3 лет назад · 5f6e84b9b0
--- a/src/admin/album_add.php
+++ b/src/admin/album_add.php
@@ -68,7 +68,7 @@ else if ($dopost == 'save') {
        exit();
    }
    if (!TestPurview('a_New')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>权限");
    }
    //对保存的文档进行处理
    if (empty($writer)) $writer = $cuserLogin->getUserName();
--- a/src/admin/album_edit.php
+++ b/src/admin/album_edit.php
@@ -80,7 +80,7 @@ else if ($dopost == 'save') {
        exit();
    }
    if (!TestPurview('a_Edit')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
    }
    //对保存的文档进行处理
    $pubdate = GetMkTime($pubdate);
--- a/src/admin/archives_add.php
+++ b/src/admin/archives_add.php
@@ -66,7 +66,7 @@ else if ($dopost == 'save') {
        exit();
    }
    if (!TestPurview('a_New')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>权限");
    }
    //对保存的文档进行处理
    if (empty($writer)) $writer = $cuserLogin->getUserName();
--- a/src/admin/archives_do.php
+++ b/src/admin/archives_do.php
@@ -15,7 +15,7 @@ require_once(DEDEINC.'/typelink/typelink.class.php');
 require_once(DEDEINC.'/archive/archives.class.php');
 $ENV_GOBACK_URL = (empty($_COOKIE['ENV_GOBACK_URL']) ? 'content_list.php' : $_COOKIE['ENV_GOBACK_URL']);
 if (empty($dopost)) {
    ShowMsg('对不起，您没指定运行参数', '-1');
    ShowMsg('您没指定运行参数', '-1');
    exit();
 }
 $aid = isset($aid) ? preg_replace("#[^0-9]#", '', $aid) : '';
@@ -446,7 +446,7 @@ else if ($dopost == 'clear') {
        }
        $num = $dsql->GetTotalRow();
        if (empty($num)) {
            ShowMsg("对不起，未发现相关文档", "recycling.php");
            ShowMsg("未发现相关文档", "recycling.php");
            exit();
        }
        $wintitle = "文档管理-清空所有文档";
@@ -598,7 +598,7 @@ else if ($dopost == 'quickEditSave') {
    require_once(DEDEADMIN.'/inc/inc_archives_functions.php');
    //权限检测
    if (!TestPurview('a_Edit')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
    }
    $title = dede_htmlspecialchars(cn_substrR($title, $cfg_title_maxlen));
    $shorttitle = cn_substrR($shorttitle, 36);
--- a/src/admin/archives_edit.php
+++ b/src/admin/archives_edit.php
@@ -65,7 +65,7 @@ else if ($dopost == 'save') {
        exit();
    }
    if (!TestPurview('a_Edit')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
    }
    //对保存的文档进行处理
    $pubdate = GetMkTime($pubdate);
--- a/src/admin/archives_sg_add.php
+++ b/src/admin/archives_sg_add.php
@@ -54,7 +54,7 @@ else if ($dopost == 'save') {
        exit();
    }
    if (!TestPurview('a_New')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>权限");
    }
    //对保存的文档进行处理
    if (empty($writer)) $writer = $cuserLogin->getUserName();
--- a/src/admin/archives_sg_edit.php
+++ b/src/admin/archives_sg_edit.php
@@ -51,7 +51,7 @@ else if ($dopost == 'save') {
        exit();
    }
    if (!TestPurview('a_Edit')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
    }
    //对保存的文档进行处理
    if (empty($flags)) $flag = '';
--- a/src/admin/article_add.php
+++ b/src/admin/article_add.php
@@ -68,7 +68,7 @@ else if ($dopost == 'save') {
        exit();
    }
    if (!TestPurview('a_New')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>权限");
    }
    //对保存的文档进行处理
    if (empty($writer)) $writer = $cuserLogin->getUserName();
--- a/src/admin/article_edit.php
+++ b/src/admin/article_edit.php
@@ -71,7 +71,7 @@ else if ($dopost == 'save') {
        exit();
    }
    if (!TestPurview('a_Edit')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
    }
    //对保存的文档进行处理
    $pubdate = GetMkTime($pubdate);
--- a/src/admin/catalog_do.php
+++ b/src/admin/catalog_do.php
@@ -10,7 +10,7 @@
 */
 require_once(dirname(__FILE__).'/config.php');
 if (empty($dopost)) {
    ShowMsg("对不起，请指定栏目参数", "catalog_main.php");
    ShowMsg("请指定栏目参数", "catalog_main.php");
    exit();
 }
 $cid = empty($cid) ? 0 : intval($cid);
@@ -35,7 +35,7 @@ if ($dopost == "addArchives") {
    }
    $gurl = $row["addcon"];
    if ($gurl == "") {
        ShowMsg("对不起，您指的栏目可能有误", "catalog_main.php");
        ShowMsg("您指的栏目可能有误", "catalog_main.php");
        exit();
    }

@@ -63,7 +63,7 @@ else if ($dopost == "listArchives") {
        $typename = $row["typename"];
        $channelname = $row["channelname"];
        if ($gurl == "") {
            ShowMsg("对不起，您指的栏目可能有误", "catalog_main.php");
            ShowMsg("您指的栏目可能有误", "catalog_main.php");
            exit();
        }
    } else if ($channelid > 0) {
--- a/src/admin/content_sg_list.php
+++ b/src/admin/content_sg_list.php
@@ -38,7 +38,7 @@ setcookie("ENV_GOBACK_URL", $dedeNowurl, time() + 3600, "/");
 $tl = new TypeLink($cid);
 $listtable = @trim($tl->TypeInfos['addtable']);
 if (!empty($channelid) && !empty($ucid) && $tl->TypeInfos['channeltype'] != $channelid) {
    ShowMsg('您没权限访问此页', 'javascript:;');
    ShowMsg('您没权限浏览此页', 'javascript:;');
    exit();
 }
 if ($cid == 0) {
--- a/src/admin/diy_list.php
+++ b/src/admin/diy_list.php
@@ -62,7 +62,7 @@ if ($action == 'post') {
            $goto = "diy_list.php?action=list&diyid={$diy->diyid}";
            showmsg('发布成功', $goto);
        } else {
            showmsg('对不起，发布不成功', '-1');
            showmsg('发布失败', '-1');
        }
    }
 } else if ($action == 'list') {
@@ -86,7 +86,7 @@ if ($action == 'post') {
        $query = "SELECT * FROM {$diy->table} WHERE id=$id";
        $row = $dsql->GetOne($query);
        if (!is_array($row)) {
            showmsg("您访问的记录不存在或未经审核", '-1');
            showmsg("您浏览的记录不存在或未经审核", '-1');
            exit();
        }
        $postform = $diy->getForm('edit', $row, 'admin');
--- a/src/admin/file_class.php
+++ b/src/admin/file_class.php
@@ -91,7 +91,7 @@ class FileManagement
                return 0;
            }
        } else {
            ShowMsg("对不起，您移动的路径不合法", "-1", 0, 5000);
            ShowMsg("您移动的路径不合法", "-1", 0, 5000);
