<?php !function_exists('html') && exit('ERR'); if ($job == 'list' && $Apower[hack_list]) { $rsdb = $db->get_one("SELECT * FROM {$pre}hack WHERE keywords='{$hack}' "); @extract(unserialize($rsdb[config])); $guestcode = stripslashes($guestcode); $membercode = stripslashes($membercode); if ($webdb[passport_type]) { $systemType = 'php168'; } if ($webdb[passport_type] && $webdb[passport_TogetherLogin] == 2 && $systemType == 'php168') { $systemType = ''; } $systemTypeDB[$systemType] = ' checked '; hack_admin_tpl('list'); } elseif ($job == 'show' && $Apower[hack_list]) { hack_admin_tpl('getcode'); }
$rsdb = $db->get_one("SELECT * FROM {$pre}area WHERE fid='{$fid}'"); $rsdb[config] = unserialize($rsdb[config]); $sort_fid = $Guidedb->Select("{$pre}area", "postdb[fid]", $fid, "?lfj={$lfj}&job={$job}"); $sort_fup = $Guidedb->Select("{$pre}area", "postdb[fup]", $rsdb[fup]); $style_select = select_style('postdb[style]', $rsdb[style]); $group_post = group_box("postdb[allowpost]", explode(",", $rsdb[allowpost])); $group_viewtitle = group_box("postdb[allowviewtitle]", explode(",", $rsdb[allowviewtitle])); $group_viewcontent = group_box("postdb[allowviewcontent]", explode(",", $rsdb[allowviewcontent])); $group_download = group_box("postdb[allowdownload]", explode(",", $rsdb[allowdownload])); $typedb[$rsdb[type]] = " checked "; $forbidshow[intval($rsdb[forbidshow])] = " checked "; $allowcomment[intval($rsdb[allowcomment])] = " checked "; $tpl = unserialize($rsdb[template]); $listorder[$rsdb[listorder]] = " selected "; $sonListorder[$rsdb[config][sonListorder]] = " selected "; hack_admin_tpl('editsort'); } elseif ($action == "editsort") { //检查父栏目是否有问题 check_fup("{$pre}area", $postdb[fid], $postdb[fup]); $postdb[allowpost] = @implode(",", $postdb[allowpost]); $postdb[allowviewtitle] = @implode(",", $postdb[allowviewtitle]); $postdb[allowviewcontent] = @implode(",", $postdb[allowviewcontent]); $postdb[allowdownload] = @implode(",", $postdb[allowdownload]); $postdb[template] = @serialize($postdb[tpl]); unset($SQL); $rs_fid = $db->get_one("SELECT * FROM {$pre}area WHERE fid='{$postdb['fid']}'"); //这样处理是其他地方也修改过这个值.比如标签里 $rs_fid[config] = unserialize($rs_fid[config]); //$rs_fid[config][sonTitleRow]=$sonTitleRow; //$rs_fid[config][sonTitleLeng]=$sonTitleLeng; //$rs_fid[config][cachetime]=$cachetime;
<?php !function_exists('html') && exit('ERR'); if ($job == "send" && $Apower[mail_send]) { $group_send = group_box("Group", ''); hack_admin_tpl('send'); } elseif ($job == "set" && $Apower[mail_send]) { $sms_type[$webdb[sms_type]] = ' checked '; hack_admin_tpl('set'); } elseif ($job == "test" && $Apower[mail_send]) { hack_admin_tpl('test'); } elseif ($action == "set" && $Apower[mail_send]) { write_config_cache($webdbs); jump("设置成功", $FROMURL); } elseif ($action == "send" && $Apower[mail_send]) { if (!$IS_BIZPhp168) { showerr("免费版无此功能"); } if (!$Group) { showerr("请选择一个用户组"); } if ($page < 1) { $page = 1; if (!$Group) { showmsg("你必须选择一个用户组"); } $Group = implode(",", $Group); if ($Num < 1) { $Num = 1; } if (!$Title) {
