function joke_query_comic($page, $timestamp) { $sql = "select id,title,text,image,datetime from joke_18plus"; // condition $sqlcond = sprintf("datetime<='%s'", date("Y-m-d H:i:s", $timestamp)); $sql = $sql . " where " . $sqlcond; // order $sql = $sql . " order by datetime desc"; // page $page = $page < 1 ? 1 : $page; $sql = $sql . sprintf(" limit %d,50", ($page - 1) * 50); // query $db = dbopen("joke"); if ($db->connect_errno) { echo "mysql error " . $db->connect->error; return; } $res = $db->query($sql); $comics = array(); while ($row = $res->fetch_assoc()) { $comic = array(); $comic["id"] = $row["id"]; $comic["title"] = $row["title"]; $comic["content"] = $row["text"]; $comic["image"] = split(",", $row["image"]); $comic["datetime"] = $row["datetime"]; $comics[] = $comic; // add book } $res->free(); return $comics; }
function ts_query($page, $limit) { $sql = sprintf("select * from ts order by datetime desc"); // page $page = $page < 1 ? 1 : $page; $sql = $sql . sprintf(" limit %d,50", ($page - 1) * 50); // query $db = dbopen("feedback"); if ($db->connect_errno) { echo "mysql error " . $db->connect->error; return; } $res = $db->query($sql); $items = array(); while ($row = $res->fetch_assoc()) { $item = array(); $item["user"] = $row["user"]; $item["datetime"] = $row["datetime"]; $item["content"] = $row["content"]; $item["contact"] = $row["contact"]; $items[] = $item; } $res->free(); return $items; }
function joke_feedback($user, $contact, $feedback) { // items $datetime = date_format(date_create(), 'Y-m-d H:i:s'); $sql = sprintf("insert into feedback (user, datetime, contact, content) values ('%s', '%s', '%s', '%s')", $user, $datetime, $contact, $feedback); // query $db = dbopen("joke"); if ($db->connect_errno) { echo "mysql error " . $db->connect->error; return; } $res = $db->query($sql); }
function gettablelocal($pfad, $database, $db, $dbid, $bemerk) { $dbget = dbopen($pfad, $database); $qrydel = "DELETE FROM tbltable WHERE fldid_database=" . $dbid; $db->exec($qrydel); $sql = "SELECT name FROM sqlite_master WHERE type='table'"; $results = dbquery($pfad, $dbget, $sql); $anz = 0; $dbrowarr = array(); while ($row = dbfetch($pfad, $results)) { $menge = array_push($dbrowarr, $row); $anz = $anz + 1; } for ($i = 0; $i < $anz; $i++) { $qryins = "INSERT INTO tbltable (fldid_database,fldbez,fldtyp) VALUES (" . $dbid . ",'" . $dbrowarr[$i]['name'] . "','')"; //echo $qryins."<br>"; $db->exec($qryins); } echo "<div class='alert alert-success'>"; echo $anz . " Tables ausgelesen für " . $bemerk . "."; echo "</div>"; }
<html> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <title>Book Detail</title> <link rel="stylesheet" type="text/css" href="css/style.css" /> </head> <body> <div id="books"> <?php require "php/db.inc"; require "php/util.inc"; $db = dbopen("books"); if ($db->connect_errno) { echo "mysql error " . $db->connect->error; } $book = php_reqvar("book", ""); if ($book < 1) { echo "book is is null." . $book; } $sql = sprintf("select * from books where bid=%d", $book); $res = $db->query($sql); assert($res->num_rows == 1); while ($row = $res->fetch_assoc()) { echo "<table width=\"100%\">"; echo "<tr style=\"background-color: #CCCCCC\">"; echo "<td width=50px><a href='" . $row["uri"] . "'>" . $row["bid"] . "</a></td>"; echo "<td width=75px>" . $row["category"] . "</td>"; echo "<td width=20%>" . $row["name"] . "</td>"; echo "<td width=15%>" . $row["author"] . "</td>"; echo "<td width=120px>" . $row["datetime"] . "</td>"; echo "<td width=50px>" . $row["vote"] . "</td>";
<?php include "classes/dbtool.php"; include "config.php"; echo "<html>"; echo "<head>"; echo " <meta charset='utf-8'>"; echo " <meta name='viewport' content='width=device-width, initial-scale=1.0, user-scalable=no'>"; echo " <title>MySQLiteSync</title>"; // <!-- Bootstrap --> echo " <link href='includes/bootstrap/css/bootstrap.min.css' rel='stylesheet'>"; echo "</head>"; echo "<body>"; $db = dbopen('', 'data/mysqlitesync.db'); $parentid = $_GET['id']; if ($parentid == "") { $parentid = '0'; } echo "<div>"; echo "<h1 align='center'>MySQLiteSync</h1>"; if ($admin == "J") { $sql = "SELECT * FROM tblmenu_liste WHERE fldview='J' AND fldid_parent='" . $parentid . "' ORDER BY fldsort"; } else { $sql = "SELECT * FROM tblmenu_liste WHERE fldview='J' AND fldadmin='N' AND fldid_parent='" . $parentid . "' ORDER BY fldsort"; } $results = dbquery('', $db, $sql); while ($row = dbfetch('', $results)) { if ($row['fldmenu'] == "SUBMENU") { echo "<a href='index.php?id=" . $row['fldindex'] . "&lastid=" . $parentid . "' class='btn btn-default btn-lg btn-block glyphicon " . $row['fldglyphicon'] . "' role='button'> " . $row['fldbez'] . "</a>"; } else { if ($row['fldlink'] != "") {