            return 0;
        }
    }
--- a/src/admin/inc/inc_action_info.php
+++ b/src/admin/inc/inc_action_info.php
@@ -125,7 +125,7 @@ $actionSearch[4] = array(
    'soniterm' => array(
        0  =>  array(
            'title' => '更新缓存',
            'description' => '更新栏目缓存、更新枚举缓存、清理arclist调用缓存、清理过期会员访问历史、删除过期短信',
            'description' => '更新栏目缓存、更新枚举缓存、清理arclist调用缓存、清理过期会员浏览历史、删除过期短信',
            'purview' => 'sys_ArcBatch',
            'linkurl' => 'sys_cache_up.php'
        ),
@@ -185,7 +185,7 @@ $actionSearch[5] = array(
        ),
        1  =>  array(
            'title' => '会员级别设置',
            'description' => '设置会员的级别，可以通过设计不同会员的访问权限来对会员级别进行一个扩展',
            'description' => '设置会员的级别，可以通过设计不同会员的浏览权限来对会员级别进行一个扩展',
            'purview' => 'member_Type',
            'linkurl' => 'member_rank.php'
        ),
@@ -275,7 +275,7 @@ $actionSearch[7] = array(
        ),
        5  =>  array(
            'title' => '更新缓存',
            'description' => '更新栏目缓存、更新枚举缓存、清理arclist调用缓存、清理过期会员访问历史、删除过期短信 ',
            'description' => '更新栏目缓存、更新枚举缓存、清理arclist调用缓存、清理过期会员浏览历史、删除过期短信 ',
            'purview' => 'sys_ArcBatch',
            'linkurl' => 'sys_cache_up.php'
        ),
--- a/src/admin/member_do.php
+++ b/src/admin/member_do.php
@@ -152,7 +152,7 @@ else if ($dopost == 'edituser') {
    if (empty($sex)) $sex = '男';
    $uptime = GetMkTime($uptime);
    if ($matt == 10 && $oldmatt != 10) {
        ShowMsg("对不起，为安全起见，不支持直接把前台会员转为管理的操作", "-1");
        ShowMsg("不支持直接把前台会员转为管理的操作", "-1");
        exit();
    }
    $query = "UPDATE `#@__member` SET send_max='$send_max',email='$email',uname='$uname',sex='$sex',matt='$matt',money='$money',scores='$scores',`rank`='$rank',spacesta='$spacesta',uptime='$uptime',exptime='$exptime'$pwdsql WHERE mid='$id' AND matt<>10 ";
--- a/src/admin/module_make.php
+++ b/src/admin/module_make.php
@@ -40,7 +40,7 @@ else if ($action == 'make') {
    $filelist = str_replace("\r", "\n", trim($filelist));
    $filelist = trim(preg_replace("#[\n]{1,}#", "\n", $filelist));
    if ($filelist == '') {
        ShowMsg("对不起，您没有指定模块的文件列表，因此不能创建项目", "-1");
        ShowMsg("您没有指定模块的文件列表，因此不能创建项目", "-1");
        exit();
    }
    if (empty($dev_id)) {
@@ -81,7 +81,7 @@ else if ($action == 'make') {
    $dm = new DedeModule($mdir);
    if ($dm->HasModule($hashcode)) {
        $dm->Clear();
        ShowMsg("对不起，您指定同名模块已经存在，因此不能创建项目<br>如果您要更新这个模块，请先删除：module/{$hashcode}.xml", "-1");
        ShowMsg("您指定同名模块已经存在，因此不能创建项目<br>如果您要更新这个模块，请先删除：module/{$hashcode}.xml", "-1");
        exit();
    }
    $readmef = $setupf = $uninstallf = '';
@@ -176,7 +176,7 @@ else if ($action == 'edit') {
    $filelist = str_replace("\r", "\n", trim($filelist));
    $filelist = trim(preg_replace("#[\n]{1,}#", "\n", $filelist));
    if ($filelist == "") {
        ShowMsg("对不起，您没有指定模块的文件列表，因此不能创建项目", "-1");
        ShowMsg("您没有指定模块的文件列表，因此不能创建项目", "-1");
        exit();
    }
    if (empty($dev_id)) {
--- a/src/admin/module_upload.php
+++ b/src/admin/module_upload.php
@@ -30,7 +30,7 @@ if ($action == 'upload') {
        if (empty($infos['hash'])) {
            unlink($tmpfilename);
            $dm->Clear();
            ShowMsg("对不起，您上传的文件可能不是模块的标准格式文件<br><a href='javascript:history.go(-1);'>重新上传</a>", "javascript:;");
            ShowMsg("您上传的文件可能不是模块的标准格式文件<br><a href='javascript:history.go(-1);'>重新上传</a>", "javascript:;");
            exit();
        }
        if (preg_match("#[^0-9a-zA-Z]#", $infos['hash'])) {
@@ -40,7 +40,7 @@ if ($action == 'upload') {
        if ($dm->HasModule($infos['hash']) && empty($delhas)) {
            unlink($tmpfilename);
            $dm->Clear();
            ShowMsg("对不起，您上传的模块已经存在<br>如果要覆盖请先删除原来版本或选择强制删除的选项<br><a href='javascript:history.go(-1);'>重新上传</a>", "javascript:;");
            ShowMsg("您上传的模块已经存在<br>如果要覆盖请先删除原来版本或选择强制删除的选项<br><a href='javascript:history.go(-1);'>重新上传</a>", "javascript:;");
            exit();
        }
        @unlink($okfile);
--- a/src/admin/mychannel_field_edit.php
+++ b/src/admin/mychannel_field_edit.php
@@ -114,7 +114,7 @@ function _DELETE()
 -------------------*/
 else if ($action == "delete") {
    if ($row['issystem'] == 1) {
        ShowMsg("对不起，系统模型的字段不允许删除", "-1");
        ShowMsg("系统模型的字段不允许删除", "-1");
        exit();
    }
    //检测旧数据类型，并替换为新配置
--- a/src/admin/soft_add.php
+++ b/src/admin/soft_add.php
@@ -63,7 +63,7 @@ else if ($dopost == 'save') {
        exit();
    }
    if (!TestPurview('a_New')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>权限");
    }
    //对保存的文档进行处理
    if (empty($writer)) $writer = $cuserLogin->getUserName();
--- a/src/admin/soft_edit.php
+++ b/src/admin/soft_edit.php
@@ -92,7 +92,7 @@ else if ($dopost == 'save') {
        exit();
    }
    if (!TestPurview('a_Edit')) {
        CheckCatalog($typeid, "对不起，您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
        CheckCatalog($typeid, "您没有操作栏目<span class='text-primary'>{$typeid}</span>文档权限");
    }
    //对保存的文档进行处理
    $pubdate = GetMkTime($pubdate);
--- a/src/admin/sys_cache_up.php
+++ b/src/admin/sys_cache_up.php
@@ -34,11 +34,11 @@ if ($dopost == "ok") {
        ShowMsg("成功更新枚举缓存，准备更新调用缓存", "sys_cache_up.php?dopost=ok&step=3&uparc=$uparc");
        exit();
    }
    //清理arclist调用缓存、过期会员访问历史、过期短信
    //清理arclist调用缓存、过期会员浏览历史、过期短信
    else if ($step == 3) {
        echo '<meta http-equiv="Content-Type" content="text/html; charset='.$cfg_soft_lang.'">';
        $dsql->ExecuteNoneQuery("DELETE FROM `#@__arccache`");
        echo "\n成功更新arclist调用缓存，准备清理过期会员访问历史<hr />";
        echo "\n成功更新arclist调用缓存，准备清理过期会员浏览历史<hr/>";
        $oldtime = time() - (90 * 24 * 3600);
        $dsql->ExecuteNoneQuery("DELETE FROM `#@__member_pms` WHERE sendtime<'$oldtime' ");
