include_once '../../sys/inc/start.php'; include_once '../../sys/inc/compress.php'; include_once '../../sys/inc/sess.php'; include_once '../../sys/inc/home.php'; include_once '../../sys/inc/settings.php'; include_once '../../sys/inc/db_connect.php'; include_once '../../sys/inc/ipua.php'; include_once '../../sys/inc/fnc.php'; include_once '../../sys/inc/user.php'; $set['title']='Редактирование'; include_once '../../sys/inc/thead.php'; $post['name_url'] = null; $post['url'] = null; $post['title'] = null; $post['msg'] = null; if (isset($user) && $user['level'] < 3) header("Location: /"); title(); aut(); // Редактирование поста if (isset($_GET['act']) && $_GET['act'] == 'edit') { if (isset($_GET['id']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `rules_p` WHERE `id` = '".intval($_GET['id'])."'"),0)==1) { $post=mysql_fetch_assoc(mysql_query("SELECT * FROM `rules_p` WHERE `id` = '".intval($_GET['id'])."' LIMIT 1")); $ank=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = $post[id_user] LIMIT 1")); if (isset($_POST['change']) && isset($_GET['id']) && isset($_POST['name']) && $_POST['name']!=NULL) { $id=intval($_GET['id']); $msg=my_esc($_POST['name']); mysql_query("UPDATE `rules_p` SET `msg` = '$msg' WHERE `id` = '$id' LIMIT 1"); $_SESSION['message'] = 'Пункт меню успешно изменен'; header("Location: post.php?id=$post[id_news]"); exit; } } if (isset($_GET['id']) && isset($_GET['act']) && $_GET['act']=='edit') { echo '
'; } } // Редактирование пункта if (isset($_GET['act']) && $_GET['act'] == 'edits') { if (isset($_GET['id']) && mysql_result(mysql_query("SELECT COUNT(*) FROM `rules` WHERE `id` = '".intval($_GET['id'])."'"),0)==1) { $post=mysql_fetch_assoc(mysql_query("SELECT * FROM `rules` WHERE `id` = '".intval($_GET['id'])."' LIMIT 1")); $ank=mysql_fetch_assoc(mysql_query("SELECT * FROM `user` WHERE `id` = $post[id_user] LIMIT 1")); if (isset($_POST['change']) && isset($_GET['id'])) { $id=intval($_GET['id']); $name=my_esc($_POST['msg']); $url=esc($_POST['url'],1); $name_url=esc($_POST['name_url'],1); $title=esc($_POST['title'],1); mysql_query("UPDATE `rules` SET `msg` = '$name' WHERE `id` = '$id' LIMIT 1"); mysql_query("UPDATE `rules` SET `title` = '$title' WHERE `id` = '$id' LIMIT 1"); mysql_query("UPDATE `rules` SET `url` = '$url' WHERE `id` = '$id' LIMIT 1"); mysql_query("UPDATE `rules` SET `name_url` = '$name_url' WHERE `id` = '$id' LIMIT 1"); $_SESSION['message'] = 'Пункт меню успешно изменен'; header("Location: index.php"); exit; } } if (isset($_GET['id']) && $_GET['id'] == $post['id'] && isset($_GET['act']) && $_GET['act']=='edits') { echo ''; } } echo ''; include_once '../../sys/inc/tfoot.php'; ?>