function CheckRank($rank = 0, $money = 0) { global $cfg_ml, $cfg_memberurl; if (!$cfg_ml->IsLogin()) { header("Location:{$cfg_memberurl}/login.php?gourl=" . urlencode(GetCurUrl())); exit; } else { if ($cfg_ml->M_Rank < $rank) { $needname = ""; if ($cfg_ml->M_Rank == 0) { $row = $dsql->GetOne("Select membername From #@__arcrank where rank='{$rank}'"); $myname = "普通会员"; $needname = $row['membername']; } else { $dsql->SetQuery("Select membername From #@__arcrank where rank='{$rank}' Or rank='" . $cfg_ml->M_Rank . "' order by rank desc"); $dsql->Execute(); $row = $dsql->GetObject(); $needname = $row->membername; if ($row = $dsql->GetObject()) { $myname = $row->membername; } else { $myname = "普通会员"; } } ShowMsg("对不起,需要:<span style='font-size:11pt;color:red'>{$needname}</span> 才能访问本页面。<br>你目前的等级是:<span style='font-size:11pt;color:red'>{$myname}</span> 。", "-1", 0, 5000); exit; } else { if ($cfg_ml->M_Money < $money) { ShowMsg("对不起,需要花费金币:<span style='font-size:11pt;color:red'>{$money}</span> 才能访问本页面。<br>你目前拥有的金币是:<span style='font-size:11pt;color:red'>" . $cfg_ml->M_Money . "</span> 。", "-1", 0, 5000); exit; } } } }
function ac_addpl() { // 引入全局对象(当前用户的相关信息) global $cfg_ml; // 如果当前没有用户处于登录状态,不允许发表评论 if (!$cfg_ml->M_ID) { ShowMsg("请先登录,再发表评论", -1, 0, 2000); return; } $title = request('title', ''); $content = request('content', ''); $movieid = request('movieid', ''); $addtime = time(); $userid = $cfg_ml->M_ID; if ($title == "" || $content == "") { ShowMsg("对不起,请先输入评论内容", -1, 0, 2000); return; } // 调用Model执行添加操作 $res = $this->Model('mpinglun')->add_pl($userid, $title, $content, $addtime, $movieid); if ($res) { // ShowMsg("添加评论 成功", -1, 0, 2000); ShowMsg("添加评论 成功", "?c=pinglun&a=listpl&aid={$movieid}", 0, 1500); } else { ShowMsg("添加评论 失败", -1, 0, 2000); } }
function ac_save() { global $cfg_soft_lang; $data[0]['pic'] = request('pic1', ''); $data[1]['pic'] = request('pic2', ''); $data[2]['pic'] = request('pic3', ''); $data[0]['url'] = request('url1', ''); $data[1]['url'] = request('url2', ''); $data[2]['url'] = request('url3', ''); $data[0]['description'] = request('description1', ''); $data[1]['description'] = request('description2', ''); $data[2]['description'] = request('description3', ''); $mpath = DEDEASK . "/data/cache/slide.inc"; if ($cfg_soft_lang == 'utf-8') { $data = AutoCharset($data, 'utf-8', 'gb2312'); $data = serialize($data); $data = gb2utf8($data); } else { $data = serialize($data); } $configstr = "<" . "?php\r\n\$data = '" . $data . "';"; file_put_contents($mpath, $configstr); ShowMsg('修改幻灯片成功', '?ct=slide'); exit; }
/** * * @name checkRole * @param String $action * @package 检查用户自己的权限 * @return true or false */ public function checkRole($action) { global $router, $match; $res = parent::acl_myRole($action); if ($res == false) { ShowMsg(parent::_Lang("error_permission"), $router->url('admin_index')); } }
