function common_base() { global $_G; if (!isset($_G['connect'])) { $_G['connect']['url'] = 'http://connect.discuz.qq.com'; $_G['connect']['api_url'] = 'http://api.discuz.qq.com'; $_G['connect']['avatar_url'] = 'http://avatar.connect.discuz.qq.com'; $_G['connect']['qzone_public_share_url'] = 'http://sns.qzone.qq.com/cgi-bin/qzshare/cgi_qzshare_onekey'; $_G['connect']['referer'] = !$_G['inajax'] && CURSCRIPT != 'member' ? $_G['basefilename'] . ($_SERVER['QUERY_STRING'] ? '?' . $_SERVER['QUERY_STRING'] : '') : dreferer(); $_G['connect']['weibo_public_appkey'] = 'ce7fb946290e4109bdc9175108b6db3a'; $_G['connect']['login_url'] = $_G['siteurl'] . 'connect.php?mod=login&op=init&referer=' . urlencode($_G['connect']['referer'] ? $_G['connect']['referer'] : 'index.php'); $_G['connect']['callback_url'] = $_G['siteurl'] . 'connect.php?mod=login&op=callback'; $_G['connect']['discuz_new_feed_url'] = $_G['siteurl'] . 'connect.php?mod=feed&op=new'; $_G['connect']['discuz_remove_feed_url'] = $_G['siteurl'] . 'connect.php?mod=feed&op=remove'; $_G['connect']['discuz_new_share_url'] = $_G['siteurl'] . 'connect.php?mod=share&op=new'; $_G['connect']['discuz_new_share_url'] = $_G['siteurl'] . 'home.php?mod=spacecp&ac=plugin&id=qqconnect:spacecp&pluginop=new'; $_G['connect']['discuz_change_qq_url'] = $_G['siteurl'] . 'connect.php?mod=login&op=change'; $_G['connect']['auth_fields'] = array('is_user_info' => 1, 'is_feed' => 2); if ($_G['uid']) { dsetcookie('connect_is_bind', $_G['member']['conisbind'], 31536000); if (!$_G['member']['conisbind'] && $_G['cookie']['connect_login']) { $_G['cookie']['connect_login'] = 0; dsetcookie('connect_login'); } } if (!$_G['uid'] && !defined('IN_MOBILE')) { $_G['setting']['pluginhooks']['global_login_text'] = tpl_login_bar(); } } }
function login_action() { if (submitcheck('commit')) { $data['email'] = global_addslashes(trim($_POST['user_name'])); $data['pwd'] = md52($_POST['pwd']); $user = $this->user->GetOne('and email="' . $data['email'] . '" and pwd="' . $data['pwd'] . '" and usertype!="nulluser"'); if ($user) { if ($user['usertype'] == 'adminuser') { $GLOBALS['session']->set(array('adminid' => $user['uid'], 'username' => $user['email'])); exit('<SCRIPT LANGUAGE="JavaScript"> <!-- window.open("index.php?con=admin","_top",""); //--> </SCRIPT>'); } else { $GLOBALS['session']->set(array('uid' => $user['uid'], 'username' => $user['email'])); sheader($_POST['referer'] ? $_POST['referer'] : 'index.php', 3, '登录成功'); } } else { sheader(url('user', 'login'), 3, '登录失败,请重新登录'); } } else { $referer = dreferer(); include template('login'); } }
function usesubmit() { global $_G; if (empty($_G['gp_pid'])) { showmessage(lang('magic/repent', 'repent_info_nonexistence')); } $_G['tid'] = $_G['gp_ptid']; $post = getpostinfo($_G['gp_pid'], 'pid', array('p.first', 'p.tid', 'p.fid', 'p.authorid', 'p.replycredit', 't.status as thread_status')); $this->_check($post); require_once libfile('function/post'); require_once libfile('function/delete'); if ($post['first']) { if ($have_replycredit = DB::fetch_first("SELECT * FROM " . DB::table('forum_replycredit') . " WHERE tid ='{$post['tid']}' LIMIT 1")) { if ($replycredit = DB::result_first("SELECT replycredit FROM " . DB::table('forum_thread') . " WHERE tid = '{$post['tid']}'")) { updatemembercount($post['authorid'], array($_G['setting']['creditstransextra'][10] => $replycredit)); } DB::delete('forum_replycredit', "tid = '{$post['tid']}'"); DB::delete('common_credit_log', "operation IN ('RCT', 'RCA', 'RCB') AND relatedid IN({$post['tid']})"); } deletethread(array($post['tid'])); updateforumcount($post['fid']); } else { if ($post['replycredit'] > 0) { updatemembercount($post['authorid'], array($_G['setting']['creditstransextra'][10] => -$post['replycredit'])); DB::delete('common_credit_log', "uid = '{$post['authorid']}' AND operation = 'RCA' AND relatedid IN({$post['tid']})"); } deletepost(array($_G['gp_pid'])); updatethreadcount($post['tid']); } usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0', 0, 'tid', $_G['tid']); showmessage(lang('magic/repent', 'repent_succeed'), $post['first'] ? 'forum.php?mod=forumdisplay&fid=' . $post['fid'] : dreferer(), array(), array('showdialog' => 1, 'locationtime' => true)); }
function on_load() { if ($_GET['action'] != 'register') { return; } if (!$_POST) { return; } list($a, $b, $c, $d) = explode('.', $_SERVER['REMOTE_ADDR']); $a = intval($a); $b = intval($b); $c = intval($c); $d = intval($d); $count = DB::result_first("SELECT count FROM kk_ip_limit WHERE a='{$a}' AND b='{$b}' AND c='{$c}' AND d='{$d}'"); $time = TIMESTAMP; DB::query("DELETE FROM kk_ip_limit WHERE lastact<{$time}-86400"); if ($count > 0) { DB::query("UPDATE kk_ip_limit SET lastact='{$time}' WHERE a='{$a}' AND b='{$b}' AND c='{$c}' AND d='{$d}'"); } if ($count >= getSetting('ip_reglimit')) { showmessage('达到单 IP 注册上限,禁止注册。', dreferer()); } if ($count > 0) { DB::query("UPDATE kk_ip_limit SET count=count+1 WHERE a='{$a}' AND b='{$b}' AND c='{$c}' AND d='{$d}'"); } else { DB::query("INSERT INTO kk_ip_limit SET count=1, lastact='{$time}', a='{$a}', b='{$b}', c='{$c}', d='{$d}'"); } }
