function admin_change($_P) { $info = CheckAdmin($_SESSION['admin'], $_POST['passold']); if ($info != "") { $_SESSION['info'] = "Password is wrong,please input again"; header("Location: admin.php"); } elseif ($_POST['passnew'] != $_POST['passnew1']) { $_SESSION['info'] = "两次输入密码不一致,请重新输入"; header("Location: admin.php"); } else { if (UpdateAdmin($_SESSION['admin'], $_POST['passnew']) == "") { echo "<p align='center'>修改成功</p>"; echo "<p align='center'><a href='index.php'>返回主页</a></p>"; } else { $_SESSION['info'] = "数据库操作失败,请稍后再试"; header("Location: admin.php"); } } }
<?php CheckAdmin($_SESSION['admin_user'], $_SESSION['admin_pwd']); ?> <TABLE cellSpacing=0 cellPadding=0 width=720 border=0> <TBODY> <TR> <TD width="10" vAlign=top><IMG src="images/fader.gif" border=0></TD> <TD width="710" vAlign=top><IMG src="images/topfader.gif" border=0><BR> <!-- News --> <IMG SRC="images/menu/textmenu_webboard.gif" BORDER="0"><BR><BR> <BR><BR> <?php $_GET['id'] = intval($_GET['id']); $ProcessOutput = false; if (CheckLevel($_SESSION['admin_user'], "webboard_del")) { $db->connectdb(DB_NAME, DB_USERNAME, DB_PASSWORD); $BoardResult = $db->select_query("SELECT id,picture FROM " . TB_WEBBOARD . " WHERE id='" . $_GET['id'] . "' "); while ($WebBoard = $db->fetch($BoardResult)) { $CommentResult = $db->select_query("SELECT id,picture FROM " . TB_WEBBOARD_COMMENT . " WHERE topic_id='" . $WebBoard['id'] . "' ORDER BY id "); while ($Comment = $db->fetch($CommentResult)) { @unlink("webboard_upload/" . $Comment['picture'] . ""); } @unlink("webboard_upload/" . $WebBoard['picture'] . ""); $db->del(TB_WEBBOARD_COMMENT, " topic_id='" . $WebBoard['id'] . "' "); } $db->del(TB_WEBBOARD, " id='" . $_GET['id'] . "' "); $db->closedb(); $ProcessOutput .= "<BR><BR>"; $ProcessOutput .= "<CENTER><A HREF=\"?name=admin&file=main\"><IMG SRC=\"images/icon/login-welcome.gif\" BORDER=\"0\"></A><BR><BR>"; $ProcessOutput .= "<FONT COLOR=\"#336600\"><B>ได้ทำการลบกระทู้เรียบร้อยแล้ว</B></FONT><BR><BR>";
<?php CheckAdmin($admin_user, $admin_pwd); include "editor.php"; empty($_POST['ENABLE_COMMENT']) ? $ENABLE_COMMENT = "" : ($ENABLE_COMMENT = $_POST['ENABLE_COMMENT']); ?> <TABLE cellSpacing=0 cellPadding=0 width=820 border=0> <TBODY> <TR> <TD width="10" vAlign=top><IMG src="images/fader.gif" border=0></TD> <TD width="810" vAlign=top><IMG src="images/topfader.gif" border=0><BR> <!-- Admin --> <IMG SRC="images/menu/textmenu_admin.gif" BORDER="0"><BR> <TABLE width="800" align=center cellSpacing=0 cellPadding=5 border=0> <TR> <TD height="1" class="dotline"></TD> </TR> <TR> <TD> <BR><B><IMG SRC="images/icon/plus.gif" BORDER="0" ALIGN="absmiddle"> <A HREF="?name=admin&file=main"><?php echo _ADMIN_GOBACK; ?> </A> <IMG SRC="images/icon/arrow_wap.gif" BORDER="0" ALIGN="absmiddle"> <?php echo _ADMIN_KNOWLEDGE_MENU_INDEX; ?> </B> <BR><BR> <A HREF="?name=admin&file=knowledge"><IMG SRC="images/admin/open.gif" BORDER="0" align="absmiddle"> <?php echo _ADMIN_KNOWLEDGE_MENU_LISTALL; ?>