function success_db($buyid) { global $dsql, $cfg_ml, $r3_Amt; $money = floor($r3_Amt); //获取订单信息,检查订单的有效性 $row = $dsql->GetOne("Select * From #@__member_operation where buyid='{$buyid}' "); if (!is_array($row) || $row['sta'] == 2) { if (isset($row['sta'])) { ShowMsg($row['oldinfo'], "javascript:;"); exit; } else { ShowMsg('订单不存在!', "javascript:;"); exit; } } if ($money != $row['money']) { ShowMsg('交易信息被篡!', "javascript:;"); exit; } $mid = $row['mid']; $pid = $row['pid']; //更新交易状态为已付款 $dsql->ExecuteNoneQuery("Update #@__member_operation set sta=1 where buyid='{$buyid}' "); //------------------------------------------- //会员产品 //------------------------------------------- if ($row['product'] == 'member') { $row = $dsql->GetOne(" Select rank,exptime From #@__member_type where aid='{$row['pid']}' "); $rank = $row['rank']; $exptime = $row['exptime']; $equery = " Update #@__member set\r\n\t\t\t\t\t\t\t\tmembertype='{$rank}',exptime='{$exptime}',uptime='" . time() . "' where mid='{$mid}' "; $dsql->ExecuteNoneQuery($equery); //更新交易状态为已关闭 $dsql->ExecuteNoneQuery(" Update #@__member_operation set sta=2,oldinfo='会员升级成功!' where buyid='{$buyid}' "); } else { if ($row['product'] == 'card') { $row = $dsql->GetOne("Select cardid From #@__moneycard_record where ctid='{$pid}' And isexp='0' "); //如果找不到某种类型的卡,直接为用户增加金币 if (!is_array($row)) { $nrow = $dsql->GetOne("Select num From #@__moneycard_type where tid='{$pid}' "); $dnum = $nrow['num']; $equery = " Update #@__member set money=money+" . $dnum . " where mid='{$mid}' "; $dsql->ExecuteNoneQuery($equery); //更新交易状态为已关闭 $dsql->ExecuteNoneQuery(" Update #@__member_operation set sta=2,oldinfo='直接充值了 {$dnum} 金币到帐号!' where buyid='{$buyid}' "); exit; } else { $cardid = $row['cardid']; $dsql->ExecuteNoneQuery(" Update #@__moneycard_record set uid='{$mid}',isexp='1',utime='" . time() . "' where cardid='{$cardid}' "); //更新交易状态为已关闭 $dsql->ExecuteNoneQuery(" Update #@__member_operation set sta=2,oldinfo='充值密码:{$cardid}' where buyid='{$buyid}' "); } } } return NULL; }
function GetDb() { global $db; global $dbaddr, $dbuser, $dbpwd, $dbname; if (null == $db) { $db = new db_sql(); ShowMsg("create new db"); $db->connect($dbaddr, $dbuser, $dbpwd, $dbname); ShowMsg("create new db ok"); } return $db; }
function CheckCatalog($cid, $msg) { global $cfg_admin_channel, $admin_catalogs; if ($cfg_admin_channel == 'all' || TestAdmin()) { return true; } if (!in_array($cid, $admin_catalogs)) { ShowMsg(" {$msg} <br/><br/><a href='javascript:history.go(-1);'>点击此返回上一页>></a>", 'javascript:;'); exit; } return true; }
function checkauth() { global $yiqi_db; global $adminuserinfo; $pagename = end(explode("/", $_SERVER["PHP_SELF"])); $sql = "select * from yiqi_regular where value like '{$pagename}%' limit 1"; $regularinfo = $yiqi_db->get_row(CheckSql($sql)); $userregular = explode("|", $adminuserinfo->regular); if (!checkregular($regularinfo->rid)) { ShowMsg("您没有权限访问此页", "back"); exit; } }
function ac_index() { $asktypes = $this->type->get_alltype(); //当前位置 $nav = $GLOBALS['cfg_ask_position'] . '<a href="#">全部分类</a>'; if (!count($asktypes) > 0) { ShowMsg('目前还没有分类,请浏览其他内容!', '-1'); exit; } //设定变量值 $GLOBALS['nav'] = $nav; $GLOBALS['asktypes'] = $asktypes; //载入模板 $this->SetTemplate('type.htm'); $this->Display(); }
public function __construct($stdClass = null) { global $router, $match; $this->Session = new SC(); $this->Session->StartSession(); parent::__construct($stdClass); $this->stdClass = $stdClass; $res = true; if (!in_array($this->stdClass, unserialize(WEB_ICORE_ACTION))) { $res = $this->IsLogin(); } if ($res == false) { $this->ajax = 1; ShowMsg(parent::_CLang("error_nologin"), $router->url('icore_login')); } }
