www.gusucode.com > Tatter Tools 0.961 SE GB2312 简体中文版 > upload/add_exe.php

    <?
	include("inc_global.php");
	include("inc_function.php");

	$skin = new set_skin();

	$sql = "select perm_rp, perm_tb from t3_".$dbid." where no = '$num'";
	list ($perm_rp, $perm_tb) = mysql_fetch_array(mysql_query($sql));

	if (return_authority()) { $perm_tb = 1; $perm_rp = 1; }

	if ($md == "insert" && $perm_rp) {

		$ips = split(",", $p_ip_block);

		foreach ($ips as $k => $row) {
			if (trim($row) == $REMOTE_ADDR) {
				?><script type="text/javascript"> alert('对不起,您没有此权限执行操作.\t'); </script><?
				exit;
			}
		}

		if (get_magic_quotes_gpc()) $c_name = stripslashes($c_name);
		if ($c_homepage == "http://") $c_homepage = "";
		if (!$c_password) $c_password = get_timestamp3();

		setcookie ("c_guest_name", $c_name, time()+60*60*24*30);
		setcookie ("c_guest_homepage", $c_homepage, time()+60*60*24*30);

		put_query ("
			insert into t3_".$dbid."_reply (
				pno, name, homepage, body, password, is_secret, regdate, ip
			) values (
				$num, '".str_tag_off($c_name)."', '".str_tag_off($c_homepage)."', '".str_tag_off($c_body)."', password('$c_password'), '$c_is_secret', '".time()."', '".$REMOTE_ADDR."'
			)
		");
		set_rp_cnt($num);
		check_query();
	}

	if ($md != "rp" && $md != "insert" && $perm_tb) {
		$bf1 = get_tb_content($skin, $num);
	}

	if ($md != "tb" && $perm_rp) {
		$bf1 .= get_rp_content($skin, $num);
	}

?><html>
<head>
<meta http-equiv="Content-type" content="text/html; charset=gb2312">
</head>
<body>

<script type="text/javascript">

	var ele = parent.document.getElementById("<?=$d_target?>");
	ele.innerHTML = '<?=str_innerHTML($bf1)?>';
	ele.style.display = 'block';

</script>

</body>
</html>