2 years ago · fe2e25b31e
--- a/src/admin/article_keywords_main.php
+++ b/src/admin/article_keywords_main.php
@@ -65,7 +65,7 @@ else if ($dopost == 'add') {
        ShowMsg("关键字已存在库中！", "-1");
        exit();
    }
    $inquery = "INSERT INTO `#@__keywords`(keyword,rank,sta,rpurl) VALUES ('$keyword','$rank','1','$rpurl');";
    $inquery = "INSERT INTO `#@__keywords`(keyword,`rank`,sta,rpurl) VALUES ('$keyword','$rank','1','$rpurl');";
    $dsql->ExecuteNoneQuery($inquery);
    ShowMsg("成功增加一个关键字！", $ENV_GOBACK_URL);
    exit();
@@ -77,7 +77,7 @@ if (empty($keyword)) {
    $addquery = " WHERE keyword LIKE '%$keyword%' ";
 }

 $sql = "SELECT * FROM `#@__keywords` $addquery ORDER BY rank DESC";
 $sql = "SELECT * FROM `#@__keywords` $addquery ORDER BY `rank` DESC";
 $dlist = new DataListCP();
 $dlist->pageSize = 20;
 $dlist->SetParameter("keyword", $keyword);
--- a/src/admin/article_keywords_make.php
+++ b/src/admin/article_keywords_make.php
@@ -67,7 +67,7 @@ if ($dopost == 'analyse') {
            if (strlen($k) > 20) {
                continue;
            }
            $dsql->SetQuery("INSERT INTO `#@__keywords`(keyword,rank,sta,rpurl) VALUES('".addslashes($k)."','$v','1','')");
            $dsql->SetQuery("INSERT INTO `#@__keywords`(keyword,`rank`,sta,rpurl) VALUES('".addslashes($k)."','$v','1','')");
            $dsql->Execute();
        }
        echo "完成关键字的导入！<br/>\r\n";
--- a/src/admin/article_keywords_select.php
+++ b/src/admin/article_keywords_select.php
@@ -16,7 +16,7 @@ $f = RemoveXSS($f);

 if (empty($keywords)) $keywords = "";

 $sql = "SELECT * FROM #@__keywords ORDER BY rank DESC";
 $sql = "SELECT * FROM `#@__keywords` ORDER BY `rank` DESC";
 $dlist = new DataListCP();
 $dlist->SetTemplate(DEDEADMIN."/templets/article_keywords_select.htm");
 $dlist->pageSize = 300;
--- a/src/admin/catalog_edit.php
+++ b/src/admin/catalog_edit.php
@@ -200,7 +200,7 @@ if ($dopost == 'time') {
                <td class="bline" height="26" align="center">浏览权限：</td>
                <td class="bline"><select name="corank" id="corank" style="width:100">
                    <?php
                    $dsql->SetQuery("SELECT * FROM #@__arcrank WHERE rank >= 0");
                    $dsql->SetQuery("SELECT * FROM `#@__arcrank` WHERE `rank` >= 0");
                    $dsql->Execute();
                    while ($row = $dsql->GetObject()) {
                        if ($myrow['corank'] == $row->rank)
--- a/src/admin/member_do.php
+++ b/src/admin/member_do.php
@@ -162,7 +162,7 @@ function __EditUser()
            matt = '$matt',
            money = '$money',
            scores = '$scores',
            rank = '$rank',
            `rank` = '$rank',
            spacesta='$spacesta',
            uptime='$uptime',
            exptime='$exptime'
@@ -176,7 +176,7 @@ function __EditUser()
            sex = '$sex',
            money = '$money',
            scores = '$scores',
            rank = '$rank',
            `rank` = '$rank',
            spacesta='$spacesta',
            uptime='$uptime',
            exptime='$exptime'
--- a/src/admin/member_main.php
+++ b/src/admin/member_main.php
@@ -28,7 +28,7 @@ $sortkey = empty($sortkey) ? 'mid' : preg_replace("#[^a-z]#i", '', $sortkey);
 $staArr = array(-2 => '限制用户(禁言)', -1 => '未通过审核', 0 => '审核通过，提示填写完整信息', 1 => '没填写详细资料', 2 => '正常使用状态');
 $staArrmatt = array(1 => '被推荐', 0 => '非普通 ');
 $MemberTypes = array();
 $dsql->SetQuery("Select rank,membername From `#@__arcrank` where rank>0 ");
 $dsql->SetQuery("Select `rank`,membername From `#@__arcrank` where `rank`>0 ");
 $dsql->Execute();
 while ($row = $dsql->GetObject()) {
    $MemberTypes[$row->rank] = $row->membername;
--- a/src/admin/member_rank.php
+++ b/src/admin/member_rank.php
@@ -25,7 +25,7 @@ if ($dopost == 'save') {
        $scores = ${"scores_".$startID};
        if (isset(${"check_".$startID})) {
            if ($rank > 0) {
                $query = "UPDATE `#@__arcrank` SET membername='$name',money='$money',rank='$rank',scores='$scores' WHERE id='$id' ";
                $query = "UPDATE `#@__arcrank` SET membername='$name',money='$money',`rank`='$rank',scores='$scores' WHERE id='$id' ";
            }
        } else {
            $query = "DELETE FROM `#@__arcrank` WHERE id='$id' AND rank<>10";
@@ -41,11 +41,11 @@ if ($dopost == 'save') {
    echo "<script> alert('成功更新会员等级表'); </script>";
 }
 if ($dopost == 'del') {
    $dsql->ExecuteNoneQuery("DELETE FROM `#@__arcrank` WHERE id='$id' AND rank<>10");
    $dsql->ExecuteNoneQuery("DELETE FROM `#@__arcrank` WHERE id='$id' AND `rank`<>10");
    ShowMsg("删除成功", "member_rank.php");
    exit();
 }

