/* @var $userService PW_UserService */ $mb = $userService->get($winduid); if ($gid == $groupid || strpos($mb['groups'], ",{$gid},") !== false) { Showmsg('specialgroup_noneed'); } if ($buymethod) { if ($rt['sright']['rmbprice'] <= 0) { Showmsg('undefined_action'); } //* include_once pwCache::getPath(D_P.'data/bbscache/ol_config.php'); pwCache::getData(D_P . 'data/bbscache/ol_config.php'); if (!$ol_onlinepay) { Showmsg($ol_whycolse); } $grouptitle = $rt['grouptitle']; $order_no = '1' . str_pad($winduid, 10, "0", STR_PAD_LEFT) . get_date($timestamp, 'YmdHis') . num_rand(5); $db->update("INSERT INTO pw_clientorder SET " . S::sqlSingle(array('order_no' => $order_no, 'type' => 3, 'uid' => $winduid, 'paycredit' => $gid, 'price' => $rt['sright']['rmbprice'], 'number' => $days, 'date' => $timestamp, 'state' => 0, 'extra_1' => $options))); if (!$ol_payto) { Showmsg('olpay_alipayerror'); } require_once R_P . 'require/onlinepay.php'; $olpay = new OnlinePay($ol_payto); ObHeader($olpay->alipayurl($order_no, round($rt['sright']['rmbprice'] * $days, 2), 3)); } if (md5($pwpwd) != $mb['password']) { Showmsg('password_error'); } if ($rt['sright']['sellprice'] <= 0) { Showmsg('undefined_action'); } $needcur = $days * $rt['sright']['sellprice'];
function payto($code) { global $imgpath, $stylepath, $db_bbsurl, $db_charset, $pwServer, $timestamp, $winduid; $tmp = substr($code, strpos($code, '(seller)') + 8); $seller = str_replace(array('[email]', '[/email]'), '', substr($tmp, 0, strpos($tmp, '(/seller)'))); $tmp = substr($code, strpos($code, '(subject)') + 9); $subject = substr($tmp, 0, strpos($tmp, '(/subject)')); $tmp = substr($code, strpos($code, '(body)') + 6); $body = substr($tmp, 0, strpos($tmp, '(/body)')); $tmp = substr($code, strpos($code, '(price)') + 7); $price = substr($tmp, 0, strpos($tmp, '(/price)')); $tmp = substr($code, strpos($code, '(ordinary_fee)') + 14); $ordinary_fee = substr($tmp, 0, strpos($tmp, '(/ordinary_fee)')); $tmp = substr($code, strpos($code, '(express_fee)') + 13); $express_fee = substr($tmp, 0, strpos($tmp, '(/express_fee)')); $tmp = substr($code, strpos($code, '(contact)') + 9); $contact = substr($tmp, 0, strpos($tmp, '(/contact)')); $tmp = substr($code, strpos($code, '(demo)') + 6); $demo = substr($tmp, 0, strpos($tmp, '(/demo)')); $tmp = substr($code, strpos($code, '(method)') + 8); $method = substr($tmp, 0, strpos($tmp, '(/method)')); $body = str_replace('\\"', '"', $body); $str = '<br>'; $seller && ($str .= getLangInfo('bbscode', 'seller') . $seller . '<br><br>'); $subject && ($str .= getLangInfo('bbscode', 'subject') . $subject . '<br><br>'); $body && ($str .= getLangInfo('bbscode', 'body') . $body . '<br><br>'); $price && ($str .= getLangInfo('bbscode', 'price') . $price . '<br><br>'); if (($ordinary_fee || $express_fee) && $method == '2') { $str .= getLangInfo('bbscode', 'postage'); $ordinary_fee && ($str .= getLangInfo('bbscode', 'ordinary_fee') . $ordinary_fee . ' '); $express_fee && ($str .= getLangInfo('bbscode', 'express_fee') . $express_fee); $str .= '<br><br>'; } else { $str .= getLangInfo('bbscode', 'postage_seller') . '<br><br>'; } $contact && ($str .= getLangInfo('bbscode', 'contact') . $contact . '<br><br>'); $demo && ($str .= getLangInfo('bbscode', 'demo') . $demo . '<br><br>'); $body = substrs(str_replace('<br>', "\n", $body), 100); if ($method == 1) { $str .