Gb_Big5($_POST[sex]);
$_POST[name]=$code->Gb_Big5($_POST[name]);
$_POST[title]=$code->Gb_Big5($_POST[title]);
$_POST[memo]=$code->Gb_Big5($_POST[memo]);
$_POST[subject_memo]=$code->Gb_Big5($_POST[subject_memo]);
$_POST[poll]=$code->Gb_Big5($_POST[poll]);
}
if($_COOKIE['c_lang']=='GB'){
header("content-Type: text/html; charset=gb2312");
}else{
header("content-Type: text/html; charset=big5");
}
if($_COOKIE[bbs_template])
$template=$_COOKIE[bbs_template];
$template="template/$template";
include"../$template/log.php";
include("../$template/error.php");
function auto($var){
global $subject_memo,$template;
$str=$var;
include"../$template/msn.php";
if($pass!=$_COOKIE[bbs_pass])
$str=preg_replace("/\[s\](.+)\[\/s\]/","",$str);
include"../$template/auto.php";
if(preg_match("/(.+)\[subject_memo\]/",$str)){
$str=explode("[subject_memo]",$str);
$subject_memo=$str[0];
$str=$str[1];
}
$str= preg_replace("/(.+)\[subject_icon\]/","
",$str);
$str= preg_replace("/\[color=([a-z]+|#[0-9]{6})\](.+)\[\/color\]/iUs","\\2",$str);
$str= preg_replace("/\[size=([0-9]{1,2})\](.+)\[\/size\]/iUs","\\2",$str);
$str= preg_replace("/\[wmv\](.+)\[\/wmv\]/iUs","",$str);
$str= preg_replace("/\[move\](.+)\[\/move\]/iUs","",$str);
$str= preg_replace("/\[fly\](.+)\[\/fly\]/iUs","",$str);
// ¹Ï¤ù¦Û°Ê³sµ²È¯
$photo_png_pattern = "/(mms|http|HTTP|ftp|FTP|telnet|TELNET)\:\/\/(.[^ \n\<\"\']+\.png)/U";
$str = preg_replace($photo_png_pattern,"
",$str);
// ¹Ï¤ù¦Û°Ê³sµ²È¯
$photo_bmp_pattern = "/(mms|http|HTTP|ftp|FTP|telnet|TELNET)\:\/\/(.[^ \n\<\"\']+\.bmp)/U";
$str = preg_replace($photo_bmp_pattern,"",$str);
// ¹Ï¤ù¦Û°Ê³sµ²È¯
$photo_jpg_pattern = "/(mms|http|HTTP|ftp|FTP|telnet|TELNET)\:\/\/(.[^ \n\<\"\']+\.jpg)/U";
$str = preg_replace($photo_jpg_pattern,"",$str);
// ¹Ï¤ù¦Û°Ê³sµ²È¯
$photo_gif_pattern = "/(mms|http|HTTP|ftp|FTP|telnet|TELNET)\:\/\/(.[^ \n\<\"\']+\.gif)/U";
$str = preg_replace($photo_gif_pattern,"",$str);
// ºô§}¦Û°Ê³sµ²È¯
$homepage_pattern = "/ (mms|http|HTTP|ftp|FTP|telnet|TELNET)\:\/\/(.[^ \n\"\']+)/";
$str = preg_replace($homepage_pattern,"\\1://\\2",$str);
$homepage_pattern = "/^(mms|http|HTTP|ftp|FTP|telnet|TELNET)\:\/\/(.[^ \n><\"\']+)/";
$str = preg_replace($homepage_pattern,"\\1://\\2",$str);
// ¹q¶l¦Û°Ê³sµ²È¯
$email_pattern = "/ ([a-z0-9\_\-\.]+)@([a-z0-9\_\-\.]+)/i";
$str = preg_replace($email_pattern," \\1@\\2\n",$str);
return $str;
}
include"../$template/rank.php";
if(!$_GET[blog]){
if(!$_GET[rank]){
if(!$_GET[biz]){
if(!$_GET[bank]){
if(!$_GET[admin]){
if(!$_GET[fr]){
if(!$_GET[cpanel]){
if($_GET[delmail]==""){
if(!$_GET[mail]){
if(!$_GET[keep]){
if(!$_GET[search]){
if(!$_GET['list']){
if(!$_GET[look]){
if($_GET[edit]==go){
if(!$_COOKIE[bbs_id])
error("·|û¤è¥i¶i¤J,½Ð¥ýµn¤J!");
if($_GET[edit2]==go){
if(!$_COOKIE[bbs_id])
error("·|û¤è¥i¶i¤J,½Ð¥ýµn¤J!");
$s=execute_query("select id,name,pass,icon,email,home,memo,message,time,sign,level,art,point,job,dollars from ${admin_id}_php_visual_board_member where id='$_POST[id]' and pass='$_COOKIE[bbs_pass]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
$s2=execute_query("select id from ${admin_id}_php_visual_board_member where name='$_POST[name]' and pass!='$_COOKIE[bbs_pass]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
if($_FILES[image][tmp_name]){
$d=opendir("member_icon");
while($f=readdir($d))
if(@file_get_contents("./member_icon/$f")==file_get_contents($_FILES[image][tmp_name]) && $f.".gif"!=$_POST[id].".gif")
error("¤£¥i¥H«_¥R¨ä¥L·|û!");
closedir($d);
}
if($_FILES[photo][tmp_name]){
$d=opendir("member_photo");
while($f=readdir($d))
if(@file_get_contents("./member_photo/$f")==file_get_contents($_FILES[photo][tmp_name]) && $f.".gif"!=$_POST[id].".gif")
error("¤£¥i¥H«_¥R¨ä¥L·|û!");
closedir($d);
}
if(!mysql_num_rows($s2)){
if(mysql_num_rows($s)){
if($_POST[de])
@unlink("./member_icon/$_POST[id].gif");
if($_POST[de2])
@unlink("./member_icon/$_POST[id]");
if($_POST[dp])
@unlink("./member_photo/$_POST[id].gif");
if($_POST[dp2])
@unlink("./member_photo/$_POST[id]");
if($_POST[up])
@rename("./member_photo/$_POST[id].gif","./member_photo/$_POST[id]");
if($_POST[xp])
@rename("./member_photo/$_POST[id]","./member_photo/$_POST[id].gif");
if($_POST[se])
@rename("./member_icon/$_POST[id].gif","./member_icon/$_POST[id]");
if($_POST[xe])
@rename("./member_icon/$_POST[id]","./member_icon/$_POST[id].gif");