 $dsql->SetQuery("SELECT * FROM `#@__arcrank` WHERE rank>0 ORDER BY rank");
 $dsql->SetQuery("SELECT * FROM `#@__arcrank` WHERE `rank`>0 ORDER BY `rank`");
 $dsql->Execute();
 include DedeInclude('templets/member_rank.htm');
--- a/src/admin/member_toadmin.php
+++ b/src/admin/member_toadmin.php
@@ -58,9 +58,9 @@ if ($dopost == "toadmin") {
                    VALUES('$id','$userid'$inputpwdv,'$uname','$typeid','$tname','$email')";
    }
    $dsql->ExecuteNoneQuery($query);
    $query = "UPDATE `#@__member` SET rank='100',uname='$uname',matt='10',email='$email'$pwdm WHERE mid='$id'";
    $query = "UPDATE `#@__member` SET `rank`='100',uname='$uname',matt='10',email='$email'$pwdm WHERE mid='$id'";
    $dsql->ExecuteNoneQuery($query);
    $row = $dsql->GetOne("SELECT * FROM #@__admintype WHERE rank='$usertype'");
    $row = $dsql->GetOne("SELECT * FROM `#@__admintype` WHERE `rank`='$usertype'");
    $floginid = $cuserLogin->getUserName();
    $fromid = $cuserLogin->getUserID();
    $subject = "恭喜您已经成功提升为管理员";
--- a/src/admin/member_type.php
+++ b/src/admin/member_type.php
@@ -25,10 +25,10 @@ if ($dopost == "save") {
        $exptime = ${'exptime_'.$startID};
        if (isset(${'check_'.$startID})) {
            if ($pname != '') {
                $query = "UPDATE #@__member_type SET pname='$pname',money='$money',rank='$rank',exptime='$exptime' WHERE aid='$aid'";
                $query = "UPDATE `#@__member_type` SET pname='$pname',money='$money',`rank`='$rank',exptime='$exptime' WHERE aid='$aid'";
            }
        } else {
            $query = "DELETE FROM #@__member_type WHERE aid='$aid' ";
            $query = "DELETE FROM `#@__member_type` WHERE aid='$aid' ";
        }
        if ($query != '') {
            $dsql->ExecuteNoneQuery($query);
@@ -37,14 +37,14 @@ if ($dopost == "save") {