} if ($_SERVER['REQUEST_METHOD']=='POST') { ob_start(); require 'bin/lib/webgui.php'; $STDIN=@fopen('php://input','rb'); if ($STDIN===false) die('{"err":"Invalid Request"}'); $JSON=fgets($STDIN,65535); $JSON=trim($JSON,"\t\r\n "); $JSON=json_decode($JSON,true); if (!is_array($JSON)) die('{"err":"Invalid Request"}'); $CMD=array(); $OUTJSON=array(); if (!isset($JSON['t']) or !is_numeric($JSON['t']) or strpos(AJ_LIST,' '.$JSON['t'].' ')===false) die('{"err":"Invalid Request type"}'); if (is_array($ini['db']) && !$DBH) dbopen($DBH); WGSGarbage(); $t0=WGSession(); if (isset($ini['auth']) or isset($ini['logon']) and !$t0) { if ($JSON['t']!=AJ_SYSTEM) WGLockGui(3,"Session"); } if (isset($JSON['url'])) $JSON['url'] = WGExpandUrl($JSON['url']); if ($JSON['t']==AJ_DIALOG) { $JSON['url']='bin/dlg/'.$JSON['url'].'.app'; $WEBGUI['dialog'] = array( "dialog"=> array( "by" => $JSON['by'] , "datum" => $JSON['datum'],
<?php include "util.php"; include "../db/smssndbconn.php"; include "menu.php"; add_menu("../"); $con = dbopen(); $array = getRequests(); $groupid = ""; for ($i = 0; $i < count($array); $i++) { if (false == strpos($array[$i], "=")) { continue; } list($name, $value) = explode("=", $array[$i]); if ($name == "id") { $groupid = urldecode($value); } } $sql = "SELECT id, name FROM bpgroups"; if ($groupid != 0) { $sql .= " where id=" . $groupid; } if (!($result = mysqli_query($con, $sql))) { echo "Error description: " . mysqli_error($con); } $num = mysqli_num_rows($result); if ($num == 0) { ?> <center> Group <?php
function insertsave($pararray, $listarray, $menu, $show, $autoinc_step, $autoinc_start, $menugrp) { echo "<a href='showtab.php?menu=" . $menu . "&menugrp=" . $menugrp . "' class='btn btn-primary btn-sm active' role='button'>Liste</a>"; $db = dbopen('../', '../data/mysqlitesync.db'); // echo $db->lastErrorMsg()."<br>"; //$sqlid = "select ".$pararray['fldindex']." from ".$pararray['dbtable']." order by ".$pararray['fldindex']." desc limit 1"; $sqlid = "SELECT * FROM tblindex WHERE fldtable='" . $pararray['dbtable'] . "'"; $results = $db->query($sqlid); if ($row = $results->fetchArray()) { $newrowid = $row['fldid'] + $autoinc_step; //echo $newrowid."=newrowid<br>"; } else { $newrowid = $autoinc_start; } $prozref = "N"; $dbtable = $pararray['dbtable']; $sql = "INSERT INTO " . $dbtable . " (" . $pararray['fldindex'] . ","; foreach ($listarray as $arrelement) { if ($arrelement['fieldsave'] != "NO") { switch ($arrelement['type']) { case 'text': $sql = $sql . $arrelement['dbfield'] . ","; break; case 'select': $sql = $sql . $arrelement['dbfield'] . ","; break; case 'selectid': $sql = $sql . $arrelement['dbfield'] . ","; break; case 'time': $sql = $sql . $arrelement['dbfield'] . ","; break; case 'date': $sql = $sql . $arrelement['dbfield'] . ","; break; case 'calc': $sql = $sql . $arrelement['dbfield'] . ","; break; case 'timestamp': $sql = $sql . $arrelement['dbfield'] . ","; break; } } } $sql = substr($sql, 0, -1) . ") VALUES (" . $newrowid . ","; foreach ($listarray as $arrelement) { if ($arrelement['fieldsave'] != "NO") { switch ($arrelement['type']) { case 'text': $sql = $sql . "'" . $_POST[$arrelement['dbfield']] . "',"; break; case 'selectid': $sql = $sql . "'" . $_POST[$arrelement['name']] . "',"; break; case 'select': $sql = $sql . "'" . $_POST[$arrelement['name']] . "',"; break; case 'time': $sql = $sql . "'" . $_POST[$arrelement['dbfield']] . "',"; break; case 'date': $sql = $sql . "'" . $_POST[$arrelement['dbfield']] . "',"; break; case 'calc': $sql = $sql . "'" . $_POST[$arrelement['dbfield']] . "',"; break; case 'timestamp': $sql = $sql . "CURRENT_TIMESTAMP,"; break; case 'prozref': $prozref = "J"; $dbfield = $arrelement['dbfield']; break; } } } $sql = substr($sql, 0, -1) . ")"; //echo $sql."<br>"; $db->exec($sql); $sqlid = "SELECT last_insert_rowid() as lastid FROM " . $pararray['dbtable']; $results = $db->query($sqlid); if ($row = $results->fetchArray()) { $rowid = $row[0]; //echo $rowid."