if($_FILES[photo])
@move_uploaded_file($_FILES[photo][tmp_name],"./member_photo/$_POST[id].gif");
if($_FILES[image])
@move_uploaded_file($_FILES[image][tmp_name],"./member_icon/$_POST[id].gif");
$_POST[memo].="[sex]$_POST[sex][sex][day]$_POST[day][day][month]$_POST[month][month][from]$_POST[from][from][head]$_POST[head][head]";
$_POST[friend]=str_replace("\n","<>",$_POST[friend]);
execute_query("update ${admin_id}_php_visual_board_member set name='$_POST[name]',pass='$_POST[pass]',icon=$_POST[icon],email='$_POST[email]',home='$_POST[home]',memo='$_POST[memo]',sign='$_POST[sign]',friend='$_POST[friend]' where id='$_POST[id]' and pass='$_COOKIE[bbs_pass]'") or die("§ó·s¸ê®Æ®w¥¢±Ñ!");
include"member_record.php";
$member_record=str_replace("$_POST[oname]<>$_POST[omonth]<>$_POST[oday]","$_POST[name]<>$_POST[month]<>$_POST[day]",$member_record);
fputs(fopen("member_record.php",w),"");
list($id,$name,$pass,$icon,$email,$home,$memo,$message,$time,$sign,$level,$art,$point,$job,$dollars)=mysql_fetch_array($s);
setcookie("bbs_template","$_POST[bbs_template]",time()+2592000,"/bbs/$admin_id");
setcookie("bbs_id",$id,time()+2592000,"/bbs/$admin_id");
setcookie("bbs_name",$_POST[name],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_pass",$_POST[pass],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_email",$_POST[email],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_home",$_POST[home],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_icon",$_POST[icon],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_level",$level,time()+2592000,"/bbs/$admin_id");
setcookie("bbs_art",$art,time()+2592000,"/bbs/$admin_id");
setcookie("bbs_point",$point,time()+2592000,"/bbs/$admin_id");
setcookie("bbs_jobx",$job,time()+2592000,"/bbs/$admin_id");
setcookie("bbs_dollars",$dollars,time()+2592000,"/bbs/$admin_id");
@include"sub/dir.php";
foreach(explode("<>",$admin2) as $array){
list($d,$admin2)=explode("%%",$array);
if($_POST[name]==$admin2){
$admin2_check=1;
break;
}
}
if($_POST[name]==$admin_name)
$job="½×¾ÂºÞ²zû";
elseif($_POST[name]==$admin1)
$job="°ÆºÞ²zû";
elseif($admin2_check)
$job="¤À°Ïª©¥D";
if(!$job)
$job="´¶³q·|û";
elseif($job==1)
$job="¶W¯Åª©¥D";
elseif($job==2)
$job="ª©¥D";
setcookie("bbs_job",$job,time()+2592000,"/bbs/$admin_id");
include"setup.php";
if($_POST[name]==$admin_name)
fputs(fopen("setup.php",w),"");
header("location:member.php?edit=go");
}else{
error("±K½X¿ù»~!");
}
}else{
error("¦¹¼ÊºÙ¤w³Q¨Ï¥Î!");
}
}
$_Cookie[bbs_icon]=$_COOKIE[bbs_icon];
$a=($_Cookie[bbs_icon]==1)?"selected":"noselected";
$b=($_Cookie[bbs_icon]==2)?"selected":"noselected";
$c=($_Cookie[bbs_icon]==3)?"selected":"noselected";
$d=($_Cookie[bbs_icon]==4)?"selected":"noselected";
$e=($_Cookie[bbs_icon]==5)?"selected":"noselected";
$f=($_Cookie[bbs_icon]==6)?"selected":"noselected";
$g=($_Cookie[bbs_icon]==7)?"selected":"noselected";
$h=($_Cookie[bbs_icon]==8)?"selected":"noselected";
$i=($_Cookie[bbs_icon]==9)?"selected":"noselected";
$s=execute_query("select icon,memo,sign,friend from ${admin_id}_php_visual_board_member where id='$_COOKIE[bbs_id]' and pass='$_COOKIE[bbs_pass]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
list($iconz,$memo,$sign,$friend)=mysql_fetch_array($s);
$friend=str_replace("<>","\n",$friend);
include"../$template/top.php";
if(file_exists("./member_icon/$_COOKIE[bbs_id].gif")){
$image=" 
";
$w=" ¼È®É¤£¨Ï¥Î";$x=" §R°£·|û¹ÏÀÉ";
}
if(file_exists("./member_icon/$_COOKIE[bbs_id]")){
$image=" 
";
$w=" ±Ò¥Î·|û¹ÏÀÉ¥\¯à";$x=" §R°£·|û¹ÏÀÉ";
}
if(file_exists("./member_photo/$_COOKIE[bbs_id].gif")){
$photo=" 
";
$w2=" ¼È®É¤£¨Ï¥Î";$x2=" §R°£·|ûÀY¹³";
}
if(file_exists("./member_photo/$_COOKIE[bbs_id]")){
$photo=" 
";
$w2=" ±Ò¥Î·|ûÀY¹³¥\¯à";$x2=" §R°£·|ûÀY¹³";
}
$a=($iconz==1)?"selected":"noselected";
$b=($iconz==2)?"selected":"noselected";
$c=($iconz==3)?"selected":"noselected";
$d=($iconz==4)?"selected":"noselected";
$e=($iconz==5)?"selected":"noselected";
$f=($iconz==6)?"selected":"noselected";
$g=($iconz==7)?"selected":"noselected";
$h=($iconz==8)?"selected":"noselected";
$i=($iconz==9)?"selected":"noselected";
include"../$template/member_edit.php";
}
if($_GET[logout]==go){
setcookie("bbs_template","",time()+2592000,"/bbs/$admin_id");
