文章详情页

php木马后门研究

【字号：大中小】日期：2022-06-02 18:19:43浏览：13作者：猪猪

问题描述

本人是学习不足，拿到一个源码，但是发现有webshell后门，至于是哪些代码，辨别不出来，烦请哪位大神指点一下。

<?phpfunction a($where) {$where['pagesize']=1;$article=alist($where);if(isset($article['list'][0])) {Return $article['list'][0];}else {Return false;}}function u($cid='') {if(empty($cid)) {Return gethomeurl();}Return getchannelurl($cid);}function z($strname,$return=1) {Return str($strname,0,$return);}function s($strname,$cid='',$return=1) {Return str($strname,$cid,$return);}function n($where=0) {Return nav($where);}function c($kind=0,$num=9999,$fid=0,$shownav=0) {$channel=getchannelscache();$newchannel=array();$count=0;if(isset($GLOBALS['nav'][$fid])) {if(is_array($GLOBALS['nav'][$fid])) {$diychannel=$GLOBALS['nav'][$fid];}elseif(function_exists($GLOBALS['nav'][$fid])) {$diychannel=$GLOBALS['nav'][$fid]($fid);}if(isset($diychannel)) {foreach($diychannel as $val) {if($shownav==0 || !isset($val['ifshownav']) ||($shownav>0 && @$val['ifshownav'])) {$newchannel[]=$val;$count++;}if($count==$num) {Return $newchannel;}}Return $newchannel;}}foreach($channel as $val) {if($fid==$val['fid']) {if($shownav==0 || ($shownav>0 && $val['ifshownav'])) {if($kind==0) {$newchannel[]=$val;$count++;$newchannel[count($newchannel)-1]['key']=$count;}elseif($val['ckind']==$kind) {$newchannel[]=$val;$count++;$newchannel[count($newchannel)-1]['key']=$count;}}}if($count==$num) {break;}}$fidarray=@cnav(cid,1);foreach($newchannel as $key=>$val) {$newchannel[$key]['onstyle']='';foreach($fidarray as $fidkey=>$fidval) {if($val['cid']==$fidval['cid']) {$newchannel[$key]['onstyle']='on';break;}}}Return $newchannel;}function b($cid='',$return=false,$linktag=' > ',$homepage=SystemDir) {Return cnav($cid,$return,$linktag,$homepage);}function i($kind='',$cid=0) {if($cid===0) {if(!defined('cid')) {Return false;}$cid=cid;}$channel=getchannelcache($cid);if(!$channel) {Return false;}if(empty($kind)) {Return $channel;}elseif($kind=='name' && isset($channel['cname'])) {Return $channel['cname'];}elseif($kind=='topfid') {$breadcrumb=b($channel['cid'],1);if(isset($breadcrumb[0]['cid'])) {Return $breadcrumb[0]['cid'];}}elseif($kind=='url') {Return u($channel['cid']);}elseif($kind=='domain') {Return @$channel['csetting']['channel_domain'];}else {if(isset($channel[$kind])) {Return $channel[$kind];}}Return false;}function uri($uri) {$uri=ltrim($uri,'/');if(UrlRewrite) {Return SystemDir.$uri;}else {Return SystemDir.IndexFile.'/'.$uri;}}function f($file) {require(SystemRoot.TemplateDir.DIRECTORY_SEPARATOR.$file);}function t($file='',$echo=1) {if($echo==1) {echo(SystemDir.TemplateDir.'/'.$file);}Return SystemDir.TemplateDir.'/'.$file;}function alist($where='') {if(isset($where['page']) && !is_numeric($where['page'])) {if(isset($_GET[$where['page']]) && $_GET[$where['page']]>0) {$where['page']=intval($_GET[$where['page']]);}else {$where['page']=1;}}$nullarticle=array('list'=>array(),'pagecount'=>0,'pagesize'=>1,'page'=>1,);if(!isset($where['cid']) && !defined('cid') && !isset($where['tablename']) && !isset($where['cids'])) {Return $nullarticle;}if(!isset($where['tablename']) && !isset($where['cid']) && !isset($where['cids']) && defined('cid')) {$where['cid']=cid;}if(!isset($where['cid'])) {$where['cid']=0;}if(is_numeric($where['cid'])) {$where['cid']=intval($where['cid']);}if(SiteCache && isset($where['cache']) && $where['cache']>0) {$cachewhere=$where;$cachehash=md5(json_encode($where));$res =cacheget($cachehash,$where['cache'],'alist');if ($res) {return json_decode($res,1);}}$sql='';if($where['cid']!==0) {$thischannelcache=getchannelcache($where['cid']);if(!$thischannelcache) {Return $nullarticle;}$where['cid']=$thischannelcache['cid'];}if(!isset($where['tablename'])) {$where['tablename']='';}if(!isset($where['all']) || $where['all']==1) {if(!isset($where['cids'])) {$where['cids']='';}$clistsetting=alist_getson($where['cid'],$where['tablename'],$where['cids']);if(!isset($clistsetting['sql'])) {Return $nullarticle;}$where['cidsql']=$clistsetting['sql'];$where['tablename']=$clistsetting['tablename'];$defaultsetting=getchannelcache($clistsetting['default']);if(!isset($where['pageurl']) && !isset($clistsetting['pageurl'])) {unset($defaultsetting['csetting']['channel_pageurl']);}}else {if(!isset($where['cidsql'])) {$where['cidsql']=" and (cid='".$where['cid']."')";}if($where['cid']) {$defaultsetting=getchannelcache($where['cid']);if(empty($where['tablename']) && isset($defaultsetting['csetting']['articletable'])) {$where['tablename']=$defaultsetting['csetting']['articletable'];}}}$sql.=$where['cidsql'];if(!isset($where['pagesize'])) {if(isset($defaultsetting['csetting']['temppage_size']) && !empty($defaultsetting['csetting']['temppage_size'])) {$where['pagesize']=$defaultsetting['csetting']['temppage_size'];}}if(!isset($where['order'])) {if(isset($defaultsetting['csetting']['temppage_order']) && !empty($defaultsetting['csetting']['temppage_order'])) {$where['order']=$defaultsetting['csetting']['temppage_order'];}}isset($where['addslashes']) ? $ifaddslashes=$where['addslashes']:$ifaddslashes=1;isset($where['tablename']) ? $where['tablename']=$where['tablename']:die('no tablename');isset($where['pagesize']) ? $where['pagesize']=intval($where['pagesize']):$where['pagesize']=9;isset($where['order']) ? $where['order']='order by '.