📄 p_edituser.php
字号:
<?php
include'include/begin.php';
include'include/p_begin.php';
userp1();
include language();
$pagename_m=$_pagename[19];
$tpl_html='p_edituser';
include'include/main.php';
$userp2[1]?NULL : echoerror(61);
if($_GET['type']=='post') {
$result=mysql_query("select * from {$db_prefix}members where id='$_GET[uid]'",$myconn);
if(!$userm=mysql_fetch_array($result)) {
echoerror(46);
}
if($userm['admin']!=0&&!$userp2[11]) {
echoerror(61);
}
$eusername =$userm['username'];
$email=trim($_POST['email']);
$sex=$_POST['sex'];
$signatext=$_POST['signatext'];
if(!empty($_POST['password'])) {
preg_match("/^[a-zA-Z0-9\.]+$/is",$_POST['password'])?NULL : echoerror(34);
$password=$_POST['password'];
$passwordmd5=md5($password);
bstrlen($password)>$passwordmax||bstrlen($password)<$passwordmin?echoerror(31): $password=substr($passwordmd5,0,13).substr($passwordmd5,-3);
} else {
$password=$userm["password"];
}
$signatext=preg_replace("/\[img\](.+?)\[\/img\]/eis","wkpic('\\1')",$signatext);
if($email!=$userm["email"]) {
ereg("^[-a-zA-Z0-9_\.]+\@([0-9A-Za-z][0-9A-Za-z-]+\.)+[A-Za-z]{2,3}$",$email)?NULL : echoerror(32);
$emailresult=mysql_query("select id from {$db_prefix}members where email='$email'",$myconn);
mysql_fetch_array($emailresult)?echoerror(38): NULL;
}
$emailhide=$_POST["emailhide"]?1 : 0;
$blank=$_POST["blank"]?1 : 0;
$sex=$sex==1?1 : 0;
for($n=0;$n<4;$n++) {
$_POST["title{$n}"]=str_replace(",","",str_replace("|","",$_POST["title{$n}"]));
$modelist.=$_POST["select{$n}"].",".substr(trim($_POST["title{$n}"]),0,50).",".$_POST["addresshide{$n}"]."|";
}
$face=explode('|',$userm['face']);
$filen=$face[2];
if($_FILES['userfile']['name']) {
if(!$userp1[21]) {
echoerror(60);
} if($userp1[1]<=$user['up_today']) {
echoerror(102);
} $filetype=strrchr($_FILES['userfile']['name'],'.');
$filetype=strtolower(str_replace('.','',$filetype));
$uploaddir=floor($userm['id']/10000);
$updir=$imagedir.'/uploadface/'.$uploaddir;
if(!is_dir($updir)) {
if(@mkdir($updir,0777)==FALSE) {
echoerror(9);
}
}
$upfiletype=array('gif','jpg','jpeg');
if(!in_array($filetype,$upfiletype)) {
echoerror(5);
} if($_FILES['userfile']['size']>$userp1[21]*1024) {
echoerror(16);
} $filename=$updir.'/'
.$userm['id'].'.'.$filetype;
if(@move_uploaded_file(StripSlashes($_FILES['userfile']['tmp_name']),$filename)) {
if($face[2]!=$uploaddir.'/'.$userm['id'].'.'.$filetype) {
@unlink($imagedir.'/uploadface/'.$face[2]);
}
@mysql_query("update {$db_prefix}members set up_num=up_num+1,up_today=up_today+1 where username='$username'"
,$myconn);
$filen=$uploaddir.'/'.$userm['id'].'.'.$filetype;
}
}
unset($grouplist);
if($userm['groups']) {
$group=explode('|',$userm['groups']);
while(list(,$val)=each($group)) {
if($val) {
$groups=explode(",",$val);
$byname=$_POST["group".$groups[0]];
if(!$groupname[$groups[0]]) {
continue;
} if(strlens($byname)<$namemin||strlens($byname)>$namemax) {
echoerror(131);
} if(jyname($byname)) {
echoerror(130);
} $grouplist.="|".$groups[0].",".$byname;
@mysql_query("update {$db_prefix}groupuser set byname='$byname' where groupid='$groups[0]'&& username='$_GET[username]'"
,$myconn);
}
}
}
unset($honorlist,$honora);
$honor=$_POST['honor'];
while(list(,$val)=@each($honor)) {
if(isset($honors[$val])) {
$honora[]=$val;
}
}
if(is_array($honora)) {
$honorlist=implode('|',$honora);
} if($_POST["face"]==1||$_POST["face"]==2){}
else {
$_POST["face"]==0;
}
if(is_numeric($_POST["faces"])) {
$_POST["faces"]=Ceil($_POST["faces"]);
if($_POST["faces"]>$facenum) {
$_POST["faces"]=1;
}
} else {
$_POST["faces"]=1;
}
$a=is_numeric($_POST['a'])?$_POST['a']: $userm['a'];
$b=is_numeric($_POST['b'])?$_POST['b']: $userm['b'];
$c=is_numeric($_POST['c'])?$_POST['c']: $userm['c'];
$grouplist=mysql_escape_string($grouplist);
ka($signatext,250);
if (SERVER_GHO) $signatext=gho_server($signatext);