setcookie("bbs_id",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_name",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_pass",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_email",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_home",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_icon",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_level",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_art",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_point",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_job",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_jobx",'',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_dollars","",time()+2592000,"/bbs/$admin_id");
$dir=opendir(bbs_count);
while($file=readdir($dir)){
if(!preg_match("/^\./",$file)){
$data=file_get_contents("bbs_count/$file");
fputs(fopen("bbs_count/$file",w),preg_replace("/<*>*$_COOKIE[bbs_name]<*>*/","",$data));
}
}
closedir($dir);
include"../$template/top.php";
include"../$template/logout_ok.php";
}
if($_GET[login]==go){
if($_GET[login2]==go){
$s=execute_query("select name,pass,icon,email,home,level,art,point,job,dollars from ${admin_id}_php_visual_board_member where id='$_POST[id]' and pass='$_POST[pass]'");
if(@mysql_num_rows($s)){
list($name,$pass,$icon,$email,$home,$level,$art,$point,$job,$dollars)=mysql_fetch_array($s);
if(!$_POST["for"])
$_POST["for"]=0;
else
$_POST["for"]=$_POST["for"]+time();
setcookie("bbs_template","$_POST[bbs_template]",$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_id",$_POST[id],$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_name",$name,$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_pass",$pass,$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_email",$email,$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_home",$home,$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_icon",$icon,$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_level",$level,$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_art",$art,$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_point",$point,$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_jobx",$job,$_POST["for"],"/bbs/$admin_id");
setcookie("bbs_dollars",$dollars,$_POST["for"],"/bbs/$admin_id");
@include"sub/dir.php";
foreach(explode("<>",$admin2) as $array){
list($d,$admin2)=explode("%%",$array);
if($_POST[name]==$admin2){
$admin2_check=1;
break;
}
}
if($name==$admin_name)
$job="½×¾ÂºÞ²zû";
elseif($_POST[name]==$admin1)
$job="°ÆºÞ²zû";
elseif($admin2_check)
$job="¤À°Ïª©¥D";
if(!$job)
$job="´¶³q·|û";
elseif($job==1)
$job="¶W¯Åª©¥D";
elseif($job==2)
$job="ª©¥D";
setcookie("bbs_job",$job,$_POST["for"],"/bbs/$admin_id");
$dir=opendir(bbs_count);
while($file=readdir($dir)){
if(!preg_match("/^\./",$file)){
$data=file_get_contents("bbs_count/$file");
fputs(fopen("bbs_count/$file",w),preg_replace("/<*>*$_COOKIE[bbs_visitor]<*>*/","",$data));
}
}
closedir($dir);
include"../$template/top.php";
include"../$template/login_ok.php";
}else{
error("±K½X¿ù»~!");
}
}else{
include"../$template/top.php";
include"../$template/member_login.php";
}
}
if($_POST[pass]==$admin_pass)
$level=1;
else
$level=9;
if($_GET[go]==reg){
if($_GET[go2]==reg){
if(!$reg)error("©êºp,½×¾Â¤w°±¤î·|ûª`¥U!");
if(!$_POST[id] or !$_POST[name] or !$_POST[pass] or !$_POST[email] or !$_POST[from])
error("½Ð¿é¤J§¹¾ã¸ê®Æ!");
$s=execute_query("select id from ${admin_id}_php_visual_board_member where id='$_POST[id]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
$e=execute_query("select id from ${admin_id}_php_visual_board_member where email='$_POST[email]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
$h=execute_query("select id from ${admin_id}_php_visual_board_member where home='$_POST[home]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
$s2=execute_query("select id from ${admin_id}_php_visual_board_member where name='$_POST[name]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
if(mysql_num_rows($e))error("¹q¶l¤£¥i¥H«½Æ!");
if(mysql_num_rows($h))error("º¶ºô§}¤£¥i¥H«½Æ!");
if(mysql_num_rows($s))error("±b¸¹¤w³Qª`¥U¹L!");
if(mysql_num_rows($s2))error("¼ÊºÙ¤w³Qª`¥U¹L!");
if($_FILES[image][tmp_name]){
$d=opendir("member_icon");
while($f=readdir($d))
if(@file_get_contents("./member_icon/$f")==file_get_contents($_FILES[image][tmp_name]) && $f.".gif"!=$_POST[id].".gif")
error("¤£¥i¥H«_¥R¨ä¥L·|û!");
closedir($d);
}
if($_FILES[photo][tmp_name]){
