Server : Apache/2.4.6 (CentOS) OpenSSL/1.0.2k-fips PHP/7.4.20 System : Linux st2.domain.com 3.10.0-1127.10.1.el7.x86_64 #1 SMP Wed Jun 3 14:28:03 UTC 2020 x86_64 User : apache ( 48) PHP Version : 7.4.20 Disable Function : NONE Directory : /var/www/html/thietkewebvumi.com/admin_new/mod/ |
<?php
class movie{
var $path = 'banner/';
var $max_fsize = 1000000;
var $image_size = 190;
function movie (){
global $CORE;
//if (!$CORE->user['g_supmod'] && !$CORE->user['g_access_cp']) return;
$mid = array();
switch($CORE->input['code']){
default : $this -> goList(); break;
case 'post' : $this -> goPost(); break;
case 'del' : $this -> goDel($mid); break;
case 'postepi' : $this -> goPostEpi() ; break;
case 'delepi' : $this ->goDelEpi(); break;
case 'delserver' : $this->goDelServer(); break;
case 'del_phim' : $this->goDelPhim(); break;
}
}
function goDelPhim(){
global $DB, $print;
/*$q1 = $DB->query("SELECT mid FROM NNCCMS_movie WHERE `img` LIKE '%photobucket.com%' OR `img` LIKE '%duhoc-o-canada.com%'");
while($r1 = $DB->fetch_row($q1)){*/
$DB->query("DELETE FROM NNCCMS_epi WHERE mid ='0'");
$DB->query("DELETE FROM NNCCMS_movietocat WHERE mid='0'");
//}
//$DB->query("DELETE FROM NNCCMS_movie WHERE `img` LIKE '%photobucket.com%' OR `img` LIKE '%duhoc-o-canada.com%'");
$print->refresh('index.php?act=movie');
}
function goDelServer(){
global $CORE, $DB, $print;
$id = intval($CORE->input['id']);
$mid = intval($CORE->input['mid']);
$site = trim($CORE->input['site']);
$server = trim($CORE->input['server']);
if($id>0){
$DB->query("DELETE FROM NNCCMS_epi WHERE mid = '$mid' AND `site`='$site' AND `server` = '$server'");
}
$print->refresh('index.php?act=movie&code=post&id='.$id);
}
function goDelEpi(){
global $CORE, $DB, $print;
$id = intval($CORE->input['id']);
$mid = intval($CORE->input['mid']);
if($id>0){
$DB->query("DELETE FROM NNCCMS_epi WHERE id = '$id' LIMIT 1");
}
$print->refresh('index.php?act=movie&code=post&id='.$mid);
}
function goPostEpi(){
global $CORE, $DB, $smarty, $print;
$smarty->assign('section','post_epi');
$id = intval($CORE->input['id']);
$mid = intval($CORE->input['mid']);
$eid = intval($CORE->input['eid']);
$server = trim($CORE->input['server']);
$site = $CORE->input['site'];
if($_SESSION['error']) unset($CORE->input['bsubmit']);
// Show post -----------------------------------------------------------------------
if(!$CORE->input['bsubmit']){
if($id==0){
$data['eid'] = $eid;
$data['mid'] = $mid;
$data['server'] = $server;
$data['site'] = $site;
}else{
$query = $DB->query("SELECT * FROM NNCCMS_epi WHERE id='".$id."'");
$data = $DB->fetch_row($query);
}
//$data['title'] = html_entity_decode($data['title']);
//$data['url'] = html_entity_decode($data['url']);
//$data['des'] = $func->editor_admin('des',$data['des'],20);
//$post[] = $data;
$smarty->assign('post',$data);
// Do post -------------------------------------------
}else{
//process bar
$id = $CORE->input['id'];
$eid = $CORE->input['eid'];
$mid = $CORE->input['mid'];
$server = $CORE->input['server'];
$site = $CORE->input['site'];
$play = str_replace("'","\'",trim($_REQUEST['play'])) ;
$pos = $CORE->input['pos'];
if($eid=='' or $mid =='' or $server=='' or $site=='' or $play=='' or $pos=='') exit('Xin nhap day du~');
if($id==0){
// Do Add ------------------
if(intval($eid)==0){
