<?php if ($SucInc == "yes") { $sl = new slider(); $im = new image(); if ($_GET['action'] == "add") { $image_name = $im->addImage($_FILES["image_s"]["tmp_name"], $_FILES["image_s"]["name"], $prefix = 'slider_', $path = '../files/media/'); if (!is_numeric($image_name)) { $sl_add = $sl->addSlider($title = '', $text = '', $img_small = $image_name, $lang = $lang, $link_id = $_POST['link'], $id_slider = $_POST['slider_id']); if ($sl_add) { alert_msg("Your image is add"); } else { alert_msg("MySQL Error."); } } } elseif ($_GET['action'] == 'up' or $_GET['action'] == 'down') { $sl_order = $sl->orderSlider($id_order = $_GET['id'], $order = $_GET['ordering'], $param = $_GET['action'], $id_slider = 1); } elseif ($_GET['action'] == "delete") { $sl_delete = $sl->deleteSlider($id_delete = $_GET['id'], $path = '../files/media/'); } elseif ($_GET['action'] == "update2") { $img = $im->addImage($_FILES["image_s2"]["tmp_name"], $_FILES["image_s2"]["name"], $prefix = 'slider_', $path = '../files/media/'); $sl_update = $sl->updateSlider($id = $id, $title = $_POST['title'], $text = $_POST['text'], $img = $img, $link_id = $_POST['link']); } function echo_link_product_name($link_id) { global $lang, $db; $Row = $db->fetchArray($db->query("SELECT product_name FROM " . TABLE_PRODUCTS . " WHERE id='" . $link_id . "' AND lang_id = '" . $lang . "' ")); return $Row['product_name']; } ?>
function send_mail_action($snd_mail, $snd_name) { if ($GLOBALS['it_uses'] != 'yes') { alert_msg("메일발송 실패 했습니다. 소스내의 '설정항목1' 을 우선 확인하십시오."); } if ($snd_mail) { $_POST['mail_to_email'] = $snd_mail; } if ($snd_name) { $_POST['mail_to_name'] = $snd_name; } if (!org_mail($_POST['mail_to_email'])) { alert_msg('받는 사람 메일주소가 잘못 되었습니다.'); } if (!org_mail($_POST['mail_from_email'])) { alert_msg('보내는 사람 메일주소가 잘못 되었습니다.'); } if (!$_POST['mail_subject']) { alert_msg('제목을 입력하십시오.'); } if (!$_POST['mail_to_name']) { alert_msg('받는사람 이름을 입력하십시오.'); } if (!$_POST['mail_from_name']) { alert_msg('보낸사람 이름을 입력하십시오.'); } if (!$_POST['mail_body']) { alert_msg('본문 내용을 입력하십시오.'); } $mail_to = "\"{$_POST['mail_to_name']}\" <{$_POST['mail_to_email']}>"; $mail_from = "\"{$_POST['mail_from_name']}\" <{$_POST['mail_from_email']}>"; $head = "From:{$_POST['mail_from_email']}\n"; $head .= "Content-Type: text/html\n"; $head .= "Reply-To:{$_POST['mail_from_email']}\n"; $head .= "X-Mailer:PHP/" . phpversion(); $body = nl2br($_POST['mail_body']); $body = stripslashes($body); $body = mail_body_html($body); return @mail($mail_to, $_POST['mail_subject'], $body, $head); }
<?php if (!$_SESSION['name']) { alert_msg(FALSE, 'login.php'); }
<?php include_once './inc/init.php'; include_once './inc/db.inc.php'; $db=new DBSQL(); if ($_POST['sub']){ $sql="select * from takeorder_a_user where login_name='$_POST[username]'"; $account=$db->select($sql); if ($account[0]['login_pass']==$_POST['passwd']){ $_SESSION['name']=$_POST['username']; if($_POST['type']=='simple'){ alert_msg(FALSE,'simple.php'); }else{ alert_msg(FALSE,'index.php'); } }else { $smarty->assign('message','Account Error!'); $smarty->display('login.htm'); } }else { $smarty->display("login.htm"); } ?>
<?php include 'include/util.php'; $Articulos = $_REQUEST['articulos']; if (!isset($Articulos)) { alert_msg("No se han seleccionado artículos!"); return; } foreach ($Articulos as $Articulo) { $query = "\n INSERT INTO\n listas_precio_detalle (lista, articulo, precio) \n VALUES (\n " . $_REQUEST['lista'] . ",\n " . $Articulo . ",\n (SELECT costo FROM articulos WHERE codigo = " . $Articulo . ")\n )"; if (!mysql_query($query)) { sql_error_msg(); return; } } if (!registrar_movimiento(53, 0)) { sql_error_msg(); return; } success_msg("Se han agregado los artículos a la lista!");
$sql = "insert into " . Z_DBTABLE . " (time,host) values (" . time() . ",'" . md5($z_host) . "')"; mysql_query($sql); } mysql_connect(Z_DBHOST, Z_DBUSER, Z_DBPASS); mysql_select_db(Z_DATABASE); $result = mysql_list_tables(Z_DATABASE); //如果没有表将创建表,如果有表就查询是否有表. if (!mysql_num_rows($result)) { createtable(); } else { //检测是否有表.如果有表将跳出循环 for ($i = 0; $i < mysql_num_rows($result); $i++) { if (Z_DBTABLE == mysql_tablename($result, $i)) { break; } createtable(); } } $sql = "select * from " . Z_DBTABLE; $result = mysql_query($sql); $list = mysql_fetch_assoc($result); $sevenday = 3600 * 24 * 7; if (md5($_SERVER['SERVER_NAME']) != $list['host']) { if (time() > $list['time'] + $sevenday) { alert_msg(JUMP_MESSAGE, JUMP_URL); } else { echo DATE_TIP; } } else { echo NORMAL; }
<?php header('Content-Type: text/html; charset=utf-8'); session_start(); if ($card_active != 1) { //判断是否登录 if ($_SESSION['name']) { //如果登录了,active的值是否为FALSE,如果为FALSE就表示账号资料不完整,需要跳到激活页面 if (!$_SESSION['active']) { alert_msg(FALSE, 'member_validate.php'); } } }