function GetOptionList($selid=0,$userCatalog=0,$channeltype=0) { global $OptionArrayList,$channels,$dsql; if(!is_object($dsql)) $dsql = new DedeSql(false); $dsql->SetQuery("Select ID,typename From #@__channeltype "); $dsql->Execute(); $channels = Array(); while($row = $dsql->GetObject()) $channels[$row->ID] = $row->typename; $OptionArrayList = ""; $query = "Select ID,typename,ispart,channeltype,issend From #@__arctype where ispart<>2 And reID=0 order by sortrank asc "; $dsql->SetQuery($query); $dsql->Execute(); while($row=$dsql->GetObject()) { if($row->channeltype==$channeltype && $row->issend==1){ if($row->ispart==0) $OptionArrayList .= "<option value='".$row->ID."' class='option3'>".$row->typename."</option>\r\n"; else if($row->ispart==1) $OptionArrayList .= "<option value='".$row->ID."' class='option2'>".$row->typename."</option>\r\n"; } LogicGetOptionArray($row->ID,"─",$channeltype,$dsql); } return $OptionArrayList; }
function GetRankName($arcrank) { global $arcArray,$dsql; if(!is_array($arcArray)){ $dsql = new DedeSql(false); $dsql->SetQuery("Select * from #@__arcrank"); $dsql->Execute('rn1'); while($row = $dsql->GetObject('rn1')){ $arcArray[$row->rank]=$row->membername; } } if(isset($arcArray[$arcrank])) return $arcArray[$arcrank]; else return "不限"; }
} else if($dbptype==3){ $dsql = new DedeSql(false,false); $dsql->SetSource($dbhost,$dbuser,$dbpwd,$dbname,''); $dsql->Open(false); } if(!$dsql->linkID){ ShowMsg("连接数据源的数据库失败!","javascript:;"); exit(); } $fieldsql = ''; $fieldsql = "$userfield,$pwdfield"; if($emailfield!='') $fieldsql .= ",$emailfield"; if($unamefield!='') $fieldsql .= ",$unamefield"; if($sexfield!='') $fieldsql .= ",$sexfield"; $dsql->SetQuery("Select $fieldsql From $exptable "); $dsql->Execute(); $cfg_db_language = $oldchar; $dsql2 = new DedeSql(false); $c = 0; while($row = $dsql->GetArray()){ $userid = addslashes($row[$userfield]); if($tgtype=='none') $pwd = GetEncodePwd($row[$pwdfield]); else if($tgtype=='md5'){ if($cfg_md5len < $tgmd5len) $pwd = substr($row[$pwdfield],0,$cfg_md5len); else $pwd = $row[$pwdfield]; }else if($tgtype=='md5m16'){ $pwd = $row[$pwdfield];
$endtime = GetMkTime($endtime); $voteitems = ""; $j=0; for($i=1;$i<=15;$i++) { if(!empty(${"voteitem".$i})){ $j++; $voteitems .= "<v:note id=\\'$j\\' count=\\'0\\'>".${"voteitem".$i}."</v:note>\r\n"; } } $dsql = new DedeSql(false); $inQuery = " insert into #@__vote(votename,starttime,endtime,totalcount,ismore,votenote) Values('$votename','$starttime','$endtime','0','$ismore','$voteitems'); "; $dsql->SetQuery($inQuery); if(!$dsql->ExecuteNoneQuery()) { $dsql->Close(); ShowMsg("增加投票失败,请检查数据是否非法!","-1"); exit(); } $dsql->Close(); ShowMsg("成功增加一组投票!","vote_main.php"); exit(); } $startDay = time(); $endDay = AddDay($startDay,30); $startDay = GetDateTimeMk($startDay); $endDay = GetDateTimeMk($endDay);