$rows = 50; $min = ($page - 1) * $rows; $showpage = getpage("`{$pre}olpay`", " ", "?lfj={$lfj}&job={$job}", "{$rows}"); $query = $db->query("SELECT * FROM `{$pre}olpay` ORDER BY id DESC LIMIT {$min},{$rows}"); while ($rs = $db->fetch_array($query)) { $rs[posttime] = date("Y-m-d H:i:s", $rs[posttime]); if ($rs[ifpay]) { $rs[ifpay] = '<font color=red>已支付<font>'; $rs[setpay] = ''; } else { $rs[ifpay] = '未支付'; $rs[setpay] = "<A HREF='?lfj={$lfj}&action=setpay&id={$rs['id']}'>充值</A>"; } $listdb[] = $rs; } hack_admin_tpl('list'); } elseif ($action == "delete" && $Apower[alipay_set]) { if ($id) { $db->query("DELETE FROM `{$pre}olpay` WHERE id='{$id}'"); } else { foreach ($listdb as $key => $id) { $db->query("DELETE FROM `{$pre}olpay` WHERE id='{$id}'"); } } jump("删除成功", "{$FROMURL}", "1"); } elseif ($action == 'setpay' && $Apower[alipay_set]) { $rt = $db->get_one("SELECT * FROM {$pre}olpay WHERE id='{$id}'"); if (!$rt) { showmsg('系统中没有您的充值订单,无法完成充值!'); } if ($rt['ifpay'] == 1) {
exit; } elseif ($job == 'getback' && $Apower[template_list]) { $rsdb = $db->get_one("SELECT * FROM `{$pre}template` WHERE id='{$id}'"); $query = $db->query("SELECT * FROM {$pre}template_bak WHERE id='{$id}' ORDER BY id DESC"); while ($rs = $db->fetch_array($query)) { $rs[posttime] = date("Y-m-d H:i:s", $rs[posttime]); $listdb[] = $rs; } hack_admin_tpl('getback'); } elseif ($action == 'getback' && $Apower[template_list]) { $rsdb = $db->get_one("SELECT A.*,B.* FROM {$pre}template_bak A LEFT JOIN `{$pre}template` B ON A.id=B.id WHERE A.bid='{$bid}'"); if (is_file(ROOT_PATH . $rsdb[filepath]) && !is_writable(ROOT_PATH . $rsdb[filepath])) { showmsg("模板文件属性不可写,请修改其为可写权限"); } if (eregi("(\\.htm|\\.html)\$", $rsdb[filepath])) { write_file(ROOT_PATH . $rsdb[filepath], $rsdb[code]); } jump("回档成功", "index.php?lfj=template&job=list", 1); } elseif ($action == 'delback' && $Apower[template_list]) { $db->query("DELETE FROM {$pre}template_bak WHERE bid='{$bid}'"); jump("删除成功", "{$FROMURL}", 0); } elseif ($action == 'delallback' && $Apower[template_list]) { $db->query("DELETE FROM {$pre}template_bak WHERE id='{$id}'"); jump("删除成功", "index.php?lfj=template&job=list", 1); } elseif ($job == 'viewback' && $Apower[template_list]) { $rsdb = $db->get_one("SELECT A.*,B.* FROM {$pre}template_bak A LEFT JOIN `{$pre}template` B ON A.id=B.id WHERE A.bid='{$bid}'"); $code = editor_replace($code); $usecodeDB[intval($usecode)] = ' checked '; $rsdb[posttime] = date("Y-m-d H:i:s", $rsdb[posttime]); hack_admin_tpl('viewback'); }
if (eregi("htm\$", $file)) { $array[$file] = array("name" => $tplName[$file], "file" => $file); } } foreach ($tplName as $key => $value) { $array[$key] && ($listdb[$key] = $array[$key]); } $listdb = $listdb ? $listdb + $array : $array; hack_admin_tpl('tpl'); } elseif ($job == 'editcode' && ($Apower[style_editstyle] || $Apower[template_list])) { if (eregi(".php\$", $filename)) { showmsg("模板文件有误!"); } $code = read_file(ROOT_PATH . "template/{$keywords}/{$filename}"); $code = editor_replace($code); hack_admin_tpl('editcode'); } elseif ($action == 'editcode' && ($Apower[style_editstyle] || $Apower[template_list])) { $code = stripslashes($code); if (eregi(".htm\$", $filename)) { write_file(ROOT_PATH . "template/{$keywords}/{$filename}", $code); } jump("修改成功", $FROMURL, 1); } function chang_style($key, $value) { if ($key == "bodybgcolor") { $show = "\r\nbody{\r\n\tbackground:{$value};\r\n}"; } elseif ($key == "bodyBgImg") { $show = "\r\nbody{\r\n\tbackground:url({$value}) center 50%;\r\n}"; } elseif ($key == "wrapWidth") { $show = "\r\n.wrap{\r\n\twidth:{$value};\r\n}";