$row_check = $DB->fetch_row($DB->query("SELECT eid FROM NNCCMS_epi ORDER BY eid DESC LIMIT 1"));
$eid = $row_check['eid']+1;
}
$DB->query("INSERT INTO `NNCCMS_epi` (`eid` ,`mid` ,`server` ,`play` ,`pos` ,`site`) VALUES ( '$eid', '$mid', '$server', '$play', '$pos', '$site');");
$insert_id = mysql_insert_id();
$print->refresh('index.php?act=movie&code=postepi&id='.$insert_id);
}else{
// Do Edit -----------------
$DB->query("UPDATE `NNCCMS_epi` SET `server`='$server',`play` = '$play',`pos` = '$pos',`site` = '$site' WHERE `id`='$id' ;");
$print->refresh('index.php?act=movie&code=postepi&id='.$id);
//$DB->query("UPDATE `NNCCMS_movie` SET `title` = '$title', `url` = '$url',`pos` = '$pos', `active` = '$active' WHERE `id`=$id");
}
}//end main if
}
function goList(){
global $CORE,$DB,$smarty,$print,$func;
$smarty->assign('module_name','Quản lý phim ảnh');
$smarty->assign('title','Movies');
$smarty->assign('status',$CORE->input['status']);
$smarty->assign('section','list');
$mid = $CORE->input['mid'];
$kw2 = $func->bodau_normal($mid);
$kw3 = str_ireplace('d','đ',$mid);
$kw4 = str_ireplace('D','Đ',$mid);
$where = '';
if($mid!=''){
$where = " WHERE mid = '".$mid."' OR title LIKE '%".$mid."%' OR title LIKE '%".$kw2."%' OR title LIKE '%".$kw3."%' OR title LIKE '%".$kw4."%' " ;
}
$pageSize = 24;
$pageNum = ($_GET['pageNum']>0) ? intval($_GET['pageNum']) : 1;
$from = ($pageNum * $pageSize) - $pageSize;
$queryt= $DB->fetch_row($DB->query("SELECT count(*) as total FROM NNCCMS_movie ".$where));
$total = $queryt['total'];
$totalPage = ceil($total / $pageSize);
$query = $DB->query("SELECT * FROM NNCCMS_movie $where ORDER BY id DESC LIMIT $from, $pageSize");
$haverec = ($DB->get_num_rows($query)==0) ? 0 : 1;
$smarty->assign('haverec',$haverec);
while ($row = $DB->fetch_row($query)){
$a_home[] = $row;
}
if(is_null($a_home)) $a_home= array();
//$TBS->MergeBlock('blogC',$blogC);
$smarty->assign('a_home',$a_home);
$nav = $print->Pagination($totalPage,$pageNum,'phim','index.php?act=movie');
$smarty->assign('nav',$nav);
//del multi movie
$arr_mid = $CORE->input['mid_for_del'];
if(!empty($arr_mid)){
$this->goDel($arr_mid);
}
}
function goPost(){
global $CORE, $DB, $func, $smarty, $print;
$smarty->assign('section','post');
$smarty->assign('status',$CORE->input['status']);
$id = intval($CORE->input['id']);
if($_SESSION['error']) unset($CORE->input['bsubmit']);
// Show post -----------------------------------------------------------------------
if(!$CORE->input['bsubmit']){
if ($_SESSION['error']) $prevError = $_SESSION['error']; unset($_SESSION['error']);
if ($_SESSION['state']) $prevState = $_SESSION['state']; unset($_SESSION['state']);
if($prevState!=NULL){
$data = $prevState;
$id = $data['id'];
}else{
if($id==0){
$data['active'] = 1;
}else{
$query = $DB->query("SELECT * FROM NNCCMS_movie WHERE id='".$id."'");
$data = $DB->fetch_row($query);
}
}
$smarty->assign('module_name','Quản lý phim '.$data['title']);
$smarty->assign('title',$data['title']);
$data['title'] = html_entity_decode($data['title']);
$data['url'] = html_entity_decode($data['url']);
$data['des'] = $func->editor_admin('des',$data['des'],20);
$data['intro'] = $func->editor_admin('intro',$data['intro'],15);
$error[] = $prevError;
//$post[] = $data;
$smarty->assign('error',$error);
$smarty->assign('post',$data);
//list cat