    //增加新记录
    if (isset($check_new) && $pname_new != '') {
        $query = "INSERT INTO #@__member_type(rank,pname,money,exptime) VALUES('{$rank_new}','{$pname_new}','{$money_new}','{$exptime_new}');";
        $query = "INSERT INTO `#@__member_type`(`rank`,pname,money,exptime) VALUES('{$rank_new}','{$pname_new}','{$money_new}','{$exptime_new}');";
        $dsql->ExecuteNoneQuery($query);
    }
    header("Content-Type: text/html; charset={$cfg_soft_lang}");
    echo "<script> alert('成功更新会员产品分类表！'); </script>";
 }
 $arcranks = array();
 $dsql->SetQuery("SELECT * FROM #@__arcrank WHERE rank>10 ");
 $dsql->SetQuery("SELECT * FROM `#@__arcrank` WHERE `rank`>10 ");
 $dsql->Execute();
 while ($row = $dsql->GetArray()) {
    $arcranks[$row['rank']] = $row['membername'];
--- a/src/admin/sys_admin_user.php
+++ b/src/admin/sys_admin_user.php
@@ -20,7 +20,7 @@ $dsql->Execute();
 while ($row = $dsql->GetObject()) {
    $adminRanks[$row->rank] = $row->typename;
 }
 $query = "SELECT #@__admin.*,#@__arctype.typename FROM #@__admin LEFT JOIN #@__arctype ON #@__admin.typeid = #@__arctype.id $rank ";
 $query = "SELECT `#@__admin`.*,`#@__arctype`.typename FROM `#@__admin` LEFT JOIN `#@__arctype` ON `#@__admin`.typeid = `#@__arctype`.id $rank ";
 $dlist = new DataListCP();
 $dlist->SetTemplet(DEDEADMIN."/templets/sys_admin_user.htm");
 $dlist->SetSource($query);
--- a/src/admin/sys_group_add.php
+++ b/src/admin/sys_group_add.php
@@ -11,7 +11,7 @@
 require_once(dirname(__FILE__)."/config.php");
 CheckPurview('sys_Group');
 if (!empty($dopost)) {
    $row = $dsql->GetOne("SELECT * FROM #@__admintype WHERE rank='".$rankid."'");
    $row = $dsql->GetOne("SELECT * FROM `#@__admintype` WHERE `rank`='".$rankid."'");
    if (is_array($row)) {
        ShowMsg('您所创建的组别的级别值已存在，不允许重复!', '-1');
        exit();
@@ -27,7 +27,7 @@ if (!empty($dopost)) {
        }
        $AllPurviews = trim($AllPurviews);
    }
    $dsql->ExecuteNoneQuery("INSERT INTO #@__admintype(rank,typename,system,purviews) VALUES ('$rankid','$groupname', 0, '$AllPurviews');");
    $dsql->ExecuteNoneQuery("INSERT INTO `#@__admintype`(`rank`,typename,`system`,purviews) VALUES ('$rankid','$groupname', 0, '$AllPurviews');");
    ShowMsg("成功创建一个新的用户组!", "sys_group.php");
    exit();
 }
--- a/src/admin/sys_group_edit.php
+++ b/src/admin/sys_group_edit.php
@@ -28,7 +28,7 @@ if ($dopost == 'save') {
    ShowMsg('成功修改用户组的权限!', 'sys_group.php');
    exit();
 } else if ($dopost == 'del') {
    $dsql->ExecuteNoneQuery("DELETE FROM `#@__admintype` WHERE CONCAT(`rank`)='$rank' AND system='0';");
    $dsql->ExecuteNoneQuery("DELETE FROM `#@__admintype` WHERE CONCAT(`rank`)='$rank' AND `system`='0';");
    ShowMsg("成功删除一个用户组!", "sys_group.php");
    exit();
 }
--- a/src/admin/sys_payment.php
+++ b/src/admin/sys_payment.php
@@ -243,7 +243,7 @@ else if ($dopost == 'uninstall') {
    ShowMsg("删除成功！", "sys_payment.php");
    exit();
 }
 $sql = "SELECT * FROM `#@__payment` ORDER BY rank ASC";
 $sql = "SELECT * FROM `#@__payment` ORDER BY `rank` ASC";
 $dlist = new DataListCP();
 $dlist->SetTemplet(DEDEADMIN."/templets/sys_payment.htm");
 $dlist->SetSource($sql);
--- a/src/admin/templets/archives_sg_edit.htm
+++ b/src/admin/templets/archives_sg_edit.htm
@@ -101,7 +101,7 @@ table{border-collapse:separate}
              <option value='<?php echo $addRow["arcrank"]; ?>'><?php echo $addRow["rankname"]; ?></option>
              <?php
              $urank = $cuserLogin->getUserRank();
              $dsql->SetQuery("Select * from `#@__arcrank` where adminrank<='$urank' And rank<>'{$addRow["arcrank"]}' ");
              $dsql->SetQuery("Select * from `#@__arcrank` where adminrank<='$urank' And `rank`<>'{$addRow["arcrank"]}' ");
              $dsql->Execute();
              while($row = $dsql->GetObject()) {
              	echo "<option value='".$row->rank."'>".$row->membername."</option>\r\n";
--- a/src/admin/templets/catalog_add.htm
+++ b/src/admin/templets/catalog_add.htm
@@ -261,7 +261,7 @@ function CheckCross() {
              <td class="bline">
                <select name="corank" id="corank" style="width:100px">
                  <?php
                  $dsql->SetQuery("Select * from `#@__arcrank` where rank >= 0");