$d=opendir("member_photo");
while($f=readdir($d))
if(@file_get_contents("./member_photo/$f")==file_get_contents($_FILES[photo][tmp_name]) && $f.".gif"!=$_POST[id].".gif")
error("¤£¥i¥H«_¥R¨ä¥L·|û!");
closedir($d);
}
include"member_record.php";
if($_FILES[photo])
move_uploaded_file($_FILES[photo][tmp_name],"./member_photo/$_POST[id].gif");
if($_FILES[image])
move_uploaded_file($_FILES[image][tmp_name],"./member_icon/$_POST[id].gif");
fputs(fopen("member_record.php",w),"$_POST[month]<>$_POST[day]';?>");
$time=time();
$_POST[memo].="[sex]$_POST[sex][sex][day]$_POST[day][day][month]$_POST[month][month][from]$_POST[from][from][head]$_POST[head][head]";
$values="
insert into ${admin_id}_php_visual_board_member values('$_POST[id]','$_POST[name]','$_POST[pass]',$_POST[icon],'$_POST[email]','$_POST[home]','$_POST[memo]','',$time,'$_POST[sign]',$level,0,$points,0,$dollars,'')
";
execute_query("$values") or die("µLªk¼g¤J¸ê®Æ®w!");
$count2++;
fputs(fopen('count.php',w),"");
setcookie("bbs_id",$_POST[id],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_name",$_POST[name],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_pass",$_POST[pass],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_email",$_POST[email],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_home",$_POST[home],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_icon",$_POST[icon],time()+2592000,"/bbs/$admin_id");
setcookie("bbs_level",$level,time()+2592000,"/bbs/$admin_id");
setcookie("bbs_point",'$points',time()+2592000,"/bbs/$admin_id");
setcookie("bbs_art",0,time()+2592000,"/bbs/$admin_id");
setcookie("bbs_jobx",$job,time()+2592000,"/bbs/$admin_id");
setcookie("bbs_dollars",$dollars,time()+2592000,"/bbs/$admin_id");
@include"sub/dir.php";
foreach(explode("<>",$admin2) as $array){
list($d,$admin2)=explode("%%",$array);
if($_POST[name]==$admin2){
$admin2_check=1;
break;
}
}
if($_POST[name]==$admin_name)
$job="½×¾ÂºÞ²zû";
elseif($_POST[name]==$admin1)
$job="°ÆºÞ²zû";
elseif($admin2_check)
$job="¤À°Ïª©¥D";
if(!$job)
$job="´¶³q·|û";
elseif($job==1)
$job="¶W¯Åª©¥D";
elseif($job==2)
$job="ª©¥D";
setcookie("bbs_job",$job,time()+2592000,"/bbs/$admin_id");
$dir=opendir(bbs_count);
while($file=readdir($dir)){
if(!preg_match("/^\./",$file)){
$data=file_get_contents("bbs_count/$file");
fputs(fopen("bbs_count/$file",w),preg_replace("/<*>*$_COOKIE[bbs_visitor]<*>*/","",$data));
}
}
closedir($dir);
header("location:index.php");
}
include"../$template/top.php";
include"../$template/member_register.php";
}
}else{
$s=execute_query("select id,name,icon,email,home,memo,time,sign,level,art,point,job,dollars from ${admin_id}_php_visual_board_member where name='$_GET[look]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
if(mysql_num_rows($s)){
list($id,$name,$icon,$email,$home,$memo,$time,$sign,$level,$art,$point,$job,$dollars)=mysql_fetch_array($s);
include"../$template/top.php";
$sex=preg_replace("/.*\[sex\](.*)\[sex\].*/s","\\1",$memo);
$from=preg_replace("/.+\[from\](.+)\[from\].+/s","\\1",$memo);
$day=preg_replace("/.+\[day\](.+)\[day\].+/s","\\1",$memo);
$month=preg_replace("/.+\[month\](.+)\[month\].+/s","\\1",$memo);
if(!$fx)
$headz=preg_replace("/.+\[head\](.*)\[head\]/s","\\1",$memo);
$memo=preg_replace("/\[.+\].+\[.+\]/","",$memo);
include"../$template/member_view.php";
}else{
error("¬d¸ß¿ù»~!");
}
}
}else{
if(!$_COOKIE[bbs_id])
error("·|û¤è¥i¶i¤J,½Ð¥ýµn¤J!");
include"../$template/top.php";
if($_GET[look])
include"../$template/member_view.php";
include"../$template/member_list.php";
}
}else{
if(!$_COOKIE[bbs_id])
error("·|û¤è¥i¶i¤J,½Ð¥ýµn¤J!");
include"../$template/top.php";
$sql=execute_query("select id,title from ${admin_id}_php_visual_board_board order by ord DESC");
while(list($id,$title)=mysql_fetch_array($sql)){
if($_GET[title]==$title)
$s=selected;
else
unset($s);
$sx.="";
}
include"../$template/search.php";
}
}else{
$php_visual_board_bbs="${admin_id}_php_visual_board_bbs_$_GET[id]";
list($keep)=@mysql_fetch_array(execute_query("select keep from $php_visual_board_bbs where id='$_GET[keep]'"));
if(!$keep)
$keep="$_COOKIE[bbs_name]";
else
$keep.="<>$_COOKIE[bbs_name]";
$values="
update $php_visual_board_bbs set keep='$keep' where id='$_GET[keep]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
header("location:index.php");
}
}else{
if(!$_GET[post]){