$query_cat = $DB->query("SELECT * FROM NNCCMS_moviecat WHERE `type`='phim-le'");
while($row_cat = $DB->fetch_row($query_cat)){
$query_tocat = $DB->query("SELECT * FROM NNCCMS_movietocat WHERE mid='".$data['mid']."' ");
//$row_cat['cname'] = $row_catname['cname'];
while($row_tocat = $DB->fetch_row($query_tocat)){
if($row_tocat['cid']==$row_cat['cid']){
$row_cat['op'] = 'selected';
}
}
$list_cat[] = $row_cat;
}
if(is_null($list_cat)) $list_cat = array();
$smarty->assign('list_cat',$list_cat);
//list server
$q_server = $DB->query("SELECT eid,server FROM NNCCMS_epi WHERE mid='{$data['mid']}' group by `server` ORDER BY id ");
$i_epi= 1;
$str_epi = array();
while($r_server = $DB->fetch_row($q_server)){
if($i_epi==1){
$r_server['f_eid'] = $r_server['eid'];
}
$q_epi2 = $DB->query("SELECT * FROM NNCCMS_epi WHERE server = '{$r_server['server']}' AND mid='{$data['mid']}' ORDER BY `id` ");
$r_server['server2'] = strip_tags($r_server['server']);
$r_server['checked']= '';
while($r_epi2 = $DB->fetch_row($q_epi2)){
if($r_epi2['eid']==$id){
$str_epi[$r_server['server']] .= '<a href="index.php?act=movie&code=postepi&id='.$r_epi2['id'].'&mid='.$data['mid'].'&eid='.$r_epi2['eid'].'&site='.$data['site'].'&server='.$r_server['server'].'" target="_blank">'.$r_epi2['pos'].'</a> [<a href="index.php?act=movie&code=postepi&id='.$r_epi2['id'].'&mid='.$data['mid'].'&eid='.$r_epi2['eid'].'&site='.$data['site'].'&server='.$r_server['server'].'" target="_blank">Sửa</a>] | <a href="index.php?act=movie&code=delepi&mid='.$id.'&id='.$r_epi2['id'].'" onclick="return confirm(\'Ban co chac muon xoa?\');">[Xóa]</a> ';
}else{
$str_epi[$r_server['server']] .= ' <a href="index.php?act=movie&code=postepi&id='.$r_epi2['id'].'&mid='.$data['mid'].'&eid='.$r_epi2['eid'].'&site='.$data['site'].'&server='.$r_server['server'].'" style="color:#0033CC; font-weight: bold;" target="_blank">'.$r_epi2['pos'].'</a> [<a href="index.php?act=movie&code=postepi&id='.$r_epi2['id'].'&mid='.$data['mid'].'&eid='.$r_epi2['eid'].'&site='.$data['site'].'&server='.$r_server['server'].'" target="_blank">Sửa</a>] | [<a href="index.php?act=movie&code=delepi&mid='.$id.'&id='.$r_epi2['id'].'" onclick="return confirm(\'Ban co chac muon xoa?\');">Xóa</a>] ';
}
}
if($r_server['f_eid']==$data['eid']){
$r_server['checked']='checked';
}
$r_server['server'] = '<span class="server_name">'.preg_replace('#V1VN#is','PHIM19',$r_server['server']).' [<a href="index.php?act=movie&code=delserver&id='.$data['id'].'&mid='.$data['mid'].'&site='.$data['site'].'&server='.$r_server['server'].'" onclick="return confirm(\'Ban co chac?\');">Xoa server</a>] <input type="radio" value="'.$r_server['f_eid'].'" name="f_eid" '.$r_server['checked'].'></span> '.$str_epi[$r_server['server']];
$list[] = $r_server;
}
if(is_null($list)) $list = array();
$smarty->assign('list_server',$list);
// Do post -------------------------------------------
}else{
//process bar
$id = $state['id'] = $CORE->input['id'];
$mid = $state['mid'] = $CORE->input['mid'];
$cat = $CORE->input['cat'];
$title = $state['title'] = html_entity_decode($CORE->input['title']);
$img = $state['img'] = $CORE->input['img'];
$type = $state['type'] = $CORE->input['type'];
$type2 = $state['type2'] = $CORE->input['type2'];
$site = $CORE->input['site'];
$intro = $CORE->input['intro'];