function sendmail($email, $mailtitle, $mailbody) { global $cfg_sendmail_bysmtp, $cfg_smtp_server, $cfg_smtp_port, $cfg_smtp_usermail, $cfg_smtp_user, $cfg_smtp_password, $cfg_adminemail, $cfg_webname; if ($cfg_sendmail_bysmtp == 'Y' && !empty($cfg_smtp_server)) { $mailtype = 'HTML'; require_once DEDEINC . '/mail.class.php'; $smtp = new smtp($cfg_smtp_server, $cfg_smtp_port, true, $cfg_smtp_usermail, $cfg_smtp_password); $smtp->debug = false; if (!$smtp->smtp_sockopen($cfg_smtp_server)) { ShowMsg('邮件发送失败,请联系管理员', '-1'); exit; } $smtp->sendmail($email, $cfg_webname, $cfg_smtp_usermail, $mailtitle, $mailbody, $mailtype); } else { @mail($email, $mailtitle, $mailbody, $headers); } }
/** * 过滤不相关内容 * * @access public * @param string $fk 过滤键 * @param string $svar 过滤值 * @return string */ function _FilterAll($fk, &$svar) { global $cfg_notallowstr, $cfg_replacestr; if (is_array($svar)) { foreach ($svar as $_k => $_v) { $svar[$_k] = _FilterAll($fk, $_v); } } else { if ($cfg_notallowstr != '' && preg_match("#" . $cfg_notallowstr . "#i", $svar)) { ShowMsg(" {$fk} has not allow words!", '-1'); exit; } if ($cfg_replacestr != '') { $svar = preg_replace('/' . $cfg_replacestr . '/i', "***", $svar); } } return $svar; }
/** * php5构造函数 * * @access public * @param string $keyword 关键词 * @param string $templet 模板 * @return void */ function __construct($keyword, $templet) { global $dsql; $this->Templet = $templet; $this->Tag = $keyword; $this->dsql = $dsql; $this->dtp = new DedeTagParse(); $this->dtp->SetRefObj($this); $this->dtp->SetNameSpace("dede", "{", "}"); $this->dtp2 = new DedeTagParse(); $this->dtp2->SetNameSpace("field", "[", "]"); $this->TypeLink = new TypeLink(0); $this->Fields['tag'] = $keyword; $this->Fields['title'] = $keyword; $this->TempletsFile = ''; //设置一些全局参数的值 foreach ($GLOBALS['PubFields'] as $k => $v) { $this->Fields[$k] = $v; } //读取Tag信息 if ($this->Tag != '') { $this->TagInfos = $this->dsql->GetOne("Select * From `#@__tagindex` where tag like '{$this->Tag}' "); if (!is_array($this->TagInfos)) { $fullsearch = $GLOBALS['cfg_phpurl'] . "/search.php?keyword=" . $this->Tag . "&searchtype=titlekeyword"; $msg = "系统无此标签,可能已经移除!<br /><br />你还可以尝试通过搜索程序去搜索这个关键字:<a href='{$fullsearch}'>前往搜索>></a>"; ShowMsg($msg, "-1"); exit; } } //初始化模板 $tempfile = $GLOBALS['cfg_basedir'] . $GLOBALS['cfg_templets_dir'] . "/" . $GLOBALS['cfg_df_style'] . '/' . $this->Templet; if (!file_exists($tempfile) || !is_file($tempfile)) { echo "模板文件不存在,无法解析文档!"; exit; } $this->dtp->LoadTemplate($tempfile); $this->TempletsFile = preg_replace("#^" . $GLOBALS['cfg_basedir'] . "#", '', $tempfile); }
function ac_view() { $mid = request('mid', ''); $mid = is_numeric($mid) ? $mid : 0; $row = $this->dsql->GetOne("SELECT * FROM `#@__member` WHERE mid='{$mid}' "); if (is_array($row)) { /** 提问数 **/ $asknum = $this->dsql->GetOne("SELECT COUNT(id) as dd FROM `#@__ask` WHERE uid='{$mid}'"); $asknum = empty($asknum['dd']) ? 0 : $asknum['dd']; /** 回答数 **/ $answernum = $this->dsql->GetOne("SELECT COUNT(id) as dd FROM `#@__askanswer` WHERE uid='{$mid}'"); $answernum = empty($answernum['dd']) ? 