From 7da86ae8b2e58df1f88bbdf6091df686fd537d12 Mon Sep 17 00:00:00 2001 From: tianya Date: Sat, 26 Nov 2022 10:51:41 +0800 Subject: [PATCH] =?UTF-8?q?=E6=BC=8F=E6=B4=9E=E4=BF=AE=E5=A4=8D?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .gitignore | 1 + src/admin/api.php | 1 + src/admin/article_template_rand.php | 112 ---------------------------- src/admin/inc/inc_action_info.php | 6 -- src/admin/inc/inc_menu.php | 1 - src/admin/sys_info.php | 7 +- src/admin/templets/article_add.htm | 18 +---- src/admin/templets/article_edit.htm | 15 +--- src/data/template.rand.php | 8 -- 9 files changed, 10 insertions(+), 159 deletions(-) delete mode 100644 src/admin/article_template_rand.php delete mode 100755 src/data/template.rand.php diff --git a/.gitignore b/.gitignore index 6b1048ff..9e623288 100644 --- a/.gitignore +++ b/.gitignore @@ -52,3 +52,4 @@ src/static/rss/*.xml src/a/baidunews.xml src/data/backupfile* src/data/updatefile* +src/data/checksql_* diff --git a/src/admin/api.php b/src/admin/api.php index 623db525..8183a2d1 100644 --- a/src/admin/api.php +++ b/src/admin/api.php @@ -121,6 +121,7 @@ if ($action === 'is_need_check_code') { echo $data; exit; } else if ($action === 'update') { + require_once(DEDEINC.'/libraries/dedehttpdown.class.php'); $row = GetCache('update', 'vers'); if (count($row) === 0) { echo json_encode(array( diff --git a/src/admin/article_template_rand.php b/src/admin/article_template_rand.php deleted file mode 100644 index 0cacfd89..00000000 --- a/src/admin/article_template_rand.php +++ /dev/null @@ -1,112 +0,0 @@ -ExecuteNoneQuery("UPDATE `#@__addonarticle` SET templet='$temp' where RIGHT(aid, 1)='$i' "); - } - AjaxHead(); - echo "全部随机操作成功"; - exit(); -} -//清除全部的指定模板 -else if ($dopost == 'clearold') { - CheckCSRF(); - $dsql->ExecuteNoneQuery("UPDATE `#@__addonarticle` SET templet='' "); - $dsql->ExecuteNoneQuery(" OPTIMIZE TABLE `#@__addonarticle` "); - AjaxHead(); - echo "全部清除操作成功"; - exit(); -} -//读出 -if (empty($templates) && filesize($m_file) > 0) { - $fp = fopen($m_file, 'r'); - $templates = fread($fp, filesize($m_file)); - fclose($fp); -} -$wintitle = "随机模板设置"; -$wecome_info = "随机模板设置"; -make_hash(); -$msg = " - - - - - - - - - - - - -
- 如果您想对旧的文档应用随机模板设置,请点击此对旧文档进行处理(必须设置好模板项) - 设置全部 - 取消全部 - $okmsg -
"; -$win = new OxWindow(); -$win->Init('article_template_rand.php', 'js/blank.js', 'POST'); -$win->AddHidden('dopost', 'save'); -$win->AddHidden('token', $_SESSION['token']); -$win->AddTitle("
本设置仅适用于系统默认的文档模型,设置后发布文档时会自动按指定的模板随机获取一个,如果不想使用此功能,把它设置为空即可AddMsgItem($msg); -$winform = $win->GetWindow('ok'); -$win->Display(); -?> \ No newline at end of file diff --git a/src/admin/inc/inc_action_info.php b/src/admin/inc/inc_action_info.php index 2313d181..192b3369 100644 --- a/src/admin/inc/inc_action_info.php +++ b/src/admin/inc/inc_action_info.php @@ -369,12 +369,6 @@ $actionSearch[9] = array( 'purview' => 'sys_StringMix', 'linkurl' => 'article_string_mix.php' ), - 9 => array( - 'title' => '随机模板设置', - 'description' => '本设置仅适用于系统默认的文档模型,设置后发布文档时会自动按指定的模板随机获取一个,如果不想使用此功能,把它设置为空即可', - 'purview' => 'sys_StringMix', - 'linkurl' => 'article_template_rand.php' - ), 11 => array( 'title' => '数据库备份还原', 'description' => '对数据库进行备份和还原', diff --git a/src/admin/inc/inc_menu.php b/src/admin/inc/inc_menu.php index ed6fbab2..7f4d0a54 100644 --- a/src/admin/inc/inc_menu.php +++ b/src/admin/inc/inc_menu.php @@ -65,7 +65,6 @@ if ($cuserLogin->getUserType() >= 10) { - ".(DEDEBIZ_SAFE_MODE? "" : "")." ".(DEDEBIZ_SAFE_MODE? "" : "")." diff --git a/src/admin/sys_info.php b/src/admin/sys_info.php index f2b43f22..c52e6288 100644 --- a/src/admin/sys_info.php +++ b/src/admin/sys_info.php @@ -27,6 +27,7 @@ function ReWriteConfig() $dsql->Execute(); while ($row = $dsql->GetArray()) { if ($row['type'] == 'number') { + $row['value'] = preg_replace("#[^0-9.]#","", $row['value']); if ($row['value'] == '') $row['value'] = 0; fwrite($fp, "\${$row['varname']} = ".$row['value'].";\r\n"); } else { @@ -63,6 +64,9 @@ else if ($dopost == 'add') { ShowMsg("布尔变量值必须为'Y'或'N'", "-1"); exit(); } + if ($valtype == 'number') { + $nvarvalue = preg_replace("[^0-9.]","", $nvarvalue); + } if (trim($nvarname) == '' || preg_match("#[^a-z_]#i", $nvarname)) { ShowMsg("变量名不能为空并且必须为[a-z_]组成", "-1"); exit(); @@ -73,7 +77,8 @@ else if ($dopost == 'add') { exit(); } $row = $dsql->GetOne("SELECT aid FROM `#@__sysconfig` ORDER BY aid DESC"); - $aid = $row['aid'] + 1; + $aid = intval($row['aid']) + 1; + $varmsg = HtmlReplace($varmsg); $inquery = "INSERT INTO `#@__sysconfig` (`aid`,`varname`,`info`,`value`,`type`,`groupid`) VALUES ('$aid','$nvarname','$varmsg','$nvarvalue','$vartype','$vargroup')"; $rs = $dsql->ExecuteNoneQuery($inquery); if (!$rs) { diff --git a/src/admin/templets/article_add.htm b/src/admin/templets/article_add.htm index 2ee2f1de..a985bf59 100644 --- a/src/admin/templets/article_add.htm +++ b/src/admin/templets/article_add.htm @@ -310,23 +310,7 @@ (不包括后缀名如.html等) - 随机选择模板: - - "; - } + echo ""; ?> diff --git a/src/admin/templets/article_edit.htm b/src/admin/templets/article_edit.htm index 3be349e6..0bd947a1 100644 --- a/src/admin/templets/article_edit.htm +++ b/src/admin/templets/article_edit.htm @@ -290,21 +290,8 @@ 文件名称: (不包括后缀名如.html等) - - 模板选择: - "; - } + echo ""; ?> diff --git a/src/data/template.rand.php b/src/data/template.rand.php deleted file mode 100755 index 452e398d..00000000 --- a/src/data/template.rand.php +++ /dev/null @@ -1,8 +0,0 @@ - \ No newline at end of file