Файл: modules/pc/index.php
Строк: 167
<?php
include '../../system/core.php';
include '../../system/header.php';
if(!$user['id']){
header('Location: /index.php'); exit;
}
include '../../modules/op/c.php';
include '../../modules/privat/c.php';
switch($_GET['m']){
case 'new':
echo '<div class="menu"><a href="/pc" style="color:#ffffff;">Полезные коды</a> | Новые</div>';
$cop = 10;
$ca = mysql_result(mysql_query("SELECT COUNT(*) FROM `pc_code` where `time` > '".(time()-((60*60)*24))."'"),0);
$cp = ceil($ca/$cop);
if(isset($_GET['p']) && is_numeric($_GET['p'])){
$p = $_GET['p'];
if($_GET['p']>$cp) $p = $cp;
if($_GET['p']<1)$p = 1;
}else{
$p = 1;
}
$start = $p*$cop-$cop;
$new = mysql_query("select * from `pc_code` where `time` > '".(time()-((60*60)*24))."' order by `time` desc limit $start,$cop");
while($new2 = mysql_fetch_assoc($new)){
echo '<div class="submenu">'.ustatus($new2['author']).' <a href="/us'.$new2['author'].'">'.uname($new2['author']).'</a> '.uaccess($new2['author']).': <a href="/pc/code'.$new2['id'].'">'.$new2['name'].'</a>';
echo '</div>';
}
echo '</div><div class="linkmenu">Стр. ';
if($p-2>0) echo '<a href="/pc/new?p=1"><<</a> ';
if($p-1>0) echo '<a href="/pc/new?p='.($p-1).'"><</a> ';
if($p-3>0) echo '<a href="/pc/new?p='.($p-3).'">'.($p-3).'</a> | ';
if($p-2>0) echo '<a href="/pc/new?p='.($p-2).'">'.($p-2).'</a> | ';
if($p-1>0) echo '<a href="/pc/new?p='.($p-1).'">'.($p-1).'</a> | ';
echo '<b>'.$p.'</b>';
if($p+1<=$cp) echo ' | <a href="/pc/new?p='.($p+1).'">'.($p+1).'</a>';
if($p+2<=$cp) echo ' | <a href="/pc/new?p='.($p+2).'">'.($p+2).'</a>';
if($p+3<=$cp) echo ' | <a href="/pc/new?p='.($p+3).'">'.($p+3).'</a>';
if($p+1<=$cp) echo ' <a href="/op/new?p='.($p+1).'">></a>';
if($p+2<=$cp) echo ' <a href="/op/new?p='.ceil($ca/$cop).'">>></a>';
echo '</div>';
break;
#Главная
default:
echo '<div class="menu">Полезные коды</div>';
if($user['status'] >1) echo '<div class="navg"><img src="/modules/pc/images/folder_new.png"/> <a href="/pc/nr">Добавить раздел</a><br>
<a href="/pc/moder">Панель управления</a></div>';
echo '<div class="navg"><img src="/modules/pc/images/16_star_hot.png"/> <a href="/pc/best">Топ кодов</a><br>
<img src="/modules/pc/images/folder_new.png"/> <a href="/pc/new">Новые коды</a> ('.mysql_result(mysql_query('select count(`id`) from `pc_code` where `time` > "'.(time()-((60*60)*24)).'" and `status` = "0"'),0).')<br></div>';
$cop = 10;
$ca = mysql_result(mysql_query("SELECT COUNT(*) FROM `pc_r`"),0);
$cp = ceil($ca/$cop);
if(isset($_GET['p']) && is_numeric($_GET['p'])){
$p = $_GET['p'];
if($_GET['p']>$cp) $p = $cp;
if($_GET['p']<1)$p = 1;
}else{
$p = 1;
}
$start = $p*$cop-$cop;
$pc_r = mysql_query("SELECT * FROM `pc_r` ORDER BY `id` DESC LIMIT $start,$cop");
if(isset($_GET['dr'])){
$id = TextGuard($_GET['id']);
if(empty($id) or !is_numeric($id)){
header('Location: ?'); exit;
}
$pc_r = mysql_fetch_array(mysql_query('select * from `pc_r` where `id` = "'.$id.'"'));
