repal.php回复用的页面,因为回复可以不必要是用户,所以没加用户身份校验
1<html>
2<head>
3<title>回复论题:<? echo $zt;?></title>
4<meta content="text/html; charset=utf-8" http-equiv="Content-Type"/>
5<style type="text/css">
6P {FONT-FAMILY: normal; FONT-SIZE: 9pt; LINE-HEIGHT: 14pt}
7DIV {FONT-FAMILY: normal; FONT-SIZE: 9pt; LINE-HEIGHT: 14pt}
8</style>
9<link href="js/cpcw.css" link="" rel="stylesheet"/>
include "linkfox.inc.php"; //包含进文件
include "info.inc.php";
function yy($f)
{
$oldmess=@file($f); //引用原文处理
for ($i=0;$i<count($oldmess);$i++) ".trim($oldmess[$i]);="" "<script="" $mess='$mess."' $mess;="" $req="mysql_query($query);" ($req)="" (ord(substr($oldmess[$i],0,1))="161)" echo="" else="" function="" if="" language="JavaScript" mesput($query,$use,$id)="" return="" {="" }="" 第一位是否全角空格=""> alert('谢谢你的回复!系统将返回论题!'); ";
echo "<script language="JavaScript"> javascript:location.href='dispbbs.php?id=".$id."&use=".$use."'; </script>;";
echo "<div align="center"><a href='dispbbs.php?id=".$id."&use=".$use."'>如果系统没有反应,请点击</a>";
}
else
echo "<script language="JavaScript"> alert('写入失败!'); </script>";
}
function usehf($message,$useinfo,$id,$use,$ft,$mess,$c) //用户回复就直接从表里调出用户信息
{
$query="select * from useinfo where usename='".$useinfo[0]."'";
$req=mysql_query($query);
if ($req)
{
$useinfo=mysql_fetch_array($req);
$fo=fopen($ft,"a");
$message=str_replace("<","<",str_replace(">",">",$message));
$message=nl2br($message);
$gip=getenv("REMOTE_ADDR");
$messages=$message."ㄞㄚㄓ".$useinfo[2]."ㄞㄚㄓ".$useinfo[3]."ㄞㄚㄓ".$useinfo[9]."ㄞㄚㄓ".$useinfo[8]."ㄞㄚㄓ".$useinfo[14]."ㄞㄚㄓ".$useinfo[11]."ㄞㄚㄓ".$time."ㄞㄚㄓ".$gip."δεζ";
if($c==dd) //如果是引用回复,加上原文内容
{
$messages="<font color="999999">".$mess."<div align="center">★原文……★……引用★</div></font><br/>".$messages;
}
$fp=fputs($fo,$messages);
$time=date(Y年n月j日G时i分); //主题回复数加一,覆盖上一回复人与时间
$query="update foxbbs set hfnum=hfnum+1,hfname='".$ft."',hfusename='".$useinfo[2]."',hfdate='".$time."' where id='".$id."'";
mesput($query,$use,$id);
}
else
{
echo "<script language="JavaScript"> alert('数据库错误:104号'); </script>";
}
}
function gr($ft,$message,$youname,$youmail,$youoicq,$youweb,$youaddr,$youbq,$id,$use,$mess,$c) //非注册用户
{
if (!uinfo($youmail,mail)||strlen($youmail)<12) //校验MAIL
{
echo "<script language="JavaScript"> alert('请输入正确的MAIL地址!'); </script>";
}
else if (!uinfo($youoicq,oicq)||strlen($youoicq)>12) //校验OICQ,只能判断是否数字和位数,如果有更好的方法就好。
{
echo "<script language="JavaScript"> alert('请输入正确的OICQ号!'); </script>";
}
else
{
if (uinfo($youweb,web)==OK&&substr($youweb,0,3)!=htt) $youweb="http://".$youweb;
else if (uinfo($youweb,web)==OK&&substr($youweb,0,3)==htt) $youweb=$youweb;
else $youweb="不告诉你";
$time=date(Y年n月j日G时i分); //取当前时间
$message=str_replace("<","<",str_replace(">",">",$message));
$message=nl2br($message);
$gip=getenv("REMOTE_ADDR");
$messages=$message."ㄞㄚㄓ".$youname."ㄞㄚㄓ".$youoicq."ㄞㄚㄓ".$youweb."ㄞㄚㄓ".$youmail."ㄞㄚㄓ".$youbq."ㄞㄚㄓ".$youaddr."ㄞㄚㄓ".$time."ㄞㄚㄓ".$gip."δεζ";
if($c==dd) //如果是引用回复
{
$messages="<font color="999999">".$mess."<div align="center">★原文……★……引用★</div></font><br/>".$messages;
}
$fo=fopen($ft,"a");
$fp=fputs($fo,$messages);
$query="update foxbbs set hfnum=hfnum+1,hfname='".$ft."',hfusename='".$youname."',hfdate='".$time."' where id='".$id."'";
mesput($query,$use,$id);
}
}
1</div></count($oldmess);$i++)></head>
2<body bgcolor="#FFFFFF">
3<?