= "<a href='https://www.paypal.com/cgi-bin/webscr?cmd=_xclick&business=" . rawurlencode(str_replace('.', '.', $seller)) . "&item_name=" . rawurlencode($subject) . "&item_number=phpw*&amount={$price}&no_shipping=0&no_note=1¤cy_code=CNY¬ify_url=http://pay.phpwind.net/pay/stats.php?date=" . $pwServer['HTTP_HOST'] . get_date(time(), '-YmdHis') . "&bn=phpwind&charset={$db_charset}' target='_blank'><img src='{$imgpath}/post/paypal.gif'></a>"; } elseif ($method == 2) { if ($ordinary_fee || $express_fee) { if ($ordinary_fee && $express_fee) { $urladd = "logistics_type=POST&logistics_fee={$ordinary_fee}&logistics_payment=BUYER_PAY&logistics_type_1=EXPRESS&logistics_fee_1={$express_fee}&logistics_payment_1=BUYER_PAY"; } elseif ($ordinary_fee) { $urladd = "logistics_type=POST&logistics_fee={$ordinary_fee}&logistics_payment=BUYER_PAY"; } else { $urladd = "logistics_type=EXPRESS&logistics_fee={$express_fee}&logistics_payment=BUYER_PAY"; } } else { $urladd = "logistics_type=EXPRESS&logistics_fee=10&logistics_payment=SELLER_PAY"; } $order_no = $method - 1 . str_pad($winduid, 10, "0", STR_PAD_LEFT) . get_date($timestamp, 'YmdHis') . num_rand(5); $str .= "<a href='http://pay.phpwind.net/pay/create_payurl.php?_input_charset={$db_charset}&service=trade_create_by_buyer&subject=" . rawurlencode($subject) . "&body=" . rawurlencode($body) . "&out_trade_no={$order_no}&price={$price}&quantity=1&payment_type=1&{$urladd}&seller_email={$seller}' target='_blank'><img src='{$imgpath}/post/alipay.gif'></a>"; } elseif ($method == 3) { $str .= "<a href=\"https://www.99bill.com/website/paylink/pay.htm?payto=" . rawurlencode(str_replace('.', '.', $seller)) . "\" target=\"_blank\"><img src=\"{$imgpath}/post/99bill.gif\"></a>"; } elseif ($method == 4) { if ($ordinary_fee || $express_fee) { $urladd = "fee_payer=1&fee1={$ordinary_fee}&fee2={$express_fee}"; } else { $urladd = 'fee_payer=0'; } $str .= "<a href='http://pay.phpwind.net/pay/create_payurl.php?cmdno=11&seller={$seller}&mch_name=" . rawurlencode($subject) . "&mch_price={$price}&{$urladd}&mch_desc=" . rawurlencode($body) . "&mch_type=1' target='_blank'><img src='{$imgpath}/post/tenpay.gif' /></a>"; } return $str; }
function _setEmailCheck() { if ($this->data['yz'] == 0) { $this->data['yz'] = L::reg('rg_emailcheck') ? num_rand(9) : 1; } }
function getCode($type = null, $set = true) { empty($type) && ($type = $this->gdtype); $code = ''; switch ($type) { case 2: global $db_charset, $lang; require_once GetLang('ck'); $step = strtoupper($db_charset) == 'UTF-8' ? 3 : 2; $len = strlen($lang['ck']) / $step - 1; for ($i = 0; $i < $this->num; $i++) { $code .= substr($lang['ck'], mt_rand(0, $len) * $step, $step); } $set && $this->cookie($code); if (strtoupper($db_charset) != 'UTF-8') { $code = $this->convert($code, 'UTF-8', $db_charset); } $code = explode(',', wordwrap($code, 3, ',', 1)); break; case 1: $list = 'BCEFGHJKMPQRTVWXY2346789'; $len = strlen($list) - 1; for ($i = 0; $i < $this->num; $i++) { $code .= $list[mt_rand(0, $len)]; } $set && $this->cookie($code); break; default: $code = num_rand($this->num); $set && $this->cookie($code); } return $code; }