function usesubmit() { global $_G; if (empty($_G['gp_tid'])) { showmessage(lang('magic/sofa', 'sofa_info_nonexistence')); } $thread = getpostinfo($_G['gp_tid'], 'tid', array('fid', 'authorid', 'dateline', 'subject')); $this->_check($thread); $firstsofa = DB::result_first("SELECT COUNT(*) FROM " . DB::table('forum_threadmod') . " WHERE magicid='" . $this->magic['magicid'] . "' AND tid='{$_G['gp_tid']}'"); if ($firstsofa >= 1) { showmessage(lang('magic/sofa', 'sofa_info_sofaexistence'), '', array(), array('login' => 1)); } $sofamessage = lang('magic/sofa', 'sofa_text', array('actor' => $_G['member']['username'], 'time' => dgmdate(TIMESTAMP), 'magicname' => $this->magic['name'])); $dateline = $thread['dateline'] + 1; insertpost(array('fid' => $thread['fid'], 'tid' => $_G['gp_tid'], 'first' => '0', 'author' => $_G['username'], 'authorid' => $_G['uid'], 'dateline' => $dateline, 'message' => $sofamessage, 'useip' => $_G['clientip'], 'usesig' => '1')); DB::query("UPDATE " . DB::table('forum_thread') . " SET replies=replies+1, moderated='1' WHERE tid='{$_G['tid']}'", 'UNBUFFERED'); DB::query("UPDATE " . DB::table('forum_forum') . " SET posts=posts+1, todayposts=todayposts+1 WHERE fid='{$post['fid']}'", 'UNBUFFERED'); usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0', 0, 'tid', $_G['gp_tid']); updatemagicthreadlog($_G['gp_tid'], $this->magic['magicid']); if ($thread['authorid'] != $_G['uid']) { notification_add($thread['authorid'], 'magic', lang('magic/sofa', 'sofa_notification'), array('tid' => $_G['gp_tid'], 'subject' => $thread['subject'], 'magicname' => $this->magic['name'])); } showmessage(lang('magic/sofa', 'sofa_succeed'), dreferer(), array(), array('showdialog' => 1, 'locationtime' => 1)); }
function usesubmit() { global $_G; if (empty($_GET['pid'])) { showmessage(lang('magic/repent', 'repent_info_nonexistence')); } $_G['tid'] = $_GET['ptid']; $post = getpostinfo($_GET['pid'], 'pid', array('p.first', 'p.tid', 'p.fid', 'p.authorid', 'p.replycredit', 't.status as thread_status')); $this->_check($post); require_once libfile('function/post'); require_once libfile('function/delete'); if ($post['first']) { if ($have_replycredit = C::t('forum_replycredit')->fetch($post['tid'])) { $thread = C::t('forum_thread')->fetch($post['tid']); if ($thread['replycredit']) { updatemembercount($post['authorid'], array($_G['setting']['creditstransextra'][10] => $replycredit)); } C::t('forum_replycredit')->delete($post['tid']); C::t('common_credit_log')->delete_by_operation_relatedid(array('RCT', 'RCA', 'RCB'), $post['tid']); } deletethread(array($post['tid'])); updateforumcount($post['fid']); } else { if ($post['replycredit'] > 0) { updatemembercount($post['authorid'], array($_G['setting']['creditstransextra'][10] => -$post['replycredit'])); C::t('common_credit_log')->delete_by_uid_operation_relatedid($post['authorid'], 'RCA', $post['tid']); } deletepost(array($_GET['pid'])); updatethreadcount($post['tid']); } usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0', 0, 'tid', $_G['tid']); showmessage(lang('magic/repent', 'repent_succeed'), $post['first'] ? 'forum.php?mod=forumdisplay&fid=' . $post['fid'] : dreferer(), array(), array('alert' => 'right', 'showdialog' => 1, 'locationtime' => true)); }
function usesubmit() { global $_G; if (empty($_G['gp_pid'])) { showmessage(lang('magic/namepost', 'namepost_info_nonexistence')); } $_G['tid'] = $_G['gp_ptid']; $post = getpostinfo($_G['gp_pid'], 'pid', array('p.first', 'p.tid', 'p.fid', 'p.authorid', 'p.dateline', 'p.anonymous')); $this->_check($post); $query = DB::query("SELECT username FROM " . DB::table('common_member') . " WHERE uid='{$post['authorid']}'"); $author = daddslashes(DB::result($query, 0), 1); $thread = getpostinfo($post['tid'], 'tid', array('tid', 'subject', 'author', 'replies', 'lastposter')); $posttable = getposttablebytid($post['tid']); if ($post['first']) { $lastposter = $thread['replies'] > 0 ? $thread['lastposter'] : $author; DB::query("UPDATE " . DB::table($posttable) . " SET anonymous='0' WHERE tid='{$post['tid']}' AND first='1'"); } else { $lastposter = $author; $author = $thread['author']; DB::query("UPDATE " . DB::table($posttable) . " SET anonymous='0' WHERE pid='{$_G['gp_pid']}'"); } $forum['lastpost'] = explode("\t", DB::result_first("SELECT lastpost FROM " . DB::table('forum_forum') . " WHERE fid='{$post['fid']}'")); if ($thread['subject'] == $forum['lastpost'][1] && ($forum['lastpost'][3] == '' && $post['anonymous'])) { $lastpost = "{$thread['tid']}\t{$thread['subject']}\t{$_G['timestamp']}\t{$lastposter}"; DB::query("UPDATE " . DB::table('forum_forum') . " SET lastpost='{$lastpost}' WHERE fid='{$post['fid']}'", 'UNBUFFERED'); } DB::query("UPDATE " . DB::table('forum_thread') . " SET author='{$author}', lastposter='{$lastposter}' WHERE tid='{$post['tid']}'"); usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0', 0, 'tid', $_G['gp_tid']); if ($post['authorid'] != $_G['uid']) { notification_add($post['authorid'], 'magic', lang('magic/namepost', 'namepost_notification'), array('pid' => $_G['gp_pid'], 'tid' => $_G['gp_tid'], 'subject' => $thread['subject'], 'magicname' => $this->magic['name'])); } showmessage(lang('magic/namepost', 'namepost_succeed'), dreferer(), array(), array('showdialog' => 1, 'locationtime' => true)); }
function usesubmit() { global $_G; $info = array('credits' => intval($_POST['credits']), 'percredit' => intval($_POST['percredit']), 'credittype' => $_G['gp_credittype'], 'left' => intval($_POST['credits']), 'magicid' => intval($this->magic['magicid']), 'receiver' => array()); if ($info['credits'] < 1) { showmessage(lang('magic/gift', 'gift_bad_credits_input')); } if ($info['percredit'] < 1 || $info['percredit'] > $info['credits']) { showmessage(lang('magic/gift', 'gift_bad_percredit_input')); } $member = array(); if (preg_match('/^extcredits[1-8]$/', $info['credittype'])) { $member = DB::fetch_first('SELECT * FROM ' . DB::table('common_member_count') . " WHERE uid = '{$_G['uid']}'"); if ($member[$info['credittype']] < $info['credits']) { showmessage(lang('magic/gift', 'gift_credits_out_of_own')); } $extcredits = str_replace('extcredits', '', $info['credittype']); updatemembercount($_G['uid'], array($extcredits => -$info['credits']), 1, 'BGC', $this->magic['magicid']); } else { showmessage(lang('magic/gift', 'gift_bad_credittype_input')); } DB::update('common_member_field_home', array('magicgift' => addslashes(serialize($info))), array('uid' => $_G['uid'])); usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0', '0', 'uid', $_G['uid']); showmessage(lang('magic/gift', 'gift_succeed'), dreferer(), array(), array('showdialog' => 1, 'locationtime' => true)); }
function usesubmit() { global $_G; C::t('home_comment')->update($_GET['id'], array('magicflicker' => 1), $_G['uid']); usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0'); showmessage(lang('magic/flicker', 'flicker_succeed'), dreferer(), array(), array('alert' => 'right', 'showdialog' => 1, 'closetime' => true, 'locationtime' => true)); }
function common_base() { global $_G; if (!isset($_G['connect'])) { $_G['connect']['url'] = 'http://connect.discuz.qq.com'; $_G['connect']['api_url'] = 'http://api.discuz.qq.com'; $_G['connect']['avatar_url'] = 'http://avatar.connect.discuz.qq.com'; // QZone公共分享页面URL $_G['connect']['qzone_public_share_url'] = 'http://sns.qzone.qq.com/cgi-bin/qzshare/cgi_qzshare_onekey'; $_G['connect']['referer'] = !$_G['inajax'] && CURSCRIPT != 'member' ? $_G['basefilename'] . ($_SERVER['QUERY_STRING'] ? '?' . $_SERVER['QUERY_STRING'] : '') : dreferer(); // 微薄公共分享Appkey $_G['connect']['weibo_public_appkey'] = 'ce7fb946290e4109bdc9175108b6db3a'; // 新版Connect登录本地代理页 $_G['connect']['login_url'] = $_G['siteurl'] . 'connect.php?mod=login&op=init&referer=' . urlencode($_G['connect']['referer'] ? $_G['connect']['referer'] : 'index.php'); // 新版Connect本地Callback代理页 $_G['connect']['callback_url'] = $_G['siteurl'] . 'connect.php?mod=login&op=callback'; // 发feed js通知本地代理页 $_G['connect']['discuz_new_feed_url'] = $_G['siteurl'] . 'connect.php?mod=feed&op=new&formhash=' . formhash(); $_G['connect']['discuz_new_post_feed_url'] = $_G['siteurl'] . 'connect.php?mod=feed&op=new&action=post&formhash=' . formhash(); // 发分享js通知本地代理页 //$_G['connect']['discuz_new_share_url'] = $_G['siteurl'].'connect.php?mod=share&op=new'; $_G['connect']['discuz_new_share_url'] = $_G['siteurl'] . 'home.php?mod=spacecp&ac=plugin&id=qqconnect:spacecp&pluginop=new'; // 分享到微博后的回流处理地址 $_G['connect']['discuz_sync_tthread_url'] = $_G['siteurl'] . 'home.php?mod=spacecp&ac=plugin&id=qqconnect:spacecp&pluginop=sync_tthread&formhash=' . formhash(); // 更换QQ号登录本地代理页 $_G['connect']['discuz_change_qq_url'] = $_G['siteurl'] . 'connect.php?mod=login&op=change'; // QC授权项对应关系 $_G['connect']['auth_fields'] = array('is_user_info' => 1, 'is_feed' => 2); if ($_G['uid']) { dsetcookie('connect_is_bind', $_G['member']['conisbind'], 31536000); if (!$_G['member']['conisbind'] && $_G['cookie']['connect_login']) { $_G['cookie']['connect_login'] = 0; dsetcookie('connect_login'); } } // QQ互联游客更换用户名为QQ昵称 if (!$_G['uid'] && $_G['connectguest']) { if ($_G['cookie']['connect_qq_nick']) { $_G['member']['username'] = $_G['cookie']['connect_qq_nick']; } else { $connectGuest = C::t('#qqconnect#common_connect_guest')->fetch($conopenid); if ($connectGuest['conqqnick']) { $_G['member']['username'] = $connectGuest['conqqnick']; } } } if ($this->allow && !$_G['uid'] && !defined('IN_MOBILE')) { $_G['setting']['pluginhooks']['global_login_text'] = tpl_login_bar(); } } }
