Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.4.20 System : Linux st2.domain.com 3.10.0-1127.10.1.el7.x86_64 #1 SMP Wed Jun 3 14:28:03 UTC 2020 x86_64 User : apache ( 48) PHP Version : 7.4.20 Disable Function : NONE Directory : /var/www/html/thietkewebvumi.com/admin_new/mod/ |
<?php
class banners{
var $path = 'banner/';
var $max_fsize = 1000000;
var $image_size = 190;
function banners (){
global $CORE, $TBS;
//if (!$CORE->user['g_supmod'] && !$CORE->user['g_access_cp']) return;
$TBS->LoadTemplate(ADMIN_PATH."skin/banners.html");
switch($CORE->input['code']){
default : $this -> goList(); break;
case 'post' : $this -> goPost(); break;
case 'del' : $this -> goDel(); break;
}
}
function goList(){
global $CORE,$DB,$TBS;
$TBS->MergeField('section','list');
$query = $DB->query("SELECT * FROM NNCCMS_banners ORDER BY time");
$haverec = ($DB->get_num_rows($query)==0) ? 0 : 1;
$TBS->MergeField('haverec',$haverec);
while ($row = $DB->fetch_row($query)){
if($row['cat_id']>0){
$r_cname = $DB->fetch_row($DB->query("SELECT `cname`,`cid` FROM NNCCMS_productcat WHERE `cid` = '".$row['cat_id']."'"));
$row['cat_name'] = '<strong>'.$r_cname['cname'].'</strong>';
}else{
$row['cat_name'] = 'Không chá»n';
}
if(strtolower(substr($row['img'],-4))!='.swf' and strtolower(substr($row['img'],-4))!='.flv'){
$row['html'] = '<a href="'.$row['url'].'" target="_blank"><img src="../banner/'.$row['img'].'" border="0" width="100" /></a>';
}elseif(strtolower(substr($row['img'],-4))=='.swf'){
$arr_r = explode('.',$row['img']);
$row['html'] = '
<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=9,0,28,0">
<param name="movie" value="../banner/'.$row['img'].'" width="175" />
<param name="quality" value="high" /><param name="wmode" value="transparent" />
<embed src="../banner/'.$row['img'].'" quality="high" wmode="transparent" pluginspage="http://www.adobe.com/shockwave/download/download.cgi?P1_Prod_Version=ShockwaveFlash" type="application/x-shockwave-flash" width="175"></embed>
</object>
';
}else{
$row['html'] = '<script type="text/javascript" src="../maccromedia/longtai/swfobject.js"></script>
<div name="mediaspace" id="mediaspace">
<script type="text/javascript">
var so = new SWFObject(\'../maccromedia/longtai/player.swf\',\'single\',\'175\',\'150\',\'0\');
so.addVariable(\'fullscreen\',\'true\');
so.addParam("allowfullscreen","true");
so.addParam("wmode","transparent");
so.addVariable("file", "http://olaalo.com/banner/'.$row['img'].'");
so.addVariable("image", "skin/images/company_logo.png");
so.addVariable("skin", "../maccromedia/longtai/seawave_skin.swf");
so.write(\'mediaspace\');
</script></div>
';
}
$row['txtactive'] = ($row['active']==1)?'Äã kÃch hoạt':'ChÆ°a kÃch hoạt';
switch($row['group']) {
case 'home': $row['groupname'] = 'Trang chủ';
if($row['pos']!=''){
switch($row['pos']){
case 'left' : $row['txtpos'] = 'Quảng cáo trái (width: 185px)';break;
case 'center' : $row['txtpos'] = 'Quảng cáo giữa (373px × 70px)';break;
case 'right': $row['txtpos'] = 'Quảng cáo phải (373px × 70px)' ; break;
}
}
break;
case 'product': $row['groupname'] = 'Sản phẩm';
if($row['pos']!=''){
switch($row['pos']){
case 'left' : $row['txtpos'] = 'Quảng cáo trái (width: 181px)';break;
}
}
break;
case 'product_cat': $row['groupname'] = 'Nhóm sản phẩm';
if($row['pos']!=''){
switch($row['pos']){
case 'left' : $row['txtpos'] = 'Quảng cáo trái (width: 181px)';break;
}
}
break;
case 'product_cat_hot': $row['groupname'] = 'Danh mục HOT'; $row['txtpos'] = 'Flash danh mục HOT';
break;
}
$a_home[] = $row;
}
if(is_null($a_home)) $a_home= array();
//$TBS->MergeBlock('blogC',$blogC);
$TBS->MergeBlock('a_home',$a_home);
$TBS->Show(TBS_OUTPUT+TBS_NOTHING);
}
function goPost(){
global $CORE, $DB, $func, $TBS, $print;
$TBS->MergeField('section','post');
$id = intval($CORE->input['id']);
if($_SESSION['error']) unset($CORE->input['bsubmit']);
// Show post -----------------------------------------------------------------------
if(!$CORE->input['bsubmit']){
if ($_SESSION['error']) $prevError = $_SESSION['error']; unset($_SESSION['error']);
if ($_SESSION['state']) $prevState = $_SESSION['state']; unset($_SESSION['state']);
if($prevState!=NULL){
$data = $prevState;
$id = $data['id'];
}else{
if($id==0){
$data['active'] = 1;
}else{
$query = $DB->query("SELECT * FROM NNCCMS_banners WHERE id='".$id."'");
$data = $DB->fetch_row($query);
}
}
switch($data['group']) {
case 'home': $data['groupname'] = 'Trang chủ';
if($data['pos']!=''){