0 : $answernum['dd']; /** 采纳率 **/ $adoptnum = $this->dsql->GetOne("SELECT COUNT(id) as dd FROM `#@__askanswer` WHERE uid='{$mid}' AND ifanswer = 1"); if (empty($adoptnum['dd'])) { $adoptrate = 0; } else { $adoptrate = $adoptnum['dd'] / $answernum * 100; } /** 查询会员签名 **/ $moodmsg = $this->dsql->GetOne("SELECT * FROM #@__member_msg WHERE mid='{$mid}' ORDER BY dtime desc"); //头像 if (empty($row['face'])) { $row['face'] = $row['sex'] == '女' ? "static/images/dfgirl.png" : "static/images/dfboy.png"; } } else { ShowMsg('不存在该用户!', '-1'); exit; } $GLOBALS['row'] = $row; $GLOBALS['moodmsg'] = $moodmsg; $this->SetVar('asknum', $asknum); $this->SetVar('answernum', $answernum); $this->SetVar('adoptrate', $adoptrate); $this->SetTemplet('member_person.htm'); $this->Display(); }
$total = count($commentcount); $take = 20; $skip = ($curpage - 1) * $take; $totalpage = (int) ($total % $take == 0 ? $total / $take : $total / $take + 1); $commentlist = $commentdata->TakeCommentsList($skip, $take); $action = $_POST["action"]; if ($action == "delete") { $idarr = $_POST["chk"]; if (count($idarr) > 0) { foreach ($idarr as $id) { if (is_numeric($id)) { $sql = "DELETE FROM yiqi_comments WHERE cid = '{$id}' limit 1"; $yiqi_db->query(CheckSql($sql)); } } ShowMsg("指定留言删除成功"); } } $adminpagetitle = "留言列表"; include "admin.header.php"; ?> <div class="main_body"> <form action="comments.php" method="post"> <table class="inputform" cellpadding="1" cellspacing="1"> <tr style="background:#f6f6f6;"><td class="w10"></td><td class="w20">标题</td><td class="w20">留言人姓名</td><td class="w20">联系方式</td><td class="w20">留言时间</td><td class="w10">相关操作</td></tr> <?php if (count($commentlist) > 0) { foreach ($commentlist as $comment) { echo "<tr>" . "<td><input id=\"slt{$comment->cid}\" type=\"checkbox\" name=\"chk[]\" value=\"{$comment->cid}\" /></td>" . "<td><a href=\"comment-info.php?cid={$comment->cid}\">{$comment->title}</a></td>" . "<td>{$comment->name}</td>" . "<td>{$comment->contact}</td>" . "<td>{$comment->adddate}</td>" . "<td><a href=\"comment-info.php?cid={$comment->cid}\">查看</a></td>" . "</tr>"; } }
if ($row && $row['isadmin'] == 1) { $query = "Update `#@__member_pms` set writetime='0' WHERE id='{$row['id']}' AND folder='inbox' AND toid='{$cfg_ml->M_ID}' AND isadmin='1';"; $dsql->ExecuteNoneQuery($query); } else { $query = "DELETE FROM `#@__member_pms` WHERE id in({$ids}) AND toid='{$cfg_ml->M_ID}' AND folder LIKE 'inbox'"; } } } else { if ($folder == 'outbox') { $query = "Delete From `#@__member_pms` WHERE id in({$ids}) AND fromid='{$cfg_ml->M_ID}' AND folder LIKE 'outbox' "; } else { $query = "Delete From `#@__member_pms` WHERE id in({$ids}) AND fromid='{$cfg_ml->M_ID}' Or toid='{$cfg_ml->M_ID}' AND folder LIKE 'outbox' Or (folder LIKE 'inbox' AND hasview='0')"; } } $dsql->ExecuteNoneQuery($query); ShowMsg("成功删除指定的消息!", "pm.php?folder=" . $folder); exit; } else { if (!isset($folder)) { $folder = 'inbox'; } require_once DEDEINC . "/datalistcp.class.php"; $wsql = ''; if ($folder == 'outbox') { $wsql = " `fromid`='{$cfg_ml->M_ID}' AND folder LIKE 'outbox' "; $tname = "发件箱"; } elseif ($folder == 'inbox') { $query = "SELECT * FROM `#@__member_pms` WHERE folder LIKE 'outbox' AND isadmin='1'"; $dsql->SetQuery($query); $dsql->Execute(); while ($row = $dsql->GetArray()) {