} $cnzz_open[intval($webdb[cnzz_open])] = ' checked '; hack_admin_tpl('set'); } elseif ($action == 'set') { if ($webdbs[cnzz_open] && !$webdbs[cnzz_id]) { showmsg("统计帐号不存在"); } write_config_cache($webdbs); jump("修改成功", $FROMURL, 1); } elseif ($job == 'ask') { if ($webdb[cnzz_id] && $webdb[cnzz_pwd]) { echo "<META HTTP-EQUIV=REFRESH CONTENT='0;URL=index.php?lfj=cnzz&job=set'>"; exit; } $mydomain = preg_replace("/http:\\/\\/([^\\/]+)\\/(.*)/is", "\\1", $WEBURL); hack_admin_tpl('ask'); } elseif ($action == 'ask') { if (!$mydomain) { showmsg("域名不能为空"); } $key = md5("{$mydomain}A4bkJUxm"); $url = "http://intf.cnzz.com/user/companion/php168.php?domain={$mydomain}&key={$key}"; if (ini_get('allow_url_fopen') && ($code = file_get_contents($url))) { } elseif ($code = sockOpenUrl($url)) { } if (!strstr($code, '@')) { echo '<meta http-equiv="Content-Type" content="text/html; charset=gb2312">'; if ($code == '-1') { die("KEY值有误"); } elseif ($code == '-2') { die("域名长度有误(1~64)");
jump("修改成功", "{$FROMURL}", 0); } elseif ($job == "mod" && $Apower[examples]) { $rsdb = $db->get_one("SELECT * FROM {$pre}example WHERE id='{$id}' "); $rsdb[ifhide] = intval($rsdb[ifhide]); $ifhide[$rsdb[ifhide]] = " checked "; $select_fid = select_esort("postdb[fid]", $rsdb[fid]); hack_admin_tpl('mod'); } elseif ($action == "mod" && $Apower[examples]) { $db->query("UPDATE {$pre}example SET name='{$postdb['name']}',url='{$postdb['url']}',logo='{$postdb['logo']}',descrip='{$postdb['descrip']}',`ifhide`='{$postdb['ifhide']}',`fid`='{$postdb['fid']}',`posttime`={$timestamp} WHERE id='{$id}'"); jump("设置成功", $FROMURL); } elseif ($action == "delete" && $Apower[examples]) { $db->query("DELETE FROM `{$pre}example` WHERE id='{$id}' "); jump("删除成功", $FROMURL); } elseif ($job == "modsort" && $Apower[examples]) { $rsdb = $db->get_one("SELECT * FROM {$pre}example_sort WHERE fid='{$fid}' "); hack_admin_tpl('mod_sort'); } elseif ($action == "modsort" && $Apower[examples]) { $db->query("UPDATE {$pre}example_sort SET name='{$postdb['name']}',`list`='{$postdb['list']}' WHERE fid='{$fid}'"); jump("修改成功", "{$FROMURL}", 1); } elseif ($action == "deletesort" && $Apower[examples]) { $db->query("DELETE FROM `{$pre}example_sort` WHERE fid='{$fid}' "); jump("删除成功", $FROMURL); } function select_esort($name, $ckfid) { global $db, $pre; $show = "<select name='{$name}'><option value=''>请选择</option>"; $query = $db->query("SELECT * FROM {$pre}example_sort ORDER BY list DESC"); while ($rs = $db->fetch_array($query)) { $ckk = $ckfid == $rs[fid] ? ' selected ' : ''; $show .= "<option value='{$rs['fid']}' {$ckk}>{$rs['name']}</option>";
} $rows = 20; $min = ($page - 1) * $rows; $max = $min + $rows; $total = count($logdb); $showpage = getpage("", "", "index.php?lfj={$lfj}&job={$job}", $rows, $total); for ($i = $min; $i < $max; $i++) { if (!$logdb[$i]) { break; } list($rs[username], $rs[password], $rs[posttime], $rs[ip]) = explode("\t", $logdb[$i]); $rs[posttime] = date("Y-m-d H:i:s", $rs[posttime]); $rs[id] = $i; $listdb[] = $rs; } hack_admin_tpl('login_logs', false); } elseif ($action == "delete_adminlogin" && $Apower[logs_login_logs]) { if (!$iddb) { showmsg("请选择一条"); } unset($logdb); @(include ROOT_PATH . "cache/adminlogin_logs.php"); $writefile = "<?php\t\r\n"; for ($i = 0; $i < count($logdb); $i++) { if (!$iddb[$i]) { $writefile .= "\$logdb[]=\"{$logdb[$i]}\";\r\n"; } } write_file(ROOT_PATH . "cache/adminlogin_logs.php", $writefile); jump("删除成功", "{$FROMURL}", 1); } elseif ($action == "delalldo" && $Apower[logs_admin_do_logs]) {