if($pc_r == 0){
header('Location: /pc'); exit;
}
$pc_r_code = mysql_query('select * from `pc_code` where `r` = "'.$id.'"');
while($pc_r_code2 = mysql_fetch_array($pc_r_code)){
mysql_query("DELETE FROM `pc_code` WHERE `id` = '".$pc_r_code2['id']."'");
}
mysql_query("DELETE FROM `pc_r` WHERE `id` = '$id'");
header('Location: /pc'); exit;
}
while($pc_r2 = mysql_fetch_assoc($pc_r)){
echo '<div class="lst"><img src="/modules/pc/images/page_white_code.png"/> <a href="/pc/r'.$pc_r2['id'].'"><b>'.$pc_r2['name'].'</b></a> ('.mysql_result(mysql_query('select count(`id`) from `pc_code` where `r` = "'.$pc_r2['id'].'" and `status` = "0"'),0).')';
if($user['status'] >= 1) echo ' [<a href="/pc?dr&id='.$pc_r2['id'].'">уд</a>] [<a href="/pc/re'.$pc_r2['id'].'">ред</a>]';
echo '</div>';
}
echo '</div><div class="navg">Стр. ';
if($p-2>0) echo '<a href="/pc/p1"><<</a> ';
if($p-1>0) echo '<a href="/pc/p'.($p-1).'"><</a> ';
if($p-3>0) echo '<a href="/pc/p'.($p-3).'">'.($p-3).'</a> | ';
if($p-2>0) echo '<a href="/pc/p'.($p-2).'">'.($p-2).'</a> | ';
if($p-1>0) echo '<a href="/pc/p'.($p-1).'">'.($p-1).'</a> | ';
echo '<b>'.$p.'</b>';
if($p+1<=$cp) echo ' | <a href="/pc/p'.($p+1).'">'.($p+1).'</a>';
if($p+2<=$cp) echo ' | <a href="/pc/p'.($p+2).'">'.($p+2).'</a>';
if($p+3<=$cp) echo ' | <a href="/pc/p'.($p+3).'">'.($p+3).'</a>';
if($p+1<=$cp) echo ' <a href="/op/p'.($p+1).'">></a>';
if($p+2<=$cp) echo ' <a href="/op//p'.ceil($ca/$cop).'">>></a>';
echo '</div>';
break;
case 'r':
$id = TextGuard($_GET['id']);
$pc_r = mysql_fetch_array(mysql_query('select * from `pc_r` where `id` = '.$id.' limit 1'));
if(empty($id) or !is_numeric($id) or $pc_r == 0){
header('Location: /pc'); exit;
}
echo '<div class="menu"><a href="/pc" style="color:#ffffff;">Полезные коды</a> | '.$pc_r['name'].'</div>
<div class="list1"><a href="/pc/r'.$id.'/add">Добавить код</a></div>';
$cop = 10;
$ca = mysql_result(mysql_query("SELECT COUNT(*) FROM `pc_code` where `r` = '".$id."' and `status` = '0'"),0);
$cp = ceil($ca/$cop);
if(isset($_GET['p']) && is_numeric($_GET['p'])){
$p = $_GET['p'];
if($_GET['p']>$cp) $p = $cp;
if($_GET['p']<1)$p = 1;
}else{
$p = 1;
}
$start = $p*$cop-$cop;
$pc_code = mysql_query("SELECT * FROM `pc_code` where `r` = '".$id."' and `status` = '0' ORDER BY `id` DESC LIMIT $start,$cop");
if(isset($_GET['dc'])){
$cid = TextGuard($_GET['cid']);
if(empty($cid) or !is_numeric($cid)){
header('Location: ?'); exit;
}
$pc_code = mysql_fetch_array(mysql_query('select * from `pc_code` where `id` = "'.$cid.'"'));
$pc_r = mysql_fetch_array(mysql_query('select * from `pc_r` where `id` = "'.$id.'"'));
if($pc_r == 0 or $pc_code == 0){
header('Location: /pc/r'.$id.''); exit;
}
mysql_query("DELETE FROM `pc_code` WHERE `id` = '$cid'");
header('Location: /pc/r'.$id.''); exit;
}
while($pc_code2 = mysql_fetch_assoc($pc_code)){