4$tem=$HTTP_COOKIE_VARS[FlyFoxNet];
5$temp=explode("|",$tem);
6$cookiem=$temp[0];
7$useinfo=cuser($cookiem,$action);
8
9if (!$useinfo[0]){ $useinfo[2]="游客"; $usename=1;}
10
11$query="select mesname from foxbbs where id='".$id."'";
12$req=mysql_query($query);
13if ($req)
14{
15$f=mysql_fetch_array($req);
16$mess=yy($f[0]);
17if ($message&&$action=add)
18{
19$ft="foxbbs/".$f[0].".bbs";
20if (ord(substr($message,0,1))!=161) $message=" ".$message;
21for ($i=0;$i<10;$i++)
22{
23if ($bq[$i]) $youbq=$bq[$i];
24}
25if ($usename) gr($ft,$message,$youname,$youmail,$youoicq,$youweb,$youaddr,$youbq,$id,$use,$mess,$c);
26else usehf($message,$useinfo,$id,$use,$ft,$mess,$c);
27}
28}
29else echo "<script language='JavaScript'> alert('打开文件错误!可能服务器忙,请稍候再试!'); ";
30
31
32?>
33<table border="0" cellpadding="4" cellspacing="0" width="100%">
34<tr>
35<td height="20">
36<div align="right"></div>
37</td>
38<td height="20" width="75"> </td>
39<td height="20" width="75"> </td>
40<td height="20" width="75"> </td>
41<td height="20" width="75"> </td>
42</tr>
43<tr>
44<td height="20">
45<div align="right"></div>
46</td>
47<td height="20" width="10%">
48<div align="center"><a href="reguse.php?action=xy"><img border="0" height="21" src="images/top_register.gif" width="74"/></a></div>
49</td>
50<td height="20" width="10%">
51<div align="center"><a href="useinfo.php?action=find"><img border="0" height="21" src="images/top_members.gif" width="74"/></a></div>
52</td>
53<td height="20" width="10%"><a href="useinfo.php?action=edit"><img border="0" height="21" src="images/top_profile.gif" width="74"/></a></td>
54<td height="20" width="10%"><a href="okey.php?d=q"><img border="0" height="21" src="images/top_logout.gif" width="74"/></a></td>
55</tr>
56<tr>
57<td height="20">
58<div align="left">当前位置:<font color="#0000FF">狐网─>狐网论坛─>回复主题:<?echo "<font color='ff0000'>".$zt."</font>";?></div>
59</td>
60<td> <div align="center"><a href="foxbbs.php"><img align="middle" border="0" height="20" src="images/index.gif" width="70"/></a></div>
61</td>
62<td height="20" width="10%">
63<div align="center"><a href="superuse.php"><img align="middle" border="0" height="20" src="images/super.gif" width="70"/></a></div>
64</td>
65<td height="20" width="10%">
66<div align="center"><a href="reguse.php?action=xy"><img align="middle" border="0" height="20" src="images/dl.gif" width="70"/></a></div>
67</td>
68<td height="20" width="10%">
69<div align="center"><a href="../index.php"><img align="middle" border="0" height="20" src="images/fox.gif" width="70"/></a></div>
70</td> </tr>
71</table>
72<script language="JavaScript">
73<!--
74var submitcount=0;
75
76function checkSubmit() {
77if (submitcount == 0) {
78submitcount++;
79return true;
80} else {
81if (submitcount>0){
82alert("帖子已成功提交了,别急,等等!");
83return false;
84}
85}
86}
87
88function check_com(){
89if(document.form.youname.value.length ==0){
90submitcount--;
91alert("名字不能为空!快填上吧!");
92return false;
93}
94if(document.form.youmail.value.length ==0){
95submitcount--;
96alert("EMAIL不能为空!快填上吧!");
97return false;
98}
99if(document.form.youoicq.value.length ==0){
100submitcount--;
101alert("OICQ不能为空!快填上吧!");
102return false;
103}
104
105
106if(document.form.message.value.length == 0){
107submitcount--;
108alert("内容不能为空!");
109return false;
110}
111return true;
112}
113//-->
114</script>
115<table align="center" bgcolor="#000000" border="0" cellpadding="0" cellspacing="0" width="70%">
116<tr>
117<td>
118<table border="0" cellpadding="0" cellspacing="0" width="100%">
119<tr bgcolor="#006699">
120<td><div align="center"><font color="ffffff"><? echo "<font color='00ff00'>".$useinfo[2]."</font>"; ?> 你正在回复的主题是:[<? echo $zt; ?>]</div></td>
121</tr>
122<tr bgcolor="#eeeeee">
123<td>
124<form method="post" name="form" onsubmit="return check_com()"><div align="center">
125<?