include"../$template/top.php";
include"../$template/memo.php";
include"../$template/send.php";
}else{
if(!is_dir("new"))mkdir("new",0777);
if(!is_file("new/".date(d)))fopen("new/".date(d),w);
$d=opendir("new");
while($file=readdir($d)){
if(!preg_match("/^\./",$file)){
if(date(d)!=$file)unlink($file);
}
}
closedir($d);
if(!$_POST[name] or !$_POST[memo] or !$_POST[title])
error("½Ð¿é¤J§¹¾ã¸ê®Æ!");
$s=execute_query("select id from ${admin_id}_php_visual_board_member where name='$_POST[name]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
list($id)=@mysql_fetch_array($s);
if(!$id && !strstr($_POST[name]," "))
error("·|û¤£¦s¦b!");
$time=gettimeofday();
if($_COOKIE[posted]+30>=$time[sec] && $_COOKIE[bbs_level]!=1){
error("½Ðµ¥«Ý30¬í¦Aµo©«!");
}
if($_COOKIE[posted_subject]==$_POST[title] && $_COOKIE[bbs_level]!=1){
error("¦¹¥DÃD¤w¸gµo°e¹L¤F!");
}
if($_COOKIE[posted_memo]==$_POST[memo] && $_COOKIE[bbs_level]!=1){
error("¦¹¤å³¹¤w¸gµo°e¹L¤F!");
}
setcookie("posted",$time[sec],0,"/bbs/$admin_id");
setcookie("posted_subject",$_POST[title],0,"/bbs/$admin_id");
setcookie("posted_memo",$_POST[memo],0,"/bbs/$admin_id");
if($_POST[subject_icon])
$_POST[title]="$_POST[subject_icon][subject_icon]$_POST[title]";
if($_POST[subject_memo])
$_POST[title]="$_POST[subject_memo][subject_memo]$_POST[title]";
if(!preg_match("/^RE : /",$_POST[title])){
fputs(fopen("new/".date(d),a),"$_POST[title]<>$_POST[name]\n");
}else{
$new=file_get_contents("new/".date(d));
$_POST[title]=str_replace("RE : ","",$_POST[title]);
$new=str_replace("$_POST[title]<>$_COOKIE[bbs_name]\n","",$new);
fputs(fopen("new/".date(d),w),$new);
}
if(!$_POST[html1])$_POST[title]=htmlspecialchars($_POST[title]);
if(!$_POST[html2])$_POST[memo]=htmlspecialchars($_POST[memo]);
if(strstr($_POST[name]," ")){
$array=explode(" ",$_POST[name]);
list($var)=$array;
$_POST[name]="where name='$var'";
foreach($array as $array){
list($var)=$array;
$_POST[name].="or name!='$var'";
}
}else{
$_POST[name]="where name='$_POST[name]'";
}
if($_POST[notice]){
$s=execute_query("select message from ${admin_id}_php_visual_board_member") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
while(list($message)=@mysql_fetch_array($s)){
if(count(explode("%",$message))==$ltotal)
error("¦¬¥ó½c¤w¸üº¡!");
if($message)$message="$message%";
$time=time();
$values="
update ${admin_id}_php_visual_board_member set message='$message$_POST[title]<>$_COOKIE[bbs_name]<>$_POST[memo]<>$time' where name='$_POST[name]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
}else{
$s=execute_query("select message from ${admin_id}_php_visual_board_member $_POST[name]") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
list($message)=@mysql_fetch_array($s);
if(count(explode("%",$message))==$ltotal)
error("¦¬¥ó½c¤w¸üº¡!");
if($message)$message="$message%";
$time=time();
if($_FILES[image])
@move_uploaded_file($_FILES[image][tmp_name],"./member_upload/$time.gif");
if($_FILES[file])
@move_uploaded_file($_FILES[file][tmp_name],"./member_upload/$time.zip");
$values="
update ${admin_id}_php_visual_board_member set message='$message$_POST[title]<>$_COOKIE[bbs_name]<>$_POST[memo]<>$time' $_POST[name]
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
header("location:?mail=go");
}
}
}else{
$s=execute_query("select message from ${admin_id}_php_visual_board_member where name='$_COOKIE[bbs_name]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
list($message)=@mysql_fetch_array($s);
if($_GET[delmail]!='go'){
$new=file_get_contents("new/".date(d));
$new=str_replace("$_GET[dz]<>$_COOKIE[bbs_name]\n","",$new);
fputs(fopen("new/".date(d),w),$new);
$n=0;
foreach(explode("%",$message) as $m){
$z=explode("<>",$m);
if($n!=$_GET[delmail]){
$ms[]=$m;
}else{
unlink("./member_upload/$z[3].gif");
unlink("./member_upload/$z[3].zip");
}
$n++;
}
$message=join("%",$ms);
$values="
update ${admin_id}_php_visual_board_member set message='$message' where name='$_COOKIE[bbs_name]'
";
}else{
$n=0;
foreach(explode("%",$message) as $m){
$z=explode("<>",$m);
if(!$_POST["no_$n"]){
$ms[]=$m;
}else{
$new=file_get_contents("new/".date(d));
$new=str_replace($_POST["t_$n"]."<>$_COOKIE[bbs_name]\n","",$new);
fputs(fopen("new/".date(d),w),$new);
unlink("./member_upload/$z[3].gif");
unlink("./member_upload/$z[3].zip");
}
$n++;
}
$message=join("%",$ms);
$values="