=rowid<br>"; } if ($show == "anzeigen") { echo "<div class='alert alert-success'>"; echo $sql . "<br>"; echo $db->lastErrorMsg() . "<br>"; echo "</div>"; } if ($prozref == "J") { $sqlfil = "SELECT * FROM tblfilter WHERE fldtablename='tblorte' AND fldfeld='fldid_suchobj'"; $resfil = $db->query($sqlfil); if ($rowfil = $resfil->fetchArray()) { if ($rowfil['fldwert'] != "(ohne)") { $sqlsuch = "SELECT * FROM tblsuchobj WHERE fldbez='" . $rowfil['fldwert'] . "'"; $ressuch = $db->query($sqlsuch); if ($rowsuch = $ressuch->fetchArray()) { $refwhere = "fldid_suchobj=" . $rowsuch['fldindex'] . " AND fldid_orte=" . $rowid; $sqlref = "SELECT * FROM tblrefsuchobj WHERE " . $refwhere; $resref = $db->query($sqlref); if ($rowref = $resref->fetchArray()) { $sqlupdref = "UPDATE tblrefsuchobj SET " . $dbfield . "=" . $_POST[$dbfield] . " WHERE " . $refwhere; } else { $sqlupdref = "INSERT INTO tblrefsuchobj (fldid_suchobj,fldid_orte," . $dbfield . ") VALUES(" . $rowsuch['fldindex'] . "," . $rowid . ",'" . $_POST[$dbfield] . "')"; } } } } echo "<div class='alert alert-success'>"; echo $sqlupdref . "=prozref"; echo "</div>"; $reserr = $db->exec($sqlupdref); } if ($newrowid == $autoinc_start) { $sqlupd = "INSERT INTO tblindex (fldtable,fldid) VALUES('" . $pararray['dbtable'] . "'," . $newrowid . ")"; } else { $sqlupd = "UPDATE tblindex SET fldid=" . $newrowid . " WHERE fldtable='" . $pararray['dbtable'] . "'"; } //echo $sqlupd."<br>"; $resupd = $db->exec($sqlupd); $db->close(); //echo $pararray['chkpreis']."=chkpreis<br>"; if ($pararray['chkpreis'] == "J") { updatepreis($rowid); } echo "<div class='alert alert-success'>"; echo "Daten '" . $_POST['fldBez'] . "' mit rowid=" . $rowid . " eingefügt."; echo "</div>"; }
<? if (!isset($ini)) return; if (count($_POST) and $_POST['logonui']==1) { if (!$DBH) dbopen($DBH); if (WGLogonUser($_POST['a'],$_POST['b']) and WGSession()) { $WEBGUIhttpAuth=true; return; } } ?> <!doctype html> <html> <head> <meta charset="utf-8"/> <title><?php echo htmlspecialchars(@$ini['webgui']['title'], ENT_QUOTES); ?> </title> <? if (@$ini['webgui']['cookie']) echo "<script src=\"/sys/cookie.js\"></script>\n"; ?> <link rel="stylesheet" href="/sys/win.css"> <link rel="stylesheet" href="/img/style.css"> <!-- EPTO WebGui V 8.0 (C) 2015 EPTO (A) --> </head> <body>
<?php include "dbtool.php"; $pfad = $_GET['pfad']; $database = $_GET['database']; $bemerk = $_GET['bemerk']; $dbid = $_GET['dbid']; //echo $pfad.",".$database."pfad,database<br>"; $dbget = dbopen($pfad, $database); $sql = "SELECT name FROM sqlite_master WHERE type='table'"; $results = dbquery($pfad, $dbget, $sql); $anz = 0; $dbrowarr = array(); while ($row = dbfetch($pfad, $results)) { $menge = array_push($dbrowarr, $row); $anz = $anz + 1; } echo "<div class='alert alert-success'>"; echo $anz . " Tables ausgelesen für " . $bemerk . "."; echo "</div>"; $website = "http://localhost:8080/own/mysqlitesync/classes/gettablestruc.php?menu=table&dbid=" . $dbid; echo "<form class='form-horizontal' method='post' action='" . $website . "'>"; echo "<input type='hidden' name='status' value='empfangen'/>"; for ($i = 0; $i < $anz; $i++) { echo "<input type='hidden' name='dbid" . $i . "' value='" . $dbid . "'/>"; echo "<input type='hidden' name='name" . $i . "' value='" . $dbrowarr[$i]['name'] . "'/>"; } echo "<input type='hidden' name='datcnt' value='" . $anz . "'/>"; echo "<dd><input type='submit' value='Get Table' /></dd>"; echo "</form>";
echo "<h1 align='left'>" . $headline . "</h1>"; echo "<div class='alert alert-success'>"; echo "Bitte erzeugen Sie das Unterverzeichnis 'data' im Verzeichnis '" . $dir . "' mit Schreibrechten und rufen diese Seite zur weiteren Installation erneut auf."; echo "</div>"; echo "<a href='index.php' class='btn btn-primary btn-sm active' role='button'>Neustart</a><br>"; } else { include "classes/install.php"; } } else { $dirdb = $dirdata . "/" . $database; if (!file_exists($dirdb)) { include "classes/install.php"; } else { include "classes/checkupgrade.php"; check_version(); $db = dbopen('', 'data/' . $database); $parentid = $_GET['id']; if ($parentid == "") { $parentid = '0'; } echo "<div>"; echo "<h1 align='center'>" . $headline . "</h1>"; if ($admin == "J") { $sql = "SELECT * FROM tblmenu_liste WHERE fldview='J' AND fldid_parent='" . $parentid . "' ORDER BY fldsort"; } else { $sql = "SELECT * FROM tblmenu_liste WHERE fldview='J' AND fldadmin='N' AND fldid_parent='" . $parentid . "' ORDER BY fldsort"; } $results = dbquery('', $db, $sql); while ($row = dbfetch('', $results)) { if ($row['fldmenu'] == "SUBMENU") { echo "<a href='index.php?id=" . $row['fldindex'] . "&lastid=" . $parentid . "' class='btn btn-default btn-lg btn-block glyphicon " . $row['fldglyphicon'] . "' role='button'> " . $row['fldbez'] . "</a>";
function db_delete($sql, $data) { $db_connection = dbopen(); $statement = prepare_statement($sql, $data, $db_connection); $statement->execute(); $statement->free_result(); return; }