<?php require_once(dirname(__FILE__)."/config.php"); CheckPurview('plus_站内新闻发布'); if(empty($dopost)) $dopost = ""; $aid = ereg_replace("[^0-9]","",$aid); $dsql = new DedeSql(false); if($dopost=="del") { $dsql->SetQuery("Delete From #@__mynews where aid='$aid';"); $dsql->ExecuteNoneQuery(); $dsql->Close(); ShowMsg("成功删除一条站内新闻!","mynews_main.php"); exit(); } else if($dopost=="editsave") { $dsql->SetQuery("Update #@__mynews set title='$title',typeid='$typeid',writer='$writer',senddate='".GetMKTime($sdate)."',body='$body' where aid='$aid';"); $dsql->ExecuteNoneQuery(); $dsql->Close(); ShowMsg("成功更改一条站内新闻!","mynews_main.php"); exit(); } $myNews = $dsql->GetOne("Select #@__mynews.*,#@__arctype.typename From #@__mynews left join #@__arctype on #@__arctype.ID=#@__mynews.typeid where #@__mynews.aid='$aid';"); require_once(dirname(__FILE__)."/templets/mynews_edit.htm"); ClearAllLink(); ?>
<?php require(dirname(__FILE__)."/config.php"); CheckPurview('sys_MakeHtml'); $dsql = new DedeSql(false); $cids = ''; $dsql->SetQuery("Select ID From `#@__channeltype` "); $dsql->Execute(); while($row = $dsql->GetArray()) { $cids .= ($cids=='' ? $row[0] : ','.$row[0]); } if($cids!='') { $rs = $dsql->ExecuteNoneQuery("Delete From `#@__arctype` where NOT (channeltype in ($cids));"); if($rs>0){ $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `#@__arctype`;"); UpDateCatCache($dsql); } $rs = $dsql->ExecuteNoneQuery("Delete From `#@__full_search` where NOT (channeltype in ($cids));"); if($rs>0) $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `#@__full_search`;"); $rs = $dsql->ExecuteNoneQuery("Delete From `#@__archives` where NOT (channel in ($cids));"); if($rs>0) $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `#@__archives`;"); $rs = $dsql->ExecuteNoneQuery("Delete From `#@__archivesspec` where NOT (channel in ($cids));"); if($rs>0) $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `#@__archivesspec`;"); }
} } foreach($topsectors as $topsector){ $sectors[] = $topsector; foreach($subsectors as $key => $subsector){ if($subsector['reid'] == $topsector['id']){ $sectors[] = $subsector; unset($subsectors[$key]); } } } //////////////////////地区数据处理s///////////////////////////// $sql = "select * from #@__area order by disorder asc,id asc"; $dsql->SetQuery($sql); $dsql->Execute(); $toparea = $subarea = array(); while($sector = $dsql->GetArray()) { $areas[$sector['id']] = $sector['name']; if($sector['reid'] == 0) { $toparea[] = $sector; }else { $subarea[] = $sector; } } $areacache = "toparea=new Array();\n\n";
empty($_COOKIE['ENV_GOBACK_URL']) ? $ENV_GOBACK_URL = "article_keywords_main.php" : $ENV_GOBACK_URL=$_COOKIE['ENV_GOBACK_URL']; if(!isset($aids)){ ShowMsg("你没有选择要更改的东东!",$ENV_GOBACK_URL); exit(); } $dsql = new DedeSql(false); foreach($aids as $aid) { $rpurl = ${'rpurl_'.$aid}; $rpurlold = ${'rpurlold_'.$aid}; $keyword = ${'keyword_'.$aid}; //删除项目 if(!empty(${'isdel_'.$aid})) { $query = "update #@__full_search set keywords = Replace(keywords,' $keyword ',' ')"; $dsql->SetQuery($query); $dsql->ExecuteNoneQuery(); $dsql->SetQuery("Delete From #@__keywords where aid='$aid'"); $dsql->ExecuteNoneQuery(); continue; } //禁用项目 $staold = ${'staold_'.$aid}; if(!empty(${'isnouse_'.$aid})) $sta = 0; else $sta = 1; if($staold!=$sta) { $query1 = "update #@__keywords set sta='$sta',rpurl='$rpurl' where aid='$aid' "; $dsql->SetQuery($query1); $dsql->ExecuteNoneQuery(); if($sta==0)