switch($data['pos']){
case 'left' : $data['txtpos'] = 'Quảng cáo trái (width: 185px )';break;
case 'center' : $data['txtpos'] = 'Quảng cáo giữa (373px × 70px)';break;
case 'right': $data['txtpos'] = 'Quảng cáo phải (373px × 70px)' ; break;
}
}
break;
case 'product': $data['groupname'] = 'Sản phẩm';
if($data['pos']!=''){
switch($data['pos']){
case 'left' : $data['txtpos'] = 'Quảng cáo trái (width: 181px)';break;
}
}
break;
case 'product_cat': $data['groupname'] = 'Nhóm sản phẩm';
if($data['pos']!=''){
switch($data['pos']){
case 'left' : $data['txtpos'] = 'Quảng cáo trái (width: 181px)';break;
}
}
break;
case 'product_cat_hot': $data['groupname'] = 'Danh mục HOT'; $data['txtpos'] = 'Flash danh mục HOT';
break;
}
$data['title'] = html_entity_decode($data['title']);
$data['url'] = html_entity_decode($data['url']);
$data['active'] = $func->yes_no($data['active'],'active');
if($data['cat_id']!=''){
$r_check = $DB->fetch_row($DB->query("SELECT cid,cname FROM NNCCMS_productcat WHERE cid = '".$data['cat_id']."'"));
$data['cat_name'] = $r_check['cname'];
}
$error[] = $prevError;
$post[] = $data;
$TBS->MergeBlock('error',$error);
$TBS->MergeBlock('post',$post);
// Show page --------------
$TBS->Show(TBS_OUTPUT+TBS_NOTHING);
// Do post -------------------------------------------
}else{
$cat_id = $state['cat_id'] = $CORE->input['cat_id'];
$state['id'] = $id;
$title = $state['title'] = html_entity_decode($CORE->input['title']);
$img = $state['img'] = $CORE->input['img'];
$url = $state['url'] = html_entity_decode($CORE->input['url']);
$target = $state['target'] = html_entity_decode($CORE->input['target']);
$group =$state['group']= $CORE->input['group'];
$pos = $state['pos'] = $CORE->input['pos'];
$active = $state['active'] = $CORE->input['active'];
$time = $CORE->time;
// -------------- check -------------------------
//if($title=='') $error['title'] = 1;
if($pos=='') $error['pos'] = 1;
//upload file
$filename ='';
if(isset($_FILES['file']) and $_FILES['file']['type']!=''){
$type = $_FILES['file']['type'];
// Check image size and image type
//,'application/octet-stream'
if($type!='' and !in_array($type,array('image/jpeg','image/pjpeg','image/gif','image/png','image/x-png','application/x-shockwave-flash','video/x-flv')) && (substr(strtolower($_FILES['file']['name']), -4) != '.flv') ) {
$error['filetype'] = 1;
exit($type.' is not support');
}
$uploads_dir = ROOT_PATH.'banner';
$tmp_name = $_FILES["file"]["tmp_name"];
if(basename($_FILES['file']['name'])!=''){
$nameimg = $CORE->time.'_'.basename($_FILES['file']['name']);
sleep(1);
}
if($_FILES['file']['type']!='' and move_uploaded_file($tmp_name, "$uploads_dir/$nameimg")){
$filename = $nameimg;
}
}
if($title=='') $error['title']=1;
// Adding - if no images uploaded then return error
if($id==0 && $filename=='') $error['file'] = 1;
// If detects any errors then return to the postform with errors
if($error!=''){
$_SESSION['error'] = $error;
$_SESSION['state'] = $state;
return $this->goPost();;
}
if($id==0){
// Do Add ------------------
$DB->query("INSERT INTO `NNCCMS_banners`(`id`,`group`,`title`,`url`,`target`,`text`,`img`,`review`,`time`,`pos`,`cat_id`,`active`)
VALUES (
'','$group','$title','$url','$target','$text','$filename','$review','$time','$pos','$cat_id','$active')");
}else{
// Do Edit -----------------
if($filename!=''){
$query = $DB->query("SELECT img FROM NNCCMS_banners WHERE id='".$id."'");
$result = $DB->fetch_row($query);
// Delete old files
if($result['img'] !='') unlink(ROOT_PATH.$this->path.$result['img']);
$DB->query("UPDATE NNCCMS_banners SET `img`='".$filename."' WHERE `id`='".$id."'");
}
$DB->query("UPDATE `NNCCMS_banners` SET `group` = '$group', `title` = '$title', `url` = '$url',`target` = '$target',`text`='$text',`review` = '$review',`pos` = '$pos', `cat_id` = '$cat_id', `active` = '$active' WHERE `id`=$id");
//$DB->query("UPDATE `NNCCMS_banners` SET `title` = '$title', `url` = '$url',`pos` = '$pos', `active` = '$active' WHERE `id`=$id");
}
$print->redirect('Äã cáºp nháºt...','index.php?act=banners');
}
}
function goDel(){
global $CORE, $DB, $print;
$id = $CORE->input['id'];
$query = $DB->query("SELECT img FROM NNCCMS_banners WHERE id='".$id."'");
$result = $DB->fetch_row($query);
// Delete old files
if($result['img'] !='') unlink(ROOT_PATH.$this->path.$result['img']);
$DB->query("DELETE FROM NNCCMS_banners WHERE id='".$id."'");
$print->redirect('Äã xóa...','index.php?act=banners');
}
}
$run = new banners();
?>