function on_logout() { global $_G; $ucsynlogout = uc_user_synlogout(); if ($_G['gp_formhash'] != $_G['formhash']) { showmessage('logout_succeed', dreferer(), array('formhash' => FORMHASH, 'ucsynlogout' => $ucsynlogout)); } clearcookies(); $_G['groupid'] = $_G['member']['groupid'] = 7; $_G['uid'] = $_G['member']['uid'] = 0; $_G['username'] = $_G['member']['username'] = $_G['member']['password'] = ''; $_G['setting']['styleid'] = $_G['setting']['styleid']; showmessage('logout_succeed', dreferer(), array('formhash' => FORMHASH, 'ucsynlogout' => $ucsynlogout, 'module' => $_G['showmessage']['module'], 'tpl' => $_G['showmessage']['tpl'])); }
function show() { global $_G; $id = !empty($_GET['id']) ? dhtmlspecialchars($_GET['id']) : ''; $idtype = !empty($_GET['idtype']) ? $_GET['idtype'] : ''; if (!in_array($idtype, $this->idtypearray)) { showmessage(lang('magic/highlight', 'highlight_info_notype'), dreferer(), array(), array('showdialog' => 1, 'locationtime' => true)); } if ($id) { $info = getpostinfo($_GET['id'], $idtype); if ($idtype == 'tid') { $this->_check($info['fid']); $this->parameters['expiration'] = $this->parameters['expiration'] && $idtype == 'tid' ? intval($this->parameters['expiration']) : 24; } } magicshowtype('top'); $lang = lang('magic/highlight'); magicshowsetting(lang('magic/highlight', 'highlight_info_' . $idtype, array('expiration' => $this->parameters['expiration'])), 'id', $id, 'hidden'); echo <<<EOF \t<p class="mtm mbn">{$lang['highlight_color']}</p> \t<div class="hasd mbm cl"> \t\t<input type="hidden" id="highlight_color" name="highlight_color" /> \t\t<input type="hidden" id="highlight_idtype" name="idtype" value="{$idtype}"/> \t\t<input type="text" id="highlight_color_show" class="crl readonly="readonly"" /> \t\t<a href="javascript:;" id="highlight_color_ctrl" class="dpbtn" onclick="showHighLightColor('highlight_color')">^</a> \t</div> \t<script type="text/javascript" reload="1"> \t\tfunction showHighLightColor(hlid) { \t\t\tvar showid = hlid + '_show'; \t\t\tif(!\$(showid + '_menu')) { \t\t\t\tvar str = ''; \t\t\t\tvar coloroptions = {'0' : '#000', '1' : '#EE1B2E', '2' : '#EE5023', '3' : '#996600', '4' : '#3C9D40', '5' : '#2897C5', '6' : '#2B65B7', '7' : '#8F2A90', '8' : '#EC1282'}; \t\t\t\tvar menu = document.createElement('div'); \t\t\t\tmenu.id = showid + '_menu'; \t\t\t\tmenu.className = 'cmen'; \t\t\t\tmenu.style.display = 'none'; \t\t\t\tfor(var i in coloroptions) { \t\t\t\t\tstr += '<a href="javascript:;" onclick="\$(\\'' + hlid + '\\').value=' + i + ';\$(\\'' + showid + '\\').style.backgroundColor=\\'' + coloroptions[i] + '\\';hideMenu(\\'' + menu.id + '\\')" style="background:' + coloroptions[i] + ';color:' + coloroptions[i] + ';">' + coloroptions[i] + '</a>'; \t\t\t\t} \t\t\t\tmenu.innerHTML = str; \t\t\t\t\$('append_parent').appendChild(menu); \t\t\t} \t\t\tshowMenu({'ctrlid':hlid + '_ctrl','evt':'click','showid':showid}); \t\t} \t</script> EOF; magicshowtype('bottom'); }
function usesubmit() { global $_G; if (empty($_G['gp_tid'])) { showmessage(lang('magic/bump', 'bump_info_nonexistence')); } $thread = getpostinfo($_G['gp_tid'], 'tid', array('fid', 'authorid', 'subject')); $this->_check($thread['fid']); DB::query("UPDATE " . DB::table('forum_thread') . " SET lastpost='" . TIMESTAMP . "', moderated='1' WHERE tid='{$_G['gp_tid']}'"); usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0', 0, 'tid', $_G['gp_tid']); updatemagicthreadlog($_G['gp_tid'], $this->magic['magicid'], 'BMP'); if ($thread['authorid'] != $_G['uid']) { notification_add($thread['authorid'], 'magic', lang('magic/bump', 'bump_notification'), array('tid' => $_G['gp_tid'], 'subject' => $thread['subject'], 'magicname' => $this->magic['name'])); } showmessage(lang('magic/bump', 'bump_succeed'), dreferer(), array(), array('showdialog' => 1, 'locationtime' => true)); }
function usesubmit() { global $_G; if (empty($_GET['tid'])) { showmessage(lang('magic/bump', 'bump_info_nonexistence')); } $thread = getpostinfo($_GET['tid'], 'tid', array('fid', 'authorid', 'subject')); $this->_check($thread['fid']); C::t('forum_thread')->update($_GET['tid'], array('moderated' => 1, 'lastpost' => TIMESTAMP)); usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0', 0, 'tid', $_GET['tid']); updatemagicthreadlog($_GET['tid'], $this->magic['magicid'], 'BMP'); if ($thread['authorid'] != $_G['uid']) { notification_add($thread['authorid'], 'magic', lang('magic/bump', 'bump_notification'), array('tid' => $_GET['tid'], 'subject' => $thread['subject'], 'magicname' => $this->magic['name'])); } showmessage(lang('magic/bump', 'bump_succeed'), dreferer(), array(), array('alert' => 'right', 'showdialog' => 1, 'locationtime' => true)); }