<?php include "bootstrapfunc.php"; include "dbtool.php"; include "gettablestrucfunc.php"; bootstraphead(); bootstrapbegin("Get Tables<br>"); $menu = $_GET['menu']; $dbid = $_GET['dbid']; echo "<a href='showtab.php?menu=" . $menu . "&dbid=" . $dbid . "' class='btn btn-primary btn-sm active' role='button'>Zurück</a> "; $db = dbopen('../', '../data/mysqlitesync.db'); $sql = "SELECT * FROM tbldatabase WHERE fldindex=" . $dbid; $results = $db->query($sql); if ($row = dbfetch('../', $results)) { $database = $row['fldbez']; $bemerk = $row['fldbemerk']; $pfad = $row['fldpfad']; $idsel = $row['fldid_select']; //echo $pfad.",".$database."=pfad,database<br>"; } $status = $_POST['status']; if ($status == "empfangen") { $datcnt = $_POST['datcnt']; $bemerk = ""; gettableempfangen($datcnt, $bemerk); } else { if ($idsel == 1) { gettablelocal($pfad, $database, $db, $dbid, $bemerk); } else { echo "<div class='alert alert-warning'>"; echo "Remote-Funktion gestartet.";
function form_running_post($rawData,$data) { global $ini; global $DBERROR; global $DBH; global $WEBGUI; if (@$ini['webgui']['cansetup']!='webgui') FatalError("Setup Bloccato"); $path = $_SERVER['DOCUMENT_ROOT'].$WEBGUI['rvar']['APPPATH']; $DBERROR=catchDBError; if ($data['dbp1']!=$data['dbp2']) return LocalError("Le password del database non coincidono."); if ($data['rp1']!=$data['rp2']) return LocalError("Le password di root non coincidono."); $x = $_SERVER['DOCUMENT_ROOT'].'/etc/InstallHash'; if (file_exists($x)) { $x = @file_get_contents($x); if ($x===false) FatalError("Non riesco a leggere `InstallHash`"); list($a,$b)=@explode(' ',$x,2); $x = $a.' '.$data['root'].':'.$data['rp1']; $x = md5($x); $b=strtolower($b); if ($b!=$x) return LocalError("La login e la password di root non coincidono con quelle precedentemente segnalate nel file `InstallHash`\nRimuovere il file oppure usare le credenziali corrette."); } $ini['db'] = array( 'mysql'=> ($data['mysql'] ? $data['mysql'] : '127.0.0.1') , 'db' => $data['db'], 'dblog'=> $data['dbl'], 'dbpas'=> $data['dbp1']) ; $ini['db']['ok'] = true; dbopen($DBH); if ($ini['db']['ok']==false) return LocalError("Errore accesso database: {$ini['db']['err']}"); unset($ini['db']['ok']); unset($ini['db']['err']); if (!isset($ini['webgui'])) $ini['webgui']=array(); $ini['webgui']['title'] = $data['title']; unset($ini['webgui']['autoexec']); if (isset($ini['webgui']['install-autoexec'])) { $ini['webgui']['autoexec']=$ini['webgui']['install-autoexec']; unset($ini['webgui']['install-autoexec']); } unset($ini['allowdir']); $a = array( 'etc', 'etc/conf.d', 'etc/desktop.json', 'etc/start.json', 'etc/mime.json', 'etc/mimehome.json', 'etc/server.php', 'tmp', 'var/cache', 'var/cache/font.json', 'var/cache/font.css', 'home', 'usr', 'bin/app/grp', 'bin/usr', 'bin/dlg', 'bin/dll', 'bin/font', 'bin/mod', 'bin/php', 'bin/theme', 'bin/wgx', 'bin/mime', 'bin/mime/ico') ; foreach($a as $b) { $c=$_SERVER['DOCUMENT_ROOT'].'/'.$b; if (@file_exists($c) and @chmod($c,0770)==false ) return LocalError("Non riesco ad impostare i permessi su $b"); } $dh=@opendir($path.'etc'); if ($dh===false) FatalError("Non trovo la directory skel file di installazione {$path}etc"); while($f=readdir($dh)) { if (is_dir( $path.'etc/'.$f ) or $f[0]=='.') continue; $dt = @file_get_contents($path.'etc/'.$f); if ($dt===false) return LocalError("Non riesco a leggere `$f`"); if (@file_put_contents( $_SERVER['DOCUMENT_ROOT'].'/etc/'.$f , $dt ) == false ) return LocalError("No riesco a copiare: $f"); } closedir($dh); $dh=@opendir($path.'setup'); if ($dh===false) FatalError("Non trovo la directory skel file di installazione {$path}setup"); $lst=array(); while($f=readdir($dh)) { $tf=$path.'setup/'.$f; if (is_dir( $tf ) or $f[0]=='.') continue; if (preg_match('/\.sql$/',$f)!=0) { $a = intval($f); $lst[$a]=@file_get_contents($tf); if ($lst[$a]===false) return LocalError("Non riesco a leggere `$tf`"); } } closedir($dh); ksort($lst); $ini['db']['ok']=true; $ini['db']['err']=''; foreach($lst as $db) { dbquery($DBH,$db); if ($ini['db']['ok']==false) return LocalError("Errore Query SQL: ".$ini['db']['err']); } $x=WGCreateUser($data['root'],$data['rp1'],'root',array('root' => true)); if ($x==false) LocalError("Non riesco a creare l'utente root."); unset($ini['db']['ok']); unset($ini['db']['err']); unset($ini['logon']); unset($ini['auth']); if ($data['accesmode']==1) { $ini['auth'] = array( 'realm' => $data['title']!='' ? $data['title'] : 'WebGui8') ; } if ($data['accesmode']==2) { $ini['logon']=array('enabled'=>1); } $t0 = str_pad($data['debug'],4,'0'); $ini['debug'] = array( 'debug' => $t0[0], 'log' => $t0[1], 'showid'=> $t0[2], 'args' => $t0[3]) ; $ini['webgui']['cookie'] = $data['cookie']!=0 ? '1' : '0'; $fs =$path.'setup/server.conf'; if (file_exists($fs)) { $i = @parse_ini_file($fs,true); if ($i===false) return LoaclError("Non riesco a leggere correttamente il file di installazione `$fs`"); foreach($i as $k => $st) { if (!isset($ini[$k])) $ini[$k]=array(); foreach($st as $k1 => $v1) { $ini[$k][$k1]=$v1; } } } $fs=$path.'setup/install.php'; if (file_exists($fs)) WGRequirePHP($fs,$data); unset($ini['webgui']['cansetup']); $i=';) <'.'? exit; ?'.'>'; $i.="\n"; foreach($ini as $k => $li) { $i.="[{$k}]\n"; foreach($li as $vk => $vv) { if (!is_numeric($vv)) $vv='"'.addcslashes($vv,"\t\r\n\\\"`'").'"'; $i.="{$vk}={$vv}\n"; } $i.="\n"; } $fs=$_SERVER['DOCUMENT_ROOT'].'/etc/server.php'; if ( file_put_contents($fs,$i)==false) return LocalError("Non riesco a scrivere su `$fs`"); EWGCacheFont(); WGSetActivity('setup'); }