$dsql->SetQuery($q1); $dsql->Execute(); $rownum = $dsql->GetTotalRow(); if ($rownum < 2) { continue; } $i = 1; while ($row = $dsql->GetObject()) { $i++; $naid = $row->id; $ntitle = $row->title; if ($i > $rownum) { continue; } $totalarc++; DelArc($naid, 'OFF'); } } $dsql->executenonequery(" OPTIMIZE TABLE `{$maintable}`; "); ShowMsg("一共删除了[{$totalarc}]篇重复的文档!", "javascript:;"); exit; } } //向导页 $channelinfos = array(); $dsql->setquery("select id,typename,maintable,addtable from `#@__channeltype` "); $dsql->execute(); while ($row = $dsql->getarray()) { $channelinfos[] = $row; } include DedeInclude('templets/article_test_same.htm');
if ($rank == 10) { ShowMsg('超级管理员的权限不允许更改!', 'sys_group.php'); exit; } $purview = ""; if (is_array($purviews)) { foreach ($purviews as $p) { $purview .= "{$p} "; } $purview = trim($purview); } $dsql->ExecuteNoneQuery("UPDATE `#@__admintype` SET typename='{$typename}',purviews='{$purview}' WHERE CONCAT(`rank`)='{$rank}'"); ShowMsg('成功更改用户组的权限!', 'sys_group.php'); exit; } else { if ($dopost == 'del') { $dsql->ExecuteNoneQuery("DELETE FROM `#@__admintype` WHERE CONCAT(`rank`)='{$rank}' AND system='0';"); ShowMsg("成功删除一个用户组!", "sys_group.php"); exit; } } $groupRanks = array(); $groupSet = $dsql->GetOne("SELECT * FROM `#@__admintype` WHERE CONCAT(`rank`)='{$rank}' "); $groupRanks = explode(' ', $groupSet['purviews']); include DedeInclude('templets/sys_group_edit.htm'); //检查是否已经有此权限 function CRank($n) { global $groupRanks; return in_array($n, $groupRanks) ? ' checked' : ''; }
$ismake = -1; } //更新数据库的SQL语句 $query = "UPDATE #@__archives SET\r\n typeid='{$typeid}',\r\n typeid2='{$typeid2}',\r\n sortrank='{$sortrank}',\r\n flag='{$flag}',\r\n click='{$click}',\r\n ismake='{$ismake}',\r\n arcrank='{$arcrank}',\r\n money='{$money}',\r\n title='{$title}',\r\n color='{$color}',\r\n writer='{$writer}',\r\n source='{$source}',\r\n litpic='{$litpic}',\r\n pubdate='{$pubdate}',\r\n voteid='{$voteid}',\r\n notpost='{$notpost}',\r\n description='{$description}',\r\n keywords='{$keywords}',\r\n shorttitle='{$shorttitle}',\r\n filename='{$filename}',\r\n dutyadmin='{$adminid}',\r\n weight='{$weight}'\r\n WHERE id='{$id}'; "; if (!$dsql->ExecuteNoneQuery($query)) { ShowMsg('更新数据库archives表时出错,请检查', -1); exit; } $cts = $dsql->GetOne("SELECT addtable FROM `#@__channeltype` WHERE id='{$channelid}' "); $addtable = trim($cts['addtable']); if ($addtable != '') { $useip = GetIP(); $templet = empty($templet) ? '' : $templet; $iquery = "UPDATE `{$addtable}` SET typeid='{$typeid}',body='{$body}'{$inadd_f},redirecturl='{$redirecturl}',templet='{$templet}',userip='{$useip}' WHERE aid='{$id}'"; if (!$dsql->ExecuteNoneQuery($iquery)) { ShowMsg("更新附加表 `{$addtable}` 时出错,请检查原因!", "javascript:;"); exit; } } //生成HTML UpIndexKey($id, $arcrank, $typeid, $sortrank, $tags); if ($cfg_remote_site == 'Y' && $isremote == "1") { if ($serviterm != "") { list($servurl, $servuser, $servpwd) = explode(',', $serviterm); $config = array('hostname' => $servurl, 'username' => $servuser, 'password' => $servpwd, 'debug' => 'TRUE'); } else { $config = array(); } if (!$ftp->connect($config)) { exit('Error:None FTP Connection!'); }