function usesubmit() { global $_G; if (empty($_GET['tid'])) { showmessage(lang('magic/close', 'close_info_nonexistence')); } $thread = getpostinfo($_GET['tid'], 'tid', array('fid', 'authorid', 'subject')); $this->_check($thread); magicthreadmod($_GET['tid']); C::t('forum_thread')->update($_GET['tid'], array('closed' => 1, 'moderated' => 1)); $this->parameters['expiration'] = $this->parameters['expiration'] ? intval($this->parameters['expiration']) : 24; $expiration = TIMESTAMP + $this->parameters['expiration'] * 3600; usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0', 0, 'tid', $_GET['tid']); updatemagicthreadlog($_GET['tid'], $this->magic['magicid'], $expiration > 0 ? 'ECL' : 'CLS', $expiration); if ($thread['authorid'] != $_G['uid']) { notification_add($thread['authorid'], 'magic', lang('magic/close', 'close_notification'), array('tid' => $_GET['tid'], 'subject' => $thread['subject'], 'magicname' => $this->magic['name'])); } showmessage(lang('magic/close', 'close_succeed'), dreferer(), array(), array('alert' => 'right', 'showdialog' => 1, 'locationtime' => true)); }
function usesubmit() { global $_G; if (empty($_G['gp_tid'])) { showmessage(lang('magic/highlight', 'highlight_info_nonexistence')); } $thread = getpostinfo($_G['gp_tid'], 'tid', array('fid', 'authorid', 'subject')); $this->_check($thread['fid']); magicthreadmod($_G['gp_tid']); DB::query("UPDATE " . DB::table('forum_thread') . " SET highlight='{$_G['gp_highlight_color']}', moderated='1' WHERE tid='{$_G['gp_tid']}'"); $this->parameters['expiration'] = $this->parameters['expiration'] ? intval($this->parameters['expiration']) : 24; $expiration = TIMESTAMP + $this->parameters['expiration'] * 3600; usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0', 0, 'tid', $_G['gp_tid']); updatemagicthreadlog($_G['gp_tid'], $this->magic['magicid'], 'HLT', $expiration); if ($thread['authorid'] != $_G['uid']) { notification_add($thread['authorid'], 'magic', lang('magic/stick', 'highlight_notification'), array('tid' => $_G['gp_tid'], 'subject' => $thread['subject'], 'magicname' => $this->magic['name'])); } showmessage(lang('magic/highlight', 'highlight_succeed'), dreferer(), array(), array('showdialog' => 1, 'locationtime' => 1)); }
function usesubmit() { global $_G; if (empty($_G['gp_pid'])) { showmessage(lang('magic/repent', 'repent_info_nonexistence')); } $_G['tid'] = $_G['gp_ptid']; $post = getpostinfo($_G['gp_pid'], 'pid', array('p.first', 'p.tid', 'p.fid', 'p.authorid')); $this->_check($post); require_once libfile('function/post'); require_once libfile('function/delete'); if ($post['first']) { deletethread("tid='{$post['tid']}'"); updateforumcount($post['fid']); } else { deletepost("pid='{$_G['gp_pid']}'"); updatethreadcount($post['tid']); } usemagic($this->magic['magicid'], $this->magic['num']); updatemagiclog($this->magic['magicid'], '2', '1', '0', 0, 'tid', $_G['tid']); showmessage(lang('magic/repent', 'repent_succeed'), $post['first'] ? 'forum.php?mod=forumdisplay&fid=' . $post['fid'] : dreferer(), array(), array('showdialog' => 1, 'locationtime' => 1)); }
public function actionLogout() { global $_G; if (!$_G['uid']) { dheader('location: index.php?r=site/index'); } if ($_GET['formhash'] != $_G['formhash']) { exit('请求来路不明'); } else { global $_G; require_once libfile('function/member'); $ucsynlogout = $this->setting['allowsynlogin'] ? uc_user_synlogout() : ''; clearcookies(); $_G['groupid'] = $_G['member']['groupid'] = 7; $_G['uid'] = $_G['member']['uid'] = 0; $_G['username'] = $_G['member']['username'] = $_G['member']['password'] = ''; $_G['setting']['styleid'] = $this->setting['styleid']; //退出登录成功 dheader('location: ' . dreferer()); } return true; }
function usesubmit() { global $_G; if (empty($_GET['tid'])) { showmessage(lang('magic/jack', 'jack_info_nonexistence')); } $thread = getpostinfo($_GET['tid'], 'tid', array('fid', 'authorid', 'subject', 'lastpost')); $this->_check($thread['fid']); magicthreadmod($_GET['tid']); $this->parameters['expiration'] = $this->parameters['expiration'] ? intval($this->parameters['expiration']) : 1; $magicnum = intval($_GET['magicnum']); if (empty($magicnum) || $magicnum > $this->magic['num']) { showmessage(lang('magic/jack', 'jack_num_not_enough')); } $expiration = ($thread['lastpost'] > TIMESTAMP ? $thread['lastpost'] : TIMESTAMP) + $this->parameters['expiration'] * $magicnum * 3600; C::t('forum_thread')->update($_GET['tid'], array('lastpost' => $expiration)); usemagic($this->magic['magicid'], $this->magic['num'], $magicnum); updatemagiclog($this->magic['magicid'], '2', $magicnum, '0', 0, 'tid', $_GET['tid']); if ($thread['authorid'] != $_G['uid']) { notification_add($thread['authorid'], 'magic', lang('magic/jack', 'jack_notification'), array('tid' => $_GET['tid'], 'subject' => $thread['subject'], 'magicname' => $this->magic['name'])); } showmessage(lang('magic/jack', 'jack_succeed'), dreferer(), array(), array('alert' => 'right', 'showdialog' => 1, 'locationtime' => true)); }