        echo "成功清理过期短信，准备修正错误文档，这可能要占较长的时间";
--- a/src/admin/templets/freelist_add.htm
+++ b/src/admin/templets/freelist_add.htm
@@ -70,7 +70,7 @@
 				</tr>
 				<tr>
 					<td colspan="2">
 						<div class="alert alert-info mb-0">自由列表标记的说明：自由列表标记（freelist）的功能基本等同于arclist标记，区别是freelist标记支持分页，这让生成按自定义排序规则的文档列表（如按标题拼音部首排序等）等轻松的实现统一化管理，并且自由列是独立编译的，不与其它模板混在一起，这样不会影响系统生成网页或访问速度</div>
 						<div class="alert alert-info mb-0">自由列表标记的说明：自由列表标记（freelist）的功能基本等同于arclist标记，区别是freelist标记支持分页，这让生成按自定义排序规则的文档列表（如按标题拼音部首排序等）等轻松的实现统一化管理，并且自由列是独立编译的，不与其它模板混在一起，这样不会影响系统生成网页或浏览速度</div>
 					</td>
 				</tr>
 				<tr>
--- a/src/admin/templets/freelist_edit.htm
+++ b/src/admin/templets/freelist_edit.htm
@@ -28,7 +28,7 @@

 				<tr>
 					<td colspan="2">
 						<div class="alert alert-info mb-0">自由列表标记的说明：自由列表标记（freelist）的功能基本等同于arclist标记，区别是freelist标记支持分页，这让生成按自定义排序规则的文档列表（如按标题拼音部首排序等）等轻松的实现统一化管理，并且自由列是独立编译的，不与其它模板混在一起，这样不会影响系统生成网页或访问速度</div>
 						<div class="alert alert-info mb-0">自由列表标记的说明：自由列表标记（freelist）的功能基本等同于arclist标记，区别是freelist标记支持分页，这让生成按自定义排序规则的文档列表（如按标题拼音部首排序等）等轻松的实现统一化管理，并且自由列是独立编译的，不与其它模板混在一起，这样不会影响系统生成网页或浏览速度</div>
 					</td>
 				</tr>
 				<tr>
--- a/src/admin/templets/index_body.htm
+++ b/src/admin/templets/index_body.htm
@@ -33,7 +33,7 @@
 									<td width="20%" class="border-top-0">浏览次数(PV)</td>
 									<td width="20%" class="border-top-0">独立访客(UV)</td>
 									<td width="20%" class="border-top-0">独立地址(IP)</td>
 									<td width="20%" class="border-top-0">访问次数(VV)</td>
 									<td width="20%" class="border-top-0">浏览次数(VV)</td>
 								</tr>
 								<tr class="bg-white">
 									<td class="today">今日</td>
--- a/src/admin/templets/log_list.htm
+++ b/src/admin/templets/log_list.htm
@@ -45,14 +45,13 @@
 		<form name="formsearch">
 			<table cellpadding="2" cellspacing="1" align="center" class="table maintable my-3">
 				<tr bgcolor="#f5f5f5">
 					<td width="180" align="center">
 					<td width="380"><input type="text" name="cip" id="cip" placeholder="请输入ip地址" class="admin-input-md"></td>
 					<td width="170" align="center">
 						<select name="adminid" id="adminid" class="admin-input-sm">
 							<option value="0" selected>全部</option>
 							<?php echo $adminlist?>
 						</select>
 					</td>
 					<td width="170"><input type="text" name="cip" id="cip" placeholder="请输入ip地址" class="admin-input-sm">
 					</td>
 					<td width="170">
 						<select name="dtime" id="dtime" class="admin-input-sm">
 							<option value="0" selected>全部</option>
@@ -72,23 +71,23 @@
 			</tr>
 			<tr bgcolor="#e9ecef" align="center">
 				<td width="6%">选择</td>
 				<td width="10%">管理员</td>
 				<td width="16%">访问文件</td>
 				<td width="6%">方式</td>
 				<td width="14%">访问ip</td>
 				<td width="16%">时间</td>
 				<td>Query参数</td>
 				<td width="12%">管理员</td>
 				<td width="30%">浏览文件</td>
 				<td width="6%">访问方式</td>
 				<td width="10%">地址</td>
 				<td width="10%">时间</td>
 				<td>参数</td>
 			</tr>
 			<form name="form1">
 				{dede:datalist empty='<tr><td colspan="7" align="center">暂无文档</td></tr>'}
 				<tr align="center" onmousemove="javascript:this.bgColor='#e9ecef';" onmouseout="javascript:this.bgColor='#ffffff';">
 					<td><input type="checkbox" name="logs" id="logs" value="{dede:field.lid/}"></td>
 					<td>{dede:field.userid/}</td>
 					<td><input type="text" value="{dede:field.filename/}" name="t0" class="admin-input-sm"></td>
 					<td><input type="text" name="t0" value="{dede:field.filename/}" class="admin-input-md"></td>
 					<td>{dede:field.method/}</td>
 					<td>{dede:field.cip/}</td>
 					<td>{dede:field.dtime function="MyDate('y/m/d H:i:s',@me)"/}</td>
 					<td><input type="text" value="{dede:field.query/}" name="t1" class="admin-input-md"></td>
 					<td><input type="text" name="t1" value="{dede:field.query/}" class="admin-input-md"></td>
 				</tr>
 				{/dede:datalist}
 			</form>
--- a/src/admin/templets/makehtml_taglist.htm
+++ b/src/admin/templets/makehtml_taglist.htm
@@ -25,7 +25,7 @@
 				</tr>
 				<tr>
 					<td colspan="2">
 						<div class="alert alert-info mb-0">标签说明：生成静态文件后，访问动态文件则直接跳转静态文件，如果需要动态访问，删除对应文件即可。标签首页模板：<?php echo $cfg_templets_dir;?>/<?php echo $cfg_df_style?>/tag.htm 标签列表页模板：<?php echo $cfg_templets_dir;?>/<?php echo $cfg_df_style?>/taglist.htm</div>
 						<div class="alert alert-info mb-0">标签说明：生成静态文件后，浏览动态文件则直接跳转静态文件，如果需要动态浏览，删除对应文件即可。标签首页模板：<?php echo $cfg_templets_dir;?>/<?php echo $cfg_df_style?>/tag.htm 标签列表页模板：<?php echo $cfg_templets_dir;?>/<?php echo $cfg_df_style?>/taglist.htm</div>
 					</td>
 				</tr>
 				<?php if ($tagid > 0) {$row = $dsql->GetOne("SELECT tag FROM `#@__tagindex` WHERE id = '$tagid' ");?>
--- a/src/admin/templets/member_view.htm
+++ b/src/admin/templets/member_view.htm
@@ -160,7 +160,7 @@
 						<?php
 						$nrow = $dsql->GetOne("SELECT * FROM `#@__member_tj` WHERE mid='{$row['mid']}' ");
 						echo "文档：{$nrow['article']} 图片：{$nrow['album']} 文档：{$nrow['archives']} 收藏：{$nrow['stow']}";
 						echo "<br>空间访问：{$nrow['homecount']} 页面访问：{$nrow['pagecount']} 留言：{$nrow['feedback']} 好友：{$nrow['friend']} ";
 						echo "<br>空间浏览：{$nrow['homecount']} 页面浏览：{$nrow['pagecount']} 留言：{$nrow['feedback']} 好友：{$nrow['friend']} ";
 						?>
 					</td>
 				</tr>
--- a/src/admin/templets/sys_cache_up.htm
+++ b/src/admin/templets/sys_cache_up.htm
@@ -17,7 +17,7 @@
 				</tr>
 				<tr>
 					<td>
 						<div class="alert alert-info mb-0">本程序作默认会执行下面的操作：1、更新栏目缓存 2、更新枚举缓存 3、清理arclist调用缓存 4、清理过期会员访问历史 5、删除过期短信</div>
 						<div class="alert alert-info mb-0">本程序作默认会执行下面的操作：1、更新栏目缓存 2、更新枚举缓存 3、清理arclist调用缓存 4、清理过期会员浏览历史 5、删除过期短信</div>
 					</td>
 				</tr>
 				<tr>
--- a/src/admin/templets/sys_safetest.htm
+++ b/src/admin/templets/sys_safetest.htm
@@ -60,7 +60,7 @@
