"; $result = $DB->GetArrArrBySQL($Sql); for($i = 0; $i < sizeof($result); $i++) { $arr[]=$result[$i]; } return $arr; } public function sql_InfoList($query="*",$tab="",$where="",$limit="") { Global $DB; $Sql = "select $query from $tab where State = 1".$where." order by DataOrder asc,ID Desc ".$limit; //echo $Sql."
"; $result = $DB->GetArrArrBySQL($Sql); for($i = 0; $i < sizeof($result); $i++) { $arr[]=$result[$i]; } return $arr; } public function show_Info($query="*",$tab="",$where="") { Global $DB; $Sql = "select $query from $tab where State = 1".$where." order by DataOrder asc,ID Desc "; //echo $Sql."
"; $row = $DB->GetSingleArrBySQL($Sql); return $row; } public function get_Show($query="*",$tab="",$where="") { Global $DB; $Sql = "select $query from $tab where 1=1".$where; //echo $Sql."
"; $row = $DB->GetSingleArrBySQL($Sql); return $row; } public function lookweb($lang="CN") { Global $DB,$SiteconfigTab; $row = $DB->GetSingleArrBySQL("Select * from $SiteconfigTab where Lang = '$lang'"); return $row; } function get_del($tab,$idwhere="",$act="") { Global $DB,$FClass; $ResC = $DB->GetSingleArrBySQL("Select Attach from ".$tab." where ID = ".$idwhere); $Attach = $ResC["Attach"]; if ($Attach) { $PicPath = UserFilePath.$Attach; @unlink($PicPath); } $DB->DBQuery("Delete from ".$tab." where ID = ".$idwhere); $FClass->send_url("操作成功！", "memberCenter.php?act=$act"); } function get_delID($tab,$id=0,$field="ID") { Global $DB,$FClass; if ($tab == "kx_news") { $ResC = $DB->GetSingleArrBySQL("Select Attach,Media from ".$tab." where $field = ".$id); $Attach = $ResC["Attach"]; $Media = $ResC["Media"]; if ($Attach) @unlink(UserFilePath.$Attach); if ($Media) @unlink(UserFilePath.$Media); /*$Row = $DB->GetArrArrBySQL("Select Attach from tab_news_picture where NewsID = ".$id); for($i = 0; $i < sizeof($Row); $i++) { if ($Row[$i]["Attach"]) { @unlink(UserFilePath.$Row[$i]["Attach"]); } }*/ $DB->DBQuery("Delete from ".$tab." where ".$field." = ".$id); } if ($tab == "tab_order") $DB->DBQuery("Delete from tab_cart where ".$field." = '".$id."'"); $FClass->send_back("操作成功！"); } function get_SQLQuery($sql="",$act="") { Global $DB,$FClass; $DB->DBQuery($sql); $FClass->send_url("操作成功！", "memberCenter.php?act=$act"); } //日志 public function get_log($char="",$flag=1) { Global $DB,$WebmasterLogTab,$LogTab,$FClass; $IP = $_SERVER["REMOTE_ADDR"]; if ($flag == 2) { $setsqlArr['Note'] = $char; $setsqlArr['IP'] = $IP; $setsqlArr['Landingtimes'] = 1; if ($_SESSION["sessLoginID"] > 0) $setsqlArr['State'] = 1; $DB->inserttable($WebmasterLogTab,$setsqlArr,1); } else { $setsqlArr['title'] = $char; $setsqlArr['IP'] = $IP; $DB->inserttable($LogTab,$setsqlArr,1); } } public function Login_verification() { Global $DB,$WebmasterLogTab,$FClass,$CFG_Landingtimes; if ($DB->GetNumRowsBySQL("Select ID from ".$WebmasterLogTab." where State=0 && IP='".$_SERVER["REMOTE_ADDR"]."'") >= $CFG_Landingtimes) { echo "您尝试登陆的次数太多，暂时关闭后台，请明天再登陆！"