updatecreditbyaction('sendpm'); showmessage('do_success', "home.php?mod=space&do=pm&filter=privatepm", array(), array('msgtype' => $_G['gp_inajax'] ? 3 : 1, 'showmsg' => true)); } else { if (in_array($return, array(-1, -2, -3, -4))) { showmessage('message_can_not_send' . abs($return)); } else { showmessage('message_can_not_send'); } } } } elseif ($_GET['op'] == 'ignore') { if (submitcheck('ignoresubmit')) { $single = intval($_G['gp_single']); if ($single) { uc_pm_blackls_add($_G['uid'], $_POST['ignoreuser']); showmessage('do_success', dreferer(), array(), array('showdialog' => 1, 'showmsg' => true, 'closetime' => 1)); } else { uc_pm_blackls_set($_G['uid'], $_POST['ignorelist']); showmessage('do_success', 'home.php?mod=space&do=pm&view=ignore', array(), array('showdialog' => 1, 'showmsg' => true, 'closetime' => 1)); } } } else { cknewuser(); if (!checkperm('allowsendpm')) { showmessage('no_privilege'); } $friends = array(); if ($space['friendnum']) { $query = DB::query("SELECT fuid AS uid, fusername AS username FROM " . DB::table('home_friend') . " WHERE uid={$_G['uid']} AND status='1' ORDER BY num DESC, dateline DESC LIMIT 0,100"); while ($value = DB::fetch($query)) { $value['username'] = daddslashes($value['username']);
$adminidnew = $groupterms['main']['adminid']; } else { $groupidnew = $db->result_first("SELECT groupid FROM {$tablepre}usergroups WHERE type='member' AND '{$credits}'>=creditshigher AND '{$credits}'<creditslower LIMIT 1"); if (in_array($adminid, array(1, 2, 3))) { $query = $db->query("SELECT groupid FROM {$tablepre}usergroups WHERE groupid IN ('" . implode('\',\'', $extgroupidarray) . "') AND radminid='{$adminid}' LIMIT 1"); $adminidnew = $db->num_rows($query) ? $adminid : 0; } else { $adminidnew = 0; } } unset($groupterms['main']); } unset($groupterms['ext'][$expgroupid]); } $groupexpirynew = groupexpiry($groupterms); $extgroupidsnew = implode("\t", $extgroupidarray); $grouptermsnew = addslashes(serialize($groupterms)); $db->query("UPDATE {$tablepre}members SET adminid='{$adminidnew}', groupid='{$groupidnew}', extgroupids='{$extgroupidsnew}', groupexpiry='{$groupexpirynew}' WHERE uid='{$discuz_uid}'"); $db->query("UPDATE {$tablepre}memberfields SET groupterms='{$grouptermsnew}' WHERE uid='{$discuz_uid}'"); } include template('groupexpiry'); } elseif ($action == 'switchstatus' && $discuz_uid) { if (!$allowinvisible) { showmessage('group_nopermission', NULL, 'NOPERM'); } $db->query("UPDATE {$tablepre}members SET invisible = !invisible WHERE uid='{$discuz_uid}'", 'UNBUFFERED'); include language('misc'); showmessage($invisible ? '<a href="member.php?action=switchstatus" title="' . $language['login_switch_invisible_mode'] . '" ajaxtarget="loginstatus">' . $language['login_normal_mode'] . '</a>' : '<a href="member.php?action=switchstatus" title="' . $language['login_switch_normal_mode'] . '" ajaxtarget="loginstatus">' . $language['login_invisible_mode'] . '</a>', dreferer()); } else { showmessage('undefined_action', NULL, 'HALTED'); }
$valueparse = parse_url($parameters['url']); if (!isset($valueparse['host'])) { @unlink($parameters['url']); } } } DB::query("DELETE FROM " . DB::table('advertisement') . " WHERE advid IN ({$advids})"); } if (is_array($_G['gp_titlenew'])) { foreach ($_G['gp_titlenew'] as $advid => $title) { DB::query("UPDATE " . DB::table('advertisement') . " SET available='" . $_G['gp_availablenew'][$advid] . "', displayorder='" . $_G['gp_displayordernew'][$advid] . "', title='" . cutstr($_G['gp_titlenew'][$advid], 50) . "' WHERE advid='{$advid}'", 'UNBUFFERED'); } } updatecache('advs'); updatecache('setting'); cpmsg('adv_update_succeed', dreferer(), 'succeed'); } } elseif ($operation == 'add' && !empty($_G['gp_type']) || $operation == 'edit' && !empty($_G['gp_advid'])) { if (!submitcheck('advsubmit')) { if ($operation == 'edit') { $advid = $_G['gp_advid']; $adv = DB::fetch_first("SELECT * FROM " . DB::table('advertisement') . " WHERE advid='{$advid}'"); if (!$adv) { cpmsg('undefined_action', '', 'error'); } $adv['parameters'] = unserialize($adv['parameters']); $type = $adv['type']; } else { $adv['parameters']['style'] = 'code'; $type = $_G['gp_type']; }