 			</tr>
 			<tr>
 				<td>检测结果：结果仅供参考，请务必查看源码后才删除非法文件<br>
 					安全建议：1、有条件的用户把data、system、theme修改为不可对外访问，static、a目录设置为不允许执行脚本，其它目录禁止写入，系统更安全；2、本检测程以开发模式为标准，如果您的网站目录包含其它系统，此检测程序可能会产生错误判断；3、检测程序会跳过对模板缓存目录的检测，为了安全起见，检测完成后建议清空模板缓存</td>
 					安全建议：1、有条件的用户把data、system、theme修改为不可对外浏览，static、a目录设置为不允许执行脚本，其它目录禁止写入，系统更安全；2、本检测程以开发模式为标准，如果您的网站目录包含其它系统，此检测程序可能会产生错误判断；3、检测程序会跳过对模板缓存目录的检测，为了安全起见，检测完成后建议清空模板缓存</td>
 			</tr>
 			<tr>
 				<td align="center" bgcolor="#e9ecef">
--- a/src/apps/diy.php
+++ b/src/apps/diy.php
@@ -123,7 +123,7 @@ else if ($action == 'list') {
    $row = $dsql->GetOne($query);

    if (!is_array($row)) {
        showmsg('您访问的记录不存在或未经审核', '-1');
        showmsg('您浏览的记录不存在或未经审核', '-1');
        exit();
    }
    $fieldlist = $diy->getFieldList();
--- a/src/apps/download.php
+++ b/src/apps/download.php
@@ -70,7 +70,7 @@ else if ($open == 1) {
        }
    }
    if (!in_array($linkinfo['host'], $allowed)) {
        ShowMsg('非下载地址，禁止访问', 'javascript:;');
        ShowMsg('非下载地址，禁止浏览', 'javascript:;');
        exit;
    }
    header("location:$link");
--- a/src/install/sql-dfdata.txt
+++ b/src/install/sql-dfdata.txt
@@ -4013,7 +4013,7 @@ INSERT INTO `#@__sysconfig` VALUES ('1','cfg_basehost','站点网址','1','strin
 ('76','cfg_md_mailtest','是否限制邮箱只能注册一个帐号','4','bool','Y'),
 ('77','cfg_mb_spacesta','会员使用权限开通状态（-10邮件验证、-1手工审核、0没限制）','4','number','-10'),
 ('78','cfg_mb_allowreg','是否允许新会员注册','4','bool','Y'),
 ('79','cfg_mb_adminlock','是否禁止访问管理员帐号的空间','4','bool','N'),
 ('79','cfg_mb_adminlock','是否禁止浏览管理员帐号的空间','4','bool','N'),
 ('81','cfg_mb_cktitle','是否检测会员投稿重复标题','5','bool','Y'),
 ('82','cfg_mb_editday','投稿多少天后不能再修改','5','number','1'),
 ('83','cfg_sendarc_scores','投稿可获取积分','5','number','10'),
--- a/src/install/update.txt
+++ b/src/install/update.txt
@@ -59,7 +59,7 @@ CREATE TABLE `#@__statistics_detail` (
 	`device` varchar(50) DEFAULT NULL COMMENT '设备',
 	`device_type` varchar(10) DEFAULT NULL COMMENT '设备类型',
 	`os` varchar(20) DEFAULT NULL COMMENT '操作系统',
 	`url_type` tinyint DEFAULT NULL COMMENT '访问地址类型：0:未知 1:列表 2:文档 3:搜索 4:TAG',
 	`url_type` tinyint DEFAULT NULL COMMENT '浏览地址类型：0:未知 1:列表 2:文档 3:搜索 4:TAG',
 	`typeid` int DEFAULT NULL COMMENT '栏目id',
 	`aid` int DEFAULT NULL COMMENT '文档ID',
 	`value` varchar(50) DEFAULT NULL COMMENT '值',
--- a/src/system/archive/archives.class.php
+++ b/src/system/archive/archives.class.php
@@ -704,11 +704,11 @@ class Archives
                $this->PreNext['diy']['pre']['title'] = $preRow['title'];
                $this->PreNext['diy']['pre']['litpic'] = $preRow['litpic'];
                $this->PreNext['diy']['pre']['pubdate'] = $preRow['senddate'];
                $this->PreNext['pre'] = "上一篇：<a href='$mlink'>{$preRow['title']}</a> ";
                $this->PreNext['preimg'] = "<a href='$mlink'><img src=\"{$preRow['litpic']}\" alt=\"{$preRow['title']}\"/></a> ";
                $this->PreNext['pre'] = "上一篇：<a href='$mlink'>{$preRow['title']}</a>";
                $this->PreNext['preimg'] = "<a href='$mlink'><img src=\"{$preRow['litpic']}\" alt=\"{$nextRow['title']}\" title=\"{$preRow['title']}\"></a> ";
            } else {
                $this->PreNext['pre'] = "上一篇：没有了 ";
                $this->PreNext['preimg'] = "<img src=\"/templets/default/images/nophoto.jpg\" alt=\"对不起，没有上一图片了\"/>";
                $this->PreNext['pre'] = "";
                $this->PreNext['preimg'] = "";
            }
            if (is_array($nextRow)) {
                $mlink = GetFileUrl(
@@ -734,10 +734,10 @@ class Archives
                $this->PreNext['diy']['next']['litpic'] = $nextRow['litpic'];
                $this->PreNext['diy']['next']['pubdate'] = $nextRow['senddate'];
                $this->PreNext['next'] = "下一篇：<a href='$mlink'>{$nextRow['title']}</a> ";
                $this->PreNext['nextimg'] = "<a href='$mlink'><img src=\"{$nextRow['litpic']}\" alt=\"{$nextRow['title']}\"/></a> ";
                $this->PreNext['nextimg'] = "<a href='$mlink'><img src=\"{$nextRow['litpic']}\" alt=\"{$nextRow['title']}\" title=\"{$preRow['title']}\"></a> ";
            } else {
                $this->PreNext['next'] = "下一篇：没有了 ";
                $this->PreNext['nextimg'] = "<a href='javascript:void(0)' alt=\"\"><img src=\"/templets/default/images/nophoto.jpg\" alt=\"对不起，没有下一图片了\"/></a>";
                $this->PreNext['next'] = "";
                $this->PreNext['nextimg'] = "";
            }
        }
        //二次开发上一篇下一篇
--- a/src/system/common.inc.php
+++ b/src/system/common.inc.php
@@ -140,7 +140,7 @@ if (PHP_VERSION > '5.1') {
    @date_default_timezone_set('Etc/GMT'.$time51);
 }
 $cfg_isUrlOpen = @ini_get("allow_url_fopen");
 //用户访问的网站host
 //用户浏览的网站host
 if (PHP_SAPI === 'cli') {
    $cfg_clihost = 'https://www.dedebiz.com';
 } else {
--- a/src/system/database/dedesqli.class.php
+++ b/src/system/database/dedesqli.class.php
@@ -246,7 +246,7 @@ class DedeSqli
        if ($this->recordLog) {
            $queryTime = ExecTime() - $t1;
            $this->RecordLog($queryTime);
            //echo $this->queryString."--{$queryTime}<hr />\r\n";
            //echo $this->queryString."--{$queryTime}<hr/>\r\n";
        }
        if (DEBUG_LEVEL === TRUE) {
            $queryTime = ExecTime() - $t1;
@@ -296,7 +296,7 @@ class DedeSqli
        if ($this->recordLog) {
            $queryTime = ExecTime() - $t1;
            $this->RecordLog($queryTime);
            //echo $this->queryString."--{$queryTime}<hr />\r\n";
            //echo $this->queryString."--{$queryTime}<hr/>\r\n";
        }
        if (DEBUG_LEVEL === TRUE) {
            $queryTime = ExecTime() - $t1;
--- a/src/system/database/dedesqlite.class.php
+++ b/src/system/database/dedesqlite.class.php
@@ -190,7 +190,7 @@ class DedeSqlite