function db_delete($sql, $data) { $db_connection = dbopen(); $final_sql = fill_params($sql, $data); $result = mysql_query($final_sql, $db_connection); if (!$result) { error_log("mysql statement failed: " . $final_sql . " -- " . mysql_error()); } mysql_free_result($result); return; }
function showtabbrowse($listarray, $filterarray, $pararray, $sql, $menu) { $db = dbopen('../', '../data/mysqlitesync.db'); $dbselarr = array(); $results = $db->query($sql); echo "<table class='table table-hover'>"; echo "<tr>"; foreach ($listarray as $arrelement) { if ($arrelement['fieldhide'] != "true") { switch ($arrelement['type']) { case 'icon': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'nummer': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'show': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'text': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'select': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'selectid': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'selectref': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'time': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'date': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'calcaddsum': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'calcdiffsum': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'calcdiff': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'calc': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'calcsum': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'prozref': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'proz': echo "<th>" . $arrelement['label'] . "</th>"; break; case 'timestamp': echo "<th>" . $arrelement['label'] . "</th>"; break; } } } $filterwhere = ""; foreach ($filterarray as $arrelement) { $wert = ""; $sqlfilter = "SELECT * FROM tblfilter WHERE fldfeld='" . $arrelement['dbfield'] . "' AND fldtablename='" . $pararray['dbtable'] . "'"; $resfilter = $db->query($sqlfilter); if ($rowfilter = $resfilter->fetchArray()) { $wert = $rowfilter['fldwert']; } if ($wert != "(ohne)") { $sign = $arrelement['sign']; if ($sign == ">=") { $sign = "<"; } if ($filterwhere == "") { $filterwhere = " WHERE " . $arrelement['dbfield'] . $sign . "'" . $wert . "'"; } else { $filterwhere = $filterwhere . " AND " . $arrelement['dbfield'] . $sign . "'" . $wert . "'"; } } //echo $sqlfilter."<br>"; } $calcsum = 0; if ($pararray['calcsum'] == 'J') { if ($filterwhere != "") { if ($pararray['dellogical'] == "J") { $filterwhere = $filterwhere . " AND flddel='N'"; } $sqlbetrag = "SELECT sum(fldBetrag) as sumbetrag FROM " . $pararray['dbtable'] . $filterwhere; //echo $sqlbetrag."<br>"; $resbetrag = $db->query($sqlbetrag); if ($rowbetrag = $resbetrag->fetchArray()) { $calcsum = $rowbetrag['sumbetrag']; } } } //echo $filterwhere."=filterwhere<br>"; //echo $calcsum."=calcsum<br>"; $nummer = 0; $prozsum = 0; $count = 0; //$calcsum=0; //$calcsum=8.16; $sum = $calcsum; $summe = $sum; $sumdiff = 0; while ($row = $results->fetchArray()) { if ($pararray['markseldb'] == "J") { $summe = $summe + $row['fldBetrag']; //echo "#".number_format($row['fldFix'],2).",".$summe."#<br>"; if ($row['fldFix'] != "") { if (number_format($row['fldFix'], 2) == number_format($summe, 2)) { echo "<tr bgcolor=#00ff00>"; } else { echo "<tr bgcolor=#ff6699>"; } } else { echo "<tr>"; } } else { echo "<tr>"; } foreach ($listarray as $arrelement) { if ($arrelement['fieldhide'] != "true") { switch ($arrelement['type']) { case 'icon': echo "<td><a href='" . $arrelement['func'] . "&id=" . $row['fldindex'] . "' class='btn btn-primary btn-sm active' role='button'>" . $arrelement['label'] . "</a></td> "; break; case 'nummer': $nummer = $nummer + 1; echo "<td>" . $nummer . "</td>"; break; case 'show': echo "<td>" . $row[$arrelement['dbfield']] . "</td>"; break; case 'timestamp': echo "<td>" . $row[$arrelement['dbfield']] . "</td>"; break; case 'text': if ($arrelement['grafiklink'] == "J") { echo "<td><a href='" . $arrelement['grafikurl'] . "?id=" . $id . "&etagenid=" . $row[$arrelement['grafiketageid']] . "&roomtyp=" . $arrelement['roomtyp'] . "&menu=" . $menu . "'>" . $row[$arrelement['dbfield']] . "</a></td>"; } else { echo "<td>" . $row[$arrelement['dbfield']] . "</td>"; } break; case 'select': echo "<td>" . $row[$arrelement['dbfield']] . "</td>"; break; case 'selectid': $id = $row[$arrelement['dbfield']]; if ($id == "") { $id = '0'; } $sqlsel = "SELECT * FROM " . $arrelement['dbtable'] . " WHERE " . $arrelement['seldbindex'] . "=" . $id; //echo $sqlsel."