Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.4.20 System : Linux st2.domain.com 3.10.0-1127.10.1.el7.x86_64 #1 SMP Wed Jun 3 14:28:03 UTC 2020 x86_64 User : apache ( 48) PHP Version : 7.4.20 Disable Function : NONE Directory : /var/www/html/thietkewebvumi.com/admin_new/mod/ |
<?php
class media{
var $path = 'banner/';
var $max_fsize = 1000000;
var $image_size = 190;
function media (){
global $CORE, $TBS;
//if (!$CORE->user['g_supmod'] && !$CORE->user['g_access_cp']) return;
$TBS->LoadTemplate(ADMIN_PATH."skin/media.html");
switch($CORE->input['code']){
default : $this -> goList(); break;
case 'post' : $this -> goPost(); break;
case 'del' : $this -> goDel(); break;
}
}
function goList(){
global $CORE,$DB,$TBS;
$TBS->MergeField('section','list');
$query = $DB->query("SELECT * FROM NNCCMS_media ORDER BY time");
$haverec = ($DB->get_num_rows($query)==0) ? 0 : 1;
$TBS->MergeField('haverec',$haverec);
while ($row = $DB->fetch_row($query)){
if($row['cat_id']>0){
$r_cname = $DB->fetch_row($DB->query("SELECT `cname`,`cid` FROM NNCCMS_productcat WHERE `cid` = '".$row['cat_id']."'"));
$row['cat_name'] = '<strong>'.$r_cname['cname'].'</strong>';
}else{
$row['cat_name'] = 'Không chá»n';
}
if(strtolower(substr($row['img'],-4))!='.swf' and strtolower(substr($row['img'],-4))!='.flv'){
$row['html'] = '<a href="'.$row['url'].'" target="_blank"><img src="../banner/'.$row['img'].'" border="0" width="100" /></a>';
}elseif(strtolower(substr($row['img'],-4))=='.swf'){
$arr_r = explode('.',$row['img']);
$row['html'] = '
<object classid="clsid:D27CDB6E-AE6D-11cf-96B8-444553540000" codebase="http://download.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=9,0,28,0">
<param name="movie" value="../banner/'.$row['img'].'" width="175" />
<param name="quality" value="high" /><param name="wmode" value="transparent" />
<embed src="../banner/'.$row['img'].'" quality="high" wmode="transparent" pluginspage="http://www.adobe.com/shockwave/download/download.cgi?P1_Prod_Version=ShockwaveFlash" type="application/x-shockwave-flash" width="175"></embed>
</object>
';
}else{
$row['html'] = '<script type="text/javascript" src="../maccromedia/longtai/swfobject.js"></script>
<div name="mediaspace" id="mediaspace">
<script type="text/javascript">
var so = new SWFObject(\'../maccromedia/longtai/player.swf\',\'single\',\'175\',\'150\',\'0\');
so.addVariable(\'fullscreen\',\'true\');
so.addParam("allowfullscreen","true");
so.addParam("wmode","transparent");
so.addVariable("file", "http://olaalo.com/banner/'.$row['img'].'");
so.addVariable("image", "skin/images/company_logo.png");
so.addVariable("skin", "../maccromedia/longtai/seawave_skin.swf");
so.write(\'mediaspace\');
</script></div>
';
}
$row['txtactive'] = ($row['active']==1)?'Äã kÃch hoạt':'ChÆ°a kÃch hoạt';
switch($row['group']) {
case 'home': $row['groupname'] = 'Trang chủ';
if($row['pos']!=''){
switch($row['pos']){
case 'left' : $row['txtpos'] = 'Quảng cáo trái (width: 185px)';break;
case 'center' : $row['txtpos'] = 'Quảng cáo giữa (373px × 70px)';break;
case 'right': $row['txtpos'] = 'Quảng cáo phải (373px × 70px)' ; break;
}
}
break;
case 'product': $row['groupname'] = 'Sản phẩm';
if($row['pos']!=''){
switch($row['pos']){
case 'left' : $row['txtpos'] = 'Quảng cáo trái (width: 181px)';break;
}
}
