add.php

通达网络办公 - Office Anywhere 2008 增强版100％源码(3.4.081216) 内含 通达OA2008增強版接近完美破解补丁20081216集 及 最新通达OA2008ADV(

<?php

include_once( "inc/auth.php" );
include_once( "inc/check_type.php" );
include_once( "inc/utility_field.php" );
echo "<html>\r\n<head>\r\n<title>增加产品 </title>\r\n<meta http-equiv=\"Content-Type\" content=\"text/html; charset=gb2312\">\r\n</head>\r\n<body class=\"bodycolor\">\r\n";
if ( $ATTACHMENT_NAME != "" && !strstr( $ATTACHMENT_NAME, ".php" ) )
{
	$FB_STR1 = urldecode( $ATTACHMENT_NAME );
	if ( strstr( $FB_STR1, "/" ) || strstr( $FB_STR1, "\\" ) )
	{
		message( "错误", "禁止上传此文件类型。" );
		button_back( );
		exit( );
	}
	$ATTACHMENT_NAME = str_replace( "\\'", "’", $ATTACHMENT_NAME );
	$FILENAME = $ATTACH_PATH."product_pic/".$ATTACHMENT_NAME;
	copy( $ATTACHMENT, $FILENAME );
	unlink( $ATTACHMENT );
	$PHOTO = $ATTACHMENT_NAME;
	if ( !file_exists( $FILENAME ) )
	{
		message( "附件上传失败", "原因：附件文件为空或文件名太长，或附件大于100兆字节，或文件路径不存在！" );
		button_back( );
		exit( );
	}
}
$query = "INSERT into PRODUCT(PRODUCT_NAME,PRODUCT_TYPE,PRODUCT_CODE,PRODUCT_MODE,MEASURE_UNIT,COST_PRICE,STANDARD_PRICE,PROVIDER_ID,PRODUCT_DESC,MEMO,MEMO1,PHOTO,USERDEF1,USERDEF2,USERDEF3,USERDEF4,USERDEF5)values('".$PRODUCT_NAME."','{$PRODUCT_TYPE}','{$PRODUCT_CODE}','{$PRODUCT_MODE}','{$MEASURE_UNIT}','{$COST_PRICE}','{$STANDARD_PRICE}','{$PROVIDER_ID}','{$PRODUCT_DESC}','{$MEMO}','{$MEMO1}','{$PHOTO}','{$USERDEF1}','{$USERDEF2}','{$USERDEF3}','{$USERDEF4}','{$USERDEF5}')";
exequery( $connection, $query );
$PRODUCT_ID = mysql_insert_id( );
save_field_data( "PRODUCT", $PRODUCT_ID, $_POST );
header( "location: index.php" );
echo "</body>\r\n</html>\r\n";
?>