<?php
defined('_IN_JOHNCMS') or die('Error: restricted access');
 
if (isset($_POST['submit']) || isset($_GET['submit'])){  
$search = isset ($_POST['search']) ? trim($_POST['query']) : '';
$search = $search ? $search : rawurldecode(trim($_GET['query']));
$search = preg_replace("/[^\w\x7F-\xFF\s]/", " ", $search);  
$type = isset ($_POST['search']) ? intval($_POST['search']) : intval($_GET['search']);
if($type == 0){  
   $total = mysql_result(mysql_query("SELECT COUNT(*) FROM `downfiles` WHERE MATCH (`desc`) AGAINST ('" . mysql_real_escape_string($search) . "')"), 0); 
   $arr = mysql_query("SELECT * FROM `downfiles` WHERE MATCH (`desc`) AGAINST ('" . mysql_real_escape_string($search) . "')  LIMIT ".$start.", ".$kmess);
}else{  
   $total = mysql_result(mysql_query("SELECT COUNT(*) FROM `downfiles` WHERE `name` LIKE '%" . mysql_real_escape_string($search) . "%'"), 0);
   $arr = mysql_query("SELECT * FROM `downfiles` WHERE `name` LIKE '%" . mysql_real_escape_string($search) . "%' LIMIT ".$start.", ".$kmess); 
}      
} 
echo'<form action="/download/search.php?" method="post">
<div class="gmenu" style="text-align: center"><input type="text" name="query" size="25" placeholder="" value="" />&#160;<input type="submit" name="submit" value="поиск!"/></form>';       
echo '</div>'; 
?>