echo '<div class="lst">'.ustatus($pc_code2['author']).' <a href="/us'.$pc_code2['author'].'">'.uname($pc_code2['author']).'</a> '.uaccess($pc_code2['author']).': <a href="/pc/code'.$pc_code2['id'].'">'.$pc_code2['name'].'</a>';
if($user['status'] >= 1) echo ' [<a href="/pc/r'.$id.'?dc&cid='.$pc_code2['id'].'">уд</a>] [<a href="">ред</a>]';
echo '</div>';
}
echo '</div><div class="navg">Стр. ';
if($p-2>0) echo '<a href="/pc/r'.$id.'/p1"><<</a> ';
if($p-1>0) echo '<a href="/pc/r'.$id.'/p'.($p-1).'"><</a> ';
if($p-3>0) echo '<a href="/pc/r'.$id.'/p'.($p-3).'">'.($p-3).'</a> | ';
if($p-2>0) echo '<a href="/pc/r'.$id.'/p'.($p-2).'">'.($p-2).'</a> | ';
if($p-1>0) echo '<a href="/pc/r'.$id.'/p'.($p-1).'">'.($p-1).'</a> | ';
echo '<b>'.$p.'</b>';
if($p+1<=$cp) echo ' | <a href="/pc/r'.$id.'/p'.($p+1).'">'.($p+1).'</a>';
if($p+2<=$cp) echo ' | <a href="/pc/r'.$id.'/p'.($p+2).'">'.($p+2).'</a>';
if($p+3<=$cp) echo ' | <a href="/pc/r'.$id.'/p'.($p+3).'">'.($p+3).'</a>';
if($p+1<=$cp) echo ' <a href="/op/r'.$id.'/p'.($p+1).'">></a>';
if($p+2<=$cp) echo ' <a href="/op/r'.$id.'/p'.ceil($ca/$cop).'">>></a>';
echo '</div>';
break;
case 'add':
$id = TextGuard($_GET['id']);
$pc_r = mysql_fetch_array(mysql_query('select * from `pc_r` where `id` = '.$id.' limit 1'));
if(empty($id) or !is_numeric($id) or $pc_r == 0){
header('Location: /pc'); exit;
}
echo '<div class="menu"><a href="/pc" style="color:#ffffff;">Полезные коды</a> | <a href="/pc/r'.$id.'" style="color:#ffffff;">'.$pc_r['name'].'</a> | Добавить код</div>';
if(isset($_POST['submit'])){
$name = TextGuard($_POST['name']);
if(empty($name)) $err[] = 'Вы не ввели описание...';
$code = trim(htmlspecialchars($_POST['code']));
if(empty($code)) $err[] = 'Вы не ввели код...';
if(!$err){
mysql_query("INSERT INTO `pc_code`(
`r`,
`author`,
`name`,
`code`,
`time`,
`status`
)VALUES(
'".$id."',
'".$user['id']."',
'".$name."',
'".$code."',
'".time()."',
'1'
)");
$pc_rss = mysql_query("SELECT * FROM `user` WHERE `status` > '1'");
while($pc_rss2 = mysql_fetch_assoc($pc_rss)){
mysql_query("INSERT INTO `op`(
`who`,
`ho`,
`text`,
`time`,
`read`
)VALUES(
'".$pc_rss2['id']."',
'".$user['id']."',
'добавил [url=/pc/moder]код[/url] в полезные коды!',
'".time()."',
'0'
)");
}
echo '<div class="rega"><img src="/modules/profile/images/clean.png"/> Код успешно выставлен на модерацию!</div>';
}else{
echo '<div class="rega">';
foreach($err as $err_info){
echo $err_info.'<br>';
}
echo '</div>';
}
}
echo '
<div class="list1">
<form action="" method="post">
Описание:<br><input name="name"/><br>
Код:<br><textarea name="code" style="width:98%;" rows="3"></textarea><br>
<input type="submit" value="Добавить" name="submit"/>
</form></div>
';
break;
case 'nr':
echo '<div class="menu"><a href="/pc" style="color:#ffffff;">Полезные коды</a> | Добавить раздел</div>';
if(isset($_POST['submit'])){
$name = TextGuard($_POST['name']);
if(empty($name)) $err[] = 'Вы не ввели название...';
if(!$err){
mysql_query("INSERT INTO `pc_r`(
`name`
)VALUES(
'".$name."'