} /*-------------------- function DelChapter() 删除章节信息 -------------------*/ else if($action=='delChapter') { $dsql = new DedeSql(); $row = $dsql->GetOne("Select c.bookid,b.booktype From #@__story_chapter c left join #@__story_books b on b.id=c.bookid where c.id='$cid' "); $bookid = $row['bookid']; $booktype = $row['booktype']; $dsql->ExecuteNoneQuery("Delete From #@__story_chapter where id='$cid' "); //删除图片 if($booktype==1) { $dsql->SetQuery("Select bigpic From #@__story_content where bookid='$bookid' "); $dsql->Execute(); while($row = $dsql->GetArray()){ $bigpic = $row['bigpic']; if( $bigpic!="" && !eregi('^http://',$bigpic) ) @unlink($cfg_basedir.$bigpic); } } $dsql->ExecuteNoneQuery("Delete From #@__story_content where chapterid='$cid' "); //更新图书记录 $row = $dsql->GetOne("Select count(id) as dd From #@__story_content where bookid='$bookid' "); $dsql->ExecuteNoneQuery("Update #@__story_books set postnum='{$row['dd']}' where id='$bookid' "); $dsql->Close(); ShowMsg("成功删除指定章节!",$ENV_GOBACK_URL); exit(); exit(); }
header("Content-Type: text/html; charset=utf-8"); $dsql = new DedeSql(false); $cfg_templets_dir = $cfg_basedir . $cfg_templets_dir; $channellist = ''; $newartlist = ''; $channellistnext = ''; if (empty($action)) { $action = 'index'; } elseif ($action != 'list' && $action != 'index' && $action != 'article' && $action != 'allArticle' && $action != 'allList') { die('action error'); } //$hostName = '/m'; $hostName = $action == 'index' ? '.' : '..'; //用相对地址 //顶级导航列表 $dsql->SetQuery("Select id,typename From `#@__arctype` where reid=0 And channeltype=1 And ishidden=0 And ispart<>2 order by sortrank limit 0,10"); $dsql->Execute(); $channellist = '<li><a href="' . $hostName . '">首页</a></li>'; while ($row = $dsql->GetObject()) { $channellist .= "<li><a href='{$hostName}/list/{$row->id}.html'>{$row->typename}</a></li>"; } //当前时间 $curtime = strftime("%Y-%m-%d %H:%M:%S", time()); //站点名称 $cfg_webname = ConvertStr($cfg_webname); //主页 if ($action == 'index') { //最新文章10篇 $dsql->SetQuery("Select id,title,pubdate From `#@__archives` where channel=1 And arcrank = 0 order by pubdate desc limit 0,10"); $dsql->Execute(); while ($row = $dsql->GetObject()) {
ClearAllLink(); ShowMsg("你修改的是系统专用类型的数据,禁止操作!","-1"); exit(); } //检测数据库是否存在附加表,不存在则新建一个 $tabsql = "CREATE TABLE IF NOT EXISTS `{$row['addtable']}`( `aid` int(11) NOT NULL default '0',\r\n `typeid` int(11) NOT NULL default '0',\r\n "; if($mysql_version < 4.1) $tabsql .= " PRIMARY KEY (`aid`), KEY `".$trueTable."_index` (`typeid`)\r\n) TYPE=MyISAM; "; else $tabsql .= " PRIMARY KEY (`aid`), KEY `".$trueTable."_index` (`typeid`)\r\n) ENGINE=MyISAM DEFAULT CHARSET=".$cfg_db_language."; "; $dsql->ExecuteNoneQuery($tabsql); //检测附加表里含有的字段 $fields = array(); $rs = $dsql->SetQuery("show fields from `{$row['addtable']}`"); $dsql->Execute('a'); while($nrow = $dsql->GetArray('a',MYSQL_ASSOC)){ $fields[ strtolower($nrow['Field']) ] = $nrow['Type']; } //修改字段配置信息 $dfvalue = $vdefault; $isnull = ($isnull==1 ? "true" : "false"); $mxlen = $maxlength; $fieldname = strtolower($fname); //检测被修改的字段类型,并更新数据表 $fieldinfos = GetFieldMake($dtype,$fieldname,$dfvalue,$mxlen);
