Файл: mydcms.tk/downloads/view.php
Строк: 70
<?php
require '../system/sid.php';
require '../system/config.php';
if (!empty($_SESSION['us']))
{
include '../system/user.php';
whorm(0, 'fo');
}
include '../system/head.php';
include '../system/navigator.php';
$do = (isset($_GET['do'])) ? $_GET['do'] : NULL;
switch($do) {
default:
$r = my_int($_GET['r']);
$test = mysql_query("SELECT * FROM `fo_cat` WHERE `id` = '$r' LIMIT 1");
$test_1 = mysql_query("SELECT * FROM `fo_cat` WHERE `id` = '$r' LIMIT 1");
$name_rzd = mysql_fetch_assoc($test_1);
$_pod = mysql_fetch_array($test);
echo ''.$div_title.'Все для мастера | '.$name_rzd['title'].''.$div_end.'';
echo '<div class="auth2">Файлы: <a href="new.php?">Новые</a> | <a href="pop.php?">Популярные</a> | <a href="search.php?">Поиск</a></div>';
if (mysql_num_rows($test) != FALSE) {
$count = mysql_result(mysql_query("SELECT COUNT(id) FROM `fo_pod` WHERE `cid` = '$r'"), 0);
$n = new navigator($count, 50, '?r='.$r.'&');
$i = 0;
if ($count != FALSE) {
$view = mysql_query("SELECT `fo_pod`.*,
(SELECT COUNT(id) FROM `fo_files` WHERE `fo_files`.`rid` = '$r' AND `fo_files`.`cat` = `fo_pod`.`id` AND `fo_files`.`moder` = '0') AS c,
(SELECT COUNT(id) FROM `fo_files` WHERE `fo_files`.`rid` = '$r' AND `fo_files`.`cat` = `fo_pod`.`id` AND `fo_files`.`moder` = '0' AND `fo_files`.`time` > '" . (time() - 86400) . "') AS t,
(SELECT COUNT(id) FROM `fo_pod` WHERE `fo_pod`.`id` = `fo_pod`.`id`) AS f
FROM `fo_pod` WHERE `cid` = '$r' ORDER BY `id` ASC {$n->limit}");
while($a = mysql_fetch_assoc($view)) {
$new_file = (!empty($a['t'])) ? '<span style="color: #FF0000;">+' . $a['t'] . '</span>' : '';
echo ($i ++ % 2) ? $div_tworazdel : $div_razdel;
echo '<div class="menu"><a class="ssyl2" href="view.php?do=look&p='.$a['id'].'&r='.$a['cid'].'"> <img src="../ico/dir.gif" alt=""/> ' . $a['title'] . ' (' . $a['c'] . ') ' . $new_file .'</a></div>';
}
echo $n->navi();
} else {
echo 'Подразделы не созданы!<br/>';
}
} else {
err('Раздела не существует!');
}
break;
case look:
$p = my_int($_GET['p']);
$r = my_int($_GET['r']);
$test_1 = mysql_query("SELECT * FROM `fo_cat` WHERE `id` = '$r' LIMIT 1");
$test_2 = mysql_query("SELECT * FROM `fo_pod` WHERE `id` = '$p' LIMIT 1");
$name_rzd = mysql_fetch_assoc($test_1);
$name_pdf = mysql_fetch_assoc($test_2);
echo $div_title . ' '.$name_rzd['title'].' | ' . $name_pdf['title'] . '' . $div_end;
echo '<div class="auth2">Файлы: <a href="new.php?">Новые</a> | <a href="pop.php?">Популярные</a> | <a href="search.php?">Поиск</a> | <a href="load.php?r='.$r.'">Добавить</a></div>';
if (mysql_num_rows($test_1) == FALSE) {
err('Раздела не существует!');
include '../system/foot.php';
exit();
}
if (mysql_num_rows($test_2) == FALSE) {
err('Подраздела не существует!');
include '../system/foot.php';
exit();
}
if (isset($_GET['del']))
{
if ($user['level'] != 4 && $user['level'] != 5) {
header('Location: index.php?');
die();
}
$del = my_int($_GET['del']);
$sql = mysql_query("SELECT * FROM `fo_files` WHERE `id` = '$del' LIMIT 1");
if (mysql_num_rows($sql) != FALSE) {
$info = mysql_fetch_assoc($sql);
mysql_query("DELETE FROM `fo_files` WHERE `id` = '$del' LIMIT 1");
mysql_query("DELETE FROM `fo_komm` WHERE `uid` = '$del'");
mysql_query("DELETE FROM `rating_files` WHERE `uid` = '$del'");
if (file_exists($info['url'])) unlink($info['url']);
header('Location: view.php?do=look&p='.$p.'&r='.$r);
} else {
header('Location: view.php?do=look&p='.$p.'&r='.$r);
}
}
$count = mysql_result(mysql_query("SELECT COUNT(id) FROM `fo_files` WHERE `cat` = '$p' AND `rid` = '$r' AND `moder` = '0'"), 0);
$n = new navigator($count, 10, '?do=look&p='.$p.'&r='.$r.'&');
$i = 0;
if ($count != FALSE) {
$view = mysql_query("SELECT * FROM `fo_files` WHERE `cat` = '$p' AND `rid` = '$r' AND `moder` = '0' ORDER BY `id` DESC {$n->limit}");
while($a = mysql_fetch_assoc($view)) {
$ext = strtolower(strrchr($a['url'], '.'));
if ($ext == '.zip') $format = '<img src="http://digmas.tk/ico/form/zip.gif" alt="*"/> ';
elseif ($ext == '.rar') $format = '<img src="http://digmas.tk/ico/form/rar.gif" alt="*"/> ';
elseif ($ext == '.gz') $format = '<img src="http://digmas.tk/ico/form/gz.gif" alt="*"/> ';
elseif ($ext == '.tar') $format = '<img src="http://digmas.tk/ico/form/tar.gif" alt="*"/> ';
else $format = '<img src="img/unknown.gif" alt="*"/> ';
#######################
$new_file = (!empty($a['t'])) ? '<span style="color: #FF0000;">+' . $a['t'] . '</span>' : '';
$size = filesize($a['url']);
$size = get_size($size);
if ($user['level'] == 4 || $user['level'] == 5)
{
$delete = '<a href="view.php?do=look&p='.$p.'&r='.$r.'&del='.$a['id'].'">[удалить]</a> ';
}
echo ($i ++ % 2) ? $div_tworazdel : $div_razdel;
echo '<div class="menu"><a class="ssyl2" href="info.php?i='.$a['id'].'">' . $format . ' ' . $a['title'] . ' (' . $size . ') </a></div>';
}
echo $n->navi();
} else {
echo 'Файлов нет!<br/>';
}
echo '<div class="auth2"><a href="view.php?r='.$name_rzd['id'].'">' . $name_rzd['title'] . '</a></div>';
break;
}
include '../system/foot.php';
?>