update ${admin_id}_php_visual_board_member set message='$message' where name='$_COOKIE[bbs_name]'
";
}
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
header("location:?mail=go");
}
}else{
if($_POST[panel]==1){
$n=0;
$s=execute_query("select id,name from ${admin_id}_php_visual_board_member order by $_POST[modex] $_POST[modex2]") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
while(list($id,$name)=@mysql_fetch_array($s)){
if($_POST["panel_$n"]==$name){
@unlink("./member_icon/$id.gif");
@unlink("./member_photo/$id.gif");
$values="
delete from ${admin_id}_php_visual_board_member where name='$name'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
$n++;
}
header("location:?list=go&config=go&total=$count2");
}
if($_POST[panel]==2){
$n=0;
$s=execute_query("select name from ${admin_id}_php_visual_board_member order by $_POST[modex] $_POST[modex2]") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
while(list($name)=@mysql_fetch_array($s)){
if($_POST["panel_$n"]==$name){
$values="
update ${admin_id}_php_visual_board_member set level=$_POST[level] where name='$name'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
$n++;
}
header("location:?list=go&config=go&total=$count2");
}
if($_POST[panel]==3){
$n=0;
$s=execute_query("select name from ${admin_id}_php_visual_board_member order by $_POST[modex] $_POST[modex2]") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
while(list($name)=@mysql_fetch_array($s)){
if($_POST["panel_$n"]==$name){
$values="
update ${admin_id}_php_visual_board_member set point=point+$_POST[point] where name='$name'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
$n++;
}
header("location:?list=go&config=go&total=$count2");
}
if($_POST[panel]==4){
$n=0;
$s=execute_query("select name from ${admin_id}_php_visual_board_member order by $_POST[modex] $_POST[modex2]") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
while(list($name)=@mysql_fetch_array($s)){
if($_POST["panel_$n"]==$name){
$values="
update ${admin_id}_php_visual_board_member set point=point-$_POST[point] where name='$name'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
$n++;
}
header("location:?list=go&config=go&total=$count2");
}
if($_POST[panel]==5){
$n=0;
$s=execute_query("select name from ${admin_id}_php_visual_board_member order by $_POST[modex] $_POST[modex2]") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
while(list($name)=@mysql_fetch_array($s)){
if($_POST["panel_$n"]==$name){
$values="
update ${admin_id}_php_visual_board_member set dollars=dollars+$_POST[dollars] where name='$name'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
$n++;
}
header("location:?list=go&config=go&total=$count2");
}
}
}else{
$s=execute_query("select friend from ${admin_id}_php_visual_board_member where name='$_COOKIE[bbs_name]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
list($friend)=@mysql_fetch_array($s);
if($friend)$friend="$friend<>";
$values="
update ${admin_id}_php_visual_board_member set friend='$friend$_GET[fr]' where name='$_COOKIE[bbs_name]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
include"../$template/log.php";
include"../$template/top.php";
echo<<
html;
include"../$template/bottom.php";
exit;
}
}else{
include"../$template/top.php";
echo ">> ½×¾ÂºÞ²zû
";
list($id,$name,$icon,$email,$home,$memo,$time,$sign,$level,$art,$point,$job,$dollars)=mysql_fetch_array(execute_query("select id,name,icon,email,home,memo,time,sign,level,art,point,job,dollars from ${admin_id}_php_visual_board_member where name='$admin_name'"));
$sex=preg_replace("/.*\[sex\](.+)\[sex\].*/s","\\1",$memo);
$from=preg_replace("/.+\[from\](.+)\[from\].+/s","\\1",$memo);
$day=preg_replace("/.+\[day\](.+)\[day\].+/s","\\1",$memo);
$month=preg_replace("/.+\[month\](.+)\[month\].+/s","\\1",$memo);
if(!$fx)
$headz=preg_replace("/.+\[head\](.*)\[head\]/s","\\1",$memo);
$memo=preg_replace("/\[.+\].+\[.+\]/","",$memo);
include"../$template/member_view.php";
if($admin1){
echo ">> °ÆºÞ²zû
";
$templatez=$template;
@include"setup.php";
$template="$templatez";
list($id,$name,$icon,$email,$home,$memo,$time,$sign,$level,$art,$point,$job,$dollars)=mysql_fetch_array(execute_query("select id,name,icon,email,home,memo,time,sign,level,art,point,job,dollars from ${admin_id}_php_visual_board_member where name='$admin1'"));
$sex=preg_replace("/.*\[sex\](.+)\[sex\].*/s","\\1",$memo);
