UZFOR

Bildirishnomalar 0

Сирожиддин tomonidan axwzening Fhost.uz - Sifatli hosting nomli mavzusi faollashtirildi!
Bahh_Tee tomonidan Bahh_Teening CORES.UZ - Dasturchilar dunyosi nomli mavzusi faollashtirildi!
Сирожиддин tomonidan Astanovning Menga qoshiling va tredingni organing nomli mavzusi faollashtirildi!
Сирожиддин tomonidan Astanovning Asadbek nomli mavzusi faollashtirildi!
Barcha bildirishnomalar
Postga havola
Johncms bo'yicha umumiy savollar
16:54:27, 30 Jan 2020
ㅤㅤㅤㅤʟᴀᴄᴏsᴛᴇ 
  1. <?php
  2. /*
  3. ////////////////////////////////////////////////////////////////////////////////
  4. // JohnCMS                                                                    //
  5. // Официальный сайт сайт проекта:      http://johncms.com                     //
  6. // Дополнительный сайт поддержки:      http://gazenwagen.com                  //
  7. ////////////////////////////////////////////////////////////////////////////////
  8. // JohnCMS core team:                                                         //
  9. // Евгений Рябинин aka john77          john77@johncms.com                     //
  10. // Олег Касьянов aka AlkatraZ          alkatraz@johncms.com                   //
  11. //                                                                            //
  12. // Информацию о версиях смотрите в прилагаемом файле version.txt              //
  13. ////////////////////////////////////////////////////////////////////////////////
  14. */
  15. defined('_IN_JOHNCMS') or die('Error: restricted access');
  16. if($id) {
  17. $query = mysql_query("SELECT * FROM `cms_news` WHERE `id`='$id' LIMIT 1;");
  18. if (mysql_num_rows($query)) {
  19. $res1 = mysql_fetch_assoc($query);
  20. if(empty($_SESSION['error']))
  21. $_SESSION['error'] = '';
  22. require_once('../incfiles/head.php');
  23.  
  24. $com = isset($_REQUEST) ? abs(intval($_REQUEST['com'])) : '';
  25.  
  26. switch($mod) {
  27. case 'javob':
  28.     $q = mysql_query("SELECT * FROM `cms_news_comments` WHERE `id`='$com' LIMIT 1;");
  29.     if (mysql_num_rows($q)) {
  31.         $muallif = mysql_fetch_assoc(mysql_query("SELECT * FROM `users` WHERE `id` = '{$r['user_id']}'"));
  32.         if(isset($_POST['submit'])) {
  33.             $text = isset($_POST['text']) ? trim($_POST['text']) : '';
  34.             $error = array();
  35.             if(!$text)
  36.                 $eror[] = $lng_news['message_not_empty'] . '!';
  37.             elseif (mb_strlen($text) < 4 || mb_strlen($text) > 5000)
  38.                 $eror[] = $lng_news['message_long_error'] . '!';
  39.                 $flood = functions::antiflood();
  40.             if($flood)
  41.             $eror[] = $lng['error_flood'] . ' ' . $flood . $lng['sec'];
  42. $textl = $lng['news'] . ' | ' . $lng_news['comments_on_news'] . ' "' . htmlentities($res1['imname'], ENT_QUOTES, 'UTF-8') . '"';
  43.  
  44.             if(empty($eror)) {
  45. $lo = ''.$muallif['imname'].', ';
  46.                 mysql_query("INSERT INTO `cms_news_comments` SET
  47.                     `refid` = '$id',
  48.                     `time` = '" . time() . "',
  49.                     `user_id` = '" . $user_id . "',
  50.                     `text` = '" . mysql_real_escape_string($lo.$text) . "';
  51.                 ");
  52.  
  53. $name = '[url=' . $home . '/users/profile.php?user=' . $user_id . ']' . $ism . '[/url]';
  54. $qayer = '[url=' . $home . '/news/index.php?act=view&id=' . $id . ']bu yerda[/url]';
  55.  
  56.  
  57.  
  58.                 mysql_query("UPDATE `users` SET
  59.                 `lastpost` = '" . time() . "'
  60.                 WHERE `id` = '$user_id'
  61.                 ");
  62.             } else {
  63.                 $_SESSION['eror'] = '<div class="rmenu">' . implode('<br />', $eror) . '</div>';
  64.             }
  65.  
  66.                 Header('Location: index.php?act=view&id=' . $id. '#comm');
  67.  
  69.         } // submit
  70.         echo $_SESSION['error'] . '
  71.         <div class="phdr"><b>Javob yozish</b></div>
  72.         <div class="menu">
  73.         <form action="../news/index.php?act=comments&mod=javob&id=' . $id . '&com=' . $com . '" method="post"  enctype="multipart/form-data"><div>