                  $dsql->SetQuery("Select * from `#@__arcrank` where `rank` >= 0");
                  $dsql->Execute('cc');
                  while($row = $dsql->GetObject('cc')){
                    if($corank==$row->rank) echo "<option value='".$row->rank."' selected>".$row->membername."</option>";
--- a/src/admin/templets/catalog_edit.htm
+++ b/src/admin/templets/catalog_edit.htm
@@ -233,7 +233,7 @@ function CheckCross() {
              <td class="bline" height="26" style="padding-left:10px">浏览权限：</td>
              <td class="bline"> <select name="corank" id="corank" style="width:100px">
                <?php
                $dsql->SetQuery("Select * from #@__arcrank where rank >= 0");
                $dsql->SetQuery("Select * from #@__arcrank where `rank` >= 0");
                $dsql->Execute('cc');
                while($row = $dsql->GetObject('cc'))
                {
--- a/src/admin/templets/member_toadmin.htm
+++ b/src/admin/templets/member_toadmin.htm
@@ -72,7 +72,7 @@
              <td height="30" align="right">用户类型：</td>
              <td align="left"><select name='usertype' style='width:200px'>
                  <?php
 			  	$dsql->SetQuery("Select * from #@__admintype order by rank asc");
 			  	$dsql->SetQuery("Select * from `#@__admintype` order by `rank` asc");
 			  	$dsql->Execute("ut");
 			  	while($myrow = $dsql->GetObject("ut"))
 			  	{
--- a/src/admin/templets/member_view.htm
+++ b/src/admin/templets/member_view.htm
@@ -118,7 +118,7 @@ function checkSubmit()
            <td align="right" class='bline'>等级：</td>
            <td class='bline' style="text-align:left;"><?php
             $MemberTypes = array();
             $dsql->SetQuery("Select rank,membername From `#@__arcrank` where rank>0");
             $dsql->SetQuery("Select `rank`,membername From `#@__arcrank` where `rank`>0");
             $dsql->Execute('n');
             $MemberTypes[0] = "限制会员";
             while($nrow = $dsql->GetObject('n')){
--- a/src/admin/templets/mychannel_add.htm
+++ b/src/admin/templets/mychannel_add.htm
@@ -130,7 +130,7 @@
            <option value='0'>游客</option>
            <?php
              $urank = $cuserLogin->getUserRank();
              $dsql->SetQuery("Select * from `#@__arcrank` where adminrank<='$urank' And rank>=10");
              $dsql->SetQuery("Select * from `#@__arcrank` where adminrank<='$urank' And `rank`>=10");
              $dsql->Execute();
              while($row2 = $dsql->GetObject())
              {
--- a/src/admin/templets/mychannel_edit.htm
+++ b/src/admin/templets/mychannel_edit.htm
@@ -161,7 +161,7 @@
            <option value='0'>游客</option>
            <?php
          $urank = $cuserLogin->getUserRank();
          $dsql->SetQuery("Select * from `#@__arcrank` where adminrank<='$urank' And rank>=10");
          $dsql->SetQuery("Select * from `#@__arcrank` where adminrank<='$urank' And `rank`>=10");
          $dsql->Execute();
          while($row2 = $dsql->GetObject())
          {
--- a/src/admin/templets/soft_add.htm
+++ b/src/admin/templets/soft_add.htm
@@ -334,7 +334,7 @@ table{border-collapse:separate}
              <td width="179" align="left">
                <select name="daccess" id="daccess" style="width:90px">
                <?php
                $dsql->SetQuery("Select * from `#@__arcrank` where rank>=0 ");
                $dsql->SetQuery("Select * from `#@__arcrank` where `rank`>=0 ");
                $dsql->Execute();
                while($row = $dsql->GetArray())
                {
--- a/src/admin/templets/soft_edit.htm
+++ b/src/admin/templets/soft_edit.htm
@@ -323,7 +323,7 @@ table{border-collapse:separate}
              <td width="179" align="center">
                <select name="daccess" id="daccess" style="width:100px">
                <?php
                $dsql->SetQuery("Select * from `#@__arcrank` where rank>=0 ");
                $dsql->SetQuery("Select * from `#@__arcrank` where `rank`>=0 ");
                $dsql->Execute();
                while($row = $dsql->GetArray())
                {
--- a/src/admin/templets/sys_admin_user_add.htm
+++ b/src/admin/templets/sys_admin_user_add.htm
@@ -71,7 +71,7 @@
                <select name='usertype' style='width:200px'>
                  <?php
 			  	