} } /*---------------- function __AddMoney() 会员充值 ----------------*/ else if($dopost=="addmoney") { CheckPurview('member_Edit'); if($fmdo=="yes") { $ID = ereg_replace("[^0-9]","",$ID); $money = ereg_replace("[^0-9]","",$money); $dsql = new DedeSql(false); $dsql->SetQuery("update #@__member set money=money+$money where ID='$ID'"); $dsql->ExecuteNoneQuery(); $dsql->Close(); ShowMsg("成功给一个会员充值!",$ENV_GOBACK_URL); exit(); } if(empty($upmoney)) $upmoney = 500; $wintitle = "会员管理-会员充值"; $wecome_info = "<a href='".$ENV_GOBACK_URL."'>会员管理</a>::会员充值"; $win = new OxWindow(); $win->Init("member_do.php","js/blank.js","POST"); $win->AddHidden("fmdo","yes"); $win->AddHidden("dopost",$dopost); $win->AddHidden("ID",$ID); $win->AddTitle("会员充值:"); $win->AddMsgItem("请输入充值点数:<input type='text' name='money' size='10' value='$upmoney'>",60);
function upRank() ------------------------*/ else if($dopost=="upRank") { //检查权限许可 CheckPurview('t_Edit,t_AccEdit'); //检查栏目操作许可 CheckCatalog($cid,"你无权更改本栏目!"); $dsql = new DedeSql(false); $row = $dsql->GetOne("Select reID,sortrank From #@__arctype where ID='$cid'"); $reID = $row['reID']; $sortrank = $row['sortrank']; $row = $dsql->GetOne("Select sortrank From #@__arctype where sortrank<=$sortrank And reID=$reID order by sortrank desc "); if(is_array($row)){ $sortrank = $row['sortrank']-1; $dsql->SetQuery("update #@__arctype set sortrank='$sortrank' where ID='$cid'"); $dsql->ExecuteNoneQuery(); } $dsql->Close(); ShowMsg("操作成功,返回目录...","catalog_main.php"); exit(); } else if($dopost=="upRankAll") { //检查权限许可 CheckPurview('t_Edit'); $dsql = new DedeSql(false); $row = $dsql->GetOne("Select ID From #@__arctype order by ID desc"); if(is_array($row)) { $maxID = $row['ID'];
</td> </tr> <tr bgcolor="#FFFFFF"> <td colspan="2" align="center" class="mma"> <table width="98%" border="0" cellspacing="0" cellpadding="0"> <?php if(!isset($dsql) || !is_object($dsql)){ $dsql = new DedeSql(false); } $addQuery = ""; if(!empty($channelid)){ $channelid = ereg_replace("[^0-9]","",$channelid); $addQuery = " And channelid='$channelid' "; } $userNumID = ereg_replace("[^0-9]","",$userNumID); $dsql->SetQuery("Select * From #@__member_arctype where memberid='$userNumID' $addQuery order by rank desc; "); $dsql->Execute(); while($menurow = $dsql->GetArray()) { if($menurow['channelid']==1) $tf = '<img src="img/dd/exe.gif" width="16" height="16">'; else $tf='<img src="img/dd/image.gif" width="16" height="16">'; ?> <tr> <td align="right" class="mmbb" height="24" width="30%" style="padding-right:6px"><?php echo $tf?></td> <td class="mmbb"> <a href='member_archives.php?uid=<?php echo $uid?>&channelid=<?php echo $menurow['channelid']?>&mtype=<?php echo $menurow['aid']?>'><?php echo $menurow['typename']?></a> </td> </tr> <?php } ?>
function pr_str_replace($str) { $dsql = new DedeSql(false); $dsql->SetQuery("SELECT * FROM `#@__str_replace`"); $dsql->Execute(); while ($row = $dsql->GetArray()) { if ($row['interconvert'] == 1) { $str = str_replace($row['find'], "@@@@", $str); $str = str_replace($row['replace'], $row['find'], $str); $str = str_replace("@@@@", $row['replace'], $str); } else { if ($row['interconvert'] == 0) { $str = str_replace($row['find'], $row['replace'], $str); } } } return $str; }
