$query = 'REPLACE ' . substr($query, 6);
}
$db->query($query) or error('Failure to import Data', __FILE__, __LINE__, $db->error());
$query = '';
} else {
$query .= $value;
}
}
$fc = $filename . $ctlt . ".sql";
$ctlt++;
refer("" . $fc . "已被成功导入,程序将自动导入余下部分。", "db_recovery.php?action=backin&ctlt=" . $ctlt . "&num=" . $num . "&filename=" . $filename . "");
} elseif ($action == 'del' && !empty($sql) && !empty($num)) {
for ($i = 1; $i <= intval($num); $i++) {
unlink(ROOT_PATH . 'bakup/' . $sql . $i . '.sql') or error('Unable to delete FILE', __FILE__, __LINE__);
}
refer('' . $num . '卷已被删除', 'db_recovery.php');
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css" media="all" />
</head>
<body topmargin="10" leftmargin="10" >
<form method="post" name="table" action="db_recovery.php?action=del">
<table class="tableborder2" cellspacing="1" cellpadding="5" width="70%" align="center">
<tr class="head">
<td colspan="7" align="center">数据恢复</td>
</tr>
<tr align="center">
$Select = "<select name=\"p_pinpai\"><option value=\"\">请选择...</option>";
break;
}
foreach ($Sort as $v) {
if ($Deep == $v['Deep']) {
$Select .= "<option value=\"{$v['Sort']['id']}\">{$v['Sort']['name']}</option>";
}
}
$Select .= "</select>";
return $Select;
}
if ($action == 'del' && !empty($uid)) {
$check[] = $uid;
$ids = implode(",", $check[0]);
$db->query("DELETE FROM `cdb_members` WHERE uid IN ({$ids})");
refer('删除记录成功', 'member_manager.php');
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css" media="all" />
<script language="JavaScript">
ifcheck = true;
function CheckAll(form) {
for (var i=0;i<form.elements.length-2;i++) {
var e = form.elements[i];
e.checked = ifcheck;
}
ifcheck = ifcheck == true ? false : true;
$uppic = $pic[0] ? get_basename($pic[0]) : 'NULL';
$img = new image(ROOT_PATH . 'video-upimg/' . $uppic);
$img->thumbnail(128, 72, ROOT_PATH . 'video-upimg/' . $uppic);
}
$db->query("INSERT INTO `video` VALUES (NULL,'{$title}','{$intro}','{$uppic}','{$url}',now())") or error('Unable to add advertising', __FILE__, __LINE__, $db->error());
refer('添加视频成功');
}
if ($action == 'del' && isset($id)) {
$query_id = $db->query("SELECT img FROM `video` WHERE id = {$id}");
$result = $db->fetch_array($query_id);
$img = $result['img'];
if ($img) {
@unlink(ROOT_PATH . '/video-upimg/' . $img);
}
$db->query("DELETE FROM `video` WHERE id = {$id}") or error('Unable to delete advertising', __FILE__, __LINE__, $db->error());
refer('删除视频成功!');
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css" media="all" />
</head>
<body topmargin="10" leftmargin="10" >
</br>
<table class="tableborder2" cellspacing="1" cellpadding="0" width="99%" align="center" >
<tr class="head">
<td align="center" height="22">视频列表</td>
</tr>
<tr><td>
$passwd = md5($passwd);
$result = $db->getOne("SELECT id FROM `{$tablepre}admin` WHERE username='******' AND password='******' LIMIT 1");
if ($result) {
$_SESSION['webmaster'] = true;
$_SESSION['adminname'] = $username;
$_SESSION['uid'] = $result;
refer("欢迎您回来,{$username}。现在将转入系统管理面板。", 'index.php');
} else {
refer('用户名无效或密码错误,请返回。');
}
} elseif ($_GET['action'] == 'logout') {
unset($_SESSION);
refer('安全退出', 'login.php');
}
if ($_SESSION['webmaster']) {
refer("您已经登录成功,如果要退出请<a href=login.php?action=logout><b>点击退出</b></a>", "index.php");
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<title>系统管理登陆</title>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css">
</head>