 			  	$dsql->SetQuery("Select * from `#@__admintype` order by rank asc");
 			  	$dsql->SetQuery("Select * from `#@__admintype` order by `rank` asc");
 			  	$dsql->Execute("ut");
 			  	while($myrow = $dsql->GetObject("ut"))
 			  	{
--- a/src/admin/templets/sys_admin_user_edit.htm
+++ b/src/admin/templets/sys_admin_user_edit.htm
@@ -50,7 +50,7 @@
              <td style="text-align:left;">
                <select name='usertype' style='width:200px'>
                  <?php
 			  	$dsql->SetQuery("Select * from #@__admintype order by rank asc");
 			  	$dsql->SetQuery("Select * from `#@__admintype` order by `rank` asc");
 			  	$dsql->Execute("ut");
 			  	while($myrow = $dsql->GetObject("ut"))
 			  	{
--- a/src/admin/templets/sys_group.htm
+++ b/src/admin/templets/sys_group.htm
@@ -32,7 +32,7 @@
        <td width="35%">管理</td>
      </tr>
      <?php
 	$dsql->SetQuery("Select rank,typename,system From #@__admintype");
 	$dsql->SetQuery("Select `rank`,typename,`system` From #@__admintype");
 	$dsql->Execute();
 	while($row = $dsql->GetObject())
 	{
--- a/src/admin/templets/sys_group_add.htm
+++ b/src/admin/templets/sys_group_add.htm
@@ -30,7 +30,7 @@
                  （数字，系统已占用的级别值：
                  <?php
          	