$where['order']:$where['order']='order by id desc';isset($where['start']) ? $where['start']=intval($where['start']):$where['start']=0;isset($where['column']) ? $where['column']=$where['column']:$where['column']='*';isset($where['rowidstyle']) && !isset($where['rowidname']) ? $where['rowidname']='id' :'';isset($where['linktime']) ? 1==1 : $where['linktime']='posttime';isset($where['link']) ? 1==1 : $where['link']='';isset($where['domain']) ? 1==1 : $where['domain']='';if(trim($where['column'])<>'*') {$where['column'].=',cid';}if(isset($where['where'])) {if(is_array($where['where'])) {foreach($where['where'] as $key=>$val) {$key=addslashes_str($key,$ifaddslashes);if(is_array($val) && count($val)>0) {$sql.=" and (";foreach($val as $value) {$sql.=$key."='".addslashes_str($value,$ifaddslashes)."' or ";}$sql=substr($sql,0,strlen($sql)-4);$sql.=")";}else {$sql.=" and ".$key."='".addslashes_str($val,$ifaddslashes)."'";}}}else {$sql.=" and ".$where['where'];}}if(isset($where['inwhere'])) {foreach($where['inwhere'] as $key=>$val) {if(!is_array($val)) {$val=array();$val[]=$where['inwhere'][$key];}$key=addslashes_str($key,$ifaddslashes);foreach($val as $val1) {if(is_numeric($val1) && $val1>0) {$sql.=" and (".$key."='[".$val1."]' or ".$key." like '%,".$val1.",%' or ".$key." like '[".$val1.",%' or ".$key." like '%,".$val1."]')";}else {unset($where['inwhere'][$key]);}}}}if(isset($where['nowhere'])) {foreach($where['nowhere'] as $key=>$val) {$key=addslashes_str($key,$ifaddslashes);if(is_array($val) && count($val)>0) {foreach($val as $value) {$sql.=" and ".$key."<>'".addslashes_str($value,$ifaddslashes).''';}}else {$sql.=" and ".$key."<>'".addslashes_str($val,$ifaddslashes)."'";}}}if(isset($where['other']) && !empty($where['other'])) {$sql.=" and ".$where['other'];}if(isset($where['keyword']) && !empty($where['keyword'])) {if(!isset($where['searchcolumn'])) {$where['searchcolumn']='title';}if(!is_array($where['searchcolumn'])) {$where['searchcolumn']=explode(',',$where['searchcolumn']);}if(!is_array($where['keyword'])) {$where['keyword']=explode('|',$where['keyword']);}$sql.=" and (";foreach($where['searchcolumn'] as $key=>$searchcolumn) {foreach($where['keyword'] as $keywordkey=>$keywordval) {if($key==0 && $keywordkey==0) {$sql.="$searchcolumn like '%".addslashes_str($keywordval,$ifaddslashes)."%'";}else {$sql.=" or $searchcolumn like '%".addslashes_str($keywordval,$ifaddslashes)."%'";}}}$sql.=" )";}if(!empty($sql)) {$sql='where '.ltrim($sql,'and ');}if(isset($where['page'])) {$where['page']=intval($where['page']);$where['pagecount'] = $GLOBALS['db'] -> fetchcount("SELECT count(id) FROM ".$where['tablename']." $sql");$where['articlecount']=$where['pagecount'];$where['start']=($where['page']-1)*$where['pagesize'];if($where['articlecount']%$where['pagesize']==0) {$where['pages']=($where['articlecount']/$where['pagesize']);}else {$where['pages']=intval($where['articlecount']/$where['pagesize'])+1;}if(isset($defaultsetting['csetting']['channel_pageurl']) && !empty($defaultsetting['csetting']['channel_pageurl']) && !isset($where['pageurl'])) {$allpageurl=explode(';',$defaultsetting['csetting']['channel_pageurl']);if(UrlRewrite) {$where['pageurl']=$allpageurl[0];}else {$where['pageurl']=SystemDir.IndexFile.$allpageurl[0];}}}if(!isset($where['sql'])) {$where['sql_id']='SELECT id FROM '.$where['tablename'].' '.$sql.' '.$where['order'].' limit '.$where['start'].','.$where['pagesize'];$idquery =$GLOBALS['db'] -> query($where['sql_id']);$ids = $GLOBALS['db'] -> fetchall($idquery);$sql='id in(';if(count($ids)>0) {foreach($ids as $key=>$val) {$sql.=$val[0].',';}}else {$sql.='0,';}$sql=rtrim($sql,',');$sql.=')';$where['sql']='SELECT '.$where['column'].' FROM '.$where['tablename'].' where '.$sql.' '.$where['order'];}$query = $GLOBALS['db'] -> query($where['sql']);$articles = $GLOBALS['db'] -> fetchall($query);$i=0;foreach ($articles as $value) {$i++;$value['key']=$i;if(isset($where['stepstyle'])) {foreach($where['stepstyle'] as $key=>$val) {if($i%$key==0) {$value['stepstyle']=$where['stepstyle'][$key];}}if(!isset($value['stepstyle'])) {$value['stepstyle']='';}}if(isset($where['rowstyle'])) {foreach($where['rowstyle'] as $key=>$val) {if($i==$key) {$value['rowstyle']=$where['rowstyle'][$key];}}if(!isset($value['rowstyle'])) {$value['rowstyle']='';}}if(isset($where['rowidstyle'])) {foreach($where['rowidstyle'] as $key=>$val) {if($value[$where['rowidname']]==$key) {$value['rowidstyle']=$val;}}if(!isset($value['rowidstyle'])) {$value['rowidstyle']='';}}if(!isset($value[$where['linktime']])) {$value[$where['linktime']]=0;}$value['link']=aurl($value,$where['link'],$value[$where['linktime']],$where['domain']);$where['list'][]=$value;}if(!isset($where['list'])) {$where['list']=array();}if(SiteCache && isset($where['cache']) && $where['cache']>0) {cacheset($cachehash,json_encode($where),$where['cache'],'alist');}Return $where;}function getkinds($cid,$fid) {$fid=intval($fid);$kindsarray=array($fid);if(is_numeric($cid)) {$thichannelcache=getchannelcache($cid);$defaultsetting=$thichannelcache['csetting'];if(isset($defaultsetting['articletable']) && !empty($defaultsetting['articletable'])) {$kindtable=$defaultsetting['articletable'];}else {Return $kindsarray;}}else {$kindtable=$cid;}$query = $GLOBALS['db'] -> query("SELECT id FROM $kindtable where fid='$fid';");$link = $GLOBALS['db'] -> fetchall($query);foreach ($link as $value) {$thisallkinds=getkinds($kindtable,$value['id']);foreach ($thisallkinds as $thisvalue) {$kindsarray[]=$thisvalue;}}Return $kindsarray;}function alist_getson($cid,$tablename,$cids,$first=1) {if($cid==0 && empty($tablename)) {$tablename=ArticleTable;}$array=array();$array['list']=array();$channels=getchannelscache();if($first) {if(!is_array($cids)) {$cids=explode(';',$cids);}$thischannel=getchannelcache($cid);if($thischannel && @$thischannel['ckind']==2 && (in_array($cid,$cids) || empty($cids[0]))) {if(isset($thischannel['csetting']['articletable']) && !empty($thischannel['csetting']['articletable']) && empty($tablename)) {$tablename=$thischannel['csetting']['articletable'];}if($tablename==$thischannel['csetting']['articletable']) {$array['list'][]=$thischannel;if(isset($thischannel['csetting']['channel_pageurl']) && !empty($thischannel['csetting']['channel_pageurl'])) {$array['pageurl']=$thischannel['csetting']['channel_pageurl'];}}}$array['tablename']=$tablename;}foreach($channels as $key=>$val) {if($val['fid']==$cid) {$thischannel=getchannelcache($val['cid']);if(empty($tablename)) {if($thischannel['ckind']==2 && isset($thischannel['csetting']['articletable']) && (in_array($val['cid'],$cids) || empty($cids[0]))) {$array['list'][]=$val;$tablename=$thischannel['csetting']['articletable'];$array['tablename']=$tablename;}}else {if($thischannel['ckind']==2 && isset($thischannel['csetting']['articletable']) && $thischannel['csetting']['articletable']==$tablename && (in_array($val['cid'],$cids) || empty($cids[0]))) {$array['list'][]=$val;}}$sonarray=alist_getson($val['cid'],$tablename,$cids,0);foreach($sonarray['list'] as $key1=>$val1) {$array['list'][]=$val1;}}}if($first) {$cids=array();$sql='';foreach($array['list'] as $key=>$val) {if($key==0) {$sql.=" and (cid='".$val['cid']."'";}elseif($key==(count($array['list'])-1)) {$sql.=" or cid='".$val['cid']."'";}else {$sql.=" or cid='".$val['cid']."'";}}if(count($array['list'])>0) {$array['sql']=$sql.')';}if(isset($array['list'][0])) {$array['default']=$array['list'][0]['cid'];}else {$array['default']=0;}Return $array;}else {Return $array;}}function aurl($value,$rowurl,$rowurltime,$domain='') {$thissetting=getchannelcache($value['cid']);if(empty($domain)) {if(isset($thissetting['csetting']['channel_domain']) && !empty($thissetting['csetting']['channel_domain'])) {$domains=explode(';',$thissetting['csetting']['channel_domain']);$domain=$domains[0];foreach($domains as $key) {if($key==server_name()) {$domain=null;break;}}}}if(empty($rowurl)) {if(empty($thissetting['csetting']['channel_articleurl'])) {Return '';}$rowurl=$thissetting['csetting']['channel_articleurl'];}if(!empty($where['domain'])) {$domains=explode(';',$where['domain']);$where['domain']=$domains[0];foreach($domains as $domain) {if($domain==server_name()) {$where['domain']=null;break;}}}unset($thissetting);$rowurls=explode(';',$rowurl);$rowurl=$rowurls[0];preg_match_all("/{(.*)}|[(.*)]|((.*))/isU",$rowurl,$match);if(count($match[0])>0) {foreach($match[0] as $key=>$val) {if($rowurltime>0 && ($val=='(y)' || $val=='(m)' || $val=='(d)')) {isset($value['y']) ? 1==1 : $value['y']=date('Y',$rowurltime);isset($value['m']) ? 1==1 : $value['m']=date('m',$rowurltime);isset($value['d']) ? 1==1 : $value['d']=date('d',$rowurltime);}if(isset($value[$match[1][$key]])) {if(is_numeric($value[$match[1][$key]])) {$rowurl=str_replace($val,$value[$match[1][$key]],$rowurl);}else {$rowurl=str_replace($val,urlencode($value[$match[1][$key]]),$rowurl);}}if(isset($value[$match[2][$key]])) {if(is_numeric($value[$match[2][$key]])) {$rowurl=str_replace($val,$value[$match[2][$key]],$rowurl); }else {$rowurl=str_replace($val,urlencode($value[$match[2][$key]]),$rowurl); }}if(isset($value[$match[3][$key]])) {if(is_numeric($value[$match[3][$key]])) {$rowurl=str_replace($val,$value[$match[3][$key]],$rowurl); }else {$rowurl=str_replace($val,urlencode($value[$match[3][$key]]),$rowurl); }}}}if(!empty($domain)) {$domain='//'.$domain.server_port();}if(UrlRewrite) {$rowurl=$domain.$rowurl;}else {$rowurl=$domain.SystemDir.IndexFile.