($add_date-(60*$timelimit))") or died("Database Query Error"); $query=mysql_fetch_array($result); if ($query) { header("Location: $PHP_SELF?book_id=$book_id$titlelink"); exit; } if($title&&$link){$titlelink="&title=$title&link=$link";}; // $in = strip_array($in); // Add SQL compatibilty & Smilie Convert $in['message'] = encode_msg($in['message']); if($attachID!="") { $original = "

\n"; $query = "select * from guestbook where id=".$attachID; $result=mysql_db_query($database, $query) or died("Database Query Error"); $record=mysql_fetch_array($result); $original .= "
".$record[name].":
  ".$record[message]; $original .= "
\n"; $in['message'] = $in['message'] .$original; }; if ($in['name'] == "") { died("$guestbook_head$languagemetatag
$name_empty
"); } if (!eregi("^[0-9a-z]([-_.]?[0-9a-z])*@[0-9a-z]([-.]?[0-9a-z])*\\.[a-z]{2,3}$",$in['email']) && $in['email'] != "") { died("$guestbook_head$languagemetatag
$non_valid_email
"); } if (strlen($in['message']) < $limit["0"] || strlen($in['message']) > $limit["1"]) { died("$guestbook_head$languagemetatag
$message_incorrect $limit[0] $and $limit[1] $characters.
"); } if(eregi("http",$in['message'])) { died("$guestbook_head$languagemetatag
No content
"); } if(eregi("i",$in['message'])) { died("$guestbook_head$languagemetatag
No content
"); } if (strlen($in['message']) < $limit["0"] || strlen($in['message']) > $limit["1"]) { died("$guestbook_head$languagemetatag
$message_incorrect $limit[0] $and $limit[1] $characters.
"); } if ($in['email'] == "") { $in['email'] = "none"; } if ($in['location'] == "0") { $in['location'] = "none"; } $in['browser'] = $HTTP_USER_AGENT; # mysql_db_query($database, "INSERT INTO guestbook (name, email, message, timestamp, ip, location, browser,type,pass,link) # VALUES('$in[name]', '$in[email]','$in[message]','$add_date', '$REMOTE_ADDR','$in[location]','$in#[browser]','$book_id','Y','$link')") # or died("Database Query Error"); if ($gb_notify) { @mail("$gb_notify","$gb_notifysubj","$notify_text $in[name]\n\n".censor_msg($in[message]),"From: $gb_notify"); } if ($timelimit) { setcookie("phpbookcookie","$guestbook_head", time()+(60*$timelimit),"/"); } if ($admin) {$adminlink="&admin=$admin";} header("Location: $PHP_SELF?book_id=$book_id$adminlink$titlelink"); exit; } } else { // Show the entries ##################### # Header ################################################################################################# echo "\n"; echo " \n"; echo " 書き込み\n"; echo " "; echo " \n"; echo " $languagemetatag\n"; echo " \n"; echo " \n"; echo " \n"; echo "\n"; # The Main-Section ################################################################################################# echo" \n"; if($title&&$link) { echo" "; $titlelink="&title=$title&link=$link"; }; echo" \n"; echo" \n"; echo" \n"; echo" \n"; echo" \n"; echo" \n"; echo"

$title

\n"; echo" \n"; echo" \n"; echo" \n"; echo" \n"; echo"
\n"; if ($action=="add") { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$guestbook_head
\n"; echo "
\n"; echo "
$gb_link1head
\n"; echo "
\n"; if($attach!="") { echo "
\n"; $query = "select * from guestbook where id=".$attach; $result=mysql_db_query($database, $query) or died("Database Query Error"); $record=mysql_fetch_array($result); $original = $record[name].":

  ".$record[message]; echo $original; echo "
\n"; } echo "
\n"; echo "
\n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; if($attach!="") { echo ""; }; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
$gbadd_name
\n\n\n
$gbadd_msg

\n"; echo "

