以下是原代码:
<?
require("config.inc.php");
//使用PHPLIB组件中的模板类模块,分离程序代码和页面
$t = new Template($_TEMPLATE_PATH , "keep");
$t->set_file(array(
"pubnews" => "pubnews.htm"
));
$title=$_REQUEST["title"];
$comfrom=$_REQUEST["comfrom"];
$typeid=$_REQUEST["typeid"]."|";$content=$_REQUEST["content"];
$content = ereg_replace(" "," ",$content);
$content=nl2br($content);
$db_new=new DB_YUYE;$nowtime=date("YmdHis");
$filename=$nowtime.$_FILES['fname']['name'];
$pubtime=date("Y-m-d H:i:s");if($_FILES['fname']['size']>0 && $_FILES['fname']['size']<5485760)
{
if($_FILES['fname']['type']=="image/gif" || $_FILES['fname']['type']=="image/pjpeg")
{
if (move_uploaded_file($_FILES['fname']['tmp_name'], "./../newspictures/" . $nowtime . $_FILES['fname']['name']))
{
$filename=$nowtime . $_FILES['fname']['name'];
$sql="insert into tb_newsinfo values('$nowtime','$title','$comefrom','$pubtime','$content','$filename','$typeid',0)";
$db_new->query($sql);
}
else
{
$msg="FAILURE";
}
}
else
{
$msg="TYPEERROR";
}
}
else
{
$sql="insert into tb_newsinfo values('$nowtime','$title','$comefrom','$pubtime','$content','','$typeid',0)";
$db_new->query($sql);
}//将参数传给程序对应的静态页面
$t->set_var(array(
"MSG" => $msg,
));$t->parse("out", array("pubnews"));
$t->p("out");?>
<?
require("config.inc.php");
//使用PHPLIB组件中的模板类模块,分离程序代码和页面
$t = new Template($_TEMPLATE_PATH , "keep");
$t->set_file(array(
"pubnews" => "pubnews.htm"
));
$title=$_REQUEST["title"];
$comfrom=$_REQUEST["comfrom"];
$typeid=$_REQUEST["typeid"]."|";$content=$_REQUEST["content"];
$content = ereg_replace(" "," ",$content);
$content=nl2br($content);
$db_new=new DB_YUYE;$nowtime=date("YmdHis");
$filename=$nowtime.$_FILES['fname']['name'];
$pubtime=date("Y-m-d H:i:s");if($_FILES['fname']['size']>0 && $_FILES['fname']['size']<5485760)
{
if($_FILES['fname']['type']=="image/gif" || $_FILES['fname']['type']=="image/pjpeg")
{
if (move_uploaded_file($_FILES['fname']['tmp_name'], "./../newspictures/" . $nowtime . $_FILES['fname']['name']))
{
$filename=$nowtime . $_FILES['fname']['name'];
$sql="insert into tb_newsinfo values('$nowtime','$title','$comefrom','$pubtime','$content','$filename','$typeid',0)";
$db_new->query($sql);
}
else
{
$msg="FAILURE";
}
}
else
{
$msg="TYPEERROR";
}
}
else
{
$sql="insert into tb_newsinfo values('$nowtime','$title','$comefrom','$pubtime','$content','','$typeid',0)";
$db_new->query($sql);
}//将参数传给程序对应的静态页面
$t->set_var(array(
"MSG" => $msg,
));$t->parse("out", array("pubnews"));
$t->p("out");?>
$_SERVER_ROOT = "./..";
$_PHPLIB["libdir"] = $_SERVER_ROOT . "/phplib/php/";
$_TEMPLATE_PATH = $_SERVER_ROOT. "/admin/templates/"; //调用PHPLIB组件
require($_PHPLIB["libdir"]."prepend.php3"); //创建MySQL数据库操作类
class DB_YUYE extends DB_Sql
{
var $classname ="DB_YUYE";
var $Host = "";
var $Database = "db_nnyy";
var $User = "sa";
var $Password = "";
var $UseODBCCursor = "nxyy";
}$limit=20;?>