          	$dsql->SetQuery("Select rank From #@__admintype");
          	$dsql->SetQuery("Select `rank` From `#@__admintype`");
          	$dsql->Execute();
          	while($row = $dsql->GetObject()) echo '<span style='color:#e74d58'>'.$row->rank.'</span>、';
          	?>
--- a/src/include/arc.archives.class.php
+++ b/src/include/arc.archives.class.php
@@ -1012,7 +1012,7 @@ class Archives
        $karr = $kaarr = $GLOBALS['replaced'] = array();
        //暂时屏蔽超链接
        $body = preg_replace("#(<a(.*))(>)(.*)(<)(\/a>)#isU", '\\1-]-\\4-[-\\6', $body);
        $query = "SELECT * FROM #@__keywords WHERE rpurl<>'' ORDER BY rank DESC";
        $query = "SELECT * FROM `#@__keywords` WHERE rpurl<>'' ORDER BY `rank` DESC";
        $this->dsql->SetQuery($query);
        $this->dsql->Execute();
        while($row = $this->dsql->GetArray())
@@ -1038,7 +1038,7 @@ class Archives
                    $body = str_replace_limit($key, "<a href='$key_url' target='_blank'>$key</a>", $body, $cfg_replace_num);
                }
            } else {
                $query = "SELECT * FROM #@__keywords WHERE rpurl<>'' ORDER BY rank DESC";
                $query = "SELECT * FROM `#@__keywords` WHERE rpurl<>'' ORDER BY `rank` DESC";
                $this->dsql->SetQuery($query);
                $this->dsql->Execute();
                while($row = $this->dsql->GetArray())
--- a/src/include/memberlogin.class.php
+++ b/src/include/memberlogin.class.php
@@ -213,7 +213,7 @@ class MemberLogin
        $mhasDay = $this->M_ExpTime - ceil(($nowtime - $this->M_UpTime) / 3600 / 24) + 1;
        if ($mhasDay <= 0) {
            $dsql->ExecuteNoneQuery("UPDATE `#@__member` SET uptime='0',exptime='0',
                                         rank='$cfg_mb_rank' WHERE mid='".$this->fields['mid']."';");
                                         `rank`='$cfg_mb_rank' WHERE mid='".$this->fields['mid']."';");
        }
        return $mhasDay;
    }
--- a/src/include/payment/alipay.php
+++ b/src/include/payment/alipay.php
@@ -225,21 +225,21 @@ class Alipay
        /* 改变点卡订单状态_支付成功 */
        if($product=="card")
        {
            $row = $this->dsql->GetOne("SELECT cardid FROM #@__moneycard_record WHERE ctid='$pid' AND isexp='0' ");;
            $row = $this->dsql->GetOne("SELECT cardid FROM `#@__moneycard_record` WHERE ctid='$pid' AND isexp='0' ");;
            //如果找不到某种类型的卡，直接为用户增加金币
            if(!is_array($row))
            {
                $nrow = $this->dsql->GetOne("SELECT num FROM #@__moneycard_type WHERE pname = '{$pname}'");
                $nrow = $this->dsql->GetOne("SELECT num FROM `#@__moneycard_type` WHERE pname = '{$pname}'");
                $dnum = $nrow['num'];
                $sql1 = "UPDATE `#@__member` SET `money`=money+'{$nrow['num']}' WHERE `mid`='".$this->mid."'";
                $oldinf ="已经充值了".$nrow['num']."金币到您的帐号";
            } else {
                $cardid = $row['cardid'];
                $sql1=" UPDATE #@__moneycard_record SET uid='".$this->mid."',isexp='1',utime='".time()."' WHERE cardid='$cardid' ";
                $sql1=" UPDATE `#@__moneycard_record` SET uid='".$this->mid."',isexp='1',utime='".time()."' WHERE cardid='$cardid' ";
                $oldinf='您的充值密码是：<span style="color:#28a745">'.$cardid.'</span>';
            }
            //更新交易状态为已关闭
            $sql2=" UPDATE #@__member_operation SET sta=2,oldinfo='$oldinf' WHERE buyid='$order_sn'";
            $sql2=" UPDATE `#@__member_operation` SET sta=2,oldinfo='$oldinf' WHERE buyid='$order_sn'";
            if($this->dsql->ExecuteNoneQuery($sql1) && $this->dsql->ExecuteNoneQuery($sql2))
            {
                $this->log_result("verify_success,订单号:".$order_sn); //将验证结果存入文件
@@ -250,11 +250,11 @@ class Alipay
            }
        /* 改变会员订单状态_支付成功 */
        } else if ( $product=="member" ){
            $row = $this->dsql->GetOne("SELECT rank,exptime FROM #@__member_type WHERE aid='$pid' ");
            $row = $this->dsql->GetOne("SELECT `rank`,exptime FROM `#@__member_type` WHERE aid='$pid' ");
            $rank = $row['rank'];
            $exptime = $row['exptime'];
            /*计算原来升级剩余的天数*/
            $rs = $this->dsql->GetOne("SELECT uptime,exptime FROM #@__member WHERE mid='".$this->mid."'");
            $rs = $this->dsql->GetOne("SELECT uptime,exptime FROM `#@__member` WHERE mid='".$this->mid."'");
            if($rs['uptime']!=0 && $rs['exptime']!=0 ) 
            {
                $nowtime = time();
@@ -262,13 +262,13 @@ class Alipay
                $mhasDay=($mhasDay>0)? $mhasDay : 0;
            }
            //获取会员默认级别的金币和积分数
            $memrank = $this->dsql->GetOne("SELECT money,scores FROM #@__arcrank WHERE rank='$rank'");
            $memrank = $this->dsql->GetOne("SELECT money,scores FROM `#@__arcrank` WHERE `rank`='$rank'");
            //更新会员信息
            $sql1 =  " UPDATE #@__member SET rank='$rank',money=money+'{$memrank['money']}',
            $sql1 =  " UPDATE `#@__member` SET `rank`='$rank',money=money+'{$memrank['money']}',
                       scores=scores+'{$memrank['scores']}',exptime='$exptime'+'$mhasDay',uptime='".time()."' 
                       WHERE mid='".$this->mid."'";
            //更新交易状态为已关闭
            $sql2=" UPDATE #@__member_operation SET sta='2',oldinfo='会员升级成功!' WHERE buyid='$order_sn' ";
            $sql2=" UPDATE `#@__member_operation` SET sta='2',oldinfo='会员升级成功!' WHERE buyid='$order_sn' ";
            if($this->dsql->ExecuteNoneQuery($sql1) && $this->dsql->ExecuteNoneQuery($sql2))
            {
                $this->log_result("verify_success,订单号:".$order_sn); //将验证结果存入文件
--- a/src/include/payment/yeepay.php
+++ b/src/include/payment/yeepay.php
@@ -382,11 +382,11 @@ class yeepay
            }
        /* 改变会员订单状态_支付成功 */
        } else if ( $product=="member" ){
            $row = $this->dsql->GetOne("SELECT rank,exptime FROM #@__member_type WHERE aid='$pid' ");
            $row = $this->dsql->GetOne("SELECT `rank`,exptime FROM `#@__member_type` WHERE aid='$pid' ");
            $rank = $row['rank'];
            $exptime = $row['exptime'];
            /*计算原来升级剩余的天数*/
            $rs = $this->dsql->GetOne("SELECT uptime,exptime FROM #@__member WHERE mid='".$this->mid."'");
            $rs = $this->dsql->GetOne("SELECT uptime,exptime FROM `#@__member` WHERE mid='".$this->mid."'");
            if($rs['uptime']!=0 && $rs['exptime']!=0 ) 
            {
                $nowtime = time();
@@ -394,13 +394,13 @@ class yeepay
                $mhasDay=($mhasDay>0)? $mhasDay : 0;
            }
            //获取会员默认级别的金币和积分数
            $memrank = $this->dsql->GetOne("SELECT money,scores FROM #@__arcrank WHERE rank='$rank'");
            $memrank = $this->dsql->GetOne("SELECT money,scores FROM `#@__arcrank` WHERE `rank`='$rank'");
            //更新会员信息
            $sql1 =  " UPDATE #@__member SET rank='$rank',money=money+'{$memrank['money']}',
            $sql1 =  " UPDATE `#@__member` SET `rank`='$rank',money=money+'{$memrank['money']}',
                       scores=scores+'{$memrank['scores']}',exptime='$exptime'+'$mhasDay',uptime='".time()."' 
                       WHERE mid='".$this->mid."'";
            //更新交易状态为已关闭
            $sql2=" UPDATE #@__member_operation SET sta='2',oldinfo='会员升级成功!' WHERE buyid='$order_sn' ";
            $sql2=" UPDATE `#@__member_operation` SET sta='2',oldinfo='会员升级成功!' WHERE buyid='$order_sn' ";
            if($this->dsql->ExecuteNoneQuery($sql1) && $this->dsql->ExecuteNoneQuery($sql2))
            {
                $this->log_result("verify_success,订单号:".$order_sn); //将验证结果存入文件
--- a/src/install/v57sp2_to_v6.txt
+++ b/src/install/v57sp2_to_v6.txt
@@ -1,4 +1,12 @@
 -- 6.0.4
 ALTER TABLE `#@__arctype`
 	ADD COLUMN `namegk` varchar(255) NULL AFTER `typename`,
 	ADD COLUMN `enname` varchar(255) NULL AFTER `namegk`,
 	ADD COLUMN `ennamegk` varchar(255) NULL AFTER `enname`,
 	ADD COLUMN `litpic` varchar(255) NULL AFTER `ennamegk`,
 	ADD COLUMN `litimg` varchar(255) NULL AFTER `litpic`;