\n"; echo " \n"; echo "
\n"; echo " "; echo " "; echo "
利用上の注意:
"; echo " 1.利用者は中華人民共和国の関連法律・法規を順守し、ネット上のモラルを守り、利用者自身の行為に起因する直接、間接のあらゆる法的責任を負うこと。
"; echo " 2.書き込み内容の取り扱いに関する一切の権限は人民網が有します。
"; echo " 3.人民網は、人民網掲示板に発表された文言を本WEBサイト上へ転載、引用する権限を有します。
"; echo " 4.利用者は上述の規約に同意したものと見なします。
"; echo " 5.ネット管理についてのご意見は、管理人あるいは人民日報網絡中心にお寄せください。


"; echo "
"; } elseif ($action=="admin" && $admin==$adminpass) { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$guestbook_head
\n"; echo "
\n"; echo "
"; echo " $gb_link5 || "; echo " $gb_link2head
\n"; echo "
\n"; echo "
\n"; echo "
\n"; echo " $gb_link3
\n"; echo " $gb_link4
\n"; echo " $gb_link6
\n"; echo "
\n"; } elseif ($action == "badwords" && $admin==$adminpass) { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$guestbook_head
\n"; echo "
\n"; echo "
"; echo " $gb_link5 || "; echo " $gb_link2 || "; echo " $gb_link3head
\n"; echo "
\n"; $count=0; $result = mysql_db_query($database, "select * from badwords") or die("Database Query Error"); echo "
\n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo " "; echo " \n"; echo " \n"; echo "
\n"; while ($db = mysql_fetch_array($result)) { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$db[badword]
"; echo "
\n"; echo "
Edit || \n"; echo " $menusepDelete
\n"; echo "
\n"; $count++; } echo "

$count $gb_link4stat

\n"; } elseif ($action == "edit_badword" || $action == "new_badword" && $admin==$adminpass) { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$guestbook_head
\n"; echo "
\n"; echo "
"; echo " $gb_link5 || "; echo " $gb_link2 || "; echo " $gb_link3head
\n"; echo "
\n"; echo "
\n"; echo "\n"; if ($action == "edit_badword") { echo "\n"; } else { echo "\n"; } echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "
$gb_link3text
\n"; echo "

\n"; echo "
\n"; } elseif ($action == "save_edit_badword" && $admin==$adminpass) { $result = mysql_db_query($database, "UPDATE badwords SET badword='$newvalue' WHERE badword='$value'") or die("Database Query Error"); echo "\n"; } elseif ($action == "save_new_badword" && $admin==$adminpass) { $result = mysql_db_query($database, "INSERT INTO badwords (badword) VALUES('$newvalue')") or die("Database Query Error"); echo "\n"; } elseif ($action == "delete_badword" && $admin==$adminpass) { $result = mysql_db_query($database, "DELETE FROM badwords WHERE badword='$value'") or die("Database Query Error"); echo "\n"; } elseif ($action == "banned_ips" && $admin==$adminpass) { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$guestbook_head
\n"; echo "
\n"; echo "
"; echo " $gb_link5 || "; echo " $gb_link2 || "; echo " $gb_link4head
\n"; echo "
\n"; $count=0; $result = mysql_db_query($database, "select * from banned_ips") or die("Database Query Error"); echo "
\n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo " "; echo " \n"; echo " \n"; echo "
\n"; while ($db = mysql_fetch_array($result)) { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$db[0]
"; echo "
\n"; echo "
Edit || \n"; echo " Delete
\n"; echo "
\n"; $count++; } echo "

$count $gb_link4stat

\n"; } elseif ($action == "edit_banned_ip" || $action == "new_banned_ip") { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$guestbook_head
\n"; echo "
\n"; echo "
"; echo " $gb_link5 || "; echo " $gb_link2 || "; echo " $gb_link4head
\n"; echo "
\n"; echo "
\n"; echo "\n"; if ($action == "edit_banned_ip") { echo "\n"; } else { echo "\n"; } echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "
$gb_link4text
\n"; echo "