)");
header('Location: /pc'); exit;
}else{
echo '<div class="rega">';
foreach($err as $err_info){
echo $err_info.'<br>';
}
echo '</div>';
}
}
echo '
<div class="list1">
<form action="" method="post">
Название:<br><input name="name"/><br>
<input type="submit" value="Добавить" name="submit"/>
</form></div>
';
break;
case 'moder':
if($user['status'] < 1){
header('Location: /zc'); exit;
}
echo '<div class="menu"><a href="/pc" style="color:#ffffff;">Полезные коды</a> | Панель управления</div>';
if(isset($_GET['ok0'])){
$id = TextGuard($id);
$pc_code = mysql_fetch_array(mysql_query('select * from `pc_code` where `id` = "'.$id.'"'));
if(empty($id) or $pc_code == 0){
header('Location: /zc/moder'); exit;
}
mysql_query("UPDATE `pc_code` SET `status`='0' WHERE `id`='".$id."' limit 1");
mysql_query("INSERT INTO `op`(
`who`,
`ho`,
`text`,
`time`,
`read`
)VALUES(
'".$pc_code['author']."',
'".$user['id']."',
'добавил ваш [url=/pc/code".$id."]код[/url] в полезные коды!',
'".time()."',
'0'
)");
header('Location: /pc/code'.$id.''); exit;
}
if(isset($_GET['ok1'])){
$id = TextGuard($id);
$pc_code = mysql_fetch_array(mysql_query('select * from `pc_code` where `id` = "'.$id.'"'));
if(empty($id) or $pc_code == 0){
header('Location: /pc/moder'); exit;
}
mysql_query("DELETE FROM `pc_code` WHERE `id`='".$id."'");
header('Location: /pc/moder'); exit;
}
$cop = 10;
$ca = mysql_result(mysql_query("SELECT COUNT(*) FROM `pc_code` where `status` = '1'"),0);
$cp = ceil($ca/$cop);
if(isset($_GET['p']) && is_numeric($_GET['p'])){
$p = $_GET['p'];
if($_GET['p']>$cp) $p = $cp;
if($_GET['p']<1)$p = 1;
}else{
$p = 1;
}
$start = $p*$cop-$cop;
$pc_code = mysql_query("SELECT * FROM `pc_code` where `status` = '1' ORDER BY `id` DESC LIMIT $start,$cop");
while($pc_code2 = mysql_fetch_assoc($pc_code)){
echo '<div class="submenu">'.ustatus($pc_code2['author']).'<a href="/us'.$pc_code2['author'].'">'.uname($pc_code2['author']).'</a> '.uaccess($pc_code2['author']).': '.$pc_code2['name'].' в раздел';
$pc_r = mysql_fetch_array(mysql_query('select * from `pc_r` where `id` = "'.$pc_code2['r'].'"'));
echo ' <a href="/pc/r'.$pc_r['id'].'">'.$pc_r['name'].'</a>';
echo '<br><div class="cit"><code>'.$pc_code2['code'].'</code></div>
<a href="/pc/moder?ok0&id='.$pc_code2['id'].'"><input type="submit" value="принять"/></a> <a href="/pc/moder?ok1&id='.$pc_code2['id'].'"><input type="submit" value="отклонить"/></a></div>';
}
echo '</div><div class="linkmenu">Стр. ';
if($p-2>0) echo '<a href="/pc/moder?p=1"><<</a> ';
if($p-1>0) echo '<a href="/pc/moder?p='.($p-1).'"><</a> ';
if($p-3>0) echo '<a href="/pc/moder?p'.($p-3).'">'.($p-3).'</a> | ';
if($p-2>0) echo '<a href="/pc/moder?p='.($p-2).'">'.($p-2).'</a> | ';
if($p-1>0) echo '<a href="/pc/moder?p='.($p-1).'">'.($p-1).'</a> | ';
echo '<b>'.$p.'</b>';
if($p+1<=$cp) echo ' | <a href="/pc/moder?p='.($p+1).'">'.($p+1).'</a>';
if($p+2<=$cp) echo ' | <a href="/pc/moder?p='.($p+2).'">'.($p+2).'</a>';
if($p+3<=$cp) echo ' | <a href="/pc/moder?p='.($p+3).'">'.($p+3).'</a>';
if($p+1<=$cp) echo ' <a href="/pc/moder?p='.($p+1).'">></a>';
if($p+2<=$cp) echo ' <a href="/pc/moder?p='.ceil($ca/$cop).'">>></a>';
echo '</div>';
break;
case 'code':
$id = TextGuard($_GET['id']);
$pc_code = mysql_fetch_array(mysql_query('select * from `pc_code` where `id` = '.$id.' limit 1'));