<br>"; $ressel = $db->query($sqlsel); $arrsel = array(); while ($rowsel = $ressel->fetchArray()) { $arrsel = $rowsel; } if (isset($arrsel)) { //$bez=$arrsel[$arrelement['seldbfield']]; $arrdbfield = explode(",", $arrelement['seldbfield']); $arrcnt = count($arrdbfield); $bez = $arrsel[$arrdbfield[0]]; for ($i = 1; $i < $arrcnt; $i++) { $bez = $bez . "," . $arrsel[$arrdbfield[$i]]; } } else { $bez = ""; } //echo $bez."=bez<br>"; echo "<td>" . $bez . "</td>"; break; case 'selectref': $pos = strpos($sql, "JOIN"); if ($pos !== false) { $sqlsel = "SELECT * FROM " . $arrelement['dbtable'] . " WHERE " . $arrelement['fldindex'] . "=" . $row[$arrelement['fldindex']]; } else { $sqlsel = "SELECT * FROM " . $arrelement['dbtable'] . " WHERE " . $arrelement['fldindex'] . "=" . $row[$arrelement['dbindex']]; } //echo $sqlsel."<br>"; $ressel = $db->query($sqlsel); echo "<td>"; echo "<select name='" . $arrelement['name'] . "' size='1'>"; while ($rowsel = $ressel->fetchArray()) { $sqlref = "SELECT * FROM " . $arrelement['reftable'] . " WHERE " . $arrelement['fldrefindex'] . "=" . $rowsel[$arrelement['dbrefindex']]; $resref = $db->query($sqlref); $bez = "<unbekannt>"; if ($rowref = $resref->fetchArray()) { $bez = $rowref[$arrelement['dbfield']]; } echo "<option style='background-color:#c0c0c0;' >" . $bez . "</option>"; } echo "</select>"; echo "</td>"; break; case 'time': echo "<td>" . $row[$arrelement['dbfield']] . "</td>"; break; case 'date': echo "<td>" . $row[$arrelement['dbfield']] . "</td>"; break; case 'calcaddsum': $nachkomma = 2; $wert = strval($row[$arrelement['dbfield']]); if ($arrelement['calcfield'] != "") { $wert = $wert - strval($row[$arrelement['calcfield']]); $wert = $wert * strval($arrelement['calcfix']); $zeitpreis = strval($row[$arrelement['calcaddfield']]) * strval($row[$arrelement['calcadddbfield']]); //echo $arrelement['calcaddfield']."<br>"; $wert = $wert + $zeitpreis; } $sumadd = $sumadd + $wert; echo "<td style='text-align:right;padding-right:10px;' width='" . $arrelement['width'] . "'>" . sprintf("%." . $nachkomma . "f", $wert) . "</td>"; break; case 'calcdiffsum': $nachkomma = 2; $wert = strval($row[$arrelement['dbfield']]); if ($arrelement['calcfield'] != "") { $wert = $wert - strval($row[$arrelement['calcfield']]); $wert = $wert * strval($arrelement['calcfix']); } $sumdiff = $sumdiff + $wert; echo "<td style='text-align:right;padding-right:10px;' width='" . $arrelement['width'] . "'>" . sprintf("%." . $nachkomma . "f", $wert) . "</td>"; break; case 'calcdiff': $nachkomma = 0; $wert = strval($row[$arrelement['dbfield']]); if ($arrelement['calcfield'] != "") { $wert = $wert - strval($row[$arrelement['calcfield']]); } echo "<td style='text-align:right;padding-right:10px;' width='" . $arrelement['width'] . "'>" . sprintf("%." . $nachkomma . "f", $wert) . "</td>"; break; case 'calc': $nachkomma = 2; $wert = strval($row[$arrelement['dbfield']]); if ($arrelement['calcfield'] != "") { $wert = $wert * strval($row[$arrelement['calcfield']]); } $sum = $sum + $wert; echo "<td style='text-align:right;padding-right:10px;' width='" . $arrelement['width'] . "'>" . sprintf("%." . $nachkomma . "f", $wert) . "</td>"; break; case 'calcsum': $nachkomma = 2; $wert = strval($row[$arrelement['dbfield']]); //$calcsum=$calcsum+$wert+$startsum; $calcsum = $calcsum + $wert; echo "<td style='text-align:right;padding-right:10px;' width='" . $arrelement['width'] . "'>" . sprintf("%." . $nachkomma . "f", $calcsum) . "</td>"; break; case 'prozref': //echo "<br>"; $nachkomma = 1; $count = $count + 1; $wert = 0; $sqlfil = "SELECT * FROM tblfilter WHERE (fldtablename='tblorte' OR fldtablename='tbletagen') AND fldfeld='fldid_suchobj'"; $resfil = $db->query($sqlfil); if ($rowfil = $resfil->fetchArray()) { if ($rowfil['fldwert'] != "(ohne)") { $sqlsuch = "SELECT * FROM tblsuchobj WHERE fldbez='" . $rowfil['fldwert'] . "'"; $ressuch = $db->query($sqlsuch); if ($rowsuch = $ressuch->fetchArray()) { //echo $rowfil['fldtablename']."=tablename<br>"; $refwhere = "fldid_suchobj=" . $rowsuch['fldindex'] . " AND " . $arrelement['roomid'] . "=" . $row['fldindex']; $sqlref = "SELECT * FROM tblrefsuchobj WHERE " . $refwhere; //echo $sqlref."