$rowurl;}Return $rowurl;}function all_list($where=array(),$pagesize=10,$cid='') {if(!isset($where['cache'])) {$where['cache']=3600;}$cachehash=md5(json_encode($where).$pagesize.json_encode($cid));$res =cacheget($cachehash,$where['cache'],'alist');if ($res) {return json_decode($res,1);}if(empty($cid)) {$cid=array();$allchannels=getchannelscache();foreach($allchannels as $channel) {if($channel['ckind']==2) {$cid[]=$channel['cid'];}}}elseif(is_numeric($cid)) {$cid=array($cid);}$articles=array();foreach($cid as $thiscid) {$where['cid']=$thiscid;$where['pagesize']=$pagesize;$where['all']=0;$thisarticles=alist($where);foreach($thisarticles['list'] as $thisarticle) {$articles[]=$thisarticle;}}$posttime=array();foreach ($articles as $article) {$posttime[] = $article['posttime'];}$orderarticles=array_multisort($posttime, SORT_DESC, $articles);$returnarticles=array();$i=0;foreach($articles as $key=>$val) {$i++;$val['key']=$i;$returnarticles[]=$val;if($key==($pagesize-1)) {break;}}if(SiteCache && $where['cache']>0) {cacheset($cachehash,json_encode($returnarticles),$where['cache'],'alist');}Return $returnarticles;}function ainsert($article,$setting='') {if(!is_array($article)) {Return false;}if(empty($setting)) {$setting=array();}if(!isset($setting['cid']) && !isset($article['cid'])) {if(defined('cid')) {$setting['cid']=cid;}else {Return 'setting no cid';}}if(!isset($setting['addslashes'])) {$setting['addslashes']=1;}if(!isset($setting['default'])) {$setting['default']=1;}if(!isset($setting['check'])) {$setting['check']=1;}if(!isset($setting['cid'])) {$setting['cid']=$article['cid'];}if(isset($article['cid'])) {unset($article['cid']);}$channel = getchannelcache($setting['cid']);if(!$channel) {Return 'channel not exist';}$setting['cid']=$channel['cid'];$csetting=$channel['csetting'];if(!isset($setting['tablename']) || empty($setting['tablename'])) {$setting['tablename']=$csetting['articletable'];}if(count($article)==0) {Return 'where article columns';}foreach($article as $key=>$val) {$article[$key]=addslashes_str($article[$key],$setting['addslashes']);}if($setting['check']) {$columns = $GLOBALS['db'] -> all("select mname,mkind,ifonly,strdefault,msetting from ".tableex('moudle')." where cid=".$setting['cid']." order by morder asc;");foreach($columns as $thiscolumn) {$key=$thiscolumn['mname'];if(!isset($article[$key]) && $setting['default']) {$article[$key]=$thiscolumn['strdefault'];if($thiscolumn['mkind']==9) {if($thiscolumn['strdefault']=='now') {$article[$key]=time();}else{$thiscolumn['strdefault']=@strtotime($thiscolumn['strdefault']);if($thiscolumn['strdefault']) {$article[$key]=$thiscolumn['strdefault'];}else {$article[$key]=0;}}}}if(isset($article[$key])) {$thismsetting=json_decode($thiscolumn['msetting'],1);$thismsetting['ifonly']=$thiscolumn['ifonly'];$thismsetting['tablename']=$setting['tablename'];$thismoudlevalue=$article[$key];if($thismsetting['filterhtml']==1) {require_once(SystemRoot.AdminDir.'/input/kses.php');$thismoudlevalue= kses($thismoudlevalue);}elseif($thismsetting['filterhtml']==2) {$thismoudlevalue=htmlspecialchars($thismoudlevalue);}$acheck=acheck($key,$thismoudlevalue,$setting['cid'],$thismsetting);if($acheck==='error') {Return $key.' error';}if($acheck==='short') {Return $key.' short';}if($acheck==='long') {Return $key.' long';}if($acheck==='exist') {Return $key.' exist';}$article[$key]=$thismoudlevalue;}}}$article['cid']=$setting['cid'];if(!isset($article['posttime'])) {$article['posttime']=time();}if(!isset($article['adminuid'])) {$article['adminuid']=0;}$result = $GLOBALS['db'] -> insert($setting['tablename'],$article);if($result) {Return $result;}else {Return false;}}function aedit($article,$setting='') {if(!isset($article['id']) || !is_numeric($article['id']) || $article['id']<1) {Return 'id error';}$id=$article['id'];unset($article['id']);if(!is_array($article)) {Return false;}if(empty($setting)) {$setting=array();}if(!isset($setting['cid']) && !isset($article['cid'])) {if(defined('cid')) {$setting['cid']=cid;}else {Return 'setting no cid';}}if(!isset($setting['addslashes'])) {$setting['addslashes']=1;}if(!isset($setting['check'])) {$setting['check']=1;}if(!isset($setting['cid'])) {$setting['cid']=$article['cid'];}if(isset($article['cid'])) {unset($article['cid']);}$channel = getchannelcache($setting['cid']);if(!$channel) {Return 'channel not exist';}$setting['cid']=$channel['cid'];$csetting=$channel['csetting'];if(!isset($setting['tablename']) || empty($setting['tablename'])) {$setting['tablename']=$csetting['articletable'];}if(count($article)==0) {Return 'where article columns';}foreach($article as $key=>$val) {$article[$key]=addslashes_str($article[$key],$setting['addslashes']);}if($setting['check']) {$columns = $GLOBALS['db'] -> all("select mname,ifonly,strdefault,msetting from ".tableex('moudle')." where cid=".