</div> <div id="country2" class="tabcontent"> <form id="form2" name="form2" method="post" action=""> <table width="100%" border="0" style="border-collapse:collapse; background:#f0f0f0;" cellspacing="0" cellpadding="5"> <tr> <td style="color:#FF0000" align="center"> <?php if ($_POST['nhantin']) { if ($_POST['title'] == '') { echo "Mời bạn nhập tiêu đề tin nhắn"; } elseif ($_POST['content'] == '') { echo "Mời bạn nhập nội dung tin nhắn"; } else { mysql_query("INSERT INTO " . msg . " SET title='" . text($_POST['title']) . "',content='" . textContent($_POST['content']) . "',id_from='" . @$_SESSION['idcus'] . "',id_to='" . $row['memberid'] . "',postdate='" . time() . "'"); mysql_query("INSERT INTO " . msg1 . " SET title='" . text($_POST['title']) . "',content='" . textContent($_POST['content']) . "',id_from='" . @$_SESSION['idcus'] . "',id_to='" . $row['memberid'] . "',postdate='" . time() . "'"); echo "<script>alert('Bạn đã nhắn tin thành công.');location.href='" . $_SERVER['HTTP_REFERER'] . "';</script>"; } } ?> </td> </tr> <tr> <td style="padding-left:30px"><input name="title" type="text" id="title" style="width:700px; color:#999999" onfocus="if(value=='Tiêu đề') value=''" onblur="if(value=='') value='Tiêu đề'" value="Tiêu đề"/></td> </tr> <tr> <td style="padding-left:30px"><table border="0" cellspacing="0" cellpadding="0"> <tr> <td><textarea name="content" id="content" style="width:700px; height:60px; "></textarea></td> </tr> </table></td>
if ($title != '') { uploadsb($file = 'picture', $folder = '../images/file/'); mysql_query("INSERT INTO " . download . " SET \n\t\t\t\ttitle = '" . text($_POST['title']) . "'\n\t\t\t\t,link = '" . text($_POST['link']) . "'\n\t\t\t\t,loai='" . $_POST['loai'] . "'\n\t\t\t\t,picture = '{$picture}'\n \t\t\t,short = '" . textContent($_POST['short']) . "',full = '" . textContent($_POST['full']) . "'\n\t\t\t\t,postdate = '" . time() . "'"); echo "Thêm tin <b>" . $title . "</b> thành công"; } } if ($_POST['EditNews']) { if ($_SESSION['modn'] == '1') { if ($title != '') { uploadsb($file = 'picture', $folder = '../images/file/'); if ($picture == '') { $picture = $_POST['picture_hidden']; } else { unlink("../images/file/" . $_POST['picture_hidden']); } mysql_query("UPDATE " . download . " SET \n\t\t\t\ttitle = '" . text($_POST['title']) . "'\n\t\t\t\t,link = '" . text($_POST['link']) . "'\n\t\t\t\t,loai='" . $_POST['loai'] . "'\n\t\t\t\t,picture = '{$picture}'\n \t\t\t,short = '" . textContent($_POST['short']) . "',full = '" . textContent($_POST['full']) . "'\n\t\t\t\t,postdate='" . time() . "' WHERE id='" . intval($_GET['Edit']) . "'"); echo "Cập nhật <b>" . $title . "</b> thành công"; } } else { echo "<span id=\"thongbao\"> Bạn không có quyền thực hiện chức năng này </span>"; } } if ($_POST['ItemDel']) { if ($_SESSION['modn'] == '1') { $action = ''; if ($_POST['element'] == '') { echo '<script>alert(\'Mời bạn chọn ít nhất 1 bản tin\')</script>'; $action = true; } if ($action == '') { $sqlstr = "SELECT *\tFROM " . download . " WHERE id in (" . implode(",", $_POST['element']) . ") ";