 -- 6.0.3

 ALTER TABLE `#@__tagindex`
 	ADD COLUMN `uptime` INT(10) UNSIGNED NOT NULL DEFAULT '0' AFTER `addtime`,
--- a/src/member/album_add.php
+++ b/src/member/album_add.php
@@ -44,7 +44,7 @@ if (empty($dopost)) {

    //检查会员等级和类型限制
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("Select membername From `#@__arcrank` where rank='".$cInfos['sendrank']."' ");
        $row = $dsql->GetOne("Select membername From `#@__arcrank` where `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要[".$row['membername']."]才能在这个频道发布文档", "-1", "0", 5000);
        exit();
    }
--- a/src/member/archives_add.php
+++ b/src/member/archives_add.php
@@ -37,7 +37,7 @@ if (empty($dopost)) {

    //检查会员等级和类型限制
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("Select membername From `#@__arcrank` where rank='".$cInfos['sendrank']."' ");
        $row = $dsql->GetOne("Select membername From `#@__arcrank` where `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要[".$row['membername']."]才能在这个频道发布文档", "-1", "0", 5000);
        exit();
    }
--- a/src/member/archives_sg_add.php
+++ b/src/member/archives_sg_add.php
@@ -37,7 +37,7 @@ if (empty($dopost)) {

    //检查会员等级和类型限制
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("SELECT membername FROM `#@__arcrank` WHERE rank='".$cInfos['sendrank']."' ");
        $row = $dsql->GetOne("SELECT membername FROM `#@__arcrank` WHERE `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要[".$row['membername']."]才能在这个频道发布文档", "-1", "0", 5000);
        exit();
    }
@@ -86,7 +86,7 @@ function _SaveArticle(){  }

    //检查频道设定的投稿许可权限
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("Select membername From #@__arcrank where rank='".$cInfos['sendrank']."' ");
        $row = $dsql->GetOne("Select membername From #@__arcrank where `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要[".$row['membername']."]才能在这个频道发布文档", "-1", "0", 5000);
        exit();
    }
--- a/src/member/article_add.php
+++ b/src/member/article_add.php
@@ -32,7 +32,7 @@ if (empty($dopost)) {

    //检查会员等级和类型限制
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("SELECT membername FROM `#@__arcrank` WHERE rank='".$cInfos['sendrank']."' ");
        $row = $dsql->GetOne("SELECT membername FROM `#@__arcrank` WHERE `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要[".$row['membername']."]才能在这个频道发布文档", "-1", "0", 5000);
        exit();
    }
--- a/src/member/buy_action.php
+++ b/src/member/buy_action.php
@@ -87,7 +87,7 @@ if (!isset($paytype)) {