$setting['cid']." order by morder asc;");foreach($columns as $thiscolumn) {$key=$thiscolumn['mname'];if(isset($article[$key])) {$thismsetting=json_decode($thiscolumn['msetting'],1);$thismsetting['ifonly']=$thiscolumn['ifonly'];$thismsetting['tablename']=$setting['tablename'];$thismoudlevalue=$article[$key];if($thismsetting['filterhtml']==1) {require_once(SystemRoot.AdminDir.'/input/kses.php');$thismoudlevalue= kses($thismoudlevalue);}elseif($thismsetting['filterhtml']==2) {$thismoudlevalue=htmlspecialchars($thismoudlevalue);}$acheck=acheck($key,$thismoudlevalue,$setting['cid'],$thismsetting,$id);if($acheck==='error') {Return $key.' error';}if($acheck==='short') {Return $key.' short';}if($acheck==='long') {Return $key.' long';}if($acheck==='exist') {Return $key.' exist';}$article[$key]=$thismoudlevalue;}}}$result = $GLOBALS['db'] -> update($setting['tablename'],"id='$id'",$article);if($result) {Return true;}else {Return false;}}function adel($cid,$id,$tablename='') {if(empty($cid) && empty($tablename)) {if(defined('cid')) {$cid=cid;}else {Return 'no cid';}}if(empty($id)) {Return 'no id';}else {$id=intval($id);}if(empty($tablename)) {$channel = getchannelcache($cid);if(!$channel) {Return 'channel not exist';}$cid=$channel['cid'];$csetting=$channel['csetting'];$tablename=$csetting['articletable'];}$query = $GLOBALS['db'] -> query("delete from `$tablename` WHERE id='$id'");if($query) {Return true;}else {Return false;}}function acheck($mname,$value,$cid='',$thismsetting='',$id=0) {if($cid=='') {if(defined('cid')) {$cid=cid;}else {Return 'no cid';}}if($thismsetting=='') {$column = $GLOBALS['db'] -> one("select mname,ifonly,msetting from ".tableex('moudle')." where cid='".$cid."' and mname='".$mname."' limit 1;");$thismsetting=json_decode($column['msetting'],1);$thismsetting['ifonly']=$column['ifonly'];}if(isset($thismsetting['regular']) && strlen($thismsetting['regular'])>3 && !empty($value)) {if(!preg_match($thismsetting['regular'],$value)){Return 'error';}}if(isset($thismsetting['lenmin']) && is_numeric($thismsetting['lenmin']) && $thismsetting['lenmin']>0) {if(strlen($value)<$thismsetting['lenmin']) {Return 'short';}}if(isset($thismsetting['lenmax']) && is_numeric($thismsetting['lenmax']) && $thismsetting['lenmax']>0) {if(strlen($value)>$thismsetting['lenmax']) {Return 'long';}}if($thismsetting['ifonly']==1) {if(!isset($thismsetting['tablename'])) {$channel = getchannelcache($cid);$thismsetting['tablename']=$channel['csetting']['articletable'];}if($id>0) {$pagecount = $GLOBALS['db'] -> fetchcount("SELECT id FROM ".$thismsetting['tablename']." where $mname='$value' and cid='".$cid."' and id<>'$id' limit 1;");}else {$pagecount = $GLOBALS['db'] -> fetchcount("SELECT id FROM ".$thismsetting['tablename']." where $mname='$value' and cid='".$cid."' limit 1;");}if($pagecount) {Return 'exist';}}Return true;}function addslashes_str($val,$addslashes) {if($addslashes) {Return dbstr($val);}else {Return $val;}}function pagelist($alist,$url='',$returnarray=0){if(!isset($alist['pagecount']) || !isset($alist['page'])) {Return false;}$recordcount=$alist['pagecount'];$pagesize=$alist['pagesize'];$curpage=$alist['page'];$pages=isset($alist['showpages']) ? $alist['showpages'] :3 ;if(empty($url) && isset($alist['pageurl']) && !empty($alist['pageurl'])) {$url=$alist['pageurl'];if(isset($alist['cid'])) {$url=str_replace('(cid)',$alist['cid'],$url);}}else {if(UrlRewrite) {$url=$_SERVER['REQUEST_URI'];}else {$url=$_SERVER['SCRIPT_NAME'].$_SERVER['REQUEST_URI'];}if(stripos($url,'page=')===false) {if(stripos($url,'?')===false) {$url=$url."?page=(page)";}else {$url=$url."&page=(page)";}}$url = preg_replace("/page=([0-9]+)/is", "page=(page)", $url);}if($pagesize<1) {$pagesize=1;}$pagesarray=array();$totalpage = max(ceil($recordcount/$pagesize),1);if($curpage<0 || $curpage>$totalpage) $curpage=1;$outhtml = "";$pageno = $curpage;if($pageno<0 || $pageno>$totalpage) $pageno=1;if($pageno==1) {$pagesarray[]=array('url'=>str_replace('(page)','1',$url),'title'=>'<<','class'=>'disabled');}else {$pagesarray[]=array('url'=>str_replace('(page)','1',$url),'title'=>'<<','class'=>'');}if($pages>$totalpage){$startpage=1;$endpage=min($startpage+$pages,$totalpage);}else{$startpage=max($totalpage-$pages,1);$startpage=min($startpage,$curpage);$endpage=min($startpage+$pages,$totalpage);}if($pageno>1){$pagesarray[]=array('url'=>str_replace('(page)',$pageno-1,$url),'title'=>'<','class'=>'');}else{$pagesarray[]=array('url'=>str_replace('(page)',1,$url),'title'=>'<','class'=>'disabled');}for($i=$startpage;$i<=$endpage;$i++){if($curpage==$i){$pagesarray[]=array('url'=>str_replace('(page)',$i,$url),'title'=>$i,'class'=>'on');}else{$pagesarray[]=array('url'=>str_replace('(page)',$i,$url),'title'=>$i,'class'=>'');} }if($pageno<$totalpage){$pagesarray[]=array('url'=>str_replace('(page)',$pageno+1,$url),'title'=>'>','class'=>'');}else{$pagesarray[]=array('url'=>str_replace('(page)',$totalpage,$url),'title'=>'>','class'=>'disabled');}if($pageno==$totalpage) {$pagesarray[]=array('url'=>str_replace('(page)',$totalpage,$url),'title'=>'>>','class'=>'disabled');}else {$pagesarray[]=array('url'=>str_replace('(page)',$totalpage,$url),'title'=>'>>','class'=>'');}if($returnarray) {Return $pagesarray;}else {$outhtml='';foreach($pagesarray as $val) {if(!empty($val['class'])) {$val['class']=' class="'.