advs_lb.php

学校网站源码http://您的网址/admin/admin_login.asp 默认登录用户：admin 默认登录密码：admin

<?php


include( "../config.inc.php" );
include( "../includes/SysGlobal.php" );
include( "language/".$aLan."_".$charset.".php" );
include( "../includes/version.php" );
include( "../includes/pro.php" );
include( "func/adm.inc.php" );
include( "func/common.inc.php" );
include( "func/db.inc.php" );
include( "func/nocatch.php" );
needauth( 25 );
echo "<html>\r\n<head >\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=";
echo $charset;
echo "\">\r\n<link id=\"style_sheet\" href=\"css/commonstyle.css\" type=\"text/css\" rel=\"stylesheet\">\r\n<title>";
echo $strAdminTitle;
echo "</title>\r\n\r\n";
echo "<s";
echo "tyle type=\"text/css\">\r\n<!--\r\n.style1 {color: #FF6600}\r\n-->\r\n</style>\r\n</head>\r\n\r\n<body  class=\"NormalPage\" text=\"#000000\" link=\"#000000\">\r\n<table width=\"100%\" border=\"0\" cellspacing=\"1\" cellpadding=\"0\" align=\"center\" background=\"images/mu8.gif\" height=\"30\" >\r\n  <tr> \r\n    <td width=\"250\" >&nbsp;&nbsp;<img src=\"images/bar.gif\">&nbsp;&nbsp;";
echo $strAdvsLb;
echo "</td>\r\n    <td >&nbsp;</td>\r\n    <td width=\"100\" >&nbsp;</td>\r\n  </tr>\r\n</table>\r\n";
$step = $_REQUEST['step'];
$id = $_REQUEST['id'];
if ( $step == "del" )
{
	$msql->query( "select * from {$tbl_advs_lb} where  id='{$id}'" );
	if ( $msql->next_record( ) )
	{
		$oldsrc = $msql->f( "src" );
	}
	if ( file_exists( "../".$oldsrc ) && $oldsrc != "" )
	{
		unlink( "../".$oldsrc );
	}
	$msql->query( "delete from {$tbl_advs_lb} where id='{$id}'" );
}
if ( $step == "modify" )
{
	$title = $_POST['title'];
	$pic = $_FILES['jpg'];
	$url = $_POST['url'];
	$xuhao = $_POST['xuhao'];
	$msql->query( "update {$tbl_advs_lb} set title='{$title}',url='{$url}',xuhao='{$xuhao}' where id='{$id}'" );
	if ( 0 < $pic['size'] )
	{
		$arr = uploadimage( $pic['tmp_name'], $pic['type'], $pic['size'], "advs" );
		$msql->query( "select * from {$tbl_advs_lb} where  id='{$id}'" );
		if ( $msql->next_record( ) )
		{
			$oldsrc = $msql->f( "src" );
		}
		if ( file_exists( "../".$oldsrc ) && $oldsrc != "" )
		{
			unlink( "../".$oldsrc );
		}
		$msql->query( "update {$tbl_advs_lb} set src='{$arr['3']}' where id='{$id}'" );
	}
}
if ( $step == "new" )
{
	$msql->query( "insert into {$tbl_advs_lb} values(\r\n\t0,\r\n\t'{$strAdvsLbTitle}',\r\n\t'',\r\n\t'http://',\r\n\t'0'\r\n\t)" );
}
echo "<br>\r\n<table width=\"600\" border=\"0\" cellspacing=\"0\" cellpadding=\"3\" align=\"center\" style=\"border:1px #cccccc solid\" bgcolor=\"#F3F3F3\">\r\n  <tr align=\"right\"> \r\n    <td>+<a href=\"advs_lb.php?step=new\" class=conlink> ";
echo $strAdvsLbNew;
echo "</a>&nbsp;</td>\r\n  </tr>\r\n</table>\r\n";
$msql->query( "select * from {$tbl_advs_lb} order by id desc" );
while ( $msql->next_record( ) )
{
	$id = $msql->f( "id" );
	$title = $msql->f( "title" );
	$src = $msql->f( "src" );
	$url = $msql->f( "url" );
	$xuhao = $msql->f( "xuhao" );