    //获取支付接口列表
    $payment_list = array();
    $dsql->SetQuery("SELECT * FROM `#@__payment` WHERE enabled='1' ORDER BY rank ASC");
    $dsql->SetQuery("SELECT * FROM `#@__payment` WHERE enabled='1' ORDER BY `rank` ASC");
    $dsql->Execute();
    $i = 0;
    while ($row = $dsql->GetArray()) {
--- a/src/member/config.php
+++ b/src/member/config.php
@@ -185,11 +185,11 @@ function CheckRank($rank = 0, $money = 0)
        if ($cfg_ml->M_Rank < $rank) {
            $needname = "";
            if ($cfg_ml->M_Rank == 0) {
                $row = $dsql->GetOne("SELECT membername FROM `#@__arcrank` WHERE rank='$rank'");
                $row = $dsql->GetOne("SELECT membername FROM `#@__arcrank` WHERE `rank`='$rank'");
                $myname = "普通会员";
                $needname = $row['membername'];
            } else {
                $dsql->SetQuery("SELECT membername From `#@__arcrank` WHERE rank='$rank' OR rank='".$cfg_ml->M_Rank."' ORDER BY rank DESC");
                $dsql->SetQuery("SELECT membername From `#@__arcrank` WHERE `rank`='$rank' OR `rank`='".$cfg_ml->M_Rank."' ORDER BY `rank` DESC");
                $dsql->Execute();
                $row = $dsql->GetObject();
                $needname = $row->membername;
--- a/src/member/inc/archives_check.php
+++ b/src/member/inc/archives_check.php
@@ -45,7 +45,7 @@ if ($cInfos['issend'] != 1 || $cInfos['ispart'] != 0  || $cInfos['channeltype']

 //检查频道设定的投稿许可权限
 if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
    $row = $dsql->GetOne("Select membername From #@__arcrank where rank='".$cInfos['sendrank']."' ");
    $row = $dsql->GetOne("Select membername From #@__arcrank where `rank`='".$cInfos['sendrank']."' ");
    ShowMsg("对不起，需要[".$row['membername']."]才能在这个频道发布文档", "-1", "0", 5000);
    exit();
 }
--- a/src/member/reg_new.php
+++ b/src/member/reg_new.php
@@ -76,7 +76,7 @@ if ($step == 1) {
        //会员的默认金币
        $dfscores = 0;
        $dfmoney = 0;
        $dfrank = $dsql->GetOne("SELECT money,scores FROM `#@__arcrank` WHERE rank='10' ");
        $dfrank = $dsql->GetOne("SELECT money,scores FROM `#@__arcrank` WHERE `rank`='10' ");
        if (is_array($dfrank)) {
            $dfmoney = $dfrank['money'];
            $dfscores = $dfrank['scores'];
--- a/src/member/soft_add.php
+++ b/src/member/soft_add.php
@@ -42,7 +42,7 @@ if (empty($dopost)) {

    //检查会员等级和类型限制
    if ($cInfos['sendrank'] > $cfg_ml->M_Rank) {
        $row = $dsql->GetOne("Select membername From `#@__arcrank` where rank='".$cInfos['sendrank']."' ");
        $row = $dsql->GetOne("Select membername From `#@__arcrank` where `rank`='".$cInfos['sendrank']."' ");
        ShowMsg("对不起，需要[".$row['membername']."]才能在这个频道发布文档", "-1", "0", 5000);
        exit();
    }
--- a/src/plus/carbuyaction.php
+++ b/src/plus/carbuyaction.php
@@ -45,7 +45,7 @@ if (!isset($dopost) || empty($dopost)) {

    if (!isset($do) || empty($do)) {
        $shops_deliveryarr = array();
        $dsql->SetQuery("SELECT pid,dname,price,des FROM #@__shops_delivery ORDER BY orders ASC");
        $dsql->SetQuery("SELECT pid,dname,price,des FROM `#@__shops_delivery` ORDER BY orders ASC");
        $dsql->Execute();
        while ($row = $dsql->GetArray()) {
            $shops_deliveryarr[] = $row;
@@ -53,7 +53,7 @@ if (!isset($dopost) || empty($dopost)) {

        //获取支付接口列表
        $shops_paymentarr = array();
        $dsql->SetQuery("SELECT * FROM #@__payment WHERE enabled='1' ORDER BY rank ASC");
        $dsql->SetQuery("SELECT * FROM `#@__payment` WHERE enabled='1' ORDER BY `rank` ASC");
        $dsql->Execute();
        $i = 0;
        while ($row = $dsql->GetArray()) {
--- a/src/uploads/220222/1-220222222T3E1.png
+++ b/src/uploads/220222/1-220222222T3E1.png