        if ($this->recordLog) {
            $queryTime = ExecTime() - $t1;
            $this->RecordLog($queryTime);
            //echo $this->queryString."--{$queryTime}<hr />\r\n";
            //echo $this->queryString."--{$queryTime}<hr/>\r\n";
        }
        return $rs;
    }
@@ -219,7 +219,7 @@ class DedeSqlite
        if ($this->recordLog) {
            $queryTime = ExecTime() - $t1;
            $this->RecordLog($queryTime);
            //echo $this->queryString."--{$queryTime}<hr />\r\n";
            //echo $this->queryString."--{$queryTime}<hr/>\r\n";
        }
        return $this->linkID->changes();
    }
@@ -265,7 +265,7 @@ class DedeSqlite
        if ($this->recordLog) {
            $queryTime = ExecTime() - $t1;
            $this->RecordLog($queryTime);
            //echo $this->queryString."--{$queryTime}<hr />\r\n";
            //echo $this->queryString."--{$queryTime}<hr/>\r\n";
        }
        if ($this->result[$id] === FALSE) {
            $this->DisplayError($this->linkID->lastErrorMsg()." <br>Error sql:<span class='text-primary'>".$this->queryString."</span>");
--- a/src/system/helpers/extend.helper.php
+++ b/src/system/helpers/extend.helper.php
@@ -29,7 +29,7 @@ if (!function_exists('ParCv')) {
 if (!function_exists('ParamError')) {
    function ParamError()
    {
        ShowMsg('对不起，您输入的参数有误', 'javascript:;');
        ShowMsg('您输入的参数有误', 'javascript:;');
        exit();
    }
 }
--- a/src/system/libraries/splitword.class.php
+++ b/src/system/libraries/splitword.class.php
@@ -593,7 +593,7 @@ class SplitWord
                    break;
                }
            }
            //echo '<hr />';
            //echo '<hr/>';
            //没适合词
            if (!$isok) $tmparr[] = $nc;
        }
--- a/src/system/userlogin.class.php
+++ b/src/system/userlogin.class.php
@@ -33,7 +33,7 @@ function TestPurview($n)
    }
    $ns = explode(',', $n);
    foreach ($ns as $n) {
        //只要找到一个匹配的权限，即可认为用户有权访问此页面
        //只要找到一个匹配的权限，即可认为用户有权浏览此页面
        if ($n == '') {
            continue;
        }
@@ -54,7 +54,7 @@ function TestPurview($n)
 function CheckPurview($n)
 {
    if (!TestPurview($n)) {
        ShowMsg("对不起，您没有权限执行此操作<br><br><a href='javascript:history.go(-1);'>点击返回上一页</a>", 'javascript:;');
        ShowMsg("您没有权限执行此操作<br><br><a href='javascript:history.go(-1);'>点击返回上一页</a>", 'javascript:;');
        exit();
    }
 }
--- a/src/user/album_add.php
+++ b/src/user/album_add.php
@@ -12,11 +12,11 @@ require_once(dirname(__FILE__)."/config.php");
 //考虑安全原因不管是否开启游客投稿功能，都不允许用户对图片投稿
 CheckRank(0, 0);
 if ($cfg_mb_lit == 'Y') {
    ShowMsg("由于系统开启了精简版会员空间，您访问的功能不可用", "-1");
    ShowMsg("由于系统开启了会员空间精简版，您浏览的功能不可用", "-1");
    exit();
 }
 if ($cfg_mb_album == 'N') {
    ShowMsg("对不起，由于系统关闭了图片功能，您访问的功能不可用", "-1");
    ShowMsg("由于系统关闭了图片功能，您浏览的功能不可用", "-1");
    exit();
 }
 require_once(DEDEINC."/dedetag.class.php");
@@ -29,7 +29,7 @@ $typeid = isset($typeid) && is_numeric($typeid) ? $typeid : 0;
 $menutype = 'content';
 if (empty($formhtml)) $formhtml = 0;
 if ($cfg_ml->IsSendLimited()) {
    ShowMsg("对不起，当前用户已经超出投稿限制，投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    ShowMsg("文档发布失败，投稿已经超出投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    exit();
 }
 /*-------------
@@ -45,11 +45,11 @@ if (empty($dopost)) {
    //检查会员等级和类型限制
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("Select membername From `#@__arcrank` where `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {
        ShowMsg("对不起，需要<span class='text-primary'>".$cInfos['usertype']."</span>帐号才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$cInfos['usertype']."</span>帐号才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    include(DEDEMEMBER."/templets/album_add.htm");
@@ -112,7 +112,7 @@ else if ($dopost == 'save') {
        //这里对前台提交的附加数据进行一次校验
        $fontiterm = PrintAutoFieldsAdd(stripslashes($cInfos['fieldset']), 'autofield', FALSE);
        if ($fontiterm != $inadd_f) {
            ShowMsg("提交表单同系统配置不相符,请重新提交", "-1");
            ShowMsg("提交表单同系统配置不相符，请重新提交", "-1");
            exit();
        }
    }
--- a/src/user/album_edit.php
+++ b/src/user/album_edit.php
@@ -11,11 +11,11 @@
 require_once(dirname(__FILE__)."/config.php");
 CheckRank(0, 0);
 if ($cfg_mb_lit == 'Y') {
    ShowMsg("由于系统开启了精简版会员空间，您访问的功能不可用", "-1");
    ShowMsg("由于系统开启会员空间精简版，您浏览的功能不可用", "-1");
    exit();
 }
 if ($cfg_mb_album == 'N') {
    ShowMsg("对不起，由于系统关闭了图片功能，您访问的功能不可用", "-1");
    ShowMsg("由于系统关闭了图片功能，您浏览的功能不可用", "-1");
    exit();
 }
 require_once(DEDEINC."/dedetag.class.php");
@@ -27,7 +27,7 @@ $aid = isset($aid) && is_numeric($aid) ? $aid : 0;
 $menutype = 'content';
 if (empty($formhtml)) $formhtml = 0;
 if ($cfg_ml->IsSendLimited()) {
    ShowMsg("对不起，当前用户已经超出投稿限制，投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    ShowMsg("文档发布失败，投稿已经超出投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    exit();
 }
 /*-------------
@@ -44,7 +44,7 @@ if (empty($dopost)) {
        $dtime = time();
        $maxtime = $cfg_mb_editday * 24 * 3600;
        if ($dtime - $row['senddate'] > $maxtime) {
            ShowMsg("这篇文档已经锁定，您不能再修改它", "-1");
            ShowMsg("这篇文档已经锁定，暂时无法修改", "-1");
            exit();
        }
    }
@@ -108,7 +108,7 @@ else if ($dopost == 'save') {
        //这里对前台提交的附加数据进行一次校验
        $fontiterm = PrintAutoFieldsAdd(stripslashes($cInfos['fieldset']), 'autofield', FALSE);
        if ($fontiterm != $inadd_m) {
            ShowMsg("提交表单同系统配置不相符,请重新提交", "-1");
            ShowMsg("提交表单同系统配置不相符，请重新提交", "-1");
            exit();
        }
    }
--- a/src/user/archives_add.php
+++ b/src/user/archives_add.php
@@ -19,7 +19,7 @@ $typeid = isset($typeid) && is_numeric($typeid) ? $typeid : 0;
 $mtypesid = isset($mtypesid) && is_numeric($mtypesid) ? $mtypesid : 0;