if(!$rs){ $dsql->Close(); ShowMsg("新增变量失败,可能有非法字符!","sys_info.php?gp=$vargroup"); exit(); } $configfile = dirname(__FILE__)."/../include/config_hand.php"; $configfile_bak = dirname(__FILE__)."/../include/config_hand_bak.php"; if(!is_writeable($configfile)){ $dsql->Close(); ShowMsg("成功保存变量,但由于 $configfile 无法写入,因此不能更新配置文件!","sys_info.php?gp=$vargroup"); exit(); }else{ $dsql->SetQuery("Select varname,value From #@__sysconfig order by aid asc"); $dsql->Execute(); if($dsql->GetTotalRow()<=0){ $dsql->Close(); ShowMsg("成功保存变量但从数据库读取所有数据时失败,无法更新配置文件!","sys_info.php?gp=$vargroup"); exit(); } copy($configfile,$configfile_bak); $fp = fopen($configfile,"w"); fwrite($fp,"<"."?php\r\n"); while($row = $dsql->GetArray()){ fwrite($fp,"\${$row['varname']} = '".str_replace("'","\\'",$row['value'])."';\r\n"); } fwrite($fp,"?".">"); fclose($fp); $dsql->Close();
CheckPurview('sys_User'); require_once(dirname(__FILE__)."/../include/inc_typelink.php"); if(empty($dopost)) $dopost=""; if($dopost=="add") { if(ereg("[^0-9a-zA-Z_@!\.-]",$pwd)){ ShowMsg("用户密码不合法!","-1",0,300); exit(); } if(ereg("[^0-9a-zA-Z_@!\.-]",$userid)){ ShowMsg("用户名不合法!","-1",0,300); exit(); } $dsql = new DedeSql(false); $dsql->SetQuery("Select * from `#@__admin` where userid='$userid' Or uname='$uname'"); $dsql->Execute(); $ns = $dsql->GetTotalRow(); if($ns>0){ $dsql->Close(); ShowMsg("用户名或笔名已存在,不允许重复使用!","-1"); exit(); } $ks = Array(); foreach($typeid as $v){ $vs = explode('-',$v); if(isset($vs[1])) $t = $vs[1]; else $t = $vs[0]; if(!isset($ks[$vs[0]])) $ks[$t] = 1; } $typeid = '';
} $tb1SqlKey = str_replace('(,','(',$tb1SqlKey).")"; $tb1SqlValue = str_replace('(,','(',$tb1SqlValue).");"; $tb1Sql = $tb1SqlKey.$tb1SqlValue; if($tablename2!="") { $tb2SqlKey = str_replace("(,","(",$tb2SqlKey).")"; $tb2SqlValue = str_replace("(,","(",$tb2SqlValue).");"; $tb2Sql = $tb2SqlKey.$tb2SqlValue; } //导出数据的SQL操作 //--------------------------------- $totalpage = $totalcc/$pagesize; $startdd = ($pageno-1) * $pagesize; $dsql->SetQuery("Select * From #@__courl where nid='$nid' order by aid asc limit $startdd,$pagesize"); $dsql->Execute(); while($row = $dsql->GetObject()) { $tmpSql1 = $tb1Sql; $tmpSql2 = $tb2Sql; $dtp->LoadString($row->result); $aid = $row->aid; if(!is_array($dtp->CTags)){ continue; } $isbreak = false; $title = ''; $pubdate = 0; foreach($dtp->CTags as $ctag) { if($ctag->GetName()!="field") continue; $tvalue = str_replace('#@__',$cfg_dbprefix,$ctag->GetAtt("name"));
echo "<script src='{$cfg_plus_dir}/ad_js.php?aid=$aid' language='javascript'></script>"; exit(); } else if($dopost=="saveedit") { $dsql = new DedeSql(false); $starttime = GetMkTime($starttime); $endtime = GetMkTime($endtime); $query = " Update #@__myad set typeid='$typeid', adname='$adname', timeset='$timeset', starttime='$starttime', endtime='$endtime', normbody='$normbody', expbody='$expbody' where aid='$aid' "; $dsql->SetQuery($query); $dsql->ExecuteNoneQuery(); $dsql->Close(); ShowMsg("成功更改一则广告代码!",$ENV_GOBACK_URL); exit(); } $dsql = new DedeSql(false); $row = $dsql->GetOne("Select * From #@__myad where aid='$aid'"); ClearAllLink(); require_once(dirname(__FILE__)."/templets/ad_edit.htm"); ?>