\n"; echo "
\n"; } elseif ($action == "save_edit_banned_ip" && $admin==$adminpass) { $result = mysql_db_query($database, "UPDATE banned_ips SET banned_ip='$newvalue' WHERE banned_ip='$value'") or die("Database Query Error"); echo "\n"; } elseif ($action == "save_new_banned_ip" && $admin==$adminpass) { $result = mysql_db_query($database, "INSERT INTO banned_ips (banned_ip) VALUES('$newvalue')") or die("Database Query Error"); echo "\n"; } elseif ($action == "delete_banned_ip" && $admin==$adminpass) { $result = mysql_db_query($database, "DELETE FROM banned_ips WHERE banned_ip='$value'") or die("Database Query Error"); echo "\n"; } elseif ($action == "multibook" && $admin==$adminpass) { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$guestbook_head
\n"; echo "
\n"; echo "
"; echo " $gb_link5 || "; echo " $gb_link2 || "; echo " $gb_link6head
\n"; echo "
\n"; $count=0; $result = mysql_db_query($database, "select * from multi_books") or die("Database Query Error"); echo "
\n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo " "; echo " \n"; echo " \n"; echo "
\n"; while ($db = mysql_fetch_array($result)) { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$db[Name]
"; echo "
\n"; echo "
Edit || \n"; echo " Delete
\n"; echo "
\n"; $count++; } echo "

$count $gb_link6stat

\n"; } elseif ($action == "edit_book" || $action == "new_book") { echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$guestbook_head
\n"; echo "
\n"; echo "
"; echo " $gb_link5 || "; echo " $gb_link2 || "; echo " $gb_link6head
\n"; echo "
\n"; echo "
\n"; echo "\n"; if ($action == "edit_book") { echo "\n"; } else { echo "\n"; } echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "\n"; echo "
$gb_link6text
\n"; echo "

\n"; echo "
\n"; } elseif ($action == "save_edit_book" && $admin==$adminpass) { $result = mysql_db_query($database, "UPDATE multi_books SET name='$newvalue' WHERE Name='$value'") or die("Database Query Error"); echo "\n"; } elseif ($action == "save_new_book" && $admin==$adminpass) { $result = mysql_db_query($database, "INSERT INTO multi_books (name) VALUES('$newvalue')") or die("Database Query Error"); echo "\n"; } elseif ($action == "delete_book" && $admin==$adminpass) { $result = mysql_db_query($database, "DELETE FROM multi_books WHERE Name= '$value'") or die("Database Query Error"); echo "\n"; } else { if ($admin) {$adminlink="&admin=$admin";} if ($book_id) {$booklink="&book_id=$book_id";} if ($title&&$link) {$titlelink="&title=$title&link=$link";} echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; echo "
\n"; echo "
$guestbook_head
\n"; echo "
\n"; echo "
\n"; if ($admin==$adminpass) { echo " $gb_link2 || \n"; } if ($phpbookcookie==$guestbook_head && $admin!=$adminpass) { echo " $gb_link1\n"; } else { echo " $gb_link1\n"; } echo "
\n"; echo "
\n"; echo "
\n"; # Start with Output ################################################################################################# echo "\n"; echo "\n"; # Calculate Page-Numbers ################################################################################################# if (empty($perpage)) $perpage = 1; if (empty($pperpage)) $pperpage = 9; //!!! ONLY 5,7,9,11,13 !!!! if (empty($sort)) $sort = "desc"; if (empty($offset)) $offset = 0; if (empty($poffset)) $poffset = 0; if ($admin==$adminpass){ $bookquery = ""; }else { $bookquery = " WHERE pass = 'Y' "; if($book_id){$bookquery = " WHERE type = $book_id AND pass = 'Y'";}; } $amount = mysql_db_query($database, "SELECT count(*) FROM guestbook$bookquery"); $amount_array = mysql_fetch_array($amount); $pages = ceil($amount_array["0"] / $perpage); $actpage = ($offset+$perpage)/$perpage; $maxoffset = ($pages-1)*$perpage; $maxpoffset = $pages-$pperpage; $middlepage=($pperpage-1)/2; if ($maxpoffset<0) {$maxpoffset=0;} echo "\n"; echo "
\n"; echo "$gb_desc
\n"; echo "
\n"; if ($pages) { // print only when pages > 0 echo "$ad_pages\n"; if ($offset) { $noffset=$offset-$perpage; $npoffset = $noffset/$perpage-$middlepage; if ($npoffset<0) {$npoffset=0;} if ($npoffset>$maxpoffset) {$npoffset = $maxpoffset;} echo "[<<] "; echo "[<] "; } for($i = $poffset; $i< $poffset+$pperpage && $i < $pages; $i++) { $noffset = $i * $perpage; $npoffset = $noffset/$perpage-$middlepage; if ($npoffset<0) {$npoffset = 0;} if ($npoffset>$maxpoffset) {$npoffset = $maxpoffset;} $actual = $i + 1; if ($actual==$actpage) { echo "($actual) "; } else { echo "[$actual] "; } } if ($offset+$perpage<$amount_array["0"]) { $noffset=$offset+$perpage; $npoffset = $noffset/$perpage-$middlepage; if ($npoffset<0) {$npoffset=0;} if ($npoffset>$maxpoffset) {$npoffset = $maxpoffset;} echo "[>] "; echo "[>>] "; } } echo "
\n"; # Start the Page ################################################################################################# echo "\n"; echo " \n"; echo " \n"; echo " \n"; echo " \n"; # Get actions for current page ################################################################################################# $result = mysql_db_query($database, "SELECT * FROM guestbook$bookquery ORDER by id $sort LIMIT $offset, $perpage"); while ($db = mysql_fetch_array($result)) { if ($dateformat=="eu") { // European Date & Timeformat $when = strftime("%d.%m.%Y %H:%M", $db["timestamp"]); } else { // US Date & Timeformat $when = strftime("%m/%d/%Y %I:%M %p", $db["timestamp"]); } if ($db[email] != "none") { $email = "\"$send_email\""; } else { $email = ""; } if ($db[ip] != "none") { if ($admin==$adminpass) { $ip = "IP: $db[ip]
"; } else { $ip = "

