www.gusucode.com > Tatter Tools 0.961 SE GB2312 简体中文版 > upload/add_exe.php
<? include("inc_global.php"); include("inc_function.php"); $skin = new set_skin(); $sql = "select perm_rp, perm_tb from t3_".$dbid." where no = '$num'"; list ($perm_rp, $perm_tb) = mysql_fetch_array(mysql_query($sql)); if (return_authority()) { $perm_tb = 1; $perm_rp = 1; } if ($md == "insert" && $perm_rp) { $ips = split(",", $p_ip_block); foreach ($ips as $k => $row) { if (trim($row) == $REMOTE_ADDR) { ?><script type="text/javascript"> alert('对不起,您没有此权限执行操作.\t'); </script><? exit; } } if (get_magic_quotes_gpc()) $c_name = stripslashes($c_name); if ($c_homepage == "http://") $c_homepage = ""; if (!$c_password) $c_password = get_timestamp3(); setcookie ("c_guest_name", $c_name, time()+60*60*24*30); setcookie ("c_guest_homepage", $c_homepage, time()+60*60*24*30); put_query (" insert into t3_".$dbid."_reply ( pno, name, homepage, body, password, is_secret, regdate, ip ) values ( $num, '".str_tag_off($c_name)."', '".str_tag_off($c_homepage)."', '".str_tag_off($c_body)."', password('$c_password'), '$c_is_secret', '".time()."', '".$REMOTE_ADDR."' ) "); set_rp_cnt($num); check_query(); } if ($md != "rp" && $md != "insert" && $perm_tb) { $bf1 = get_tb_content($skin, $num); } if ($md != "tb" && $perm_rp) { $bf1 .= get_rp_content($skin, $num); } ?><html> <head> <meta http-equiv="Content-type" content="text/html; charset=gb2312"> </head> <body> <script type="text/javascript"> var ele = parent.document.getElementById("<?=$d_target?>"); ele.innerHTML = '<?=str_innerHTML($bf1)?>'; ele.style.display = 'block'; </script> </body> </html>