 $menutype = 'content';
 if ($cfg_ml->IsSendLimited()) {
    ShowMsg("对不起，当前用户已经超出投稿限制，投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    ShowMsg("文档发布失败，投稿已经超出投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    exit();
 }
 /*-------------
@@ -38,11 +38,11 @@ if (empty($dopost)) {
    //检查会员等级和类型限制
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("Select membername From `#@__arcrank` where `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {
        ShowMsg("对不起，需要<span class='text-primary'>".$cInfos['usertype']."</span>帐号才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$cInfos['usertype']."</span>帐号才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    include(DEDEMEMBER."/templets/archives_add.htm");
@@ -82,7 +82,7 @@ else if ($dopost == 'save') {
        //这里对前台提交的附加数据进行一次校验
        $fontiterm = PrintAutoFieldsAdd(stripslashes($cInfos['fieldset']), 'autofield', FALSE);
        if ($fontiterm != $inadd_f) {
            ShowMsg("提交表单同系统配置不相符,请重新提交", "-1");
            ShowMsg("提交表单同系统配置不相符，请重新提交", "-1");
            exit();
        }
    }
--- a/src/user/archives_do.php
+++ b/src/user/archives_do.php
@@ -114,7 +114,7 @@ else if ($dopost == "delArc") {
        $dtime = time();
        $maxtime = $cfg_mb_editday * 24 * 3600;
        if ($dtime - $row['senddate'] > $maxtime) {
            ShowMsg("这篇文档已经锁定，您不能再删除它", "-1");
            ShowMsg("这篇文档已经锁定，暂时无法删除", "-1");
            exit();
        }
    }
--- a/src/user/archives_edit.php
+++ b/src/user/archives_edit.php
@@ -19,7 +19,7 @@ $aid = isset($aid) && is_numeric($aid) ? $aid : 0;
 $mtypesid = isset($mtypesid) && is_numeric($mtypesid) ? $mtypesid : 0;
 $menutype = 'content';
 if ($cfg_ml->IsSendLimited()) {
    ShowMsg("对不起，当前用户已经超出投稿限制，投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    ShowMsg("文档发布失败，投稿已经超出投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    exit();
 }
 /*-------------
@@ -36,7 +36,7 @@ if (empty($dopost)) {
        $dtime = time();
        $maxtime = $cfg_mb_editday * 24 * 3600;
        if ($dtime - $row['senddate'] > $maxtime) {
            ShowMsg("这篇文档已经锁定，您不能再修改它", "-1");
            ShowMsg("这篇文档已经锁定，暂时无法修改", "-1");
            exit();
        }
    }
@@ -75,7 +75,7 @@ else if ($dopost == 'save') {
        //这里对前台提交的附加数据进行一次校验
        $fontiterm = PrintAutoFieldsAdd(stripslashes($cInfos['fieldset']), 'autofield', FALSE);
        if ($fontiterm != $inadd_m) {
            ShowMsg("提交表单同系统配置不相符,请重新提交", "-1");
            ShowMsg("提交表单同系统配置不相符，请重新提交", "-1");
            exit();
        }
    }
--- a/src/user/archives_sg_add.php
+++ b/src/user/archives_sg_add.php
@@ -19,7 +19,7 @@ $typeid = isset($typeid) && is_numeric($typeid) ? $typeid : 0;
 $mtypesid = isset($mtypesid) && is_numeric($mtypesid) ? $mtypesid : 0;
 $menutype = 'content';
 if ($cfg_ml->IsSendLimited()) {
    ShowMsg("对不起，当前用户已经超出投稿限制，投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    ShowMsg("文档发布失败，投稿已经超出投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    exit();
 }
 /*-------------
@@ -38,11 +38,11 @@ if (empty($dopost)) {
    //检查会员等级和类型限制
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("SELECT membername FROM `#@__arcrank` WHERE `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {
        ShowMsg("对不起，需要<span class='text-primary'>".$cInfos['usertype']."</span>帐号才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$cInfos['usertype']."</span>帐号才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    include(DEDEMEMBER."/templets/archives_sg_add.htm");
@@ -82,11 +82,11 @@ else if ($dopost == 'save') {
    //检查栏目设定的投稿许可权限
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("Select membername From #@__arcrank where `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {
        ShowMsg("对不起，需要<span class='text-primary'>".$cInfos['usertype']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$cInfos['usertype']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    //文档的默认状态
--- a/src/user/archives_sg_edit.php
+++ b/src/user/archives_sg_edit.php
@@ -19,7 +19,7 @@ $aid = isset($aid) && is_numeric($aid) ? $aid : 0;
 $mtypesid = isset($mtypesid) && is_numeric($mtypesid) ? $mtypesid : 0;
 $menutype = 'content';
 if ($cfg_ml->IsSendLimited()) {
    ShowMsg("对不起，当前用户已经超出投稿限制，投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    ShowMsg("文档发布失败，投稿已经超出投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    exit();
 }
 /*-------------
@@ -35,7 +35,7 @@ if (empty($dopost)) {
    }
    $addRow = $dsql->GetOne("SELECT * FROM `{$cInfos['addtable']}` WHERE aid='$aid'; ");
    if ($addRow['mid'] != $cfg_ml->M_ID) {
        ShowMsg("对不起，您没权限操作此文档", "-1");
        ShowMsg("您没权限操作此文档", "-1");
        exit();
    }
    $addRow['id'] = $addRow['aid'];
@@ -101,7 +101,7 @@ else if ($dopost == 'save') {
        //这里对前台提交的附加数据进行一次校验
        $fontiterm = PrintAutoFieldsAdd(stripslashes($cInfos['fieldset']), 'autofield', FALSE);
        if ($fontiterm != $inadd_m) {
            ShowMsg("提交表单同系统配置不相符,请重新提交", "-1");
            ShowMsg("提交表单同系统配置不相符，请重新提交", "-1");
            exit();
        }
    }
--- a/src/user/article_add.php
+++ b/src/user/article_add.php
@@ -19,7 +19,7 @@ $typeid = isset($typeid) && is_numeric($typeid) ? $typeid : 0;
 $mtypesid = isset($mtypesid) && is_numeric($mtypesid) ? $mtypesid : 0;
 $menutype = 'content';
 if ($cfg_ml->IsSendLimited()) {
    ShowMsg("对不起，当前用户已经超出投稿限制，投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    ShowMsg("文档发布失败，投稿已经超出投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    exit();
 }
 /*-------------
@@ -32,11 +32,11 @@ if (empty($dopost)) {
    //检查会员等级和类型限制
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("SELECT membername FROM `#@__arcrank` WHERE `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {
        ShowMsg("对不起，需要<span class='text-primary'>".$cInfos['usertype']."</span>帐号才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$cInfos['usertype']."</span>帐号才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    include(DEDEMEMBER."/templets/article_add.htm");
@@ -71,7 +71,7 @@ else if ($dopost == 'save') {
    //这里对前台提交的附加数据进行一次校验
    $fontiterm = PrintAutoFieldsAdd(stripslashes($cInfos['fieldset']), 'autofield', FALSE);
    if ($fontiterm != $inadd_f) {
        ShowMsg("提交表单同系统配置不相符,请重新提交", "-1");
        ShowMsg("提交表单同系统配置不相符，请重新提交", "-1");
        exit();
    }
    $body = AnalyseHtmlBody($body, $description);
--- a/src/user/article_edit.php
+++ b/src/user/article_edit.php
@@ -19,7 +19,7 @@ $aid = isset($aid) && is_numeric($aid) ? $aid : 0;
 $mtypesid = isset($mtypesid) && is_numeric($mtypesid) ? $mtypesid : 0;
 $menutype = 'content';
 if ($cfg_ml->IsSendLimited()) {
    ShowMsg("对不起，当前用户已经超出投稿限制，投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    ShowMsg("文档发布失败，投稿已经超出投稿限制次数：{$cfg_ml->M_SendMax}次", "-1", "0", 5000);
    exit();
 }
 /*-------------
@@ -36,7 +36,7 @@ if (empty($dopost)) {
        $dtime = time();
        $maxtime = $cfg_mb_editday * 24 * 3600;
        if ($dtime - $row['senddate'] > $maxtime) {
            ShowMsg("这篇文档已经锁定，您不能再修改它", "-1");
            ShowMsg("这篇文档已经锁定，暂时无法修改", "-1");
            exit();
        }
    }
--- a/src/user/config.php
+++ b/src/user/config.php
@@ -114,7 +114,7 @@ if ($cfg_mb_open == 'N') {
        if ($format === 'json') {
            echo json_encode(array(
                "code" => -1,
                "msg" => "系统关闭了用户功能，因此您无法访问此页面",
                "msg" => "网站关闭了会员功能，您无法浏览此页面",
                "data" => null,
            ));
            exit;
@@ -122,7 +122,7 @@ if ($cfg_mb_open == 'N') {
            die('');
        }
    } else {
        ShowMsg("系统关闭了用户功能，因此您无法访问此页面", "javascript:;");
        ShowMsg("网站关闭了会员功能，您无法浏览此页面", "javascript:;");
        exit();
    }
 }
@@ -199,10 +199,10 @@ function CheckRank($rank = 0, $money = 0)
                    $myname = "普通会员";
                }
            }
            ShowMsg("对不起，需要<span class='text-primary'>$needname</span>才能浏览本页面<br>您目前等级是<span class='text-primary'>$myname</span>", "-1", 0, 5000);
            ShowMsg("需要<span class='text-primary'>$needname</span>才能浏览本页面<br>您目前等级是<span class='text-primary'>$myname</span>", "-1", 0, 5000);
            exit();
        } else if ($cfg_ml->M_Money < $money) {
            ShowMsg("对不起，需要<span class='text-primary'>$money</span>金币才能浏览本页面<br>您目前金币<span class='text-primary'>".$cfg_ml->M_Money."</span>个", "-1", 0, 5000);
            ShowMsg("需要<span class='text-primary'>$money</span>金币才能浏览本页面<br>您目前金币<span class='text-primary'>".$cfg_ml->M_Money."</span>个", "-1", 0, 5000);
            exit();
        }
    }
--- a/src/user/content_list.php
+++ b/src/user/content_list.php
@@ -31,9 +31,9 @@ if (!is_array($cInfos)) {
 $arcsta = $cInfos['arcsta'];
 $dtime = time();
 $maxtime = $cfg_mb_editday * 24 * 3600;
 //禁止访问无权限的模型
 //禁止浏览无权限的模型
 if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {
    ShowMsg('您无权限访问该部分', '-1');
    ShowMsg('您无权限浏览该部分', '-1');
    exit();
 }
 if ($cid == 0) {
--- a/src/user/content_sg_list.php
+++ b/src/user/content_sg_list.php
@@ -29,9 +29,9 @@ if (!is_array($cInfos)) {
    exit();
 }
 $arcsta = $cInfos['arcsta'];
 //禁止访问无权限的模型
 //禁止浏览无权限的模型
 if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {
    ShowMsg('您无权限访问该部分', '-1');
    ShowMsg('您无权限浏览该部分', '-1');
    exit();
 }
 if ($cid == 0) {
--- a/src/user/inc/archives_check.php
+++ b/src/user/inc/archives_check.php
@@ -30,11 +30,11 @@ if ($cInfos['issend'] != 1 || $cInfos['ispart'] != 0  || $cInfos['channeltype']
 //检查栏目设定的投稿许可权限
 if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
    $row = $dsql->GetOne("SELECT membername FROM `#@__arcrank` WHERE `rank`='".$cInfos['sendrank']."' ");
    ShowMsg("对不起，需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
    ShowMsg("需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
    exit();
 }
 if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {
    ShowMsg("对不起，需要<span class='text-primary'>".$cInfos['usertype']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
    ShowMsg("需要<span class='text-primary'>".$cInfos['usertype']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
    exit();
 }
 //文档的默认状态
@@ -62,7 +62,7 @@ $mid = $cfg_ml->M_ID;
 if ($cfg_mb_cktitle == 'Y') {
    $row = $dsql->GetOne("SELECT * FROM `#@__archives` WHERE title LIKE '$title' ");
    if (is_array($row)) {
        ShowMsg("对不起，请不要发布重复文档", "-1", "0", 5000);
        ShowMsg("请不要发布重复文档", "-1", "0", 5000);
        exit();
    }
 }
--- a/src/user/inc/inc_pwd_functions.php
+++ b/src/user/inc/inc_pwd_functions.php
@@ -92,7 +92,7 @@ function newmail($mid, $userid, $mailto, $type, $send)
                return ShowMsg('稍后跳转修改页', $cfg_basehost.$cfg_memberurl."/resetpassword.php?dopost=getpasswd&amp;id=".$mid."&amp;key=".$randval);
            }
        } else {
            return ShowMsg('对不起修改失败，请联系管理员', 'login.php');
            return ShowMsg('修改失败，请联系管理员', 'login.php');
        }
    } elseif ($type == 'UPDATE') {
        $key = md5($randval);
@@ -105,7 +105,7 @@ function newmail($mid, $userid, $mailto, $type, $send)
                return ShowMsg('稍后跳转修改页', $cfg_basehost.$cfg_memberurl."/resetpassword.php?dopost=getpasswd&amp;id=".$mid."&amp;key=".$randval);
            }
        } else {
            ShowMsg('对不起修改失败，请与管理员联系', 'login.php');
            ShowMsg('修改失败，请与管理员联系', 'login.php');
        }
    }
 }
@@ -121,7 +121,7 @@ function member($mail, $userid)
    global $db;