$wintitle = "删除插件"; $wecome_info = "<a href='plus_main.php'>插件管理</a>::删除插件"; $win = new OxWindow(); $win->Init("plus_edit.php", "js/blank.js", "POST"); $win->AddHidden("job", "yes"); $win->AddHidden("dopost", $dopost); $win->AddHidden("aid", $aid); $win->AddTitle("你确实要删除'" . $title . "'这个插件?"); $win->AddMsgItem("<font color='red'>警告:在这里删除仅仅删除菜单项,要干净删除请在模块管理处删除!<br /><br /> <a href='module_main.php?moduletype=plus'>模块管理>></a> </font>"); $winform = $win->GetWindow("ok"); $win->Display(); exit; } else { if ($job == "yes") { $dsql->ExecuteNoneQuery("DELETE FROM #@__plus WHERE aid='{$aid}';"); ShowMsg("成功删除一个插件,请刷新导航菜单!", "plus_main.php"); exit; } } } else { if ($dopost == "saveedit") { $inquery = "UPDATE #@__plus SET plusname='{$plusname}',menustring='{$menustring}',filelist='{$filelist}' WHERE aid='{$aid}';"; $dsql->ExecuteNoneQuery($inquery); ShowMsg("成功更改插件的配置!", "plus_main.php"); exit; } } } } $row = $dsql->GetOne("SELECT * FROM #@__plus WHERE aid='{$aid}'"); include DedeInclude('templets/plus_edit.htm');
if(strlen($bodytext) < $msize) continue; $des = trim(addslashes(cn_substr($bodytext,$dsize))); if(strlen($des)<3) $des = "-"; $dsql->ExecuteNoneQuery("Update $maintable set description='{$des}' where ID='{$row['ID']}';"); $dsql->ExecuteNoneQuery("Update #@__full_search set addinfos='{$des}' where aid='{$row['ID']}';"); } //返回进度信息 $startdd = $startdd + $pagesize; if($totalnum > $startdd){ $tjlen = ceil( ($startdd/$totalnum) * 100 ); $dvlen = $tjlen * 2; $tjsta = "<div style='width:200;height:15;border:1px solid #898989;text-align:left'><div style='width:$dvlen;height:15;background-color:#829D83'></div></div>"; $tjsta .= "<br/>完成处理文档总数的:$tjlen %,继续执行任务..."; $nurl = "description_fetch_action.php?action=fetch&totalnum=$totalnum&startdd={$startdd}&pagesize=$pagesize&channel={$channel}&rpfield={$rpfield}&dsize={$dsize}&msize={$msize}&sid={$sid}&eid=$eid&addtable=".urlencode($addtable); $dsql->Close(); ShowMsg($tjsta,$nurl,0,500); exit(); }else{ $tjlen=100; $dsql->executenonequery("OPTIMIZE TABLE `#@__full_search`"); $dsql->executenonequery("OPTIMIZE TABLE `$maintable`"); $dsql->Close(); echo "完成所有任务!"; exit(); } }else{ $dsql->Close(); echo "完成所有任务!"; exit(); } ClearAllLink();
} $tid = $topids[$curpage]; if (isset($cfg_Cs[$tid]) && $cfg_Cs[$tid][1] > 0) { require_once DEDEINC . "/arc.listview.class.php"; $lv = new ListView($tid); $lv->MakeHtml(); $lv->Close(); } else { require_once DEDEINC . "/arc.sglistview.class.php"; $lv = new SgListView($tid); $lv->MakeHtml(); $lv->Close(); } if ($curpage >= count($topids) - 1) { if (!empty($doposttmp)) { $jumpurl = preg_replace("#doposttmp|nextdotmp#", 'del', $jumpurl); $jumpurl .= "&dopost={$doposttmp}&nextdo={$nextdotmp}"; ShowMsg("完成栏目:{$tid} 更新!<br /><b>完成栏目更新任务,继续执行后续任务...</b>", $jumpurl, 0, 500); exit; } else { ShowMsg("完成栏目:{$tid} 更新!<br /><b>完成栏目更新任务,完成所有更新任务!</b>", "close::tgtable"); exit; } } else { $curpage++; $jumpurl .= "&curpage={$curpage}&dopost=makeparenttype"; ShowMsg("完成栏目:{$tid} 更新,继续更新其它栏目...", $jumpurl, 0, 500); exit; } } }
function ac_ask_search() { $title = request('title', ''); $title = addslashes(preg_replace("[\"\r\n\t\\*\\?\\(\\)\$%'><]", " ", stripslashes(trim($title)))); if (!empty($title) && strlen($title) >= 8) { $query = "SELECT id,title,content,bestanswer FROM `#@__ask`\r\n WHERE title like '%{$title}%' LIMIT 5"; $this->dsql->setquery($query); $this->dsql->execute(); $searchs = array(); while ($row = $this->dsql->getarray()) { $row["title"] = $this->GetRedKeyWord($title, $row["title"]); $row['content'] = cn_substr(strip_tags($row['content']), 300); $searchs[] = $row; } if (count($searchs) > 0) { //设定变量值 $GLOBALS['searchs'] = $searchs; //载入模板 $this->SetTemplate('ask2.htm'); $this->Display(); } else { Header("Location: ?ct=question&ac=ask_complete&title={$title}"); exit; } } else { ShowMsg('问题名称不能为空或者不够长!', "-1"); exit; } }