; exit; } } //评价 public function form_comment($iid) { Global $DB,$NewsCommentTab,$FClass; $Commetcontent = $FClass->un_badchars($_REQUEST["content"]); $arr = array('SB','操','草', '逼'); for($i = 0; $i < count($arr); $i++){ if(strpos($Commetcontent, $arr[$i])){ echo 2; exit(); } } $setsqlArr['InfoID'] = intval($iid); //$setsqlArr['UserID'] = $_SESSION["sessUserID"]; $setsqlArr['Nickname'] = $_SESSION["sessNickname"]; $setsqlArr['Ip'] = $_SERVER["REMOTE_ADDR"]; $setsqlArr['Commetcontent'] = $Commetcontent; $DB->inserttable($NewsCommentTab,$setsqlArr,1); echo "评论成功！"; exit(); } //会员 function form_m_modreg($act="index") { Global $DB,$MemberTab; Global $FClass; $setsqlArr['Nickname'] = $FClass->check_id($_REQUEST["Nickname"]); $setsqlArr['Sex'] = $FClass->check_id($_REQUEST["Sex"]); $setsqlArr['Email'] = $FClass->check_id($_REQUEST["Email"]); $setsqlArr['Mobile'] = $FClass->check_id($_REQUEST["Mobile"]); $WhereSql = " ID = ".$_SESSION["sessUserID"]; $DB->updatetable($MemberTab,$setsqlArr,$WhereSql); //$this->user_Point($_SESSION["sessUserID"],$mPoints,$c="完善个人资料"); if($_FILES["Head_sculpture"]["size"] > 0) { $ResC = $DB->GetSingleArrBySQL("Select Head_sculpture from ".$MemberTab." where ID=".$_SESSION["sessUserID"]); $Attach = $ResC["Head_sculpture"]; if ($Attach) { @unlink(UserFilePath.$Attach); } $upath = $_SESSION["sessUserID"]."/"; $FileUrl = $upath._asUpFiles(UserFilePath.$upath,"Head_sculpture",UpFileMax_size,UpPicFileType,true); $DB->DBQuery("update ".$MemberTab." set Head_sculpture = '$FileUrl' where ID = ".$_SESSION["sessUserID"]); } $FClass->send_url("修改完成！", $FClass->Rewrite($m=3,$act)); } function form_m_info($act="index") { Global $DB,$NewsTab,$FClass; $upath = $_SESSION["sessUserID"]."/"; if($_FILES["pic"]["size"] > 0) { $FileUrl = $upath._asUpFiles(UserFilePath.$upath,"pic",UpFileMax_size,UpFileType,true); if (intval($_REQUEST["InfoID"]) > 0) { $ResC = $DB->GetSingleArrBySQL("Select Attach from ".$NewsTab." where ID = ".intval($_REQUEST["InfoID"])); if ($ResC["Attach"]) @unlink(UserFilePath.$ResC["Attach"]); $DB->DBQuery("update ".$NewsTab." set Attach = '$FileUrl' where ID = ".intval($_REQUEST["InfoID"])); } } if($_FILES["v"]["size"] > 0) { $MediaFile = $upath._asUpFiles(UserFilePath.$upath,"v",UpFileMax_size,MediaFileType,true); if (intval($_REQUEST["InfoID"]) > 0) { $ResC = $DB->GetSingleArrBySQL("Select Media from ".$NewsTab." where ID = ".intval($_REQUEST["InfoID"])); if ($ResC["Media"]) @unlink(UserFilePath.$ResC["Media"]); $DB->DBQuery("update ".