126if ($usename) //不是注册用户就显示输入框输入游客信息。
127{
128echo "你的大名:<input onFocus='this.select()' style='BACKGROUND-COLOR: #ffffff; BORDER-BOTTOM: #000000 1px dashed; BORDER-LEFT: #000000 1px dashed; BORDER-RIGHT: #000000 1px dashed; BORDER-TOP: #000000 1px dashed;' type='text' name='youname' size='30' maxlength='30' value='".$youname."'>";
129echo "OICQ:<input maxlength="16" name="youoicq" onfocus="this.select()" size="16" style="BACKGROUND-COLOR: #ffffff; BORDER-BOTTOM: #000000 1px dashed; BORDER-LEFT: #000000 1px dashed; BORDER-RIGHT: #000000 1px dashed; BORDER-TOP: #000000 1px dashed;" type="text" value='".$youoicq."'/><br/>";
130echo "来自何方:<input name="youaddr" onfocus="this.select()" size="55" style="BACKGROUND-COLOR: #ffffff; BORDER-BOTTOM: #000000 1px dashed; BORDER-LEFT: #000000 1px dashed; BORDER-RIGHT: #000000 1px dashed; BORDER-TOP: #000000 1px dashed;" type="text" value='".$youaddr."'/><br/>";
131echo "电子信箱:<input name="youmail" onfocus="this.select()" size="55" style="BACKGROUND-COLOR: #ffffff; BORDER-BOTTOM: #000000 1px dashed; BORDER-LEFT: #000000 1px dashed; BORDER-RIGHT: #000000 1px dashed; BORDER-TOP: #000000 1px dashed;" type="text" value='".$youmail."'/><br/>";
132echo "个人主页:<input name="youweb" onfocus="this.select()" size="55" style="BACKGROUND-COLOR: #ffffff; BORDER-BOTTOM: #000000 1px dashed; BORDER-LEFT: #000000 1px dashed; BORDER-RIGHT: #000000 1px dashed; BORDER-TOP: #000000 1px dashed;" type="text" value='".$youweb."'/><br/>";
133echo "表情<br/><input name="bq[0]" type="radio" value="a"/><img src="images/a.gif"/><input name="bq[1]" type="radio" value="1"/><img src="images/1.gif"/>";
134echo "<input name="bq[2]" type="radio" value="2"/><img src="images/2.gif"/><input name="bq[3]" type="radio" value="3"/><img src="images/3.gif"/>";
135echo "<input name="bq[4]" type="radio" value="4"/><img src="images/4.gif"/><input name="bq[5]" type="radio" value="5"/><img src="images/5.gif"/>";
136echo "<input name="bq[6]" type="radio" value="6"/><img src="images/6.gif"/><input name="bq[7]" type="radio" value="7"/><img src="images/7.gif"/>";
137echo "<input name="bq[8]" type="radio" value="8"/><img src="images/8.gif"/><input name="bq[9]" type="radio" value="9"/><img src="images/9.gif"/><br/>";
138}
139echo "<div align="center">回复内容<br/>";
140echo "<textarea cols="64" name="message" onfocus="this.select()" rows="5" style="BACKGROUND-COLOR: #ffffff; BORDER-BOTTOM: #000000 1px dashed; BORDER-LEFT: #000000 1px dashed; BORDER-RIGHT: #000000 1px dashed; BORDER-TOP: #000000 1px dashed;" wrap="VIRTUAL">".$message."</textarea><br/>";
141?>
142<input name="Submit" onclick="return checkSubmit()" type="submit" value="确定"/>
143<input name="Submit2" type="reset" value="重写"/></div></div></form>
144</td>
145</tr>
146<tr bgcolor="#eeeeee">//如果是引用原文就显示
147<td><div align="center"><? if ($c==dd) echo "原文如下<br><div align="left">".$mess;?></div></div></td>
148</tr>
149</table>
150</td>
151</tr>
152</table>
153</body>
154</html>