当前位置: 首页 > 图文教程 > 网络编程 > PHP > 基于mysql的论坛(7)

PHP
如何防止入侵:My SQL各种攻击方法大全
教你使用MySQL:MySQL常用命令一览
教你如何在linux下建立mysql镜像数据库
实际应用:MySQL5存储过程编写实践
MySQL手册版本 5.0.20-MySQL同步
MySQL手册版本 5.0.20-MySQL同步(二)
MySQL手册版本 5.0.20-MySQL同步(三)
MySQL 版本 卸载与安装
[Mysql]Mysql中mysqldump命令使用详解 (1)
[Mysql]Mysql中mysqldump命令使用详解 (2)
通过缓存数据库结果提高PHP性能(1)
通过缓存数据库结果提高PHP性能(2)
通过缓存数据库结果提高PHP性能(3)
通过缓存数据库结果提高PHP性能(4)
如何使用SQL Server 2005 INSTEAD-OF触发器
实例讲解MySQL数据库的查询优化技术 (1)(2)
实例讲解MySQL数据库的查询优化技术 (1)
高手心得:提高MySQL性能的方法 (1)(2)
高手心得:提高MySQL性能的方法 (1)
工作笔记:配置MySQL为高可用集群 (1)(2)

PHP 中的 基于mysql的论坛(7)