$val['class'].'"';}$outhtml.='<li'.$val['class'].'><a href="'.$val['url'].'">'.$val['title'].'</a></li>';}}echo $outhtml;}function nav($where=0) {$channelarray=array();if(!is_array($where)) {$thiscid=$where;$where=array();$where['cid']=$thiscid;}if(!isset($where['cid'])) {$where['cid']=0;}$cid=$where['cid'];if(!isset($where['oncid'])) {if(defined('cid')) {$where['oncid']=cid;}else {$where['oncid']=0;}//取出on的所有id}if(!isset($where['onstyle'])) {$where['onstyle']=' class="on"';}if(!isset($where['bro'])) {$where['bro']=1;}if(!isset($where['papa'])) {$where['papa']=1;}if($where['cid']==0) {if(!isset($where['homepage'])) {$where['homepage']['name']='首页';$where['homepage']['url']=gethomeurl();$where['homepage']['target']='';}else {if(is_array($where['homepage'])) {if(!isset($where['homepage']['name'])) {$where['homepage']['name']='首页';}if(!isset($where['homepage']['url'])) {$where['homepage']['url']=gethomeurl();}if(!isset($where['homepage']['target'])) {$where['homepage']['target']='';}}}if(is_array($where['homepage'])) {$channelarray[]=array('cid'=>'0','fid'=>'0','name'=>$where['homepage']['name'],'url'=>$where['homepage']['url'],'target'=>$where['homepage']['target']);}}$allchannels=getchannelscache();$channels=array();foreach($allchannels as $val) {if($val['ifshownav']==1) {$channels[]=$val;}}$count=0;$myfid=0;$papaid=0;foreach($channels as $channel) {if(is_numeric($cid)) {if($channel['cid']==$cid) {$myfid=$channel['fid'];if($cid>0 && $where['papa']==1) {$channelarray['papa']=$myfid;//显示父栏目$papaid=$myfid;}}if($channel['fid']==$cid) {$count=1;$channelarray[]=$channel;}}elseif(is_array($cid)) {if(in_array($channel['cid'],$cid)) {$count=1;$channelarray[]=$channel;}}}if($count>0 && is_numeric($cid) && $cid>0 && $where['papa']==1) {$channelarray['papa']=$cid;}if($count==0) {$noonpapaid=$myfid;}else {$noonpapaid=false;}if(isset($channelarray['papa']) && $channelarray['papa']>0) {foreach($channels as $channel) {if($channel['cid']==$channelarray['papa']) {$channelarray['papa']=$channel;}}}else {unset($channelarray['papa']);}if(isset($where['bro']) && $where['bro']==1 && $count==0 && is_numeric($cid)) {//显示兄弟栏目if(isset($myfid) && $myfid>0) {foreach($channels as $key=>$channel) {if($channel['fid']==$myfid) {$channelarray[]=$channel;}}}elseif(isset($myfid) && $myfid==0) {foreach($channels as $key=>$channel) {if($channel['cid']==$cid) {$channelarray[]=$channel;}}}}$onarray=array();if(defined('cid')) {$thiscid=cid;while(1<2) {$ifin=false;foreach($channels as $channel) {if($channel['cid']==$thiscid && $channel['cid']!=$noonpapaid) {$onarray[]=$channel['cid'];$thiscid=$channel['fid'];$ifin=true;break;}}if($ifin===false || $thiscid==0) {break;}}}$returnarray=array();$returnstr='';if(!isset($where['html'])) {$where['html']='<li{onstyle}><a href="{url}"{target}>{name}</a></li>';}if(isset($GLOBALS['nav'][$cid])) {if(is_array($GLOBALS['nav'][$cid])) {$channelarray=$GLOBALS['nav'][$cid];}elseif(function_exists($GLOBALS['nav'][$cid])){$channelarray=$GLOBALS['nav'][$cid]($cid);}}foreach($channelarray as $key=>$channel) {$thisstr=$where['html'];if(!isset($channel['onstyle']) || empty($channel['onstyle'])) {if(in_array($channel['cid'],$onarray)) {$channel['onstyle']=$where['onstyle'];}else {$channel['onstyle']='';}}if(defined('cid') && cid==0 && $channel['cid']==0) {//homepage$channel['onstyle']=$where['onstyle'];}$returnarray[]=$channel;if(!isset($where['returnarray']) || $where['returnarray']==0) {$thisstr=str_replace('{url}',@$channel['url'],$thisstr);$thisstr=str_replace('{target}',@$channel['target'],$thisstr);$thisstr=str_replace('{name}',@$channel['name'],$thisstr);$thisstr=str_replace('{onstyle}',@$channel['onstyle'],$thisstr);$returnstr.=$thisstr."rn";}}if(!isset($where['returnarray']) || $where['returnarray']==0) {Return $returnstr;}else{Return $returnarray;}}function cnav($cid='',$returnarray=false,$linktag=' > ',$homepage=SystemDir) {if(empty($cid)) {if(defined('cid')){$cid=cid;}else {$cid=0;}}$channels=getchannelscache();$breadcrumb='';$breadcrumbarray=array();while(1<2){$thischannel=false;foreach($channels as $channel) {if($channel['cid']==$cid) {$thischannel=$channel;}}if($thischannel==false) {if($breadcrumb=='') {$breadcrumb='<a href="'.gethomeurl().'">首页</a>';}else {$breadcrumb='<a href="'.gethomeurl().'">首页</a>'.$linktag.$breadcrumb;}if($returnarray) {Return array_reverse($breadcrumbarray);}else {Return $breadcrumb;}}else {if($breadcrumb=='') {$breadcrumb='<a href="'.$thischannel['url'].'">'.$thischannel['name'].'</a>';}else {$breadcrumb='<a href="'.$thischannel['url'].'">'.$thischannel['name'].'</a>'.$linktag.