$pc_r = mysql_fetch_array(mysql_query('select * from `pc_code` where `id` = '.$id.' limit 1'));
if(empty($id) or !is_numeric($id) or $pc_code == 0 or $pc_r == 0){
header('Location: /pc'); exit;
}
echo '<div class="menu"><a href="/pc" style="color:#ffffff;">Полезные коды</a> | <a href="/pc/r'.$id.'" style="color:#ffffff;">'.$pc_r['name'].'</a> | '.$pc_code['name'].'</div>';
if(isset($_GET['del']) && $user['status'] >= 1){
mysql_query("DELETE FROM `pc_code` WHERE `id` = '$id'");
header('Location: /pc/c'.$id.''); exit;
}
if($user['status'] >= 1) echo '<div class="list1">
<a href="/pc/c'.$id.'?del">Удалить</a> | <a href="/pc/cedit'.$id.'">Редактировать</a>
</div>';
$pc_code['code'] = str_replace("rn","<br/>",$pc_code['code']);
echo '<div class="list1">
<code>'.$pc_code['code'].'</code>
</div>';
echo '<div class="lst">
Добавил: '.ustatus($pc_code['author']).' <a href="/us'.$pc_code['author'].'">'.uname($pc_code['author']).'</a> '.uaccess($pc_code['author']).' ('.times($pc_code['time']).')</div>
';
echo '<div class="lst"><a href="/pc/ccom'.$id.'">Комментарии</a> ('.mysql_result(mysql_query('select count(`id`) from `pc_ccom` where `code` = "'.$id.'"'),0).')
</div>';
break;
case 're':
$id = TextGuard($_GET['id']);
$pc_r = mysql_fetch_array(mysql_query('select * from `pc_r` where `id` = '.$id.' limit 1'));
if(empty($id) or !is_numeric($id) or $pc_r == 0){
header('Location: /pc'); exit;
}
echo '<div class="menu"><a href="/pc" style="color:#ffffff;">Полезные коды</a> | <a href="/pc/r'.$pc_r['id'].'" style="color:#ffffff;">'.$pc_r['name'].'</a></div>';
if(isset($_POST['submit'])){
$text = TextGuard($_POST['text']);
if(empty($text)) $err[] = 'Название осталось пустым...';
if(!$err){
mysql_query("UPDATE `pc_r` SET `name`='".$text."' WHERE `id` = '".$id."' limit 1");
header('Location: /pc'); exit;
}else{
echo '<div class="rega">';
foreach($err as $err_info){
echo $err_info.'<br>';
}
echo '</div>';
}
}
echo '<div class="list1">
<form action="" method="post">
Название:<br><input name="text" value="'.$pc_r['name'].'"/><br>
<input type="submit" value="Сохранить" name="submit"/>
</form></div>';
break;
case 'ccom':
$id = TextGuard($id);
$pc_code = mysql_fetch_array(mysql_query('select * from `pc_code` where `id` = '.$id.' and `status` = "0"'));
$pc_r = mysql_fetch_array(mysql_query('select * from `pc_r` where `id` = '.$pc_code['r'].''));
if(empty($id) or !is_numeric($id) or $pc_r == 0 or $pc_code == 0){
header('Location: /pc'); exit;
}
echo '<div class="menu"><a href="/pc" style="color:#ffffff;">Полезные коды</a> | <a href="/pc/r'.$pc_r['id'].'" style="color:#ffffff;">'.$pc_r['name'].'</a></div>
<div class="list1">
Код: <a href="/pc/code'.$id.'">'.$pc_code['name'].'</a>
</div><div class="menu2">
Комментарии:
</div>';
echo '<div class="list1"><form action="" method="post">
Сообщение:<br><textarea name="text" style="width:98%;" rows="3"></textarea><br>
<input type="submit" name="submit" value="Написать"/>
</form></div>';
if(isset($_POST['submit'])){
$text = TextGuard($text);
if(empty($text)) $err[] = 'Сообщение осталось пустым...';
if(!$err){
mysql_query("INSERT INTO `pc_ccom`(
`code`,
`who`,
`text`,
`time`
)VALUES(
'".$id."',
'".$user['id']."',
'".$text."',
'".time()."'