<?php session_start(); require_once 'Connections/connect.php'; //require_once("pagecheck.php"); require_once 'functions.php'; unset($_SESSION['truck']); echo $_session['accdnt']; $ca = CheckAdmin(); ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <title>Untitled Document</title> <link rel="stylesheet" media="screen" href="css/acrav.css" /> <link rel="stylesheet" type="text/css" href="collapse/jquery.css"> <link rel="stylesheet" media="screen" href="css/grid.css" /> <!--<link rel="stylesheet" media="screen" href="css/style.css" />--> <link rel="stylesheet" media="screen" href="css/messages.css" /> <link rel="stylesheet" media="screen" href="css/tables.css" /> <!--<link rel="shortcut icon" href="images/icon_512.png" type="image/x-icon">--> <link rel="stylesheet" media="screen" href="css/facebox.css" /> <link rel="stylesheet" media="screen" href="css/demo_table.css" /> <link rel="stylesheet" media="screen" href="css/demo_table_jui.css" /> <!--[if lt IE 8]> <link rel="stylesheet" media="screen" href="css/ie.css" /> <![endif]--> <link rel="stylesheet" media="screen" href="simple-calendar/tcal.css" />
<?php // -------------------------------------------------------------------- // admin.php -- The main admin page. Come here on "admin" in nav menu. // // Created: 12/29/14 DLB // -------------------------------------------------------------------- require_once "../maindef.php"; $loc = rmabs(__FILE__); session_start(); log_page(); CheckLogin(); CheckAdmin(); /* $menubar = array( array( "caption" => "List Users", "href" => "admin_listusers.php"), array( "caption" => "Add User", "href" => "admin_adduser.php"), array( "caption" => "Upload Users", "href" => "admin_uploadusers.php"), array( "caption" => "Show Log", "href" => "admin_showlog.php"), array( "caption" => "Masquerade", "href" => "admin_masquerade.php")); */ include "forms/header.php"; include "forms/nav_form.php"; include "forms/admin_menubar.php"; echo '<div class="content_area">'; echo '<h2>Administration for This Website</h2>'; echo '<p>Use the links above for various admin tasks.</p>'; echo '</div>'; include "forms/footer.php";
<?php CheckAdmin($admin_user, $_SESSION['admin_pwd']); ?> <TABLE cellSpacing=0 cellPadding=0 width=750 border=0> <TBODY> <TR> <TD width="10" vAlign=top></TD> <TD width="740" vAlign=top> <!-- News --> <IMG SRC="images/menu/textmenu_news.gif" BORDER="0"><BR><BR> <BR><BR> <?php $_GET['id'] = intval($_GET['id']); $_GET['comment'] = intval($_GET['comment']); if (CheckLevel($admin_user, "news_del")) { $db->connectdb(DB_NAME, DB_USERNAME, DB_PASSWORD); $db->del(TB_NEWS_COMMENT, " news_id='" . $_GET['id'] . "' AND id='" . $_GET['comment'] . "' "); $db->closedb(); $ProcessOutput .= "<BR><BR>"; $ProcessOutput .= "<CENTER><A HREF=\"?name=admin&file=main\"><IMG SRC=\"images/icon/login-welcome.gif\" BORDER=\"0\"></A><BR><BR>"; $ProcessOutput .= "<FONT COLOR=\"#336600\"><B>" . _FROM_COMMENT_DEL . "</B></FONT><BR><BR>"; $ProcessOutput .= "<A HREF=\"?name=news&file=readnews&id=" . $_GET['id'] . "\"><B>" . _FROM_COMMENT_INDEX . "</B></A>"; $ProcessOutput .= "</CENTER>"; $ProcessOutput .= "<BR><BR>"; } else { //¡Ã³ÕäÁè¼èÒ¹ $ProcessOutput = $PermissionFalse; } echo $ProcessOutput; ?>