common.php

这个版本只是修正了一些BUG

<?php
/*************************************************
	common.php -  系统管理基本支持文件
	
	Version  : 1.2
	Author   : Tracemouse (tracemouse@msn.com)
	Copyright: http://www.vitci.com
	Writed   : 2003/08/20
	Modified : 2004/04/18
*************************************************/
error_reporting(E_ERROR | E_WARNING | E_PARSE);

set_magic_quotes_runtime(0); //关闭 magic quotes runtime 功能

/*
if ( function_exists('ini_set') ) 	ini_set("session.cookie_lifetime","0");  // 设置 session 的存活时间 （浏览器关闭即失效）
*/
define('IN_SITE', TRUE);

// ========= 取系统管理的根目录 =================================================
$PHP_SELF = $HTTP_SERVER_VARS['PHP_SELF'] ? $HTTP_SERVER_VARS['PHP_SELF'] : $HTTP_SERVER_VARS['SCRIPT_NAME'];
$SCRIPT_FILENAME = str_replace('\\\\', '/', ($HTTP_SERVER_VARS['PATH_TRANSLATED'] ? $HTTP_SERVER_VARS['PATH_TRANSLATED'] : $HTTP_SERVER_VARS['SCRIPT_FILENAME']));
$admin_url = 'http://'.$HTTP_SERVER_VARS['HTTP_HOST'].substr($PHP_SELF, 0, strrpos($PHP_SELF, '/') + 1);
$admin_root = substr($SCRIPT_FILENAME, 0, strrpos($SCRIPT_FILENAME, '/') + 1);

require  '../config.php';      //配置文件
require  '../include/db_mysql.php';    //MYSQL数据库操作类
require  '../include/admin.php';       //系统管理支持函数库
require  '../include/function.php';    //基本函数库

if(!get_magic_quotes_gpc()) 
{
	gotourl('Please set magic_quotes_gpc =  On in your php.ini.');
}
$register_globals = @ini_get('register_globals');
if(!$register_globals || !$magic_quotes_gpc) 
{
	@extract(daddslashes($HTTP_POST_VARS), EXTR_SKIP);
	@extract(daddslashes($HTTP_GET_VARS), EXTR_SKIP);
	@extract($HTTP_ENV_VARS, EXTR_SKIP);
	if(!$register_globals) 
	{
		foreach($HTTP_POST_FILES as $key => $val) 
		{
			$$key = $val['tmp_name'];
			${$key.'_name'} = $val['name'];
			${$key.'_size'} = $val['size'];
			${$key.'_type'} = $val['type'];
		}
	}
}
$currscript = basename($PHP_SELF);
$currscript = substr($currscript, 0, strpos($currscript, '.php'));

define(IMGDIR,'images');
$subflag='admin';
$tables = array('banners','basket','bulletins','delivery','favorite','groups','guide','icons','language','members',
			   'menuitems','orders','orderstatus','parameters','paravals','paravars','pm','products','recommend','review',
                	   'searchindex','settings','sorts','styles','stylevars','updatesql','votekeys','votes','weblinks','bbs');

foreach($tables as $tablename) {
	${'table_'.$tablename} = $tablepre.$tablename;
}
unset($tablename);

// ========= 连接数据库 =======================================================
$db = new dbstuff;
$db->connect($dbhost, $dbuser, $dbpw, $pconnect);
$db->select_db($dbname);
unset($dbhost, $dbuser, $dbpw, $dbname, $pconnect);

$query=$db->query("SELECT * FROM $table_settings");
if($dbq_rec=$db->fetch_array($query))
{
	$version=$dbq_rec['version'];
    	$siteurl=$dbq_rec['siteurl'];
    	$releasedate=$dbq_rec['releasedate'];
    	$LANGID=$dbq_rec['langid'];
    	$STYLEID = $dbq_rec['styleid'];
    	$timeformat=$dbq_rec['timeformat'];
    	$dateformat=$dbq_rec['dateformat'];
    	$bbsid=$dbq_rec['bbsid'];
    	$isiclbbs=$dbq_rec['isiclbbs'];
    	$bbstablepre=$dbq_rec['bbstablepre'];
    	$basecredits=$dbq_rec['credits'];
}
unset($query);unset($dbq_rec);
if($isiclbbs)
{
	$sqlstr="select iclfile from $table_bbs where bbsid=$bbsid";
	$query=@$db->query($sqlstr);
	if($dbq_rec=$db->fetch_array($query))
	{
		$bbs_iclfile=$dbq_rec['iclfile'];
		require "../include/".$bbs_iclfile;  // BBS 支持库
		$bbs= new bbstuff;
		$bbs->set_tablepre($bbstablepre);
	}
	else
	{
		$isiclbbs=0;
	}
}

$query = $db->query("select langdir from $table_language where langid = $LANGID");
$dbq_rec = $db->fetch_array($query);
$LANGDIR = '../'.$dbq_rec['langdir'];
require language('admin');                       //取主语言包文件
unset($dbq_rec);unset($query);
  
if(($currscript != 'adm_menu')&&($currscript != 'adm_login')&&($currscript != 'adm_header'))
{
	if (!isset($HTTP_COOKIE_VARS['admin_user']))
	{
		//$url="./adm_login.php";exit;
   		//gotourl('Loading...',$url);
   		include template('login');
   		exit;
	}
	else
	{
		$admin_user=daddslashes($HTTP_COOKIE_VARS['admin_user']);
 		$admin_pass=daddslashes($HTTP_COOKIE_VARS['admin_pass']);
 		if (checkpass($admin_user,$admin_pass) > 0 )
  		{
   			$url="./adm_login.php";
   			gotourl('Loading....',$url);
   			exit;
  		}
  		setcookie('admin_user', $admin_user, time()+5000, $cookiepath, $cookiedomain);
      		setcookie('admin_pass', $admin_pass, time()+5000, $cookiepath, $cookiedomain);
	}
}

$menuselect = '';
$query=$db->query("SELECT * FROM $table_menuitems WHERE id = supid");
while($dbq_rec=$db->fetch_array($query))
{
	$menuselect .="<option value=''>--+".$dbq_rec['title']."</option>";
    	$mid=$dbq_rec['id'];
    	$query1=$db->query("SELECT * FROM $table_menuitems WHERE supid = $mid AND id <> $mid");
    	while($dbq_rec1=$db->fetch_array($query1))
    	{
    		$menuselect .="<option value='".$dbq_rec1['url']."'>&nbsp;&nbsp;&nbsp;&nbsp;├".$dbq_rec1['title']."</option>";
    	}
}
unset($query);unset($query1);unset($dbq_rec);unset($dbq_rec1);

$timestamp=time();
?>