出处:互联网   整理: 软晨网(RuanChen.com)   发布: 2009-09-13   浏览: 257 ::
收藏到网摘: n/a

# sendmsg.php
<?php
require "func.php";
if ($b1) {
if (is_user_exits($fromname) and check_user_password($fromname,$password)) {
sendmsg();
echo "成功!<br><form method="POST"><input type="button" value=" 关闭窗口 " name="B1" onclick="window.close()"></form>";
}
else {
$founderr=1;
echo "用户名/密码错误!";
}
}
else {
?>
<html>
<head>
<title>发送留言</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="css/index.css">
</head>
<body bgcolor="#eeeeee">
<form method="post" action="<?php echo $php_self;?>">
<table width="98%" border="1" cellspacing="0" cellpadding="0" bordercolorlight="#000000" bordercolordark="#FFFFFF">
<tr align="center">
<td colspan="2">给 <a href="userinfo.php?name=<?php echo $name;?>" target="_blank"><?php echo $name;?></a>
发送留言</td>
</tr>
<tr>
<td align="right" width="27%">您的用户名:</td>
<td width="73%">
<input type="text" name="fromname" size="17" maxlength="16" value="<?php echo $jl_forum[name];?>">
* </td>
</tr>
<tr>
<td align="right" width="27%">您的密码:</td>
<td width="73%">
<input type="password" name="password" size="17" maxlength="16">
* </td>
</tr>
<tr>
<td align="right" width="27%" valign="top">内容:</td>
<td width="73%">
<textarea name="cont" wrap="VIRTUAL" cols="40" rows="3"></textarea>
<input type="hidden" name="toname" value="<?php echo $name;?>">
<br>
<input type="submit" name="b1" value="发送">
<input type="button" name="Submit" value="取消" onclick="window.close()">
</td>
</tr>
</table>
</form>
</body>
</html>
<?php
}
?>
###############
# setup.php
# 此为初始化程序,只在上传后第一次执行,之后必须delete,以免出错
#################
<?php
require "func.php";
echo "<h1>初始化数据库</h1><br><br>";
echo "建立数据库连接...ok!<br>";
echo "建立表 boardinfo...";
$sql="CREATE TABLE boardinfo (name varchar(50) NOT NULL, chinesename varchar(50) NOT NULL)";
mysql_query($sql) or die("错误");
echo "ok!<br>";
echo "建立表 user...";
$sql="CREATE TABLE user (id int(11) NOT NULL auto_increment, name varchar(50) NOT NULL, sex varchar(6), realname varchar(20), password varchar(16) NOT NULL, address varchar(40), oicq varchar(10), homepage varchar(50), score int(11), phone varchar(20), email varchar(50), regtime varchar(20), qm text, slaveboard varchar(50), PRIMARY KEY (id))";
mysql_query($sql) or die("错误");
echo "ok!<br>";
echo "建立表 message... ";
$sql="create table message (id int(11) NOT NULL auto_increment, name varchar(50), fromname varchar(50), writetime varchar(20), cont longtext, PRIMARY KEY(id))";
mysql_query($sql) or die("错误");
echo "ok!<br>";
echo "初始化版面 “个人电脑”...";
create_board_table('computer','个人电脑');
echo "ok!<br><br>";
echo "<h2>设置完毕!</h2>";
echo "<br><br>冷情疯子(电脑疯子)";
?>
## userinfo.php
<html>
<head>
<title>用户信息</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="css/index.css">
</head>
<body bgcolor="#FFFFFF" background="image/bg.gif">
<?php include "header.php";
if (!isset($name)) {
?>
<form method="post" action="<?php echo $php_self;?>">
<table width="90%" border="1" cellspacing="0" cellpadding="1" align="center" bordercolorlight="#CCCCCC" bordercolordark="#FFFFFF">
<tr align="center">
<td>请输入欲察看的用户名</td>
</tr>
<tr align="center">
<td>
<input type="text" name="name" size="18" maxlength="16">
</td>
</tr>
<tr align="center">
<td>
<input type="submit" name="b1" value="察看资料">
</td>
</tr>
</table>
</form>
<?php
}
else {
require "func.php";
if (is_user_exits($name)) {
$sql="select * from user where name='$name'";
$sql_result=mysql_query($sql);
$row=mysql_fetch_array($sql_result);
?>
<br>
<table width="90%" border="1" cellspacing="0" cellpadding="1" align="center" bordercolorlight="#CCCCCC" bordercolordark="#FFFFFF">
<tr>
<td><b>详细资料</b></td>
</tr>
<tr>
<td>用户名:<?php echo $row[name];?></td>
</tr>
<tr>
<td>真实姓名:<?php echo $row[realname];?></td>
</tr>
<tr>
<td>性别:<?php echo $row[sex];?></td>
</tr>
<tr>
<td>地址:<?php echo $row[address];?></td>
</tr>
<tr>
<td>电话:<?php echo $row[phone];?></td>
</tr>
<tr>
<td>OICQ:<?php echo $row[oicq];?></td>
</tr>
<tr>
<td>Email:<a href="mailto:<?php echo $row[email];?>"><?php echo $row[email];?></a></td>
</tr>
<tr>
<td>主页:<a href="<?php echo $row[homepage];?>" target="_blank"><?php echo $row[homepage];?></a></td>
</tr>
<tr>
<td>注册时间:<?php echo $row[regtime];?></td>
</tr>
<tr>
<td>目前积分:<?php echo $row[score];?></td>
</tr>
</table>
<br>
<?php
}
else {
echo "请输入正确合法存在的用户名称";
}
}
include "footer.php";?>
</body>
</html>
# viewmsg.php
<?php
require "func.php";
if (is_user_exits($jl_forum[name]) and check_user_password($jl_forum[name],$jl_forum[password])) {
if (isset($job)) {
if (is_this_user($id)) {
delmsg($id);
}
}
$name=$jl_forum[name];
$sql="select * from message where name='$name'";
$sql_result=mysql_query($sql);
$sum=mysql_num_rows($sql_result);
?>
<html>
<head>
<title>察看留言</title>
<meta http-equiv="Content-Type" content="text/html; charset=gb2312">
<link rel="stylesheet" type="text/css" href="css/index.css">
<script language="javascript">
function sendmsg(name){ window.open("sendmsg.php?name="+name,"","height=200,width=500,resizable=yes,scrollbars=yes,status=no,toolbar=no,menubar=no,location=no");
}
</script>
</head>
<body bgcolor="#FFFFFF" background="image/bg.gif">
<p>您目前共有 <b><?php echo $sum;?></b> 条留言</p>
<table width="98%" border="1" cellspacing="0" cellpadding="0" bordercolorlight="#CCCCCC" bordercolordark="#FFFFFF">
<?php
while ($sql_row=mysql_fetch_array($sql_result)) {
?>
<tr bgcolor="#eeeeee">
<td><a href="javascript:sendmsg('<?php echo $sql_row[fromname];?>')"><?php echo $sql_row[fromname];?></a>
于 <?php echo $sql_row[writetime];?> <a href="<?php echo "$php_self?job=del&id=$sql_row[id]";?>">删除</a></td>
</tr>
<tr>
<td><?php echo $sql_row[cont];?></td>
</tr>
<tr>
<td> </td>
</tr>
<?php
}
?>
</table>
<p> </p>
</body>
</html>
<?php
}
else {
show_error(4);
}
?>