$breadcrumb;}$breadcrumbarray[]=$thischannel;$cid=$thischannel['fid'];}}}function getallchannelscache() {if(isset($GLOBALS['allchannelscache'])) {Return $GLOBALS['allchannelscache'];}$channelcachekeyname='allchannelscache';$channelcache=cacheget($channelcachekeyname,604800,'channel');if($channelcache) {$channels=json_decode($channelcache,1);}else {$channelslist=$GLOBALS['db']->all("SELECT cid,fid,ifshownav,cname,ckind,cvalue,newwindow,csetting FROM ".tableex('channel')." where ckind<>'4' order by corder asc");if($channelslist) {$channels=array();foreach($channelslist as $val) {unset($thischannel);$thischannel=array();$thischannel['cid']=$val['cid'];$thischannel['fid']=$val['fid'];$thischannel['ckind']=$val['ckind'];$thischannel['ifshownav']=$val['ifshownav'];$thischannel['name']=$val['cname'];if($val['newwindow']==1) {$thischannel['target']=' target="_blank" ';}else {$thischannel['target']='';}$thischannel['url']=getchannelurl($val);if(empty($thischannel['url'])) {$thischannel['url']='#';$thischannel['target']='';}$channels[]=$thischannel;}cacheset($channelcachekeyname,json_encode($channels),604800,'channel');}else {Return array();}}$GLOBALS['allchannelscache']=$channels;Return $channels;}function getchannelscache() {if(isset($GLOBALS['channelscache'])) {Return $GLOBALS['channelscache'];}$channelcachekeyname='channelscache';$channelcache=cacheget($channelcachekeyname,604800,'channel');if($channelcache) {$channels=json_decode($channelcache,1);}else {$channelslist=$GLOBALS['db']->all("SELECT cid,fid,ifshownav,cname,ckind,cvalue,newwindow,csetting FROM ".tableex('channel')." where ckind<>'4' and ifshow=1 order by corder asc");if($channelslist) {$channels=array();foreach($channelslist as $val) {unset($thischannel);$thischannel=array();$thischannel['cid']=$val['cid'];$thischannel['fid']=$val['fid'];$thischannel['ckind']=$val['ckind'];$thischannel['ifshownav']=$val['ifshownav'];$thischannel['name']=$val['cname'];if($val['newwindow']==1) {$thischannel['target']=' target="_blank" ';}else {$thischannel['target']='';}$thischannel['url']=getchannelurl($val);if(empty($thischannel['url'])) {$thischannel['url']='#';$thischannel['target']='';}$channels[]=$thischannel;}cacheset($channelcachekeyname,json_encode($channels),604800,'channel');}else {Return array();}}$GLOBALS['channelscache']=$channels;Return $channels;}function getchannelcache($cid) {if(isset($GLOBALS['channelcache'][$cid])) {Return $GLOBALS['channelcache'][$cid];}$channelcachekeyname='channelcache_'.$cid;$channelcache=cacheget($channelcachekeyname,604800,'channel');if($channelcache) {$channelcache=json_decode($channelcache,1);}else {if(is_numeric($cid)) {$channelcache=$GLOBALS['db']->one("SELECT * FROM ".tableex('channel')." where cid='$cid' limit 1");}else {$channelcache=$GLOBALS['db']->one("SELECT * FROM ".tableex('channel')." where cname='$cid' limit 1");}if($channelcache) {$channelcache['csetting']=json_decode($channelcache['csetting'],1);cacheset($channelcachekeyname,json_encode($channelcache),604800,'channel');}else {Return false;}}$GLOBALS['channelcache'][$cid]=$channelcache;Return $channelcache;}function getchannelurl($cid) {if(!is_array($cid)) {$cid=getchannelcache($cid);if(!$cid) {Return false;}$csetting=$cid['csetting'];}else {$csetting=json_decode($cid['csetting'],1);}$channel=$cid;if($channel['ckind']==3 || $channel['ckind']==4 || $channel['ckind']==5) {Return $channel['cvalue'];}elseif($channel['ckind']==1 || $channel['ckind']==2) {if(isset($csetting['template']) && empty($csetting['template'])) {Return '';}}if(!isset($csetting['channel_url'])) {Return '';}$channelurls=explode(';',$csetting['channel_url']);$channelurl=str_replace("(cid)",$cid['cid'],$channelurls[0]);if(empty($channelurl)) {Return '';}if(!isset($csetting['channel_domain']) || empty($csetting['channel_domain'])) {$csetting['channel_domain']=SystemDomain;}if(isset($csetting['channel_domain']) && $csetting['channel_domain']<>'') {$channel_domains=explode(';',$csetting['channel_domain']);$csetting['channel_domain']=$channel_domains[0];foreach($channel_domains as $channel_domain) {if(stripos($channel_domain,'*')===false) {$csetting['channel_domain']=$channel_domain;break;}}foreach($channel_domains as $channel_domain) {if(server_name()==$channel_domain) {$csetting['channel_domain']='';break;}}}if(UrlRewrite) {if(empty($csetting['channel_domain'])) {$thisurl=$channelurl;}else {$thisurl='//'.$csetting['channel_domain'].server_port().$channelurl;}}else {if(empty($csetting['channel_domain'])) {$thisurl=SystemDir.IndexFile.$channelurl;}else {$thisurl='//'.$csetting['channel_domain'].server_port().SystemDir.IndexFile.$channelurl;}}Return $thisurl;}function gethomeurl() {if(isset($GLOBALS['homeurl'])) {Return $GLOBALS['homeurl'];}if(!UrlRewrite) {$indexfile=IndexFile;}else {$indexfile='';}$domains=explode(';',SystemDomain);foreach($domains as $domain) {$domain=trim($domain);if($domain==server_name()) {$GLOBALS['homeurl']=SystemDir.$indexfile;Return $GLOBALS['homeurl'];}}if(SystemDomain=='') {$GLOBALS['homeurl']=SystemDir.$indexfile;Return&