$sizelimit = isset($_POST['sizelimit']) ? (int) $_POST['sizelimit'] : (int) $_GET['sizelimit']; $start = (int) $_GET['start']; $tableid = (int) $_GET['tableid']; $step = (int) $_GET['step']; $tablesel = $_GET['tablesel']; $aaa = $_GET['aaa']; $rows = $_GET['rows']; !$tabledb && !$tablesel && alert('没有选择操作对象'); !$tabledb && ($tabledb = explode("|", $tablesel)); !$step && ($sizelimit /= 2); $bakupdata = bakupdata($tabledb, $start); if (!$step) { !$tabledb && alert('没有选择操作对象'); $tablesel = implode("|", $tabledb); $step = 1; $aaa = num_rand(10); $start = 0; $bakuptable = bakuptable($tabledb); } $f_num = ceil($step / 2); $filename = 'iCMS_' . get_date('', "md") . '_' . $aaa . '_' . $f_num . '.sql'; $step++; $writedata = $bakuptable ? $bakuptable . $bakupdata : $bakupdata; $t_name = $tabledb[$tableid - 1]; $c_n = $startfrom; if ($stop == 1) { $files = $step - 1; trim($writedata) && writefile(iPATH . 'admin/data/' . $filename, $bak . $writedata, true, 'ab'); redirect("正在备份数据库表{$t_name}: 共{$rows}条记录<br>已经备份至{$c_n}条记录,已生成{$f_num}个备份文件,<br>程序将自动备份余下部分", __SELF__ . "?do=database&operation=savebackup&start={$startfrom}&tableid={$tableid}&sizelimit={$sizelimit}&step={$step}&aaa={$aaa}&tablesel={$tablesel}&rows={$rows}", 3); } else { trim($writedata) && writefile(iPATH . 'admin/data/' . $filename, $bak . $writedata, true, 'ab');
function randstr($length) { return substr(md5(num_rand($length)), mt_rand(0, 32 - $length), $length); }
} else { echo pwJsonEncode($returnArray); } } ajax_footer(); } elseif (S::getGP('action', 'P') == 'pay') { //* include_once pwCache::getPath(D_P."data/bbscache/inv_config.php"); //* include_once pwCache::getPath(D_P.'data/bbscache/ol_config.php'); pwCache::getData(D_P . "data/bbscache/inv_config.php"); pwCache::getData(D_P . 'data/bbscache/ol_config.php'); if ($_POST['step'] == '3') { S::gp(array('invnum', 'email')); if (!is_numeric($invnum) || $invnum < 1) { $invnum = 1; } $order_no = str_pad('0', 10, "0", STR_PAD_LEFT) . get_date($timestamp, 'YmdHis') . num_rand(5); $rt = array(); if ($rg_config['rg_emailtype'] == 1 && $rg_config['rg_email']) { $e_check = 0; $e_limit = explode(',', $rg_config['rg_email']); foreach ($e_limit as $key => $val) { if (strpos($email, "@" . $val) !== false) { $e_check = 1; break; } } if ($e_check == 0) { Showmsg('电子邮箱不是系统指定的邮箱地址,不能注册!'); } } if ($rg_config['rg_emailtype'] == 2 && $rg_config['rg_banemail']) {
} CkInArray(strtolower($regname), array('guest', 'system')) && wap_msg('illegal_username'); $rg_banname = explode(',', $rg_banname); foreach ($rg_banname as $value) { if ($value && strpos($regname, $value) !== false) { wap_msg('illegal_username', $basename); } } if ($rg_ifcheck == '1') { $rg_groupid = '7'; //后台控制是否需要验证 } else { $rg_groupid = '-1'; } if ($rg_emailcheck == 1) { $rg_yz = num_rand(9); } else { $rg_yz = 1; } $upmeminfo = array(); $pwSQL = pwSqlSingle(array('username' => $regname, 'password' => $regpwd, 'safecv' => $safecv, 'email' => $regemail, 'groupid' => $rg_groupid, 'memberid' => $rg_memberid, 'regdate' => $timestamp, 'icq' => '', 'yz' => $rg_yz, 'userstatus' => $userstatus)); $db->update("INSERT INTO pw_members SET {$pwSQL}"); $winduid = $db->insert_id(); require_once R_P . 'require/credit.php'; $credit->addLog('reg_register', $rg_regcredit, array('uid' => $winduid, 'username' => stripslashes($regname), 'ip' => $onlineip)); $credit->sets($winduid, $rg_regcredit, false); $credit->runsql(); $pwSQL = pwSqlSingle(array('postnum' => 0, 'lastvisit' => $timestamp, 'thisvisit' => $timestamp, 'onlineip' => $onlineip)); $db->update("INSERT INTO pw_memberdata SET uid=" . pwEscape($winduid) . ",{$pwSQL} "); if ($rg_ifcheck) { $upmeminfo['regreason'] = $regreason;