<form action="" method="post" enctype="multipart/form-data"> <table style="border-collapse: collapse;" align="center" width="750" border="1" bordercolor="#bbbbbb" cellpadding="1" cellspacing="1" > <tr id="tieude" ><td colspan="2" ><span id="TextLeftCenter2m"> Sửa Menu </span> </td> </tr> <?php if ($_POST['Send']) { if ($_SESSION['modn'] == '1') { echo "<tr><td colspan=2 style='color:#FF0000;text-align:left;padding-left:110px'>"; $submit = ''; if (text($_POST['title']) == '') { $alert = "Mời bạn nhập tiêu đề tin"; $submit = true; } if ($submit == '') { mysql_query("UPDATE " . guide . " SET \n\t\t\t\t\ttitle = '" . text($_POST['title']) . "'\n\t\t\t\t ,stt = '" . text($_POST['stt']) . "'\n\t\t\t\t ,full='" . textContent($_POST['full']) . "'\n\t\t\t\t\n\t\t\t\t\t\n\t\t\t\t\t WHERE id='" . intval($_GET['Edit']) . "'"); echo "<script>alert('Bạn đã sửa tin thành công');location.href='" . $_SERVER['HTTP_REFERER'] . "';</script>"; } if ($submit != '') { echo $alert; } echo "</td></tr>"; } else { echo "<span id=\"thongbao\"> Bạn không có quyền thực hiện chức năng này </span>"; } } ?> <tr > <td width="150" height="28"><div align="right"><?php
<?php if ($_POST['Send']) { if ($_SESSION['modn'] == '1') { echo "<tr><td colspan=2 style='color:#FF0000;text-align:left;padding-left:110px'>"; $submit = ''; if (text($_POST['title']) == '') { $alert = "Mời bạn nhập tiêu đề tin"; $submit = true; } if ($submit == '') { if ($anhgoc == '') { mysql_query("UPDATE " . product . " SET \n\t\t\t\t\ttitle = '" . text($_POST['title']) . "'\n\t\t\t\t\t,category = '" . text($_POST['category']) . "'\n\t\t\t\t\t,subCategory = '" . text($_POST['SubCategory']) . "'\n\t\t\t\t\t,price='" . $_POST['price'] . "'\n\t\t\t\t,special='" . $_POST['special'] . "'\n\t\t\t\t,discount='" . $_POST['discount'] . "'\n\t\t\t\t,luachon='" . $_POST['luachon'] . "'\n\t\t\t\t,full='" . textContent($_POST['full']) . "'\n\t\t\t\t,tomtat='" . textContent($_POST['tomtat']) . "'\t\n\t\t\t\n\t\t\t\n\t\t\t\t\t\n\t\t\t\t\t,postdate = '" . time() . "' WHERE id='" . intval($_GET['Edit']) . "'"); } else { unlink("../images/product/thumbs/" . $_POST['picture_hidden']); unlink("../images/product/goc/" . $_POST['picture_hidden2']); mysql_query("UPDATE " . product . " SET \n\t\t\t\t\ttitle = '" . text($_POST['title']) . "'\n\t\t\t\t\t,category = '" . text($_POST['category']) . "'\n\t\t\t\t\t,subCategory = '" . text($_POST['SubCategory']) . "'\n\t\t\t\t,price='" . $_POST['price'] . "'\n\t\t\t\t,special='" . $_POST['special'] . "'\n\t\t\t\t,discount='" . $_POST['discount'] . "'\n\t\t\t\t,luachon='" . $_POST['luachon'] . "'\n\t\t\t\t,full='" . textContent($_POST['full']) . "'\n\t\t\t\t,tomtat='" . textContent($_POST['tomtat']) . "'\t\n\t\t\t\t,picture = '" . $thumb_file . "'\n\t\t\t\t\t,picture2 = '" . $anhgoc . "'\n\t\t\t ,postdate = '" . time() . "' WHERE id='" . intval($_GET['Edit']) . "'"); } echo "<script>alert('Bạn đã sửa tin thành công');location.href='index.php?site=Product';</script>"; } if ($submit != '') { echo $alert; } } else { echo "<span id=\"thongbao\"> Bạn không có quyền thực hiện chức năng này </span>"; } } ?> <tr > <td width="150" height="28"><div align="right"><?php
} elseif ($_POST['address'] == '') { echo "Mời bạn nhập địa chỉ"; } elseif ($_POST['telephone'] == '') { echo "Mời bạn nhập điện thoại"; } elseif ($_POST['email'] == '') { echo "Mời bạn nhập email"; } elseif (text($_POST['code']) != @$_SESSION['code']) { echo "Mã xác nhận không chính xác"; } else { if (@$_SESSION['picture3'] != '') { $image = @$_SESSION['picture3']; } if (@$_SESSION['picture3'] == '') { $image = @$_SESSION['picture2']; } mysql_query("UPDATE " . userpost . " SET title='" . text($_POST['title']) . "'\r\n ,categories='" . $_POST['categories'] . "',needs='" . $_POST['needs'] . "'\r\n\t\t\t,fullname='" . $_POST['fullname'] . "',address='" . $_POST['address'] . "'\r\n\t\t\t,telephone='" . $_POST['telephone'] . "',email='" . $_POST['email'] . "'\r\n\t\t\t,picture='" . $image . "',type='" . $_POST['type'] . "', place='" . $_POST['place'] . "',\r\n content='" . textContent($_POST['content']) . "' WHERE id='" . intval($id_1) . "'"); @($_SESSION['picture3'] = ""); @($_SESSION['picture2'] = ""); echo "<script>alert('Sửa tin đăng thành công!');location.href='" . $domain . "/quan-ly-tin-dang" . $vip . "';</script>"; } } ?> <form method="post" action="" enctype="multipart/form-data"> <table width="95%" border="0" align="center" cellpadding="5" cellspacing="0"> <?php $sqlstr = mysql_query("SELECT * FROM " . userpost . " WHERE id='" . intval($id_1) . "'"); if (mysql_num_rows($sqlstr) > 0) { $row = mysql_fetch_array($sqlstr); ?>
<tr> <td colspan="3" height="30"> <strong>Đặt mua: </strong> <a href="index.php?page=shoppingCart&action=add&viewParent=<?php echo $_GET['viewParent']; ?> &id=<?php echo $row['id']; ?> " id="tieude"><img src="images1/mua.gif" border="0" align="absmiddle" /></a> </td> </tr> <tr> <td colspan="3"height="30"bgcolor="#EFEFEF"> <strong>Thông tin chi tiết</strong></td> </tr> <tr> <td colspan="3" id="noidung" height="30"><?php echo textContent($row['tomtat']); ?> </td> </tr> </table> <?php } ?>
<?php include "check.php"; include_once "fckeditor/fckeditor.php"; ?> <br /> <?php if ($_POST['UpdateIntro']) { mysql_query("UPDATE " . bottom . " SET full_intro='" . textContent($_POST['full_intro']) . "'"); echo "Cập nhật thành công"; } $sqlstr = mysql_query("SELECT * FROM " . bottom . ""); if (mysql_num_rows($sqlstr) > 0) { $row = mysql_fetch_array($sqlstr); ?> <form action="" method="post" enctype="multipart/form-data"> <table width="750" border="0" cellspacing="2" cellpadding="2" align="center" style="border:#cccccc 1px solid"> <tr ><td colspan="2" id="tieude" > <span id="TextLeftCenter2m">Cập nhật Bottom </span> </td> </tr> <tr> <td colspan="2" align="center" > <?php $oFCKeditor = new FCKeditor('full_intro'); $oFCKeditor->BasePath = 'fckeditor/'; $oFCKeditor->Value = $row['full_intro']; $oFCKeditor->Create(); ?> </td>
} elseif ($_POST['address'] == '') { echo "Mời bạn nhập địa chỉ"; } elseif ($_POST['telephone'] == '') { echo "Mời bạn nhập điện thoại"; } elseif ($_POST['email'] == '') { echo "Mời bạn nhập email"; } elseif (text($_POST['code']) != @$_SESSION['code']) { echo "Mã xác nhận không chính xác"; } else { if (@$_SESSION['idcus'] != '') { $member = @$_SESSION['idcus']; } if (@$_SESSION['idcus'] == '') { $member = 0; } mysql_query("INSERT INTO " . userpost . " SET title='" . text($_POST['title']) . "'\r\n ,categories='" . $_POST['categories'] . "',needs='" . $_POST['needs'] . "',type='" . $_POST['type'] . "', memberid='" . intval($member) . "', place='" . $_POST['place'] . "',picture='" . @$_SESSION['picture1'] . "',\r\n\t\t\tfullname='" . $_POST['fullname'] . "',address='" . $_POST['address'] . "',\r\n\t\t\ttelephone='" . $_POST['telephone'] . "',email='" . $_POST['email'] . "',\r\n content='" . textContent($_POST['content']) . "',postdate='" . time() . "'"); if (@$_SESSION['idcus'] != '') { mysql_query("UPDATE " . members . " SET count=count+1 WHERE id='" . @$_SESSION['idcus'] . "'"); } @($_SESSION['picture1'] = ''); echo "<script>alert('Bạn đã đăng tin thành công. Tin đăng của bạn sẽ được admin kiểm duyệt');location.href='" . $domain . "';</script>"; } } ?