<br>"; $resref = $db->query($sqlref); if ($rowref = $resref->fetchArray()) { $wert = strval($rowref[$arrelement['dbfield']]); } } } } $prozsum = $prozsum + $wert; $prozposdif = 100 - $wert; echo "<td style='text-align:right;padding-right:10px;' width='" . $arrelement['width'] . "'>"; echo "<div style='float:left; background-color:darkgreen; color:lightgreen; height:16px; width:" . $wert . "px; top:0; left:0;' align=center></div>"; echo "<div style='float:left; background-color:lightgreen; color:white; height:16px; width:" . $prozposdif . "px; top:0; left:0;' align=center></div>"; echo sprintf("%." . $nachkomma . "f", $wert) . "</td>"; break; case 'proz': $nachkomma = 1; $count = $count + 1; $wert = strval($row[$arrelement['dbfield']]); $prozsum = $prozsum + $wert; $prozposdif = 100 - $wert; echo "<td style='text-align:right;padding-right:10px;' width='" . $arrelement['width'] . "'>"; echo "<div style='float:left; background-color:darkgreen; color:lightgreen; height:16px; width:" . $wert . "px; top:0; left:0;' align=center></div>"; echo "<div style='float:left; background-color:lightgreen; color:white; height:16px; width:" . $prozposdif . "px; top:0; left:0;' align=center></div>"; echo sprintf("%." . $nachkomma . "f", $wert) . "</td>"; break; } } } // echo "<td><a href='mark.php?menu=".$menu."&menugrp=".$menugrp."&id=".$row['fldindex']."' class='btn btn-primary btn-sm active' role='button'>OK</a></td> "; echo "<td><a href='update.php?menu=" . $menu . "&menugrp=" . $menugrp . "&id=" . $row['fldindex'] . "' class='btn btn-primary btn-sm active' role='button'>U</a></td> "; echo "<td><a href='delete.php?menu=" . $menu . "&menugrp=" . $menugrp . "&id=" . $row['fldindex'] . "' class='btn btn-primary btn-sm active' role='button'>D</a></td>"; echo "</tr>"; $menge = array_push($dbselarr, $row[$pararray['fldindex']]); } $_SESSION['DBSELARR'] = $dbselarr; echo "<tr>"; foreach ($listarray as $arrelement) { if ($arrelement['fieldhide'] != "true") { switch ($arrelement['type']) { case 'nummer': echo "<td></td>"; break; case 'text': echo "<td></td>"; break; case 'select': echo "<td></td>"; break; case 'selectid': echo "<td></td>"; break; case 'date': echo "<td></td>"; break; case 'time': echo "<td></td>"; break; case 'calcdiffsum': $nachkomma = 2; echo "<td style='text-align:right;padding-right:10px;'>" . sprintf("%." . $nachkomma . "f", $sumdiff) . "</td>"; break; case 'calcdiff': echo "<td></td>"; break; case 'calc': $nachkomma = 2; echo "<td style='text-align:right;padding-right:10px;'>" . sprintf("%." . $nachkomma . "f", $sum) . "</td>"; break; case 'calcaddsum': $nachkomma = 2; echo "<td style='text-align:right;padding-right:10px;'>" . sprintf("%." . $nachkomma . "f", $sumadd) . "</td>"; break; case 'prozref': $nachkomma = 1; $wert = $prozsum / $count; $prozposdif = 100 - $wert; echo "<td style='text-align:right;padding-right:10px;' width='" . $arrelement['width'] . "'>"; echo "<div style='float:left; background-color:darkgreen; color:lightgreen; height:16px; width:" . $wert . "px; top:0; left:0;' align=center></div>"; echo "<div style='float:left; background-color:lightgreen; color:white; height:16px; width:" . $prozposdif . "px; top:0; left:0;' align=center></div>"; echo sprintf("%." . $nachkomma . "f", $wert) . "</td>"; break; case 'proz': $nachkomma = 1; $wert = $prozsum / $count; $prozposdif = 100 - $wert; echo "<td style='text-align:right;padding-right:10px;' width='" . $arrelement['width'] . "'>"; echo "<div style='float:left; background-color:darkgreen; color:lightgreen; height:16px; width:" . $wert . "px; top:0; left:0;' align=center></div>"; echo "<div style='float:left; background-color:lightgreen; color:white; height:16px; width:" . $prozposdif . "px; top:0; left:0;' align=center></div>"; echo sprintf("%." . $nachkomma . "f", $wert) . "</td>"; break; } } } echo "</tr>"; echo "</table>"; }
function bored_init() { prepare_form(); session_start(); if (defined('DBHOST') && defined('DBUSER') && defined('DBPASS') && defined('DBNAME')) { dbopen(DBHOST, DBUSER, DBPASS, DBNAME); } register_shutdown_function(function () { global $dblink; if ($dblink) { mysqli_close($dblink); } session_write_close(); }); }
<?php require "php/db.inc"; require "php/http.inc"; $db = dbopen("pingshu", "115.28.54.237"); if ($db->connect_errno) { echo "mysql error " . $db->connect->error; return; } if (count($argv) < 2) { print_r("please input server ip"); return -1; } Action($argv[1]); function Action($ip) { global $db; $sql = sprintf("select bookid, chapterid, uri from pingshu8"); $res = $db->query($sql); if (!$res) { print_r("Action failed: " . $db->error); return -1; } $chapters = array(); while ($row = $res->fetch_assoc()) { $bookid = $row["bookid"]; $chapterid = $row["chapterid"]; $uri = $row["uri"]; if (strlen($uri) > 0) { Download($ip, $bookid, $chapterid, $uri); }
