = 'member.php?uid=' . $uid;
show_message('sendmsg_succeed', $url);
} else {
$url = 'member.php?uid=' . $uid;
show_message('sendmsg_error', $url);
}
/* if($passport=='discuz5.0.0')
{
$dblink->query("insert into $dbprefix"."pms set msgfrom='$cyask_user',msgfromid='$cyask_uid',msgtoid='$uid',folder='inbox',new=1,subject='$_POST[title]',dateline='$timestamp',message='$_POST[content]'");
}
elseif($passport=='discuz5.5.0')
{
gotoindex();
}
check_login();
if (!post_check()) {
exit(0);
} else {
set_cookie();
}
$_GET['pagename'] = "posting";
include "header.php";
$m_id = $_SESSION['id'];
$content = $_POST['content'];
$question = $_POST['question'];
$choice = $_POST['choice'];
$answer = $_POST['answer'];
if (check_submit($content, $question, $choice, $answer) == false) {
print "<a href='posting.php'>戻る</a>";
exit(0);
}
$db = new mydb();
if (insert_question($db, $content, $question, $m_id) == false) {
sql_failed();
exit(0);
}
for ($i = 0; $i < count($choice); $i++) {
if (insert_choice($db, $choice[$i], $answer[$i]) == false) {
sql_failed();
exit(0);
}
}
reset_cookie();