if (!getViewPerm($news)) { showmessage('您没有查看此信息的权限,请联系管理员', dreferer()); } //获取分类名称 if ($news['catid']) { $news['catname'] = DB::result_first("select name from %t where catid=%d", array('news_cat', $news['catid'])); } if ($news['opuid'] && ($opuser = getuserbyuid($news['opuid']))) { $news['opauthor'] = $opuser['username']; } if ($news['moduid'] && ($moduser = getuserbyuid($news['moduid']))) { $news['modusername'] = $moduser['username']; } $navtitle = $news['subject']; $navlast = getstr($news['subject'], 15); $refer = empty($_GET['refer']) ? dreferer() : $_GET['refer']; //获取信息的发布范围 $sel = array(); $sel_org = array(); $sel_user = array(); if ($news['orgids']) { $orgids = explode(',', $news['orgids']); $sel_org = C::t('organization')->fetch_all($orgids); foreach ($sel_org as $value) { $sel[] = $value['orgid']; } if (in_array('other', $orgids)) { $sel[] = 'other'; $sel_org[] = array('orgname' => '无机构人员', 'orgid' => 'other', 'forgid' => 1); } }
if (!empty($_G['inajax'])) { $_G['setting']['msgforward'] = unserialize($_G['setting']['msgforward']); $mrefreshtime = intval($_G['setting']['msgforward']['refreshtime']) * 1000; $message = 1; if ($_G['setting']['regverify'] != 1) { include template('member/register'); } } $param = array('bbname' => $_G['setting']['bbname'], 'username' => $_G['username'], 'uid' => $_G['uid']); switch ($_G['setting']['regverify']) { case 1: $idstring = random(6); $authstr = $_G['setting']['regverify'] == 1 ? "{$_G['timestamp']}\t2\t{$idstring}" : ''; DB::query("UPDATE " . DB::table('common_member_field_forum') . " SET authstr='{$authstr}' WHERE uid='{$_G['uid']}'"); $verifyurl = "{$_G[siteurl]}member.php?mod=activate&uid={$_G[uid]}&id={$idstring}"; $email_verify_message = lang('email', 'email_verify_message', array('username' => $_G['member']['username'], 'bbname' => $_G['setting']['bbname'], 'siteurl' => $_G['siteurl'], 'url' => $verifyurl)); sendmail("{$username} <{$email}>", lang('email', 'email_verify_subject'), $email_verify_message); if (!empty($_G['inajax'])) { include template('member/register'); } else { showmessage('profile_email_verify', '', $param); } break; case 2: showmessage('register_manual_verify', 'home.php?mod=space&do=home', $param); break; default: showmessage('register_succeed', dreferer(), $param); break; } }
$slash = ' / '; } } } C::t('forum_postcache')->delete($_GET['pid']); writelog('ratelog', $logs); if ($sendreasonpm) { sendreasonpm($post, 'rate_removereason', array('tid' => $thread['tid'], 'pid' => $_GET['pid'], 'subject' => $thread['subject'], 'ratescore' => $ratescore, 'reason' => $reason, 'from_id' => 0, 'from_idtype' => 'removerate')); } C::t('forum_post')->increase_rate_by_pid('tid:' . $_G['tid'], $_GET['pid'], $rate, $ratetimes); if ($post['first']) { $threadrate = @intval(@($post['rate'] + $rate) / abs($post['rate'] + $rate)); C::t('forum_thread')->update($_G['tid'], array('rate' => $threadrate)); } } showmessage('thread_rate_removesucceed', dreferer()); } } elseif ($_GET['action'] == 'viewratings' && $_GET['pid']) { $loglist = $logcount = array(); $post = C::t('forum_post')->fetch('tid:' . $_G['tid'], $_GET['pid']); if ($post['invisible'] != 0) { $post = array(); } if ($post) { $loglist = C::t('forum_ratelog')->fetch_all_by_pid($_GET['pid']); } if (empty($post) || empty($loglist)) { showmessage('thread_rate_log_nonexistence'); } if ($post['tid'] != $thread['tid']) { showmessage('targetpost_donotbelongto_thisthread');
} $thide = explode('|', $_G['cookie']['thide']); $thide = array_slice($thide, -20); if (!in_array($_GET['tid'], $thide)) { $thide[] = $_GET['tid']; } dsetcookie('thide', implode('|', $thide), 2592000); showmessage('thread_hidden_success', dreferer(), array(), array('showdialog' => true, 'closetime' => true, 'extrajs' => '<script type="text/javascript" reload="1">$(\'normalthread_' . $_GET['tid'] . '\').style.display = \'none\'</script>')); } elseif ($_GET['action'] == 'hiderecover') { if ($_GET['formhash'] != FORMHASH) { showmessage('undefined_action', NULL); } $seccodecheck = true; if (submitcheck('hiderecoversubmit')) { C::t('forum_threadhidelog')->delete_by_tid($_GET['tid']); showmessage('thread_hiderecover_success', dreferer()); } else { include template('forum/hiderecover'); } } function getratelist($raterange) { global $_G; $maxratetoday = getratingleft($raterange); $ratelist = array(); foreach ($raterange as $id => $rating) { if (isset($_G['setting']['extcredits'][$id])) { $ratelist[$id] = ''; $rating['max'] = $rating['max'] < $maxratetoday[$id] ? $rating['max'] : $maxratetoday[$id]; $rating['min'] = -$rating['min'] < $maxratetoday[$id] ? $rating['min'] : -$maxratetoday[$id]; $offset = abs(ceil(($rating['max'] - $rating['min']) / 10));