<body topmargin="10" leftmargin="10" >
<form action="login.php?action=login" method="post">
<table class="tableborder2" cellspacing="1" cellpadding="4" width="30%" align="center" >
<tr class="head">
<td colspan="2" align="center">后台管理</td>
</tr>
case 3:
$cacheContent['rank'][] = $a;
break;
case 4:
$cacheContent['class'][] = $a;
break;
case 5:
$cacheContent['publish'][] = $a;
break;
case 6:
$cacheContent['article'][] = $a;
break;
}
}
writetofile(ROOT_PATH . 'data/cate.php', '$category = ' . var_export($cacheContent, true));
refer('更新缓存成功');
default:
break;
}
}
$action = in_array($action, array('bank', 'func', 'rank', 'class', 'publish', 'article')) ? $action : "bank";
$parent_id = empty($parent_id) ? 0 : $parent_id;
$do = empty($do) ? 'add' : $do;
if (!empty($id)) {
$EV = $db->getRow("SELECT * FROM `{$tablepre}category` WHERE cid='{$id}'");
}
$C;
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
// copyright (c)2007 millken@gmail.com
//====================================================
session_start();
if (!$_SESSION['webmaster']) {
header("location:login.php");
}
require_once '../common.inc.php';
if ($_GET['action'] == "phpinfo") {
die(phpinfo());
} elseif ($_GET['action'] == 'changepwd') {
if ($_POST['confirmpasswd'] != $_POST['passwd'] || $_POST['confirmpasswd'] == "") {
refer("两次密码输入的密码不同或为空");
}
$password = $_POST['confirmpasswd'];
$db->query("UPDATE `admin` SET `password` = md5('{$password}') WHERE `username` = '" . $_SESSION['adminname'] . "'");
refer("密码更改成功,请使用新密码重新登录。", "login.php?action=logout");
}
$fileupload = @ini_get("file_uploads") ? "文件 " . ini_get("upload_max_filesize") : "<font color=\"red\">禁止</font>";
if (function_exists(gd_info)) {
$gd = gd_info();
$gd_version = $gd['GD Version'];
} else {
$gd_version = '不清楚';
}
$globals = get_cfg_var('register_globals') ? '打开' : '关闭';
$safemode = get_cfg_var('safe_mode') ? '打开' : '关闭';
//获取数据大小
$dbsize = 0;
$result = $db->query("SHOW TABLE STATUS");
while ($table = $db->fetch_array($result)) {
$dbsize += $table['Data_length'] + $table['Index_length'];
// Summary: 邮件发送系统
// Author: millken(迷路林肯)
// LastModifed:2007-08-23
// copyright (c)2007 millken@gmail.com
//====================================================
session_start();
if (!$_SESSION['webmaster']) {
header("location:login.php");
}
require_once '../common.php';
require_once '../include/xajax.inc.php';
require_once '../include/smtp.inc.php';
if ($action == 'send') {
//die("$mailto\t$subject\t$mailbody");
send_mail($mailto, $subject, $mailbody);
refer('邮件已发送成功...');
}
/*xajax function start */
function getUsermail()
{
global $db;
$resp = new xajaxResponse();
$query = $db->query("SELECT DISTINCT `email` FROM `cdb_members` WHERE `adminid`=0") or error('Unable to fetch email list', __FILE__, __LINE__, $db->error());
while ($result = $db->fetch_array($query)) {
if (is_email($result['email'])) {
$mails[] = $result['email'];
}
}
$mail = implode(",", $mails);
$resp->addAssign("mailto", "value", $mail);
$resp->addAssign("getmail", "disabled", true);
// FileName: article_manager.php
// Summary: 文章管理
// Author: millken(迷路林肯)
// LastModifed:2008-7-16
// copyright (c)2008 millken@gmail.com
//====================================================
session_start();
if (!$_SESSION['webmaster']) {
header("location:login.php");
}
include '../common.inc.php';
include_once ROOT_PATH . 'include/card.func.php';
if ($do == 'del' && !empty($id)) {
$ids = implode(",", $id);