break;
case 'product_cat': $row['groupname'] = 'Nhóm sản phẩm';
if($row['pos']!=''){
switch($row['pos']){
case 'left' : $row['txtpos'] = 'Quảng cáo trái (width: 181px)';break;
}
}
break;
}
$a_home[] = $row;
}
if(is_null($a_home)) $a_home= array();
//$TBS->MergeBlock('blogC',$blogC);
$TBS->MergeBlock('a_home',$a_home);
$TBS->Show(TBS_OUTPUT+TBS_NOTHING);
}
function goPost(){
global $CORE, $DB, $func, $TBS, $print;
$TBS->MergeField('section','post');
$id = intval($CORE->input['id']);
if($_SESSION['error']) unset($CORE->input['bsubmit']);
// Show post -----------------------------------------------------------------------
if(!$CORE->input['bsubmit']){
if ($_SESSION['error']) $prevError = $_SESSION['error']; unset($_SESSION['error']);
if ($_SESSION['state']) $prevState = $_SESSION['state']; unset($_SESSION['state']);
if($prevState!=NULL){
$data = $prevState;
$id = $data['id'];
}else{
if($id==0){
$data['active'] = 1;
}else{
$query = $DB->query("SELECT * FROM NNCCMS_media WHERE id='".$id."'");
$data = $DB->fetch_row($query);
}
}
switch($data['group']) {
case 'home': $data['groupname'] = 'Trang chủ';
if($data['pos']!=''){
switch($data['pos']){
case 'left' : $data['txtpos'] = 'Quảng cáo trái (width: 185px )';break;
case 'center' : $data['txtpos'] = 'Quảng cáo giữa (373px × 70px)';break;
case 'right': $data['txtpos'] = 'Quảng cáo phải (373px × 70px)' ; break;
}
}
break;
case 'product': $data['groupname'] = 'Sản phẩm';
if($data['pos']!=''){
switch($data['pos']){
case 'left' : $data['txtpos'] = 'Quảng cáo trái (width: 181px)';break;
}
}
break;
case 'product_cat': $data['groupname'] = 'Nhóm sản phẩm';
if($data['pos']!=''){
switch($data['pos']){
case 'left' : $data['txtpos'] = 'Quảng cáo trái (width: 181px)';break;
}
}
break;
}
$data['title'] = html_entity_decode($data['title']);
$data['url'] = html_entity_decode($data['url']);
$data['active'] = $func->yes_no($data['active'],'active');
if($data['cat_id']!=''){
$r_check = $DB->fetch_row($DB->query("SELECT cid,cname FROM NNCCMS_productcat WHERE cid = '".$data['cat_id']."'"));
$data['cat_name'] = $r_check['cname'];
}
$error[] = $prevError;
$post[] = $data;
$TBS->MergeBlock('error',$error);
$TBS->MergeBlock('post',$post);
// Show page --------------
$TBS->Show(TBS_OUTPUT+TBS_NOTHING);
// Do post -------------------------------------------
}else{
$cat_id = $state['cat_id'] = $CORE->input['cat_id'];
$state['id'] = $id;
$title = $state['title'] = html_entity_decode($CORE->input['title']);
$img = $state['img'] = $CORE->input['img'];
$url = $state['url'] = html_entity_decode($CORE->input['url']);
$group =$state['group']= $CORE->input['group'];
$cost = $state['cost'] = $CORE->input['cost'];
$active = $state['active'] = $CORE->input['active'];
$time = $CORE->time;
// -------------- check -------------------------
//if($title=='') $error['title'] = 1;
//upload file
$thumb = $state['thumb'] = $CORE->input['thumb'];
$filenamethumb ='';
if(isset($_FILES['thumb']) and $_FILES['thumb']['type']!=''){
$typethumb = $_FILES['thumb']['type'];
// Check image size and image type
//,'application/octet-stream'
if($typethumb!='' and !in_array($typethumb,array('image/jpeg','image/pjpeg','image/gif','image/png','image/x-png')) ) {
$error['filetypethumb'] = 1;
exit($type.' is not support');
}
$uploads_dirthumb = ROOT_PATH.'banner';