<?php require_once(dirname(__FILE__)."/config.php"); CheckPurview('sys_Data'); //获取系统存在的表信息 $otherTables = Array(); $dedeSysTables = Array(); $channelTables = Array(); $dsql = new DedeSql(false); $dsql->SetQuery("Select addtable From #@__channeltype"); $dsql->Execute(); while($row = $dsql->GetObject()){ $channelTables[] = $row->addtable; } $dsql->SetQuery("Show Tables"); $dsql->Execute('t'); while($row = $dsql->GetArray('t')){ if(ereg("^{$cfg_dbprefix}",$row[0])||in_array($row[0],$channelTables)) { $dedeSysTables[] = $row[0]; } else{ $otherTables[] = $row[0]; } } function TjCount($tbname,$dsql){ $row = $dsql->GetOne("Select count(*) as dd From $tbname"); return $row['dd']; } $mysql_version = $dsql->GetVersion(); $mysql_versions = explode(".",trim($mysql_version)); $mysql_version = $mysql_versions[0].".".$mysql_versions[1];
function checkUser($username,$userpwd) { //只允许用户名和密码用0-9,a-z,A-Z,'@','_','.','-'这些字符 $this->userName = ereg_replace("[^0-9a-zA-Z_@\!\.-]",'',$username); $this->userPwd = ereg_replace("[^0-9a-zA-Z_@\!\.-]",'',$userpwd); $pwd = substr(md5($this->userPwd),0,24); $dsql = new DedeSql(false); $dsql->SetQuery("Select * From #@__admin where userid='".$this->userName."' limit 0,1"); $dsql->Execute(); $row = $dsql->GetObject(); if(!isset($row->pwd)){ $dsql->Close(); return -1; } else if($pwd!=$row->pwd){ $dsql->Close(); return -2; } else{ $loginip = GetIP(); $this->userID = $row->ID; $this->userType = $row->usertype; $this->userChannel = $row->typeid; $this->userName = $row->uname; $groupSet = $dsql->GetOne("Select * From #@__admintype where rank='".$row->usertype."'"); $this->userPurview = $groupSet['purviews']; $dsql->SetQuery("update #@__admin set loginip='$loginip',logintime='".strftime("%Y-%m-%d %H:%M:%S",time())."' where ID='".$row->ID."'"); $dsql->ExecuteNoneQuery(); $dsql->Close(); return 1; } }
//如果更改了文件名,删除旧文件 if($oldfilename!=$filename) { $oldfilename = $cfg_basedir.$cfg_cmspath."/".$oldfilename; if(is_file($oldfilename)) unlink($oldfilename); } $inQuery = " update #@__sgpage set title='$title', ismake='$ismake', filename='$filename', uptime='$uptime', body='$body' where aid='$aid'; "; $dsql->SetQuery($inQuery); if(!$dsql->ExecuteNoneQuery()) { $dsql->Close(); ShowMsg("更新页面数据时失败,请检查长相是否有问题!","-1"); exit(); } $dsql->Close(); $filename = $cfg_basedir.$cfg_cmspath."/".$filename; if($ismake==1){ $pv = new PartView(); $pv->SetTemplet(stripslashes($body),"string"); $pv->SaveToHtml($filename); $pv->Close(); } else{
<?php require_once dirname(__FILE__) . "/include/common.inc.php"; header("Content-Type: text/html; charset=utf-8"); //header("Content-type:text/vnd.wap.wml"); require_once dirname(__FILE__) . "/include/wap.inc.php"; if (empty($action)) { $action = 'index'; } $dsql = new DedeSql(false); $cfg_templets_dir = $cfg_basedir . $cfg_templets_dir; $channellist = ''; $newartlist = ''; $channellistnext = ''; //顶级导航列表 $dsql->SetQuery("Select id,typename From `#@__arctype` where reid=0 And channeltype=1 And ishidden=0 And ispart<>2 order by sortrank"); $dsql->Execute(); while ($row = $dsql->GetObject()) { $channellist .= "<a href='wap.php?action=list&id={$row->id}'>{$row->typename}</a> "; } //当前时间 $curtime = strftime("%Y-%m-%d %H:%M:%S", time()); $cfg_webname = ConvertStr($cfg_webname); //主页 /*------------ function __index(); ------------*/ if ($action == 'index') { //最新文章 $dsql->SetQuery("Select id,title,pubdate From `#@__archives` where channel=1 And arcrank = 0 order by id desc limit 0,10"); $dsql->Execute();