if ($operation == 'savebackup') { $is_check = check_rights("g03"); if (!$is_check) { echo $m_langpackage->m_no_pri; exit; } $tabledb = get_argp('tabledb'); $start = (int) get_argg('start'); $tableid = (int) get_argg('tableid'); $bak = "/* iweb_sns Backup SQL File \n Version: v1.0.0 \n Time: " . date('Y-m-d H:i:s') . "\n iweb_sns: http://www.jooyea.net*/\n\n\n\n"; $bakupdata = bakupdata($dbo, $tabledb, $start); if (!$tabledb) { echo "<script language='javascript'> alert('{$d_langpackage->d_boject_no}'); history.go(-1);</script>"; } $step = 1; $rand_num = num_rand(10); $start = 0; $bakuptable = bakuptable($dbo, $tabledb); $f_num = ceil($step / 2); $filename = 'isns_' . date('m-d') . '_' . $rand_num . '_' . $f_num . '.sql'; $step++; $writedata = $bakuptable ? $bakuptable . $bakupdata : $bakupdata; $c_n = $startfrom; trim($writedata) && writefile('../docs/' . $filename, $bak . $writedata, true, 'ab'); if ($step > 1) { for ($i = 1; $i <= $f_num; $i++) { $temp = substr($filename, 0, 19) . $i . ".sql"; if (file_exists("../docs/{$temp}")) { $bakfile .= '<a href="' . "../docs/{$temp}" . '">' . $temp . '</a><br>'; } }
if (empty($_POST['step'])) { $men['password'] = ''; @extract($men); require_once R_P . 'require/header.php'; require_once PrintEot('remail'); footer(); } else { S::gp(array('password', 'rg_email', 'to_email')); $men['password'] != md5($password) && Showmsg('password_error', 1); $rg_email != $men['email'] && Showmsg('email_error', 1); if ($to_email && !ereg("^[-a-zA-Z0-9_\\.]+\\@([0-9A-Za-z][0-9A-Za-z-]+\\.)+[A-Za-z]{2,5}\$", $to_email)) { Showmsg('illegal_email'); } $rg_yz = (int) num_rand(9); while ($rg_yz < 32) { $rg_yz = (int) num_rand(9); } $userUpdate = array('yz' => $rg_yz); if ($to_email) { $userUpdate['email'] = $to_email; } else { $to_email = $men['email']; } $userService->update($uid, $userUpdate); $regname = $men['username']; $winduid = $uid; $timestamp = $men['regdate']; $sRegpwd = $password; $rgyz = md5($rg_yz . substr(md5($db_sitehash), 0, 5) . substr(md5($regname), 0, 5)); require_once R_P . 'require/sendemail.php'; $sendinfo = sendemail($to_email, 'email_check_subject', 'email_check_content', 'email_additional');
<?php //关闭报错 session_start(); unset($_SESSION["Img"]); error_reporting(0); //图片宽度 $x_size = 65; //图片高度 $y_size = 22; //生成4个随机字符 $_SESSION["Img"] = $nmsg = num_rand(4); //支持安全通连接吗? $S = $_SERVER['SERVER_PORT'] == '443' ? 1 : 0; //使用cookie记录随机码 //expire=0 cookie将会在会话结束后(一般是浏览器关闭)失效。 setCookie('ck_num', md5($nmsg), 0, '/', '', $S); //创建宽:65*22的图片(画布) $aimg = imagecreate($x_size, $y_size); //设置图片背景色 $back = imagecolorallocate($aimg, 239, 239, 239); //设置字体颜色 07 52 8B // $border = imagecolorallocate($aimg, 200 , 100, 10); $border = imagecolorallocate($aimg, 5, 5, 5); //从0,0点填充59*19的白色矩形区域 imagefilledrectangle($aimg, 0, 0, $x_size - 1, $y_size - 1, $back); //从0,0点绘制59*19的黑色矩形边框 //imagerectangle($aimg, 0, 0, $x_size - 1, $y_size - 1, $border); imagerectangle($aimg, 0, 0, $x_size - 1, $y_size - 1, $border); for ($i = 0; $i < strlen($nmsg); $i++) { //在图片上写字 imageString($aimg, 5, $i * $x_size / 4 + 3, 2, $nmsg[$i], $border);