$from=preg_replace("/.+\[from\](.+)\[from\].+/s","\\1",$memo);
$day=preg_replace("/.+\[day\](.+)\[day\].+/s","\\1",$memo);
$month=preg_replace("/.+\[month\](.+)\[month\].+/s","\\1",$memo);
if(!$fx)
$headz=preg_replace("/.+\[head\](.*)\[head\]/s","\\1",$memo);
$memo=preg_replace("/\[.+\].+\[.+\]/","",$memo);
include"../$template/member_view.php";
}
if($super_manager_name){
echo ">> ¶W¯Åª©¥D
";
$templatez=$template;
@include"setup.php";
$template="$templatez";
list($id,$name,$icon,$email,$home,$memo,$time,$sign,$level,$art,$point,$job,$dollars)=mysql_fetch_array(execute_query("select id,name,icon,email,home,memo,time,sign,level,art,point,job,dollars from ${admin_id}_php_visual_board_member where name='$super_manager_name'"));
$sex=preg_replace("/.*\[sex\](.+)\[sex\].*/s","\\1",$memo);
$from=preg_replace("/.+\[from\](.+)\[from\].+/s","\\1",$memo);
$day=preg_replace("/.+\[day\](.+)\[day\].+/s","\\1",$memo);
$month=preg_replace("/.+\[month\](.+)\[month\].+/s","\\1",$memo);
if(!$fx)
$headz=preg_replace("/.+\[head\](.*)\[head\]/s","\\1",$memo);
$memo=preg_replace("/\[.+\].+\[.+\]/","",$memo);
include"../$template/member_view.php";
}
@include"sub/dir.php";
foreach(explode("<>",$admin2) as $array){
list($d,$admin2)=explode("%%",$array);
if($admin2)
echo ">> ¤À°Ïª©¥D
";
$templatez=$template;
@include"setup.php";
$template="$templatez";
list($id,$name,,$icon,$email,$home,$memo,,$time,$sign,$level,$art,$point,$job,$dollars)=mysql_fetch_array(execute_query("select id,name,icon,email,home,memo,time,sign,level,art,point,job,dollars from ${admin_id}_php_visual_board_member where name='$admin2'"));
$sex=preg_replace("/.*\[sex\](.+)\[sex\].*/s","\\1",$memo);
$from=preg_replace("/.+\[from\](.+)\[from\].+/s","\\1",$memo);
$day=preg_replace("/.+\[day\](.+)\[day\].+/s","\\1",$memo);
$month=preg_replace("/.+\[month\](.+)\[month\].+/s","\\1",$memo);
if(!$fx)
$headz=preg_replace("/.+\[head\](.*)\[head\]/s","\\1",$memo);
$memo=preg_replace("/\[.+\].+\[.+\]/","",$memo);
if($name)
include"../$template/member_view.php";
}
foreach(explode("<>",$manager) as $var){
list($bbs_id)=explode("%",$var);
foreach(explode("%",$var) as $var){
foreach(explode("\n",$var) as $var){
$templatez=$template;
@include"setup.php";
$template="$templatez";
list($id,$name,$icon,$email,$home,$memo,$time,$sign,$level,$art,$point,$job,$dollars)=mysql_fetch_array(execute_query("select id,name,icon,email,home,memo,time,sign,level,art,point,job,dollars from ${admin_id}_php_visual_board_member where name='$var'"));
$sex=preg_replace("/.*\[sex\](.+)\[sex\].*/s","\\1",$memo);
$from=preg_replace("/.+\[from\](.+)\[from\].+/s","\\1",$memo);
$day=preg_replace("/.+\[day\](.+)\[day\].+/s","\\1",$memo);
$month=preg_replace("/.+\[month\](.+)\[month\].+/s","\\1",$memo);
if(!$fx)
$headz=preg_replace("/.+\[head\](.*)\[head\]/s","\\1",$memo);
$memo=preg_replace("/\[.+\].+\[.+\]/","",$memo);
if($name){
echo ">> ª©¥D ID $bbs_id
";
include"../$template/member_view.php";
}
}
}
}
}
}else{
include"../$template/top.php";
$s=execute_query("select name,icon,level,point,dollars,friend from ${admin_id}_php_visual_board_member where name='$_COOKIE[bbs_name]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
list($name,$icon,$level,$point,$dollars,$friend)=mysql_fetch_array($s);
$totalm=0;
if($friend){
$friendx=explode("<>",$friend);
$totalm=count($friendx);
unset($friend);
foreach($friendx as $friendx){
$dir=opendir('bbs_count');
while($filez=readdir($dir)){
if(!preg_match("/^\./",$filez))
if(preg_match("/$friendx/",file_get_contents("bbs_count/$filez"))){
$state="¦b½u";
break;
}
}
if(!$state)$state="Â÷½u";
$select.="";
$friend.=" $friendx
ª¬ºA $state
";
unset($state);
}
}
if($bank)$num=count(explode("<>",$bank));
else$num=0;
foreach(explode("<>",$bank) as $bank){
list($i,$d)=explode("%%",$bank);
$money+=$d;
if($i==$_COOKIE[bbs_name])$save=$d;
}
if(!$save)$save=0;
$total=$save+$dollars;
if($money!=0)
$lp=($save/$money)*100;
else
$lp=0;
include"../$template/bank.php";
}
}else{
include"setup.php";
if($_POST[save]){
$bankx=explode("<>",$bank);
foreach($bankx as $bankx){
list($i,$d)=explode("%%",$bankx);
if($i==$_COOKIE[bbs_name]){
$bank=str_replace("$i%%$d","$i%%".($d+$_POST[save]),$bank);
$zx=1;
break;
}
}
if(!$zx){
if($bank)$bank.="$bank<>";
$bank.="$bank$_COOKIE[bbs_name]%%$_POST[save]";
}