} $savesql = new DedeSql(false); foreach ($_POST as $k => $v) { if (ereg("^edit___", $k)) { $v = ${$k}; } else { continue; } $k = ereg_replace("^edit___", "", $k); if (strlen($v) > 250) { showmsg("{$k} 太长,不能超过250字节", '-1'); exit; } $savesql->ExecuteNoneQuery("Update #@__config set `config_value`='{$v}' where `config_name`='{$k}' "); } $savesql->SetQuery("Select `config_name`,`config_value` From `#@__config` order by `id` asc"); $savesql->Execute(); if ($savesql->GetTotalRow() <= 0) { $savesql->Close(); ShowMsg("成功保存变量但从数据库读取所有数据时失败,无法更新配置文件!", "javascript:;"); exit; } @copy($configfile, $configfile_bak); $fp = @fopen($configfile, 'w'); @flock($fp, 3); @fwrite($fp, "<" . "?php\r\n") or die("配置文件'{$configfile}'不支持写入,本次操作无效!<a href='system_basic.php'>返回</a>"); while ($row = $savesql->GetArray()) { $row['value'] = str_replace("'", "\\'", $row['config_value']); fwrite($fp, "\${$row['config_name']} = '" . $row['config_value'] . "';\r\n"); } fwrite($fp, "?>");
$pv->SetTemplet($cfg_basedir.$cfg_templets_dir."/".$templet); $pv->Display(); $pv->Close(); } else if($dopost=="make") { header("Content-Type: text/html; charset={$cfg_ver_lang}"); $homeFile = dirname(__FILE__)."/".$position; $homeFile = str_replace("\\","/",$homeFile); $homeFile = str_replace("//","/",$homeFile); $fp = fopen($homeFile,"w") or die("你指定的文件名有问题,无法创建文件"); fclose($fp); if($saveset==1) { $dsql = new DedeSql(false); $dsql->SetQuery("update #@__homepageset set templet='$templet',position='$position' "); $dsql->ExecuteNoneQuery(); $dsql->Close(); } $templet = str_replace("{style}",$cfg_df_style,$templet); $pv = new PartView(); $pv->SetTemplet($cfg_basedir.$cfg_templets_dir."/".$templet); $pv->SaveToHtml($homeFile); $pv->Close(); echo "成功更新主页HTML:".$homeFile; echo "<br/><br/><a href='$position' target='_blank'>浏览...</a>"; } $t2 = ExecTime(); echo "<!-- ".($t2-$t1)." -->"; ClearAllLink();
<?php require(dirname(__FILE__)."/config.php"); CheckPurview('sys_Data'); if(empty($dopost)) $dopost = ""; header("Content-Type: text/html; charset={$cfg_ver_lang}"); $dsql = new DedeSql(false); if($dopost=="viewinfo") //查看表结构 { if(empty($tablename)) echo "没有指定表名!"; else{ $dsql->SetQuery("SHOW CREATE TABLE ".$dsql->dbName.".".$tablename); $dsql->Execute(); $row2 = $dsql->GetArray(); $ctinfo = $row2[1]; echo "<xmp>".trim($ctinfo)."</xmp>"; } $dsql->Close(); exit(); } else if($dopost=="opimize") //优化表 { if(empty($tablename)) echo "没有指定表名!"; else{ $dsql->ExecuteNoneQuery("OPTIMIZE TABLE `$tablename` "); $dsql->Close(); echo "执行优化表: $tablename OK!"; } exit(); }else if($dopost=="repair") //修复表 { if(empty($tablename)) echo "没有指定表名!";
<?php require_once(dirname(__FILE__)."/config.php"); empty($_COOKIE['ENV_GOBACK_URL']) ? $ENV_GOBACK_URL = "-1" : $ENV_GOBACK_URL=$_COOKIE['ENV_GOBACK_URL']; CheckPurview('sys_Keyword'); $keyword = trim($keyword); $rank = ereg_replace("[^0-9]","",$rank); if(ereg(" ",$keyword)||$keyword=="") { ShowMsg("关键字不能带有空格或为空!",-1); exit(); } $dsql = new DedeSql(false); $row = $dsql->GetOne("Select * From #@__keywords where keyword like '$keyword'"); if(is_array($row)) { $dsql->Close(); ShowMsg("关键字已存在库中!","-1"); exit(); } $inquery = " INSERT INTO #@__keywords(keyword,rank,sta,rpurl) VALUES ('$keyword','$rank','1','$rpurl'); "; $dsql->SetQuery($inquery); $dsql->ExecuteNoneQuery(); ClearAllLink(); ShowMsg("成功增加一个关键字!",$ENV_GOBACK_URL); ?>