  74.         Xabar matni (max 500):<br/>
  75.         <textarea rows="3" name="text"> </textarea>
  76.         <br />
  77.         <input type="submit" name="submit" value="' . $lng['reply'] . '"/>
  78.         </div></form>
  79.         </div>';
  80.  
  81.             $link = 'index.php?act=view&id=' . $id. '#comm';
  82.  
  83.         echo '<div class="phdr"><a href="'.$link.'">Qaytish</a></div>';
  84.     } else {
  85.         echo functions::display_error($lng_news['message_does_not_exist'] . '!');
  86.     } 
  87. break;
  88.  
  89.  
  90.  
  91. case 'delete':
  92. if($rights >= 7) {
  93. $q = mysql_query("SELECT * FROM `cms_news_comments` WHERE `id`='$com' LIMIT 1;");
  94. if (mysql_num_rows($q)) {
  95. if(isset($_POST['submit'])) {
  96. mysql_query("DELETE FROM `cms_news_comments` WHERE `id`='$com'");
  97. $_SESSION['error'] = '<div class="gmenu">' . $lng_news['message_deleted'] . '</div>';
  98. Header('Location: index.php?act=comments&id=' . $id);
  100. }
  101. echo $_SESSION['error'] . '<div class="rmenu">
  102. <form action="index.php?act=comments&amp;mod=delete&amp;id=' . $id . '&amp;com=' . $com . '" method="post"  enctype="multipart/form-data"><div>
  103. ' . $lng_news['confirm_the_deletion'] . '<br />
  104. <input type="submit" name="submit" value="' . $lng['delete'] . '"/>
  105. </div></form>
  106. </div>';
  107. } else {
  108. echo functions::display_error($lng_news['message_does_not_exist'] . '!');
  109. }
  110. } else {
  111. Header('Location: ../?err');
  113. }
  114. break;
  115.  
  116. case 'yoqdi':
  117.         $q = mysql_fetch_assoc(mysql_query("SELECT * FROM `cms_news_comments` WHERE `id`='$com' LIMIT 1;"));
  118.         if ($q['ovoz_berdi_id'] != $user_id) {
  119.             $_SESSION['id'] = $id;
  120.             mysql_query('UPDATE `cms_news_comments` SET  `yoqdi`="' . ($q['yoqdi'] ? ++$q['yoqdi'] : 1) . '"  WHERE `id`=' . $com);
  121.             mysql_query('UPDATE `cms_news_comments` SET  `ovoz_berdi_id`="' .$user_id. '"  WHERE `id`=' . $com);
  122. echo '<div class="gmenu">Like bosdingiz. <a href="../news/index.php?act=view&id=' . $id. '#comments">Yangilikga qaytish</a></div>';
  123.         } else {
  124. echo '<div class="gmenu">Siz oldin <b>Like</b> bosgansiz.  <a href="../news/index.php?act=view&id=' . $id. '#comments">Yangilikga qaytish</a></div>';
  125.         }
  126.         //Header('Location: ../news/index.php?act=view&id=' . $id);
  127. break;
  128. case 'yoqmadi':
  129.         $q = mysql_fetch_assoc(mysql_query("SELECT * FROM `cms_news_comments` WHERE `id`='$com' LIMIT 1;"));
  130.         if ($q['ovoz_berdi_id'] != $user_id) {
  131.         $_SESSION['id'] = $id;
  132.         mysql_query('UPDATE `cms_news_comments` SET  `yoqmadi`="' . ($q['yoqmadi'] ? ++$q['yoqmadi'] : 1) . '"  WHERE `id`=' . $com);
  133.         echo '<div class="gmenu"Izohga <b>Salbiy</b> ovoz berdingiz. <a href="../news/index.php?act=view&id=' . $id. '#comments">Yangilikga qaytish</a></div>';
  134.         mysql_query('UPDATE `cms_news_comments` SET  `ovoz_berdi_id`="' .$user_id. '"  WHERE `id`=' . $com);
  135.         } else {
  136.             echo '<div class="gmenu">Siz bu postga  <b>Salbiy</b> ovoz bergansiz.  <a href="../news/index.php?act=view&id=' . $id. '#comments">Yangilikga qaytish</a></div>';
  137.         }
  138.         //Header('Location: ../news/index.php?act=view&id=' . $id);
  139. break;
  140.  
  141. default:
  142. if($user_id && empty($ban[1]) ) {
  143. if(isset($_POST['submit'])) {
  144. $text = isset($_POST['text']) ? trim($_POST['text']) : '';
  145. $error = array();
  146. if(!$text)
  147. $error[] = $lng_news['message_not_empty'] . '!';
  148. elseif (mb_strlen($text) < 4 || mb_strlen($text) > 5000)
  149. $error[] = $lng_news['message_long_error'] . '!';
  150. $flood = functions::antiflood();
  151. if($flood)
  152. $error[] = $lng['error_flood'] . ' ' . $flood . $lng['sec'];
  153.  
  154. if(empty($error)) {
  155. mysql_query("INSERT INTO `cms_news_comments` SET
  156. `refid` = '$id',
  157. `time` = '" . time() . "',