$tmp_namethumb = $_FILES["thumb"]["tmp_name"];
if(basename($_FILES['thumb']['name'])!=''){
$nameimgthumb = uniqid().'_'.str_replace(' ','-',$func->bodau_normal(basename($_FILES['thumb']['name'])));
}
if($_FILES['thumb']['type']!='' and move_uploaded_file($tmp_namethumb, "$uploads_dirthumb/$nameimgthumb")){
$filenamethumb = $nameimgthumb;
}
}
$filename ='';
if(isset($_FILES['file']) and $_FILES['file']['type']!=''){
$type = $_FILES['file']['type'];
// Check image size and image type
//,'application/octet-stream'
if($type!='' and !in_array($type,array('image/jpeg','image/pjpeg','image/gif','image/png','image/x-png','application/x-shockwave-flash','video/x-flv','video/mp4v-es','audio/mp4')) && (substr(strtolower($_FILES['file']['name']), -4) != '.flv') ) {
$error['filetype'] = 1;
exit($type.' is not support');
}
$uploads_dir = ROOT_PATH.'banner';
$tmp_name = $_FILES["file"]["tmp_name"];
if(basename($_FILES['file']['name'])!=''){
$nameimg = uniqid().'_'.str_replace(' ','-',$func->bodau_normal(basename($_FILES['file']['name'])));
}
if($_FILES['file']['type']!='' and move_uploaded_file($tmp_name, "$uploads_dir/$nameimg")){
$filename = $nameimg;
}
}
if($title=='') $error['title']=1;
// Adding - if no images uploaded then return error
if($id==0 && $filename=='') $error['file'] = 1;
// If detects any errors then return to the postform with errors
if($error!=''){
$_SESSION['error'] = $error;
$_SESSION['state'] = $state;
return $this->goPost();;
}
if($id==0){
// Do Add ------------------
$DB->query("INSERT INTO `NNCCMS_media`(`id`,`group`,`title`,`url`,`target`,`text`,`thumb`,`img`,`review`,`time`,`pos`,`cost`,`cat_id`,`active`)
VALUES (
'','$group','$title','$url','$target','$text','$filenamethumb','$filename','$review','$time','$pos','$cost','$cat_id','$active')");
}else{
// Do Edit -----------------
$query = $DB->query("SELECT thumb,img FROM NNCCMS_media WHERE id='".$id."'");
$result = $DB->fetch_row($query);
if($filenamethumb!=''){
// Delete old files
if($result['thumb'] !='') unlink(ROOT_PATH.$this->path.$result['thumb']);
$DB->query("UPDATE NNCCMS_media SET `thumb`='".$filenamethumb."' WHERE `id`='".$id."'");
}
if($filename!=''){
// Delete old files
if($result['img'] !='') unlink(ROOT_PATH.$this->path.$result['img']);
$DB->query("UPDATE NNCCMS_media SET `img`='".$filename."' WHERE `id`='".$id."'");
}
$DB->query("UPDATE `NNCCMS_media` SET `group` = '$group', `title` = '$title', `url` = '$url',`target` = '$target',`text`='$text',`review` = '$review',`pos` = '$pos', `cost` = '$cost', `cat_id` = '$cat_id', `active` = '$active' WHERE `id`=$id");
//$DB->query("UPDATE `NNCCMS_media` SET `title` = '$title', `url` = '$url',`pos` = '$pos', `active` = '$active' WHERE `id`=$id");
}
$print->redirect('Äã cáºp nháºt...','index.php?act=media');
}
}
function goDel(){
global $CORE, $DB, $print;
$id = $CORE->input['id'];
$query = $DB->query("SELECT thumb,img FROM NNCCMS_media WHERE id='".$id."'");
$result = $DB->fetch_row($query);
// Delete old files
if($result['img'] !='') unlink(ROOT_PATH.$this->path.$result['img']);
if($result['thumb'] !='') unlink(ROOT_PATH.$this->path.$result['thumb']);
$DB->query("DELETE FROM NNCCMS_media WHERE id='".$id."'");
$print->redirect('Äã xóa...','index.php?act=media');
}
}
$run = new media();
?>