$face=$_POST['face'].'|'.$_POST['faces'].'|'.$filen.'|';
mysql_query("update {$db_prefix}members set password='$password', email='$email',sex='$sex',face='$face',signa='$signatext',a='$a',b='$b',c='$c',groups='$grouplist',honor='$honorlist',blank='$blank' where username='$eusername'"
,$myconn);
for($n=0;$n<4;$n++) {
$address.=$_POST["select{$n}"].",".$_POST["title{$n}"].",".$_POST["addresshide{$n}"]."|";
}
$address=$emailhide.'|'.$address;
ka($address,250);
mysql_query("update {$db_prefix}address set address='$address' where username='$eusername'"
,$myconn);
event(0,25,0,$eusername);
$reurl='showuser.php?username='.urlencode($eusername);
echoioy(7);
}
$result=mysql_query("select * from {$db_prefix}members where username='$_GET[username]'",$myconn);
if(!$userm=mysql_fetch_array($result)) {
echoerror(46);
} unset($sexchecked,$addresslist,$grouplist);
$uid=$userm['id'];
$sexchecked[$userm["sex"]]="checked=\"checked\"";
$result=mysql_query("select * from {$db_prefix}address where username='$_GET[username]'",$myconn);
$userrow=mysql_fetch_array($result);
$userrow=explode("|",$userrow["address"]);
$blankhide=$userm["blank"]?"checked=\"checked\"" : NULL;
$emailhide=$userrow[0]?"checked=\"checked\"": NULL;
$email=$userm["email"];
@array_shift($userrow);
for($n=0;$n<4;$n++) {
unset($messagemodelist);
$userrows=explode(",",$userrow[$n]);
$addresslist.="<select name=\"select$n\">";
foreach($messagemode as $key=>$tread) {
$messagemodelist.=$key==$userrows[0]?"<option value=$key selected>$tread</option>": "<option value=$key >$tread</option>";
}
$addresshide=$userrows[2]==1?"<input checked value=1 name=\"addresshide$n\" type=\"checkbox\">": "<input value=1 name=\"addresshide$n\" type=\"checkbox\">";
$addresslist.=$messagemodelist. "</select><input class=\"subject\" maxlength=\"40\" size=\"40\" name=\"title$n\" value="
.htmlspecialchars($userrows[1]).">".$addresshide."$_p_edituser[0]<br />";
}
$face=explode("|",$userm["face"]);
$facedef[$face[0]]="checked=\"checked\"";
for($n=1;$n<=$facenum;$n++) {
$facelist.=$face[1]==$n?"<span><img src='$imagedir/face/face$n.gif' border='0'><input name='faces' value='$n' checked type='radio'></span>"
: "<span><img src='$imagedir/face/face$n.gif' border='0'><input name='faces' value='$n' type='radio'></span>"
;
}
$userfilehide=!$userp1[12]||!$userp1[1]||$userp1[1]<=$user["up_today"]?"disabled=\"checked\"": NULL;
$echoupface=$face[2]?'<img src="'.$imagedir. '/uploadface/'.$face[2].'" />': '';
$ubb_t=$signa?$_p_edituser[1]: $_p_edituser[2];
$signatext=htmlspecialchars($userm['signa']);
if (SERVER_GHO) $signatext = str_replace('WEBURL', SERVER_NAME, $signatext);
if($userm["groups"]) {
$group=explode("|",$userm["groups"]);
while(list(,$val)=each($group)) {
if($val) {
$groups=explode(",",$val);
$grouplist.=$groupname[$groups[0]]?$groupname[$groups[0]].":<input name=\"group".$groups[0]."\" type=\"text\" maxlength=\"12\" value=\"".htmlspecialchars($groups[1])."\"><br />": '';
}
}
}
if($userm['honor']) {
$honorl=array();
$honor=explode('|',$userm['honor']);
while(list(,$val)=each($honor)) {
$honorl[$val]='checked="checked"';
}
}
while(list($key,$val)=each($honors)) {
$jjx1.=tpl_fun_jjx1(array('imagedir'=>$imagedir,'i'=>$key,'honorl'=>$honorl[$key],'name'=>$val));
}
$eusername=$userm['username'];
$maxk=$userp1[21];
$maxb=$userp1[21]*1024;
$a=$userm['a'];
$b=$userm['b'];
$c=$userm['c'];
include_once'./cache/template/m_'.$style_id.'_'.$tpl_html.'.php';
function wkpic($content) {
global $img_ubb;
$filetype = strtolower(str_replace('.', '', strrchr($content, '.')));
if (eregi("\"|'|>|<|\?", $content)) echoerror(89);
if (!@in_array($filetype, $img_ubb) || $filetype=='php') return '[url]' . $content . '[/url]';
return '[img]' . $content . '[/img]';
}
?>
⌨️ 快捷键说明
复制代码
Ctrl + C
搜索代码
Ctrl + F
全屏模式
F11
切换主题
Ctrl + Shift + D
显示快捷键
?
增大字号
Ctrl + =
减小字号
Ctrl + -