if($status == 1) $whereSql .= " and membertype=0"; if($keyword!=""){ $whereSql .= " And (userid like '%$keyword%' Or uname like '%$keyword%') "; } $attform = ""; if(!empty($att)){ if($att=="ad"){ $attform = "<option value='ad'>被推荐会员</option>\r\n"; $whereSql .= " And matt=1 "; } } $MemberTypes = ""; $dsql->SetQuery("Select rank,membername From #@__arcrank where rank>0"); $dsql->Execute(); $MemberTypes[0] = '未审核会员'; while($row = $dsql->GetObject()){ $MemberTypes[$row->rank] = $row->membername; } $dsql->SetQuery("Select id,name From #@__area"); $dsql->Execute(); while($row = $dsql->GetObject()){ $Areas[$row->id] = $row->name; } function GetMemberName($rank) { global $MemberTypes; if(isset($MemberTypes[$rank])){ return $MemberTypes[$rank];
if($eid!=0) $addquery = " And aid<='$eid' "; $tjQuery = "Select count(*) as dd From #@__full_search where channelid='{$channel}' $addquery"; $row = $dsql->GetOne($tjQuery); $totalnum = $row['dd']; } if($totalnum > 0){ $addquery = ""; if($sid!=0) $addquery = " And maintable.ID>='$sid' "; if($eid!=0) $addquery = " And maintable.ID<='$eid' "; $fquery = " Select maintable.ID,maintable.title,maintable.description,addtable.{$rpfield} as body From $maintable maintable left join {$addtable} addtable on addtable.aid=maintable.ID where maintable.channel='{$channel}' $addquery limit $startdd,$pagesize ; "; $dsql->SetQuery($fquery); $dsql->Execute(); while($row=$dsql->GetArray()) { $body = $row['body']; $description = $row['description']; if(strlen($description)>10 || $description=='-') continue; $bodytext = preg_replace("/#p#|#e#|副标题|分页标题/isU","",Html2Text($body)); if(strlen($bodytext) < $msize) continue; $des = trim(addslashes(cn_substr($bodytext,$dsize))); if(strlen($des)<3) $des = "-"; $dsql->ExecuteNoneQuery("Update $maintable set description='{$des}' where ID='{$row['ID']}';"); $dsql->ExecuteNoneQuery("Update #@__full_search set addinfos='{$des}' where aid='{$row['ID']}';"); } //返回进度信息 $startdd = $startdd + $pagesize;
for(;$startID<=$endID;$startID++) { $query = ""; $ID = ${"ID_".$startID}; $name = ${"name_".$startID}; $rank = ${"rank_".$startID}; $money = ${"money_".$startID}; if(isset(${"check_".$startID})){ if($rank>0) $query = "update #@__arcrank set membername='$name',money='$money',rank='$rank' where ID='$ID'"; } else{ $query = "Delete From #@__arcrank where ID='$ID' And rank<>10"; } if($query!=""){ $dsql->SetQuery($query); $dsql->ExecuteNoneQuery(); } } if(isset($check_new)) { if($rank_new>0 && $name_new!="" && $money_new!=""){ $dsql->SetQuery("Insert Into #@__arcrank(rank,membername,adminrank,money) Values('$rank_new','$name_new','5','$money_new')"); $dsql->ExecuteNoneQuery(); } } header("Content-Type: text/html; charset={$cfg_ver_lang}"); echo "<script> alert('成功更新会员等级表!'); </script>"; } require_once(dirname(__FILE__)."/templets/member_rank.htm");