$db->query("DELETE FROM `{$tablepre}article` WHERE aid IN ('{$ids}')");
refer("删除成功", 'article_manager.php');
}
$arr['title'] = empty($name) ? '' : $name;
$arr['cid'] = $cid > 0 ? $cid : 0;
$sql = getarticlesql($arr);
$countnum = $db->getOne("SELECT count(*) FROM ({$sql})a");
$per = empty($per) ? 15 : $per;
$pages = page($count, $per, 20);
extract($pages);
$articlelist = $db->getAll("{$sql} LIMIT {$page},{$limit}");
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css" media="all" />
$bakupdata = $bakuptable ? $bakuptable . $bakupdata : $bakupdata;
if ($stop == 1) {
$i++;
$tableid = $i;
$startfrom = $start;
$start = 0;
$files = $step - 1;
if (trim($bakupdata)) {
writetofile(ROOT_PATH . 'data/sql/' . $filename, $bak . $bakupdata, 1, 'ab');
}
refer('正在备份数据库表' . $table[$tableid - 1] . ': 共' . $rows . ' 条记录,已经备份至' . $startfrom . '条记录<br><br>已生成' . $f_num . '个备份文件,程序将自动备份余下部分', "db_backup.php?action=backup&start={$startfrom}&tableid={$tableid}&sizelimit={$sizelimit}&step={$step}&pre={$pre}&tabledata={$tabledata}&rows={$rows}");
} else {
if (trim($bakupdata)) {
writetofile(ROOT_PATH . 'data/sql/' . $filename, $bak . $bakupdata, 1, 'ab');
}
refer('备份完毕', 'db_backup.php');
}
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css" media="all" />
<script language=javascript>
function checkAll(obj)
{
if(typeof(obj)=="undefined")
{
return;
}
$config = array();
if ($_GET['edit'] == 'yes') {
$config['webname'] = htmlspecialchars(addslashes(trim($_POST['webname'])));
$config['seotitle'] = addslashes(trim($_POST['seotitle']));
$config['seokeyword'] = addslashes(trim($_POST['seokeyword']));
$config['seodescription'] = addslashes(trim($_POST['seodescription']));
$config['seomode'] = addslashes(trim($_POST['seomode']));
$config['close'] = addslashes(trim($_POST['close']));
$config['template'] = addslashes(trim($_POST['template']));
$config['weektop1'] = trim($weektop1);
$config['weektop2'] = trim($weektop2);
foreach ($config as $key => $value) {
$db->query("REPLACE INTO `{$tablepre}config` (name,value) VALUES('{$key}','{$value}')");
}
updatecachefile('config');
refer('更新完成');
}
$result = $db->query("SELECT * FROM `{$tablepre}config`");
while ($row = $db->fetch_array($result)) {
$config[$row['name']] = $row['value'];
}
$dir = searchdir(ROOT_PATH . 'templates/');
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css" media="all" />
</head>
<body topmargin="10" leftmargin="10" >
<form method="post" name="setting" action="setting.php?edit=yes">
$xajax->registerFunction("add");
$xajax->registerFunction("addV");
$xajax->registerFunction("editvote");
$xajax->processRequests();
if ($action == 'del' && !empty($id)) {
$db->query("DELETE FROM `vote` WHERE id={$id} or pid={$id}");
refer('删除记录成功', 'vote_manager.php');
} elseif ($action == 'invisable') {
//$order = $s ==1?0:1;
$db->query("UPDATE `vote` SET `order` = 0");
$db->query("UPDATE `vote` SET `order` = 1 WHERE id={$id}");
updateVoteCache();
refer('已将投票设为首页显示', 'vote_manager.php');
} elseif ($action == 'update') {
updateVoteCache();
refer('更新投票成功', 'vote_manager.php');
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css" media="all" />
<script language="JavaScript">
ifcheck = true;
function CheckAll(form) {
for (var i=0;i<form.elements.length-2;i++) {
var e = form.elements[i];
e.checked = ifcheck;
}
ifcheck = ifcheck == true ? false : true;
// Author: millken(迷路林肯)
// LastModifed:2007-06-20
// copyright (c)2007 millken@gmail.com