> <form method="post" action="" enctype="multipart/form-data"> <table width="95%" border="0" align="center" cellpadding="5" cellspacing="0"> <tr> <td colspan="2" class="height_row"> <div id="settyper" align="center">Chọn kiểu gõ <input value="1" name="typer" onClick="return Mudim.SetMethod(4);" type="radio"> Tự động <input checked="checked" value="1" name="typer" onClick="return Mudim.SetMethod(2);" type="radio"> Telex <input value="1" name="typer" onClick="return Mudim.SetMethod(1);" type="radio"> VNI <input value="0" name="typer" onClick="return Mudim.SetMethod(0);" type="radio"> Tắt</div> </td>
<tr id="tieude" ><td colspan="2" > <span id="TextLeftCenter2m">Quản lý Thành viên </span> </td> </tr> </table> <?php if ($_SESSION['modn'] == '1') { ?> <?php if ($_POST['InsertNews']) { if (NumRow(username, admin, "username='******'username']) . "'") > 0) { echo "Tên truy cập này đã có"; } else { mysql_query("INSERT INTO " . admin . " SET \n\t\t\t\tusername = '******'username']) . "'\n \t\t\t,fullname = '" . textContent($_POST['fullname']) . "'\n\t\t\t\t,email = '" . textContent($_POST['email']) . "'\n\t\t\t\t,modn = '" . textContent($_POST['modn']) . "'\n\t\t\t\t,password = '******'password'])))) . "'\n\t\t\t\t\n\t\t\t\t\n\t\t\t\t\n\t\t\t\t\n\t\t\t\t"); echo "Thêm thành viên thành công"; } } if ($_POST['ItemDel']) { $action = ''; if ($_POST['element'] == '') { echo '<script>alert(\'Mời bạn chọn ít nhất 1 bản tin\')</script>'; $action = true; } if ($action == '') { mysql_query("DELETE FROM " . admin . " WHERE id in (" . implode(",", $_POST['element']) . ")"); } } if ($_POST['ItemHid']) { $action = '';
<?php include "check.php"; if ($_POST['Edit'] != '') { mysql_query("UPDATE " . config . " SET define = '" . $_POST['slidehome'] . "' WHERE id = '5'"); mysql_query("UPDATE " . config . " SET define = '" . textContent($_POST['footerbottom']) . "' WHERE id = '3'"); mysql_query("UPDATE " . config . " SET define = '" . textContent($_POST['contacts']) . "' WHERE id = '4'"); mysql_query("UPDATE " . config . " SET define = '" . textContent($_POST['adsright']) . "' WHERE id = '10'"); mysql_query("UPDATE " . config . " SET define = '" . textContent($_POST['pro']) . "' WHERE id = '11'"); mysql_query("UPDATE " . config . " SET define = '" . textContent($_POST['title']) . "' WHERE id = '2'"); mysql_query("UPDATE " . config . " SET define = '" . textContent($_POST['description']) . "' WHERE id = '12'"); mysql_query("UPDATE " . config . " SET define = '" . textContent($_POST['keywords']) . "' WHERE id = '13'"); mysql_query("UPDATE " . config . " SET define = '" . textContent($_POST['timeoutnews']) . "' WHERE id = '18'"); mysql_query("UPDATE " . config . " SET define = '" . textContent($_POST['hotline']) . "' WHERE id = '19'"); header('location:' . $_SERVER['HTTP_REFERER'] . ''); } ?> <div style="float:left; padding-top:20px"> <form action="" method="post"> <table border="1" bordercolor="#CCCCCC" bordercolorlight="#CCCCCC" bgcolor="#EEEEEE" align="left" cellpadding="3" cellspacing="0" width="800"> <tr> <td width="115"><div align="right">Slide trang chủ</div></td> <td width="667"><label> <input name="slidehome" type="radio" value="1" <?php echo slidehome == '1' ? 'checked' : ''; ?> > Ẩn<input name="slidehome" type="radio" value="2" <?php echo slidehome == '2' ? 'checked' : ''; ?> > Hiện