$body = $CORE->input['body'];
$des = $CORE->input['des'];
$top = $CORE->input['top'];
$un_top = intval($CORE->input['un_top']);
$f_eid = $CORE->input['f_eid'];
if($top==1){
$time=time();
}else{
if($un_top==0){
$time=time()-(24*60*60);
}else{
$time=time()-(10*24*60*60);
}
}
if($title=='') $error['title']=1;
// Adding - if no images uploaded then return error
// If detects any errors then return to the postform with errors
if($error!=''){
$_SESSION['error'] = $error;
$_SESSION['state'] = $state;
return $this->goPost();
}
//get mid
if(intval($mid)==0){
$row_check = $DB->fetch_row($DB->query("SELECT mid,img FROM NNCCMS_movie ORDER BY mid DESC LIMIT 1"));
$mid = $row_check['mid']+1;
}
$img_local = "";
if($_FILES['img_up'] and $_FILES['img_up']['type']!=''){
//$rand = md5(microtime());
$image_name1 = $mid;
$imageExt1 = '.jpg';
// If image uploaded and processed then get imagename
if(move_uploaded_file($_FILES['img_up']['tmp_name'], ROOT_PATH.'upload/images/'.$image_name1.$imageExt1)){
$img_local = 'http://phim19.com/upload/images/'.$image_name1.$imageExt1;
}else{
$error['img'] = 1;
}
}
if(($img=='' or trim($img)=='Đang cập nhật') and $img_local!=''){
$img = $img_local;
}
if($id==0){
// Do Add ------------------
$DB->query("INSERT INTO `NNCCMS_movie` (`mid` ,`cid` ,`type` ,`type2` ,`title`,`intro`,`body` ,`des`,`img` ,`hit` ,`time`,`site`) VALUES ( '$mid', '', '$type', '$type2', '$title', '$intro','$body','$des', '$img', '10', '".$time."', '$site');");
$insert_id = mysql_insert_id();
foreach($cat as $val){
$DB->query("INSERT INTO NNCCMS_movietocat (`mid`,`cid`) VALUES ('$mid','$val')");
}
$print->refresh('index.php?act=movie&code=post&status=add_success&id='.$insert_id);
}else{
// Do Edit -----------------
$DB->query("UPDATE `NNCCMS_movie` SET `mid` = '$mid',`cid` = '',`type` = '$type',`type2` = '$type2',`title` = '$title',`intro` = '$intro',`body` = '$body',`des` = '$des',`img` = '$img',`site` = '$site',`eid`='$f_eid' WHERE `id`='$id' ;");
$DB->query("DELETE FROM NNCCMS_movietocat WHERE mid='$mid'");
foreach($cat as $val){
$DB->query("INSERT INTO NNCCMS_movietocat (`mid`,`cid`) VALUES ('$mid','$val')");
}
if($top==1){
$DB->query("UPDATE `NNCCMS_movie` SET `time` = '".time()."' WHERE `id`='$id' ;");
}
if($un_top==1){
$DB->query("UPDATE `NNCCMS_movie` SET `time` = '".$time."' WHERE `id`='$id' ;");
}
$print->refresh('index.php?act=movie&code=post&status=edit_success&id='.$id);
//$DB->query("UPDATE `NNCCMS_movie` SET `title` = '$title', `url` = '$url',`pos` = '$pos', `active` = '$active' WHERE `id`=$id");
}
}//end main if
}
function goDel($arr_mid){
global $CORE, $DB, $print;
if(empty($arr_mid)){
$mid = $CORE->input['mid'];
@unlink(ROOT_PATH.'upload/images/'.$mid.'.jpg');
$DB->query("DELETE FROM NNCCMS_movie WHERE mid='".$mid."'");
$DB->query("DELETE FROM NNCCMS_epi WHERE mid='".$mid."'");
$DB->query("DELETE FROM NNCCMS_movietocat WHERE mid='".$mid."'");
$print->refresh('index.php?act=movie&status=del_success');
}else{
foreach($arr_mid as $val){
@unlink(ROOT_PATH.'upload/images/'.$val.'.jpg');
$DB->query("DELETE FROM NNCCMS_movie WHERE mid='".$val."'");
$DB->query("DELETE FROM NNCCMS_epi WHERE mid='".$val."'");
$DB->query("DELETE FROM NNCCMS_movietocat WHERE mid='".$val."'");
}
$print->refresh('index.php?act=movie&status=del_success');
}
}
}
$run = new movie();
?>