问题解答

回答1：

你这个文件，全部是方法，还必须用数据库。这咋看？

那你只能一个方法一个方法的试。你导入数据库，看看是不是有数据库注入了。

回答2：

帖子无法重新编辑，由于代码太长，好像显示不全，这里用网盘传文件了，

下载:https://wwa.lanzous.com/iTtK9nbjdja 密码:f2p0

上一条：php 代码无法被解析下一条：验证登录时BaseController中initialize方法里的jumpTo方法是怎么引进来的

相关文章：

1. dockerfile - 为什么docker容器启动不了？2. nignx - docker内nginx 80端口被占用3. 关docker hub上有些镜像的tag被标记““This image has vulnerabilities””4. 新手学习vue和node.js的困惑5. boot2docker无法启动6. docker 17.03 怎么配置 registry mirror ?7. docker - 各位电脑上有多少个容器啊？容器一多，自己都搞混了，咋办呢？8. 请问连接文件怎么写9. 求解答：访问不了虚拟服务器的问题？10. docker网络端口映射，没有方便点的操作方法么？

排行榜

					
					新手学习vue和node.js的困惑
nignx - docker内nginx 80端口被占用
boot2docker无法启动
关docker hub上有些镜像的tag被标记““This image has vulnerabilities””
dockerfile - 为什么docker容器启动不了？
求解答：访问不了虚拟服务器的问题？
css3 - css字体样式加填充色而不是背景色
为什么我的find里面不放id返回的nuLL,不是默认的第一条
请问连接文件怎么写
dockerfile - 我用docker build的时候出现下边问题  麻烦帮我看一下
docker 17.03 怎么配置 registry mirror ?
				

热门标签