$NewsTab." set Media = '$MediaFile' where ID = ".intval($_REQUEST["InfoID"])); } } $setsqlArr['Title'] = $FClass->check_id($_REQUEST["Title"]); $setsqlArr['Summary'] = $FClass->check_id($_REQUEST["Summary"]); $setsqlArr['ChannelID'] = intval($_REQUEST["ChannelID"]); $setsqlArr['vCat'] = intval($_REQUEST["vCat"]); $setsqlArr['Author'] = intval($_REQUEST["Length"]); $setsqlArr['Other'] = intval($_REQUEST["tSecond"]); if (intval($_REQUEST["InfoID"]) > 0) { $WhereSql = " ID = ".intval($_REQUEST["InfoID"]); $DB->updatetable($NewsTab,$setsqlArr,$WhereSql); } else { $setsqlArr['Attach'] = $FileUrl; $setsqlArr['Media'] = $MediaFile; $setsqlArr['SiteID'] = intval($_SESSION["sessUserID"]); $setsqlArr['Pubdate'] = date("Y-m-d H:i:s"); $DB->inserttable($NewsTab,$setsqlArr,1); } $FClass->send_url("操作完成！", $FClass->Rewrite($m=3,$act)); } //会员积分 public function user_Point($points=0,$char="",$mode=0) { Global $DB,$MemberPointsTab,$MemberTab,$FClass; $pp = 1; //if ($DB->GetNumRowsBySQL("Select ID from ".$MemberPointsTab." where UserID='".$_SESSION["sessUserID"]."' && TO_DAYS(Pointsdate) = TO_DAYS(NOW()) && PointsNote = '会员登录积分奖励'") > 0) $pp = 0; if ($pp == 1) { $jfsqlArr['UserID'] = $_SESSION["sessUserID"]; if ($mode > 0) $jfsqlArr['Points'] = -$points; else $jfsqlArr['Points'] = $points; $jfsqlArr['PointsNote'] = $char; $DB->inserttable($MemberPointsTab,$jfsqlArr,1); if ($mode > 0) $DB->DBQuery("update ".$MemberTab." set Points = Points - $points where ID = ".$_SESSION["sessUserID"]); else $DB->DBQuery("update ".$MemberTab." set Points = Points + $points where ID = ".$_SESSION["sessUserID"]); } } //留言 public function form_message($iid=0) { Global $DB,$MessageTab,$FClass; /*if ($_REQUEST["verifycode"]) { if ($_SESSION['sessionRound'] != $_REQUEST["verifycode"] || empty($_REQUEST["verifycode"])) { echo "校验码不正确！"; exit(); } }*/ $Commetcontent = $FClass->check_id($_REQUEST["textarea"]); $arr = array('SB','操','草','逼','你妹','去你'); for($i = 0; $i < count($arr); $i++){ if(stristr($Commetcontent, $arr[$i])){ //stripos echo "您输入的内容包含不文明用语'$arr[$i]'，请重新输入"; exit(); } } $setsqlArr['UserID'] = $_SESSION["sessUserID"]; $setsqlArr['Nickname'] = $FClass->check_id($_REQUEST["name"]); $setsqlArr['Content'] = $FClass->check_id($_REQUEST["Content"]); $setsqlArr['Tel'] = $FClass->check_id($_REQUEST["tel"]); $setsqlArr['IP'] = $_SERVER["REMOTE_ADDR"]; $DB->inserttable($MessageTab,$setsqlArr,1); echo "留言成功！"; exit(); } //收藏 public function form_m_collection($iid) { Global $DB,$CollectionTab,$FClass; if ($DB->GetNumRowsBySQL("Select * from ".$CollectionTab." where InfoID=".$iid." && UserID = '".$_SESSION["sessUserID"]."'") == 0) { $setsqlArr['InfoID'] = intval($iid); $setsqlArr['UserID'] = intval($_SESSION["sessUserID"]); $DB->inserttable($CollectionTab,$setsqlArr,1); //$FClass->send_url("收藏成功！", "detail.php?ID=".$FClass->check_id($_REQUEST[iid])); echo iconv("gb2312","UTF-8","收藏成功！！"); } else echo iconv("gb2312","UTF-8","已收藏！！"); exit(); } //历史记录 public function form_m_history($iid) { Global $DB,$HistoryTab,$FClass; if ($DB->GetNumRowsBySQL("Select * from ".$HistoryTab." where InfoID=".$iid) == 0) { $setsqlArr['InfoID'] = intval($iid); $setsqlArr['UserID'] = $_SESSION["sessUserID"]; $DB->inserttable($HistoryTab,$setsqlArr,1); } } } ?>