    $sql = "SELECT mid,email,safequestion FROM `#@__member` WHERE email='$mail' AND userid = '$userid'";
    $row = $db->GetOne($sql);
    if (!is_array($row)) return ShowMsg("对不起，用户id输入错误", "-1");
    if (!is_array($row)) return ShowMsg("用户id输入错误", "-1");
    else return $row;
 }
 /**
@@ -150,6 +150,6 @@ function sn($mid, $userid, $mailto, $send = 'Y')
    }
    //重新发送新的验证码确认邮件；
    else {
        return ShowMsg('对不起，请10分钟后再重新申请', 'login.php');
        return ShowMsg('请10分钟后再重新申请', 'login.php');
    }
 }
--- a/src/user/index_do.php
+++ b/src/user/index_do.php
@@ -30,7 +30,7 @@ if ($fmdo == 'sendMail') {
    $mailbody = '';
    $mailbody .= "尊敬的用户<span class='text-primary'>{$cfg_ml->fields['uname']}</span>，您好：\r\n";
    $mailbody .= "欢迎注册成为<span class='text-primary'>{$cfg_webname}</span>会员\r\n";
    $mailbody .= "要通过注册，还必须进行最后一步操作，请点击或复制下面链接到地址栏访问这地址：\r\n";
    $mailbody .= "要通过注册，还必须进行最后一步操作，请点击或复制下面链接到地址栏浏览这地址：\r\n";
    $mailbody .= "{$url}\r\n";
    $mailbody .= "Powered by DedeBIZ开发团队\r\n";
    $headers = "From: ".$cfg_adminemail."\r\nReply-To: ".$cfg_adminemail;
--- a/src/user/pm.php
+++ b/src/user/pm.php
@@ -14,7 +14,7 @@ $menutype = 'mydede';
 $menutype_son = 'pm';
 $id = isset($id) ? intval($id) : 0;
 if ($cfg_mb_lit == 'Y') {
    ShowMsg('由于系统开启了精简版会员空间，您不能向其它会员发短信息，不过您可以向他留言', '-1');
    ShowMsg('由于系统开启了会员空间精简版，您不能向其它会员发短信息，不过您可以向他留言', '-1');
    exit();
 }
 if (!isset($dopost)) {
@@ -30,7 +30,7 @@ if ($dopost == 'read') {
        $result = array(
            "code" => -1,
            "data" => null,
            "msg" => "对不起，您指定的消息不存在或您没权限查看",
            "msg" => "您指定的消息不存在或您没权限查看",
        );
        echo json_encode($result);
        exit();
--- a/src/user/resetpassword.php
+++ b/src/user/resetpassword.php
@@ -20,15 +20,15 @@ if ($dopost == "") {
    $svali = GetCkVdValue();
    if (strtolower($vdcode) != $svali || $svali == '') {
        ResetVdValue();
        ShowMsg("对不起，验证码输入错误", "-1");
        ShowMsg("验证码输入错误", "-1");
        exit();
    }
    //验证邮箱，用户名
    if (empty($mail) && empty($userid)) {
        showmsg('对不起，请输入用户名或邮箱', '-1');
        showmsg('请输入用户名或邮箱', '-1');
        exit;
    } else if (!preg_match("#(.*)@(.*)\.(.*)#", $mail)) {
        showmsg('对不起，请输入正确的邮箱格式', '-1');
        showmsg('请输入正确的邮箱格式', '-1');
        exit;
    } else if (CheckUserID($userid, '', false) != 'ok') {
        ShowMsg("您输入的用户名 {$userid} 不合法", "-1");
@@ -41,13 +41,13 @@ if ($dopost == "") {
        if ($cfg_sendmail_bysmtp == "Y") {
            sn($member['mid'], $userid, $member['email']);
        } else {
            showmsg('对不起邮件服务暂未开启，请联系管理员', 'login.php');
            showmsg('邮件服务暂未开启，请联系管理员', 'login.php');
            exit();
        }
        //以安全问题取回密码；
    } else if ($type == 2) {
        if ($member['safequestion'] == 0) {
            showmsg('对不起您尚未设置安全密码，请通过邮件方式重设密码', 'login.php');
            showmsg('您尚未设置安全密码，请通过邮件方式重设密码', 'login.php');
            exit;
        }
        require_once(dirname(__FILE__)."/templets/resetpassword3.htm");
@@ -63,19 +63,19 @@ if ($dopost == "") {
        sn($mid, $row['userid'], $row['email'], 'N');
        exit();
    } else {
        ShowMsg("对不起，您的安全问题或答案回答错误", "-1");
        ShowMsg("您的安全问题或答案回答错误", "-1");
        exit();
    }
 } else if ($dopost == "getpasswd") {
    //修改密码
    if (empty($id)) {
        ShowMsg("对不起，请不要非法提交", "login.php");
        ShowMsg("请不要非法提交", "login.php");
        exit();
    }
    $mid = preg_replace("#[^0-9]#", "", $id);
    $row = $db->GetOne("SELECT * FROM `#@__pwd_tmp` WHERE mid = '$mid'");
    if (empty($row)) {
        ShowMsg("对不起，请不要非法提交", "login.php");
        ShowMsg("请不要非法提交", "login.php");
        exit();
    }
    if (empty($setp)) {
@@ -83,7 +83,7 @@ if ($dopost == "") {
        $dtime = time();
        if ($dtime - $tptim > $row['mailtime']) {
            $db->executenonequery("DELETE FROM `#@__pwd_tmp` WHERE `md` = '$id';");
            ShowMsg("对不起，临时密码修改期限已过期", "login.php");
            ShowMsg("临时密码修改期限已过期", "login.php");
            exit();
        }
        require_once(dirname(__FILE__)."/templets/resetpassword2.htm");
@@ -109,10 +109,10 @@ if ($dopost == "") {
                    }
                }
            }
            ShowMsg('对不起，新密码为空或填写不一致', '-1');
            ShowMsg('新密码为空或填写不一致', '-1');
            exit;
        }
        ShowMsg('对不起，临时密码错误', '-1');
        ShowMsg('临时密码错误', '-1');
        exit;
    }
 }
--- a/src/user/soft_add.php
+++ b/src/user/soft_add.php
@@ -12,7 +12,7 @@ require_once(dirname(__FILE__)."/config.php");
 //考虑安全原因不管是否开启游客投稿功能，都不允许用户投稿
 CheckRank(0, 0);
 if ($cfg_mb_lit == 'Y') {
    ShowMsg("由于系统开启了精简版会员空间，您访问的功能不可用", "-1");
    ShowMsg("由于系统开启了会员空间精简版，您浏览的功能不可用", "-1");
    exit();
 }
 require_once(DEDEINC."/dedetag.class.php");
@@ -39,11 +39,11 @@ if (empty($dopost)) {
    //检查会员等级和类型限制
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("SELECT membername FROM `#@__arcrank` where `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$row['membername']."</span>才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    if ($cInfos['usertype'] != '' && $cInfos['usertype'] != $cfg_ml->M_MbType) {
        ShowMsg("对不起，需要<span class='text-primary'>".$cInfos['usertype']."</span>帐号才能在这个栏目发布文档", "-1", "0", 5000);
        ShowMsg("需要<span class='text-primary'>".$cInfos['usertype']."</span>帐号才能在这个栏目发布文档", "-1", "0", 5000);
        exit();
    }
    include(DEDEMEMBER."/templets/soft_add.htm");
--- a/src/user/soft_edit.php
+++ b/src/user/soft_edit.php
@@ -32,7 +32,7 @@ if (empty($dopost)) {
        $dtime = time();
        $maxtime = $cfg_mb_editday * 24 * 3600;
        if ($dtime - $row['senddate'] > $maxtime) {
            ShowMsg("这篇文档已经锁定，您不能再修改它", "-1");
            ShowMsg("这篇文档已经锁定，暂时无法修改", "-1");
            exit();
        }
    }