//====================================================
require_once '../common.php';
session_start();
if (!$_SESSION['webmaster']) {
header("location:login.php");
}
if ($_GET['action'] == 'update') {
updatecachefile('config');
updatecachefile('psort');
updatecachefile('asort');
updateVoteCache();
updateLinkCache();
refer("缓存更新成功");
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css" media="all" />
</head>
<body topmargin="10" leftmargin="10" >
<form action="updatecache.php?action=update" method="post">
<table class="tableborder2" cellspacing="1" cellpadding="4" width="40%" align="center" >
<tr class="head">
<td colspan="2" align="center">更新系统缓存</td>
</tr>
<tr class="b">
refer("添加图片成功");
break;
case 'hide':
$db->query("UPDATE `{$tablepre}productpic` SET hide=abs(hide-1) WHERE pid='{$pid}'");
refer("更新状态成功");
break;
case 'recommend':
$db->query("UPDATE `{$tablepre}productpic` SET recommend=abs(recommend-1) WHERE pid='{$pid}'");
refer("更新状态成功");
break;
case 'del':
$img = $db->getOne("SELECT img FROM `{$tablepre}productpic` WHERE id='{$id}'");
@unlink(ROOT_PATH . $img);
$sql = "DELETE FROM `{$tablepre}productpic` WHERE id='{$id}'";
$db->query($sql);
refer('删除图片成功');
break;
}
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css" media="all" />
</head>
<body leftmargin="10" topmargin="10">
<table width="100%" border="0" cellpadding="2" cellspacing="6">
<?php
if ($do != 'edit') {
?>
// FileName: card_manager.php
// Summary: 产品管理
// Author: millken(迷路林肯)
// LastModifed:2008-7-1
// copyright (c)2008 millken@gmail.com
//====================================================
session_start();
if (!$_SESSION['webmaster']) {
header("location:login.php");
}
include '../common.inc.php';
include_once ROOT_PATH . 'include/card.func.php';
if ($do == 'del' && !empty($id)) {
$ids = implode(",", $id);
$db->query("DELETE FROM `{$tablepre}product` WHERE id IN ('{$ids}')");
refer("删除成功", 'card_manager.php');
}
$arr['name'] = empty($name) ? '' : $name;
$arr['bankid'] = $bank > 0 ? $bank : 0;
$arr['rankid'] = $rank > 0 ? $rank : 0;
$arr['publishid'] = $publish > 0 ? $publish : 0;
$arr['classid'] = $class > 0 ? $class : 0;
$arr['funcid'] = $func > 0 ? $func : 0;
$sql = getcardsql($arr);
$countnum = $db->getOne("SELECT count(*) FROM ({$sql})a");
$per = empty($per) ? 15 : $per;
$pages = page($count, $per, 20);
extract($pages);
$cardlist = $db->getAll("{$sql} LIMIT {$page},{$limit}");
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
refer('您选择的是图片广告,但您未选择上传图片!');
}
$db->query("INSERT INTO `advertising` VALUES (NULL,'{$adlocation}','{$title}','{$img}','{$isimgad}','{$url}',now(),'{$exptime}')") or error('Unable to add advertising', __FILE__, __LINE__, $db->error());
updateAdsCache();
refer('添加成功');
}
if ($action == 'del' && isset($id)) {
$query_id = $db->query("SELECT img FROM `advertising` WHERE id = {$id}");
$result = $db->fetch_array($query_id);
$img = $result['img'];
if ($img) {
@unlink(ROOT_PATH . '/adsimg/' . $img);
}
$db->query("DELETE FROM `advertising` WHERE id = {$id}") or error('Unable to delete advertising', __FILE__, __LINE__, $db->error());
updateAdsCache();
refer('删除成功!');
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8">
<link rel="stylesheet" href="admin.css" type="text/css" media="all" />
<script language="JavaScript">
function isimg() {
var S = document.getElementById("isimgad").checked;
if(S){
document.getElementById("img").style.display = 'block';
}else{
