1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
|
<?php
header('Content-type: text/html; charset=utf-8');
include('connec.php');
// user ˹ҹҧ Է˹ҹ
if((isset($_SESSION['user_name_']) && $_SESSION['username_']!="") || (isset($_SESSION['password_']) && $_SESSION['password_'])){
$sqlx="select user,pass from cms_main_user where user='".$_SESSION['username_']."' and pass='".$_SESSION['password_']."'";
$resultx=mysql_query($sqlx);
$num = mysql_num_rows($resultx);
if(($num>0) and ($_SESSION['web_name']!=$name_folder)){
session_unregister("id_user_admin");
session_unregister("name_post");
session_unregister("name_email");
session_unregister("username_");
session_unregister("password_");
session_unregister("admin_web");
session_unregister("module_access");
print "<meta http-equiv=refresh content=0;URL=index.php>";
}
}
$_SESSION['web_name'] = $name_folder; # web
include('coremain/function_theme.php');
include('coremain/index.php');
function import_request_variables($g, $prfix) {
foreach ($_GET as $k => $v) {
$v_name = $prfix . $k;
global $$v_name;
${$prfix . $k} = trim($v);
}
foreach ($_POST as $k => $v) {
$v_name = $prfix . $k;
global $$v_name;
${$prfix . $k} = trim($v);
}
}
?>
|