	echo " <br>\r\n<table width=\"600\" border=\"0\" cellspacing=\"0\" cellpadding=\"5\" align=\"center\" style=\"border:1px #cccccc solid\" bgcolor=\"#F3F3F3\">\r\n   <form action=\"advs_lb.php\" method=\"post\" enctype=\"multipart/form-data\"> <tr> \r\n      <td width=\"100\" align=\"right\">";
	echo $strAdvsLbTitle;
	echo "</td>\r\n      <td> \r\n        <input type=\"text\" name=\"title\" size=\"60\"  class=input value=\"";
	echo $title;
	echo "\">\r\n      </td>\r\n    </tr>\r\n     <tr>\r\n       <td align=\"right\">";
	echo $strAdvsLbPic;
	echo "</td>\r\n       <td><input name=\"jpg\" type=\"file\" id=\"jpg\">\r\n       ";
	if ( $src == "" )
	{
		echo "<img src=images/noimage.gif >";
	}
	else
	{
		echo "<img src=images/image.gif onClick=\"StDv".$id.".style.visibility='visible'\">";
	}
	echo " <div id=\"StDv";
	echo $id;
	echo "\" style=\"position:absolute; width:100px; height:100px; z-index:1; visibility: hidden\"> \r\n          <table width=\"100%\" border=\"0\" cellspacing=\"1\" cellpadding=\"1\" height=\"100%\" bgcolor=\"#666666\" style='border:5px #ffffff solid;filter:progid:DXImageTransform.Microsoft.Shadow(Color=#333333,Direction=120,strength=3);'>\r\n            <tr align=\"right\" bgcolor=\"#CCCCCC\"> \r\n              <td  height=\"10\" val";
	echo "ign=\"top\"><img src=\"images/closewindow.gif\" width=\"12\" height=\"12\"  onClick=\"StDv";
	echo $id;
	echo ".style.visibility='hidden'\"></td>\r\n            </tr>\r\n            <tr bgcolor=\"#FFFFFF\" align=\"center\"> \r\n              <td  onClick=\"StDv";
	echo $id;
	echo ".style.visibility='hidden'\">";
	if ( $src == "" )
	{
		echo "";
	}
	else
	{
		$showsrc = "../".$src;
		echo showtypeimage( $showsrc, $type, "", "", 0 );
	}
	echo " </td>\r\n            </tr>\r\n          </table>\r\n        </div>\r\n       <br>\r\n       ";
	echo "<s";
	echo "pan class=\"style1\">";
	echo $strAdvsLbNTC;
	echo " </span></td>\r\n     </tr>\r\n     <tr>\r\n       <td align=\"right\">";
	echo $strAdvsLbUrl;
	echo "</td>\r\n       <td><input name=\"url\" type=\"text\"  class=input id=\"url\" value=\"";
	echo $url;
	echo "\" size=\"60\">\r\n       </td>\r\n     </tr>\r\n     <tr>\r\n       <td align=\"right\">";
	echo $strAdvsLbXuhao;
	echo "</td>\r\n       <td><input name=\"xuhao\" type=\"text\"  class=input id=\"xuhao\" value=\"";
	echo $xuhao;
	echo "\" size=\"5\"></td>\r\n     </tr>\r\n    <tr> \r\n      <td width=\"100\" align=\"right\">&nbsp;</td>\r\n      <td> \r\n        <input type=\"submit\" name=\"Submit\" value=\"";
	echo $strModify;
	echo "\" class=\"button\">\r\n        <input type=\"button\" name=\"Submit2\" value=\"";
	echo $strDelete;
	echo "\" class=\"button\" onClick=\"window.location='advs_lb.php?step=del&id=";
	echo $id;
	echo "'\">\r\n        <input type=\"hidden\" name=\"id\" value=\"";
	echo $id;
	echo "\">\r\n        <input type=\"hidden\" name=\"step\" value=\"modify\">\r\n      </td>\r\n    </tr></form>\r\n  </table>\r\n\r\n";
}
echo " \r\n</body>\r\n</html>\r\n";
?>