)");
mysql_query("INSERT INTO `op`(
`who`,
`ho`,
`text`,
`time`,
`read`
)VALUES(
'".$pc_code['author']."',
'".$user['id']."',
'написал [url=/pc/ccom".$id."]комментарий[/url] к вашему [url=/pc/code".$id."]коду[/url]!',
'".time()."',
'0'
)");
header('Location: /pc/ccom'.$id.''); exit;
}else{
echo '<div class="errmenu">';
foreach($err as $err_info){
echo $err_info.'<br>';
}
echo '</div>';
}
}
$cop = 10;
$ca = mysql_result(mysql_query("SELECT COUNT(*) FROM `pc_ccom` where `code` = '".$id."'"),0);
$cp = ceil($ca/$cop);
if(isset($_GET['p']) && is_numeric($_GET['p']) && $ca != 0){
$p = $_GET['p'];
if($_GET['p']>$cp) $p = $cp;
if($_GET['p']<1)$p = 1;
}else{
$p = 1;
}
$start = $p*$cop-$cop;
if($ca != 0){
$pc_ccom = mysql_query("SELECT * FROM `pc_ccom` where `code` = '".$id."' ORDER BY `id` DESC LIMIT $start,$cop");
while($pc_ccom2 = mysql_fetch_assoc($pc_ccom)){
echo '<div class="raz">'.ustatus($pc_ccom2['who']).' <a href="/us'.$pc_ccom2['who'].'">'.uname($pc_ccom2['who']).'</a> '.uaccess($pc_ccom2['who']).' ('.times($pc_ccom2['time']).')';
if($user['status'] >= 1) echo ' [<a href="/pc/ccom'.$id.'?p='.$p.'&dp&pid='.$pc_ccom2['id'].'">уд</a>]';
echo '<br>'.smiles(bbcode($pc_ccom2['text'])).'</div>';
}}
if(isset($_GET['dp']) && $user['status'] >= 1){
$pid = TextGuard($_GET['pid']);
$posts = mysql_fetch_array(mysql_query('select * from `pc_ccom` where `id` = "'.$pid.'" limit 1'));
if($posts == 0 or empty($pid) or !is_numeric($pid)){
header('Location: /pc/ccom'.$id.'?p='.$p.''); exit;
}
mysql_query("DELETE FROM `pc_ccom` WHERE `id`='".$pid."'");
header('Location: /pc/ccom'.$id.'?p='.$p.''); exit;
}
echo '</div><div class="navg">Стр. ';
if($p-2>0) echo '<a href="/pc/ccom'.$id.'?p=1"><<</a> ';
if($p-1>0) echo '<a href="/pc/ccom'.$id.'?p='.($p-1).'"><</a> ';
if($p-3>0) echo '<a href="/pc/ccom'.$id.'?p'.($p-3).'">'.($p-3).'</a> | ';
if($p-2>0) echo '<a href="/pc/ccom'.$id.'?p='.($p-2).'">'.($p-2).'</a> | ';
if($p-1>0) echo '<a href="/pc/ccom'.$id.'?p='.($p-1).'">'.($p-1).'</a> | ';
echo '<b>'.$p.'</b>';
if($p+1<=$cp) echo ' | <a href="/pc/ccom'.$id.'?p='.($p+1).'">'.($p+1).'</a>';
if($p+2<=$cp) echo ' | <a href="/pc/ccom'.$id.'?p='.($p+2).'">'.($p+2).'</a>';
if($p+3<=$cp) echo ' | <a href="/pc/ccom'.$id.'?p='.($p+3).'">'.($p+3).'</a>';
if($p+1<=$cp) echo ' <a href="/pc/ccom'.$id.'?p='.($p+1).'">></a>';
if($p+2<=$cp) echo ' <a href="/pc/ccom'.$id.'?p='.ceil($ca/$cop).'">>></a>';
echo '</div>';
break;
}
echo '<div class="navg"><img src="/images/homepage.gif"/> <a href="/">На главную</a></div>';
include '../../system/footer.php';
?>