} else { showmessage('article_move_select_cat', dreferer()); } } } } elseif ($op == 'verify') { if ($aid) { check_articleperm($article['catid'], $aid, $article); } else { showmessage('article_not_exist', dreferer()); } } elseif ($op == 'pushplus') { if ($aid) { check_articleperm($article['catid'], $aid, $article); } else { showmessage('no_article_specified_for_pushplus', dreferer()); } $pids = (array) $_POST['topiclist']; $tid = intval($_GET['tid']); $pushedids = array(); $pushcount = $pushedcount = 0; if (!empty($pids)) { foreach (C::t('portal_article_content')->fetch_all($aid) as $value) { $pushedids[] = intval($value['id']); $pushedcount++; } $pids = array_diff($pids, $pushedids); } $pushcount = count($pids); if (empty($pids)) { showmessage($pushedids ? 'all_posts_pushed_already' : 'no_posts_for_pushplus');
if ($_G['setting']['maxpostsize'] && strlen($_GET['message']) > $_G['setting']['maxpostsize']) { showmessage('post_message_toolong', '', array('maxpostsize' => $_G['setting']['maxpostsize'])); } $newcomment = array('ctid' => $_G['collection']['ctid'], 'uid' => $_G['uid'], 'username' => $_G['username'], 'message' => censor($_GET['message']), 'dateline' => $_G['timestamp'], 'useip' => $_G['clientip']); if (!$memberrate) { $newcomment['rate'] = $_GET['ratescore']; } else { $_GET['ratescore'] = 0; } C::t('forum_collectioncomment')->insert($newcomment); C::t('forum_collection')->update_by_ctid($_G['collection']['ctid'], 0, 0, 1, 0, $_GET['ratescore'], $_G['collection']['ratenum']); if ($_G['collection']['uid'] != $_G['uid']) { notification_add($_G['collection']['uid'], "system", 'collection_becommented', array('from_id' => $_G['collection']['ctid'], 'from_idtype' => 'collectioncomment', 'ctid' => $_G['collection']['ctid'], 'collectionname' => $_G['collection']['name']), 1); } C::t('common_member_status')->update($_G['uid'], array('lastpost' => TIMESTAMP), 'UNBUFFERED'); showmessage('collection_comment_succ', $tid ? 'forum.php?mod=viewthread&tid=' . $tid : dreferer()); } elseif ($op == 'del') { if (!submitcheck('formhash')) { showmessage('undefined_action', NULL); } else { if (!$_G['collection']['ctid'] || !checkcollectionperm($_G['collection'], $_G['uid']) || count($_GET['delcomment']) == 0) { showmessage('undefined_action', NULL); } $delrows = C::t('forum_collectioncomment')->delete_by_cid_ctid($_GET['delcomment'], $_G['collection']['ctid']); C::t('forum_collection')->update_by_ctid($_G['collection']['ctid'], 0, 0, -$delrows); showmessage('collection_comment_remove_succ', 'forum.php?mod=collection&action=view&op=comment&ctid=' . $ctid); } } elseif ($op == 'pop') { $collectionthread = C::t('forum_collectionthread')->fetch_by_ctid_tid($ctid, $tid); if (!$collectionthread['ctid']) { showmessage('collection_permission_deny');
$sql = "SELECT * FROM " . DB::table('forum_alliance_rl') . " WHERE sid='{$sid}' AND uid='{$uid}'"; $ps = DB::fetch(DB::query($sql)); if (!submitcheck('applysubrl')) { if ($_G['groupid'] == 7) { showmessage($php_lang['yyoukewuq'], '', array(), array('login' => true)); } } else { if (empty($ps['uid'])) { $author = addslashes($_G['username']); $subject = addslashes($_GET['subject']); $display = intval($displays) == 1 ? 1 : 0; $timestamp = $_G['timestamp']; DB::insert('forum_alliance_rl', array('id' => '', 'sid' => $sid, 'uid' => $uid, 'author' => $author, 'subject' => $subject, 'display' => $display, 'dateline' => $timestamp)); showmessage($php_lang['tijiaosher'], dreferer(), array(), array('locationtime' => 2, 'showdialog' => 1, 'showmsg' => true, 'closetime' => 2)); } else { showmessage($php_lang['qwuchongfu'], dreferer(), array(), array('locationtime' => 2, 'showdialog' => 1, 'showmsg' => true, 'closetime' => 2)); } } include template('dz55625_haodian:renling'); } if ($action == 'ercode') { include_once 'haodian_code.php'; if (!isset($_G['cache']['plugin'])) { loadcache('plugin'); } @extract($_G['cache']['plugin']['dz55625_haodian']); $curls = '?id=dz55625_haodian:haodian&mod=view&sid='; $sid = intval($_GET['sid']); if ($RewriteStart == 1) { $value = 'http://' . $_SERVER['HTTP_HOST'] . '/haodian_' . $sid . '.html'; } else {
<?php /* * @copyright Leyun internet Technology(Shanghai)Co.,Ltd * @license http://www.dzzoffice.com/licenses/license.txt * @package DzzOffice * @link http://www.dzzoffice.com * @author zyx(zyx@dzz.cc) */ if (!defined('IN_DZZ') || !defined('IN_ADMIN')) { exit('Access Denied'); } $refer = dreferer(); $operation = trim($_GET['operation']); $do = trim($_GET['do']); if ($operation == 'color') { $page = intval($_GET['page']) < 1 ? 1 : intval($_GET['page']); $list = array(); $perpage = 20; $start = ($page - 1) * $perpage; $count = DB::result_first("SELECT COUNT(*) FROM " . DB::table('wallpaper') . " where type='color'"); if ($count) { $query = DB::query("SELECT * FROM " . DB::table('wallpaper') . " where type='color' ORDER BY dateline DESC LIMIT {$start},{$perpage}"); while ($value = DB::fetch($query)) { $value['dateline'] = dgmdate($value['dateline']); $list[] = $value; } } $multi = multi($count, $perpage, $page, BASESCRIPT . "?mod={$mod}&operation={$operation}"); } elseif ($operation == 'syscolor') { $page = intval($_GET['page']) < 1 ? 1 : intval($_GET['page']);