function updatesave($pararray, $listarray, $menu, $show, $chkpreis, $menugrp) { echo "<a href='showtab.php?menu=" . $menu . "&menugrp=" . $menugrp . "' class='btn btn-primary btn-sm active' role='button'>Liste</a>"; $db = dbopen('../', '../data/mysqlitesync.db'); $sql = "UPDATE " . $pararray['dbtable'] . " SET "; $strfld = ""; $strval = ""; foreach ($listarray as $arrelement) { if ($arrelement['fieldsave'] != "NO") { if ($strfld == "") { $strfld = $arrelement['dbfield']; $strval = "'" . $_POST[$arrelement['dbfield']] . "'"; } else { if ($arrelement['type'] != "icon") { $strfld = $strfld . "," . $arrelement['dbfield']; $strval = $strval . ",'" . $_POST[$arrelement['dbfield']] . "'"; } } switch ($arrelement['type']) { case 'text': $sql = $sql . $arrelement['dbfield'] . "='" . $_POST[$arrelement['dbfield']] . "', "; break; case 'JN': $sql = $sql . $arrelement['dbfield'] . "='" . $_POST[$arrelement['dbfield']] . "', "; break; case 'zahl': $sql = $sql . $arrelement['dbfield'] . "='" . $_POST[$arrelement['dbfield']] . "', "; break; case 'selectid': $wert = $_POST[$arrelement['name']]; if ($wert == "(ohne)") { $wert = 0; } $sql = $sql . $arrelement['dbfield'] . "='" . $wert . "', "; break; case 'select': $sql = $sql . $arrelement['dbfield'] . "='" . $_POST[$arrelement['name']] . "', "; break; case 'time': $sql = $sql . $arrelement['dbfield'] . "='" . $_POST[$arrelement['dbfield']] . "', "; break; case 'date': $sql = $sql . $arrelement['dbfield'] . "='" . $_POST[$arrelement['dbfield']] . "', "; break; case 'calc': $sql = $sql . $arrelement['dbfield'] . "='" . $_POST[$arrelement['dbfield']] . "', "; break; case 'proz': $sql = $sql . $arrelement['dbfield'] . "='" . $_POST[$arrelement['dbfield']] . "', "; break; case 'timestamp': $sql = $sql . $arrelement['dbfield'] . "=CURRENT_TIMESTAMP, "; break; case 'prozref': $sqlfil = "SELECT * FROM tblfilter WHERE fldtablename='tblorte' AND fldfeld='fldid_suchobj'"; echo $sqlfil . "<br>"; $resfil = $db->query($sqlfil); if ($rowfil = $resfil->fetchArray()) { if ($rowfil['fldwert'] != "(ohne)") { $sqlsuch = "SELECT * FROM tblsuchobj WHERE fldbez='" . $rowfil['fldwert'] . "'"; $ressuch = $db->query($sqlsuch); if ($rowsuch = $ressuch->fetchArray()) { $refwhere = "fldid_suchobj=" . $rowsuch['fldindex'] . " AND fldid_orte=" . $_POST['id']; $sqlref = "SELECT * FROM tblrefsuchobj WHERE " . $refwhere; $resref = $db->query($sqlref); if ($rowref = $resref->fetchArray()) { $sqlupdref = "UPDATE tblrefsuchobj SET " . $arrelement['dbfield'] . "=" . $_POST[$arrelement['dbfield']] . ",fldtyp='" . $arrelement['reftyp'] . "',fldid_moebel=" . $_POST['moebel'] . ",fldid_zimmer=" . $_POST['zimmer'] . " AND fldid_etage=" . $_POST['etage'] . " WHERE " . $refwhere; } else { $sqlupdref = "INSERT INTO tblrefsuchobj (fldid_suchobj,fldid_orte," . $arrelement['dbfield'] . ",fldtyp) VALUES(" . $rowsuch['fldindex'] . "," . $_POST['id'] . ",'" . $_POST[$arrelement['dbfield']] . "','" . $arrelement['reftyp'] . "')"; } echo "<div class='alert alert-success'>"; echo $sqlupdref . "=prozref"; echo "</div>"; //$reserr = $db->exec($sqlupdref); } } } break; } } } $sql = substr($sql, 0, -2); $sql = $sql . " WHERE fldindex=" . $_POST['id']; $query = $db->exec($sql); if ($pararray['chkpreis'] == "J") { if ($chkpreis == "preis") { $rowid = $_POST['id']; updatepreis($rowid, $show); } } $dscopy = $_POST['dscopy']; //echo $dscopy."=dscopy?<br>"; if ($dscopy == "dscopy") { $qrycopy = "INSERT INTO " . $pararray['dbtable'] . " (" . $strfld . ") VALUES(" . $strval . ") "; echo "<div class='alert alert-success'>"; echo $qrycopy . "<br>"; echo "</div>"; $query = $db->exec($qrycopy); //mysql_query($qrycopy) or die("Error using mysql_query($qrycopy): ".mysql_error()); } if ($show == "anzeigen") { echo "<div class='alert alert-success'>"; echo $db->lastErrorMsg() . "<br>"; echo $sql . "<br>"; echo "</div>"; } $fldbez = "fldbez"; if ($pararray['fldbez'] != "") { $fldbez = $pararray['fldbez']; } echo "<div class='alert alert-success'>"; echo "Daten '" . $_POST[$fldbez] . "' aktualisiert."; echo "</div>"; }
<? error_reporting(E_ALL & ~E_NOTICE & ~E_WARNING & ~E_DEPRECATED); $DBH=false; $ini = @parse_ini_file($_SERVER['DOCUMENT_ROOT'].'/etc/server.php',true); @session_start(); require_once $_SERVER['DOCUMENT_ROOT'].'/bin/lib/libdb.php'; require_once $_SERVER['DOCUMENT_ROOT'].'/bin/lib/libglobal.php'; $lockIntUri=false; if (isset($ini['auth'])) { dbopen($DBH); WGHTTPAuth(); $lockIntUri=true; $WEBGUIhttpAuth=true; } else { $WEBGUIhttpAuth=false; } WGAllowPath( array( "/usr" , "/bin/mime/ico" , "/bin/theme" , "/bin/dlg" , "/bin/wgx" , "/bin/app/webgui" , "/bin/app/usr" ) ) ;