$des = ${"m_des" . $id}; if (empty($dname) || strlen($dname) > 100) { $dname = addslashes($row['dname']); } $price = preg_replace("#[^.0-9]#", "", $price); if (empty($price)) { $price = $row['price']; } if (empty($des)) { $des = addslashes($row['des']); } else { $des = cn_substrR($des, 255); } $dsql->ExecuteNoneQuery("UPDATE #@__shops_delivery SET dname='{$dname}',price='{$price}',des='{$des}' WHERE pid='{$id}'"); } ShowMsg("成功修改配送方式!", "shops_delivery.php"); exit; } } } $deliveryarr = array(); $dsql->SetQuery("SELECT pid,dname,price,des FROM #@__shops_delivery ORDER BY orders ASC"); $dsql->Execute(); while ($row = $dsql->GetArray()) { $deliveryarr[] = $row; } $dlist = new DataListCP(); $dlist->pageSize = 25; //设定每页显示记录数(默认25条) //这两句的顺序不能更换 $dlist->SetTemplate(DEDEADMIN . "/templets/shops_delivery.htm");
exit; } else { ShowMsg("添加分类成功!", "mail_type.php"); exit; } } elseif ($dopost == "editsave") { if ($typename == "") { ShowMsg("分类名不能为空", "-1"); exit; } $typename = Html2Text($typename, 1); $description = Html2Text($description, 1); $query = "UPDATE #@__mail_type SET typename='{$typename}',description='{$description}' WHERE id={$id}"; if (!$dsql->ExecuteNoneQuery($query)) { ShowMsg("更新数据库#@__mail_type表时出错,请检查!", "javascript:;"); exit; } else { ShowMsg("更改分类成功!", "mail_type.php"); exit; } } elseif ($dopost == "delete") { $dsql->ExecuteNoneQuery("Delete From `#@__mail_type` where id='{$id}'"); ShowMsg("删除分类成功!", "mail_type.php"); exit; } else { $sql = "SELECT * FROM `#@__mail_type` ORDER BY id "; $dlist = new DataListCP(); $dlist->SetTemplet(DEDEADMIN . "/templets/mail_type_main.htm"); $dlist->SetSource($sql); $dlist->display(); }
$config = AutoCharset(unserialize(utf82gb($row['config']))); } else { if ($cfg_soft_lang == 'gb2312') { $config = unserialize($row['config']); } } foreach ($config as $key => $v) { $config[$key]['value'] = ""; } if ($cfg_soft_lang == 'utf-8') { $config = AutoCharset($config, 'utf-8', 'gb2312'); $config = serialize($config); $config = gb2utf8($config); } else { $config = serialize($config); } $query = "UPDATE `#@__payment` SET fee='',config='{$config}',enabled='0' WHERE id='{$pid}'"; $dsql->ExecuteNoneQuery($query); //同时需要删除对应的缓存 $m_file = DEDEDATA . "/payment/" . $row['code'] . ".php"; @unlink($m_file); ShowMsg("删除成功!", "sys_payment.php"); exit; } } } $sql = "SELECT * FROM `#@__payment` ORDER BY rank ASC"; $dlist = new DataListCP(); $dlist->SetTemplet(DEDEADMIN . "/templets/sys_payment.htm"); $dlist->SetSource($sql); $dlist->display();
} $arcID = $aid = isset($aid) && is_numeric($aid) ? $aid : 0; if ($aid == 0) { die(" Request Error! "); } //读取文档信息 $arctitle = ''; $arcurl = ''; $topid = 0; $arcRow = $dsql->GetOne("SELECT arc.title,arc.senddate,arc.arcrank,arc.ismake,arc.money,arc.typeid,tp.topid,tp.typedir,tp.namerule,\r\n tp.moresite,tp.siteurl,tp.sitepath FROM `#@__archives` arc LEFT JOIN `#@__arctype` tp ON tp.id=arc.typeid WHERE arc.id='{$aid}'"); if (is_array($arcRow)) { $arctitle = $arcRow['title']; $topid = $arcRow['topid']; $arcurl = @GetFileUrl($aid, $arcRow['typeid'], $arcRow['senddate'], $arctitle, $arcRow['ismake'], $arcRow['arcrank'], $arcRow['namerule'], $arcRow['typedir'], $arcRow['money'], $arcRow['filename'], $arcRow['moresite'], $arcRow['siteurl'], $arcRow['sitepath']); } else { ShowMsg('无法浏览未知文档!', '-1'); exit; } if (empty($mx)) { $mx = $cfg_album_width; } $pageGuide = ""; //获取上下幅图片链接 $row = $dsql->GetOne("SELECT imgurls FROM `#@__addonimages` WHERE aid='{$aid}'"); $i = 0; $nextSrc = ''; $preSrc = ''; $dtp = new DedeTagParse(); $dtp->LoadSource($row['imgurls']); foreach ($dtp->CTags as $ctag) { if ($ctag->GetName() == "img") {
if ($ids == '') { $arow = $dsql->GetOne("SELECT url,mid FROM `#@__uploads` WHERE aid='{$aid}'; "); if (is_array($arow) && $arow['mid'] == $cfg_ml->M_ID) { $dsql->ExecuteNoneQuery("DELETE FROM `#@__uploads` WHERE aid='{$aid}'; "); if (file_exists($cfg_basedir . $arow['url'])) { @unlink($cfg_basedir . $arow['url']); } } $tj++; } else { $ids = explode(',', $ids); foreach ($ids as $aid) { $aid = preg_replace("#[^0-9]#", "", $aid); $arow = $dsql->GetOne("SELECT url,mid From #@__uploads WHERE aid='{$aid}'; "); if (is_array($arow) && $arow['mid'] == $cfg_ml->M_ID) { $dsql->ExecuteNoneQuery("DELETE FROM `#@__uploads` WHERE aid='{$aid}'; "); $tj++; if (file_exists($cfg_basedir . $arow['url'])) { @unlink($cfg_basedir . $arow['url']); } } } } ShowMsg("成功删除 {$tj} 个附件!", $ENV_GOBACK_URL); exit; } } } } } }
} $arcID = $aid = isset($aid) && is_numeric($aid) ? $aid : 0; if ($aid == 0) { die(" Request Error! "); } $arc = new Archives($aid); if ($arc->IsError) { ParamError(); } //检查阅读权限 $needMoney = $arc->Fields['money']; $needRank = $arc->Fields['arcrank']; require_once DEDEINC . '/memberlogin.class.php'; $cfg_ml = new MemberLogin(); if ($needRank < 0 && $arc->Fields['mid'] != $cfg_ml->M_ID) { ShowMsg('文章尚未审核,非作者本人无权查看!', 'javascript:;'); exit; } //设置了权限限制的文章 //arctitle msgtitle moremsg if ($needMoney > 0 || $needRank > 1) { $arctitle = $arc->Fields['title']; /* $arclink = GetFileUrl($arc->ArcID,$arc->Fields["typeid"],$arc->Fields["senddate"], $arc->Fields["title"],$arc->Fields["ismake"],$arc->Fields["arcrank"]); */ $arclink = $cfg_phpurl . '/view.php?aid=' . $arc->ArcID; $arcLinktitle = "<a href=\"{$arclink}\"><u>" . $arctitle . "</u></a>"; $description = $arc->Fields["description"]; $pubdate = GetDateTimeMk($arc->Fields["pubdate"]); //会员级别不足
$dsql->ExecuteNoneQuery("UPDATE `#@__co_htmls` SET isexport=1 WHERE aid='{$exid}' "); } //检测是否完成或后续操作 if ($totalpage <= $pageno) { if ($channelid > 0 && $makehtml == 1) { if ($autotype == 0 && !empty($nid)) { $mhtml = "makehtml_archives_action.php?typeid={$typeid}&startid={$startid}&endid={$endid}&pagesize=20"; ShowMsg("完成数据导入,准备生成文档HTML...", $mhtml); exit; } else { ShowMsg("完成所有数据导入,请手工更新HTML!", "javascript:;"); exit; } } else { ShowMsg("完成所有数据导入!", "javascript:;"); exit; } } else { if ($totalpage > 0) { $rs = substr($pageno / $totalpage * 100, 0, 2); } else { $rs = 100; } $pageno++; $gourl = "co_export.php?dopost=done&nid={$nid}&totalcc={$totalcc}&channelid={$channelid}&pageno={$pageno}"; $gourl .= "&nid={$nid}&typeid={$typeid}&autotype={$autotype}&arcrank={$arcrank}&pagesize={$pagesize}&randcc={$randcc}"; $gourl .= "&startid={$startid}&endid={$endid}&onlytitle={$onlytitle}&usetitle={$usetitle}&makehtml={$makehtml}"; ShowMsg("完成 {$rs}% 导入,继续执行操作...", $gourl, '', 500); exit; } }