"; } } else { $ip = ""; } if ($db[location]!= "none") { // $location = "$gb_location
$db[location]
"; } else { $location = "

"; } echo " \n"; echo " \n"; echo " \n \n"; } # End of Page reached ################################################################################################# echo"
$gb_name$gb_comments
\n"; echo "
$db[name]
$email

\n"; echo "
$location
\n"; echo "
$ip
\n"; echo "
\n"; if ($admin==$adminpass) { if($db[pass]!='Y'){ echo "\"$moderator_pass_action\"";}; echo "\"$moderator_del_action\""; echo "\"$moderator_del_comment\""; echo "\"$moderator_edit_comment\""; if($db[link]){echo "Go";}; echo "
 
\n"; } // echo " $gb_posted $when

".censor_msg($db[message],($admin==$adminpass))."
\n"; echo " $gb_posted $when
".$db[message]."
\n"; echo ""; if($commentid == $db[id] && $action!="changed" && $admin==$adminpass) { echo "   \n"; echo "
\n"; echo " \n"; echo " \n"; echo "
\n
"; echo "   $smiley_help
\n"; echo "
\n"; } elseif(!empty($db[comment])) { echo "   
".$gb_modcomment.$db[comment]."
\n"; } echo "
\n"; echo"
\n"; } echo"
\n"; echo"
\n"; echo"
\n"; if ($show_sysinfo) { list($usec, $sec) = explode(" ",$proctime_start); $proctime_start = $usec+$sec; list($usec, $sec) = explode(" ",microtime()); $proctime_end = $usec+$sec; $proctime = $proctime_end-$proctime_start; $query = mysql_db_query($database, "SELECT id FROM guestbook"); $countall=mysql_num_rows($query); // echo"
Processingtime: ".substr($proctime,0,7)." sec., Entries: $countall




\n"; } echo"
\n"; echo"\n"; echo"\n"; } # Disconnect DB ################################################################################################# mysql_close(); if ($support==$supportpwd && $supportpwd) {echo "

"; phpinfo();} ?>