<?php
if ($SucInc == "yes") {
$sl = new slider();
$im = new image();
if ($_GET['action'] == "add") {
$image_name = $im->addImage($_FILES["image_s"]["tmp_name"], $_FILES["image_s"]["name"], $prefix = 'slider_', $path = '../files/media/');
if (!is_numeric($image_name)) {
$sl_add = $sl->addSlider($title = '', $text = '', $img_small = $image_name, $lang = $lang, $link_id = $_POST['link'], $id_slider = $_POST['slider_id']);
if ($sl_add) {
alert_msg("Your image is add");
} else {
alert_msg("MySQL Error.");
}
}
} elseif ($_GET['action'] == 'up' or $_GET['action'] == 'down') {
$sl_order = $sl->orderSlider($id_order = $_GET['id'], $order = $_GET['ordering'], $param = $_GET['action'], $id_slider = 1);
} elseif ($_GET['action'] == "delete") {
$sl_delete = $sl->deleteSlider($id_delete = $_GET['id'], $path = '../files/media/');
} elseif ($_GET['action'] == "update2") {
$img = $im->addImage($_FILES["image_s2"]["tmp_name"], $_FILES["image_s2"]["name"], $prefix = 'slider_', $path = '../files/media/');
$sl_update = $sl->updateSlider($id = $id, $title = $_POST['title'], $text = $_POST['text'], $img = $img, $link_id = $_POST['link']);
}
function echo_link_product_name($link_id)
{
global $lang, $db;
$Row = $db->fetchArray($db->query("SELECT product_name FROM " . TABLE_PRODUCTS . " WHERE id='" . $link_id . "' AND lang_id = '" . $lang . "' "));
return $Row['product_name'];
}
?>
function send_mail_action($snd_mail, $snd_name)
{
if ($GLOBALS['it_uses'] != 'yes') {
alert_msg("메일발송 실패 했습니다. 소스내의 '설정항목1' 을 우선 확인하십시오.");
}
if ($snd_mail) {
$_POST['mail_to_email'] = $snd_mail;
}
if ($snd_name) {
$_POST['mail_to_name'] = $snd_name;
}
if (!org_mail($_POST['mail_to_email'])) {
alert_msg('받는 사람 메일주소가 잘못 되었습니다.');
}
if (!org_mail($_POST['mail_from_email'])) {
alert_msg('보내는 사람 메일주소가 잘못 되었습니다.');
}
if (!$_POST['mail_subject']) {
alert_msg('제목을 입력하십시오.');
}
if (!$_POST['mail_to_name']) {
alert_msg('받는사람 이름을 입력하십시오.');
}
if (!$_POST['mail_from_name']) {
alert_msg('보낸사람 이름을 입력하십시오.');
}
if (!$_POST['mail_body']) {
alert_msg('본문 내용을 입력하십시오.');
}
$mail_to = "\"{$_POST['mail_to_name']}\" <{$_POST['mail_to_email']}>";
$mail_from = "\"{$_POST['mail_from_name']}\" <{$_POST['mail_from_email']}>";
$head = "From:{$_POST['mail_from_email']}\n";
$head .= "Content-Type: text/html\n";
$head .= "Reply-To:{$_POST['mail_from_email']}\n";
$head .= "X-Mailer:PHP/" . phpversion();
$body = nl2br($_POST['mail_body']);
$body = stripslashes($body);
$body = mail_body_html($body);
return @mail($mail_to, $_POST['mail_subject'], $body, $head);
}
<?php
if (!$_SESSION['name']) {
alert_msg(FALSE, 'login.php');
}
<?php
include_once './inc/init.php';
include_once './inc/db.inc.php';
$db=new DBSQL();
if ($_POST['sub']){
$sql="select * from takeorder_a_user where login_name='$_POST[username]'";
$account=$db->select($sql);
if ($account[0]['login_pass']==$_POST['passwd']){
$_SESSION['name']=$_POST['username'];
if($_POST['type']=='simple'){
alert_msg(FALSE,'simple.php');
}else{
alert_msg(FALSE,'index.php');
}
}else {
$smarty->assign('message','Account Error!');
$smarty->display('login.htm');
}
}else {
$smarty->display("login.htm");
}
?>
<?php
include 'include/util.php';
$Articulos = $_REQUEST['articulos'];
if (!isset($Articulos)) {
alert_msg("No se han seleccionado artículos!");
return;
}
foreach ($Articulos as $Articulo) {
$query = "\n INSERT INTO\n listas_precio_detalle (lista, articulo, precio) \n VALUES (\n " . $_REQUEST['lista'] . ",\n " . $Articulo . ",\n (SELECT costo FROM articulos WHERE codigo = " . $Articulo . ")\n )";
if (!mysql_query($query)) {
sql_error_msg();
return;
}
}
if (!registrar_movimiento(53, 0)) {
sql_error_msg();
return;
}
success_msg("Se han agregado los artículos a la lista!");
$sql = "insert into " . Z_DBTABLE . " (time,host) values (" . time() . ",'" . md5($z_host) . "')";
mysql_query($sql);
}
mysql_connect(Z_DBHOST, Z_DBUSER, Z_DBPASS);
mysql_select_db(Z_DATABASE);
$result = mysql_list_tables(Z_DATABASE);
//如果没有表将创建表,如果有表就查询是否有表.
if (!mysql_num_rows($result)) {
createtable();
} else {
//检测是否有表.如果有表将跳出循环
for ($i = 0; $i < mysql_num_rows($result); $i++) {
if (Z_DBTABLE == mysql_tablename($result, $i)) {
break;
}
createtable();
}
}
$sql = "select * from " . Z_DBTABLE;
$result = mysql_query($sql);
$list = mysql_fetch_assoc($result);
$sevenday = 3600 * 24 * 7;
if (md5($_SERVER['SERVER_NAME']) != $list['host']) {
if (time() > $list['time'] + $sevenday) {
alert_msg(JUMP_MESSAGE, JUMP_URL);
} else {
echo DATE_TIP;
}
} else {
echo NORMAL;
}
<?php
header('Content-Type: text/html; charset=utf-8');
session_start();
if ($card_active != 1) {
//判断是否登录
if ($_SESSION['name']) {
//如果登录了,active的值是否为FALSE,如果为FALSE就表示账号资料不完整,需要跳到激活页面
if (!$_SESSION['active']) {
alert_msg(FALSE, 'member_validate.php');
}
}
}