  158. `user_id` = '" . $user_id . "',
  159. `text` = '" . mysql_real_escape_string($text) . "';");
  160. mysql_query("UPDATE `users` SET
  161. `lastpost` = '" . time() . "'
  162. WHERE `id` = '$user_id'
  163. ");
  164. $_SESSION['error'] = '<div class="gmenu">' . $lng_news['added_message'] . '</div>';
  165. } else {
  166. $_SESSION['error'] = '<div class="rmenu">' . implode('<br />', $error) . '</div>';
  167. }
  168. Header('Location: index.php?act=view&id=' . $id);
  169.  
  171. }
  172. echo $_SESSION['error'] . '<div class="phdr"><b>Izoh qoldirish</b></div><div class="menu1">
  173.  
  174. <form action="index.php?act=comments&amp;id=' . $id . '" method="post"  enctype="multipart/form-data"><div>
  175. <p>Matn:<font color="red"> *</font></p>
  176. <p><textarea rows="3" name="text">' . (!empty($_POST['text']) ? htmlentities($_POST['text'], ENT_QUOTES, 'UTF-8') : '') . '</textarea></p>
  177. <input type="submit" name="submit" value="' . $lng['sent'] . '"/> – <a href="/news/index.php?act=view&id=' . $id . '">Yangilash</a>
  178. </div></form>
  179. </div>';
  180. echo '<div class="phdr"><b>Fikrlar</b></div>';
  181. }
  182. $total = mysql_result(mysql_query("SELECT COUNT(*) FROM `cms_news_comments` WHERE `refid`='$id';"), 0);
  183. if($total) {
  184. if ($total > $kmess)
  185. echo '<div class="topmenu">' . functions::display_pagination('index.php?act=view&amp;id=' . $id . '&amp;', $start, $total, $kmess) . '</div>';
  186. $i = 1;
  187. $req = mysql_query("SELECT `cms_news_comments`.*, `cms_news_comments`.`time` as `mtime`, `cms_news_comments`.`id` as `mid`, `users`.* FROM `cms_news_comments` LEFT JOIN `users` ON `cms_news_comments`.`user_id`=`users`.`id` WHERE `cms_news_comments`.`refid`='$id' ORDER BY `cms_news_comments`.`time` DESC LIMIT "
  188. . $start . "," . $kmess);
  189. while (($row = mysql_fetch_assoc($req)) !== false) {
  190. echo '<div class="menu1">';
  191. $post = $row['text'];
  192. $post = functions::checkout($post, 1, 1);
  193. if ($set_user['smileys'])
  194. $post = functions::smileys($post, $row['rights'] >= 1 ? 1 : 0);
  195. if($row['reply'])
  196. $post .= '<div class="reply">' . functions::checkout($row['reply'], 1, 1) . '</div>';
  197.  
  198. $text = '<br/><b>' . functions::display_date($row['mtime']) . '</b><br/>';
  199.  
  200.  
  201. $arg = array(
  202. 'like',
  203. 'header' => $text,
  204. 'body' => $post,
  205. 'sub' => $subtext
  206. );
  207. echo functions::display_user($row, $arg);
  208. if ($user_id) {               if ($user_id == $row['user_id']) {
  209.  
  210. }else { 
  211. echo '<a href="index.php?act=comments&mod=javob&id=' .$id. '&com=' . $row['mid'] . '"><font color="#000066">Javob yozish</font></a>';
  212. }} if ($rights >= 6) { echo ' | <a href="index.php?act=comments&amp;mod=delete&amp;id=' . $id . '&amp;com=' . $row['mid'] . '"><font color="#CC0000">' . $lng['delete']. '</font></a>'; } echo '</div>';
  213. ++$i;
  214. }
  215. echo '<div class="phdr">' . $lng['total'] . ': ' . $total . '</div>';
  216. if ($total > $kmess) {
  217. echo '<div class="topmenu">' . functions::display_pagination('index.php?act=view&id=' . $id . '&amp;', $start, $total, $kmess) . '</div>';
  218. echo '<p><form action="index.php" method="get">
  219. <input type="hidden" name="act" value="comments"/>
  220. <input type="hidden" name="id" value="' . $id . '"/>
  221. <input type="text" name="page" size="2"/>
  222. <input type="submit" value="' . $lng['to_page'] . ' &gt;&gt;"/></form></p>';
  223. }
  224.  
  225. } else {
  226. echo '<div class="rmenu">Hozircha hech kim izoh qoldirmagan.</div>';
  227. }
  228. }
  229. } else {
  230. $textl = $lng['news'];
  231. require_once('../incfiles/head.php');
  232. echo functions::display_error($lng_news['news_does_not_exist']);
  233. }
  234. } else {
  235. $textl = $lng['news'];
  236. require_once('../incfiles/head.php');
  237. }

« Mavzuga qaytish

Kunduzi: °C

8 Feb 2026 yil
Joylashuv aniqlanmadi
Men turgan joyni ko'rsatish

Hozir saytda: 202 onlayn

O'tgan haftaga nisbatan
45%
CORES.UZ
Платформа разработчиков
который можно найти всё
UZFOR.NET - Rasmiy guruh
t.me/@uzfornet_rasmiy

Home
Mail
Chat
Notify