Skip to content

Commit 4dff387

Browse files
committed
1.3.1.2
1 parent e0ce524 commit 4dff387

File tree

100 files changed

+1324
-2777
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

100 files changed

+1324
-2777
lines changed

Diff for: admin/about.php

-71
This file was deleted.

Diff for: admin/login.php renamed to admin/admin_user/login.php

-25
Original file line numberDiff line numberDiff line change
@@ -1,29 +1,4 @@
11
<?php
2-
include("../resource/variable.php");
3-
function encode($string = '', $skey = 'cxphp')
4-
{
5-
$strArr = str_split(base64_encode($string));
6-
$strCount = count($strArr);
7-
foreach (str_split($skey) as $key => $value)
8-
$key < $strCount && $strArr[$key] .= $value;
9-
return str_replace(array('=', '+', '/'), array('O0O0O', 'o000o', 'oo00o'), join('', $strArr));
10-
}
11-
12-
define('BASE_PATH', str_replace('\\', '/', realpath(dirname(__FILE__) . '/')) . "/");
13-
define('BASE_PATH1', str_replace('\\', '/', realpath(dirname(BASE_PATH) . '/')) . "/");
14-
$json_string = file_get_contents(BASE_PATH1 . '/install/sql-config/sql.json');
15-
$dataxxx = json_decode($json_string, true);
16-
$link = mysqli_connect($dataxxx['server'], $dataxxx['dbusername'], $dataxxx['dbpassword'], $dataxxx['dbname']);
17-
$sql = "select password from `rapidcmsadmin` where username=\"admin\"";
18-
$result = mysqli_query($link, $sql);
19-
$pass = mysqli_fetch_row($result);
20-
$pa = $pass[0];
21-
22-
if ($_COOKIE["admin"] != encode('admin', $pa)) {
23-
24-
}else{
25-
Header("Location: index.php");
26-
}
272

283
?>
294

Diff for: admin/admin_user/loginout.php

+11
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,11 @@
1+
<?php
2+
//Cookie消掉
3+
setcookie("admin", "", time()-3600,'/');
4+
5+
//获取返回位置
6+
7+
$goto="login.php";
8+
9+
//直接返回
10+
echo"<script type="."\""."text/javascript"."\"".">"."window.location="."\"".$goto."\""."</script>";
11+
?>

Diff for: admin/admin_user/movepass.php

+41
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,41 @@
1+
<?php
2+
include("../header.php");
3+
4+
?>
5+
<div style=" position: absolute;left: 60%;top:10%;text-align:center; transform: translateX(-50% );">
6+
7+
<div class="mdui-card">
8+
9+
<div class="mdui-card-primary">
10+
<div class="mdui-card-primary-title" style="font-size:30px">修改管理员密码</div>
11+
</div>
12+
<form method="post" action="run-movepass.php">
13+
<m-scrollbar style="height: 300px;width:900px">
14+
<div class="mdui-card-content" style="font-size:15px;text-align:left">
15+
<div class="mdui-textfield mdui-textfield-floating-label mdui-textfield-has-bottom ">
16+
<label class="mdui-textfield-label">输入密码</label>
17+
<input class="mdui-textfield-input" name="password" type="password"
18+
required="">
19+
<div class="mdui-textfield-error">密码不能为空</div>
20+
</div>
21+
<div class="mdui-textfield mdui-textfield-floating-label mdui-textfield-has-bottom ">
22+
<label class="mdui-textfield-label">重复密码</label>
23+
<input class="mdui-textfield-input" name="password2" type="password"
24+
required="">
25+
<div class="mdui-textfield-error">重复密码不能为空</div>
26+
</div>
27+
28+
<button class="mdui-btn mdui-btn-raised mdui-ripple mdui-color-theme-accent">提交</button>
29+
30+
</div>
31+
</m-scrollbar>
32+
</form>
33+
</div>
34+
35+
</div>
36+
37+
<script src="../../../../../../resource/js/mtu.min.js"></script>
38+
<script src="../../../../../../resource/js/mdui.min.js"></script>
39+
</body>
40+
41+
</html>

Diff for: admin/run-movepass.php renamed to admin/admin_user/run-movepass.php

+2-2
Original file line numberDiff line numberDiff line change
@@ -1,9 +1,9 @@
11

22
<?php
3-
include("../resource/variable.php");
3+
include("../check.php");
44

55
header("Content-type:text/html;charset=utf-8");
6-
$json_string = file_get_contents('../install/sql-config/sql.json');
6+
$json_string = file_get_contents('../../install/sql-config/sql.json');
77
$dataxxx = json_decode($json_string, true);
88
$link = mysqli_connect($dataxxx['server'], $dataxxx['dbusername'], $dataxxx['dbpassword']);
99

Diff for: admin/runlogin.php renamed to admin/admin_user/runlogin.php

+3-3
Original file line numberDiff line numberDiff line change
@@ -1,8 +1,8 @@
11
<?php
2-
include("../resource/variable.php");
2+
include("../../variable.php");
33

44
header ( "Content-type:text/html;charset=utf-8" );
5-
$json_string = file_get_contents('../install/sql-config/sql.json');
5+
$json_string = file_get_contents('../../install/sql-config/sql.json');
66
$dataxxx = json_decode($json_string, true);
77
$link=mysqli_connect($dataxxx['server'],$dataxxx['dbusername'],$dataxxx['dbpassword']);
88

@@ -30,7 +30,7 @@ function encode($string = '', $skey = 'cxphp')
3030
}
3131

3232
setcookie("admin", encode('admin',$password) ,time()+3600000,'/');
33-
Header("Location: index.php");
33+
Header("Location: ../index.php");
3434

3535

3636
}else{

Diff for: admin/article-add-run.php

-44
This file was deleted.

Diff for: admin/article-chat-delete.php

-42
This file was deleted.

Diff for: admin/article-del.php

-41
This file was deleted.

Diff for: admin/article-edit-run.php

-44
This file was deleted.

Diff for: admin/article/article-add-run.php

+22
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,22 @@
1+
<?php
2+
include("../check.php");
3+
4+
header ( "Content-type:text/html;charset=utf-8" );
5+
$json_string = file_get_contents('../../install/sql-config/sql.json');
6+
$dataxxx = json_decode($json_string, true);
7+
$link=mysqli_connect($dataxxx['server'],$dataxxx['dbusername'],$dataxxx['dbpassword']);
8+
9+
if($link)
10+
{
11+
$select=mysqli_select_db($link,$dataxxx['dbname']);
12+
if($select)
13+
{
14+
$timenow = date('Y-m-d H:i:s');
15+
$cont2=rawurlencode(htmlspecialchars($_POST["content"]));
16+
$str='INSERT INTO `rapidcmspage`(`id`, `title`, `content`, `time`, `categoryid`) VALUES ("'.$_POST["id"].'","'.rawurlencode($_POST["title"]).'","'.$cont2.'","'.$timenow.'","'.$_POST["categoryid"].'")';
17+
$result=mysqli_query($link,$str);
18+
sendalert("增加成功!");
19+
20+
}
21+
}
22+
?>

0 commit comments

Comments
 (0)