document.getElementById("img").style.display = 'none';
}
$pic = $uf->move(ROOT_PATH . 'article_upimg', 2);
$uppic = $pic[0] ? get_basename($pic[0]) : 'NULL';
$img = new image(ROOT_PATH . 'article_upimg/' . $uppic);
//$img->thumbnail(150,150,ROOT_PATH . 'article_upimg/'.$uppic);
$img->watermark(ROOT_PATH . 'include/watermark.png', '', '', ROOT_PATH . 'article_upimg/' . $uppic);
} else {
$uppic = $_POST['pic'];
}
$date = date('Y-m-j H:i:s');
if ($_GET['action'] == 'save') {
$db->query("INSERT INTO `article` (`a_sort`,`a_ztid`,`aid`,`title`,`author`,`suggest`,`date`,`pic`,`content`) values ({$a_sort},{$a_ztid},{$aid},'{$title}','{$author}',{$suggest},now(),'{$uppic}','{$content}')");
refer('添加成功', 'article_edit.php');
} else {
$id = $_POST['updateid'];
$db->query("UPDATE `article` SET `p_xilie` = {$p_xilie},`p_sort` = {$p_sort},`p_pinpai` = {$p_pinpai},`name` = '{$name}',`size` = {$size},`xixiang` = '{$xixiang}',`price` = {$price},`p_num` = {$p_num},`suggest` = {$suggest},`pic` = '{$uppic}',`content` = '{$content}' WHERE `id` = {$id}");
refer('更新成功', 'article_manager.php');
}
}
$query = $db->query("SElECT * FROM `cdb_members` WHERE `uid` = {$uid}");
$result = $db->fetch_array($query);
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<link href="admin.css" rel="stylesheet" type="text/css">
</head>
<body topmargin="10" leftmargin="10">
<form method="post" name="edit" id="edit" action="member_edit.php?action=save" enctype="multipart/form-data">
<input type="hidden" name="uid" value="<?php
echo $uid;
function comments($key)
{
/* Select all comments */
$res = mysql_query("SELECT * FROM comments WHERE idkey = '{$key}' ORDER BY date DESC");
?>
<p><span class="serif">
<strong>Comments</strong><br />
</span></p>
<?php
while ($row = mysql_fetch_assoc($res)) {
?>
<p>
<strong><span class="sans"><?php
echo $row['name'] . ' - ' . date("l, jS of F, Y; H:i:s", $row['date']);
?>
</strong>
<br />
<?php
echo stripslashes($row['comment']);
?>
</span>
</p>
<?php
}
?>
<p>
<span class="sans"><a target="new" href="add_comment.php?key=<?php
echo $key;
?>
">Add comment</a></span>
</p>
<br />
<br />
<?php
refer();
}
include '../common.inc.php';
include_once ROOT_PATH . 'include/card.func.php';
$detail = parse_ini_file(ROOT_PATH . 'data/detail.ini', true);
switch ($do) {
case 'add':
$xxxx_array = array('USE' => $USE, 'FEE' => $FEE, 'OUT' => $OUT);
$xxxx = serialize($xxxx_array);
$sql = "INSERT INTO `{$tablepre}product` (name,bankid,rankid,publishid,classid,funcid,mnfyh,jbgn,tsgn,sqtj,xxxx,hkfs) VALUES ('{$name}','{$bank}','{$rank}','{$publish}','{$class}','{$func}','{$mnfyh}','{$jbgn}','{$tsgn}','{$sqtj}','{$xxxx}','{$hkfs}')";
$db->query($sql);
refer("添加成功");
case 'edit':
$xxxx_array = array('USE' => $USE, 'FEE' => $FEE, 'OUT' => $OUT);
$xxxx = serialize($xxxx_array);
$sql = "UPDATE `{$tablepre}product` SET name='{$name}',bankid='{$bank}',rankid='{$rank}',publishid='{$publish}',classid='{$class}',funcid='{$func}',mnfyh='{$mnfyh}',jbgn='{$jbgn}',tsgn='{$tsgn}',sqtj='{$sqtj}',hkfs='{$hkfs}',xxxx='{$xxxx}' WHERE id='{$id}'";
$db->query($sql);
refer('更新成功', 'card_manager.php');
break;
}
if ($act == 'edit' && !empty($id)) {
$card = cardinfo($id);
} else {
$card = array();
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.0 Transitional//EN">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8">
<link href="admin.css" rel="stylesheet" type="text/css">
<script type="text/javascript" language="javascript">
<!--