$s=execute_query("select dollars from ${admin_id}_php_visual_board_member where name='$_COOKIE[bbs_name]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
list($dollars)=@mysql_fetch_array($s);
if($dollars<$_POST[save])error("¨S¦³¨¬°÷²{ª÷!");
$values="
update ${admin_id}_php_visual_board_member set dollars=dollars-$_POST[save] where name='$_COOKIE[bbs_name]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
if($_POST[take]!=""){
$bankx=explode("<>",$bank);
foreach($bankx as $bankx){
list($i,$d)=explode("%%",$bankx);
if($i==$_COOKIE[bbs_name]){
if($d<$_POST[take] && $d)error("¨S¦³¨¬°÷¦s´Ú!");
if($d-$_POST[take])
$bank=str_replace("$i%%$d","$i%%".$d-=$_POST[take],$bank);
else
$bank=str_replace("$i%%$d","",$bank);
}
}
$values="
update ${admin_id}_php_visual_board_member set dollars=dollars+$_POST[take] where name='$_COOKIE[bbs_name]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
if($_POST[dollars]){
if($_POST[dollars]>$dollarx)error("ª÷ÃB¶W¥X¨î!");
$s=execute_query("select dollars from ${admin_id}_php_visual_board_member where name='$_COOKIE[bbs_name]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
list($dollars)=@mysql_fetch_array($s);
if($dollars<$_POST[dollars]+$_POST[dollars]*$p1/100)error("¨S¦³¨¬°÷²{ª÷!");
$values="
update ${admin_id}_php_visual_board_member set dollars=dollars+$_POST[dollars] where name='$_POST[member]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
$values="
update ${admin_id}_php_visual_board_member set dollars=dollars-$_POST[dollars]-$_POST[dollars]*$p1/100 where name='$_COOKIE[bbs_name]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
if($_POST[in]){
$s=execute_query("select dollars from ${admin_id}_php_visual_board_member where name='$_COOKIE[bbs_name]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
list($dollars)=@mysql_fetch_array($s);
if($dollars<$_POST[in]*$in+$_POST[in]*$in*$p2/100)error("¨S¦³¨¬°÷²{ª÷!");
$values="
update ${admin_id}_php_visual_board_member set dollars=dollars-$_POST[in]*$in-$_POST[in]*$in*$p2/100 where name='$_COOKIE[bbs_name]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
$values="
update ${admin_id}_php_visual_board_member set point=point+$_POST[in] where name='$_COOKIE[bbs_name]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
if($_POST[out]){
$s=execute_query("select point from ${admin_id}_php_visual_board_member where name='$_COOKIE[bbs_name]'") or die("¬d¸ß¸ê®Æ®w¥¢±Ñ!");
list($point)=@mysql_fetch_array($s);
if($point<$_POST[out])error("¨S¦³¨¬°÷¿n¤À!");
$values="
update ${admin_id}_php_visual_board_member set dollars=dollars+$_POST[out]*$out-$_POST[out]*$out*$p2/100 where name='$_COOKIE[bbs_name]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
$values="
update ${admin_id}_php_visual_board_member set point=point-$_POST[out] where name='$_COOKIE[bbs_name]'
";
execute_query("$values") or die("µLªk§ó·s¸ê®Æ®w!");
}
fputs(fopen("setup.php",w),"");
header("location:member.php?bank=go");
}
}else{
include"../$template/top.php";
include"../$template/member_rank.php";
include"../$template/bootom.php";
}
}else{
include"../$template/top.php";
if(!strstr($_COOKIE[bbs_home],"index.php?blog=")){
$host=$_COOKIE[bbs_name];
$c_mode='bbs1';
$c_ban='9';
$c_read='10';
$c_post='9';
$c_post2='9';
$c_edit='9';
$c_editc='9';
$c_vote='9';
$c_lock='9';
$c_link='9';
$c_link_num='2';
$c_com1='9';
$c_com2='9';
$c_com3='9';
$c_reply='9';
$c_poll='9';
$c_post_poll='9';
$c_view='9';
$c_down='9';
$c_html='9';
$c_msn='9';
$c_bbcode='9';
$d_post='9';
$d_post_num='2';
$d_com='9';
$d_com_num='2';
$d_reply='9';
$d_reply_num='2';
$d_poll='9';
$d_poll_num='2';
}else{
$blog=str_replace("index.php?blog=","",$_COOKIE[bbs_home]);
list($title,$memo,$host,$secret,$dir)=mysql_fetch_array(execute_query("select title,memo,host,secret,dir from ${admin_id}_php_visual_board_board where id='$blog'"));
include"sub2/$blog.php";
if($visible)$v="checked";
if($secret)$s="checked";
$hidden="";
if($_COOKIE[bbs_name]==$admin_name)
$notice='
¤½§iªO :
';
if(!is_file("sub/dir.php"))fopen("sub/dir.php",w);
$c="
©ÒÄݱڸs
";
include"../$template/reg_blog.php";
include"../$template/bootom.php";
}
$exe_time2=microtime();
include"../$template/bottom.php";
$RealOutput = ob_get_contents();
@include"../$template/chrc.php";
ob_end_clean();
if($_COOKIE[c_lang]=='GB'){
$code=new CCharset;
$RealOutput=$code->Big5_Gb($RealOutput);
}
echo $RealOutput;
?>