/i"; if (phpversion() < '4.1.0') { $_GET = $HTTP_GET_VARS; $_POST = $HTTP_POST_VARS; $_COOKIE = $HTTP_COOKIE_VARS; $_REQUEST = array_merge($_GET, $_POST, $_COOKIE); $_FILES = $HTTP_POST_FILES; $_SERVER = $HTTP_SERVER_VARS; } /* foreach($_GET as $name=>$value) { global $$name; $dec64 = base64_decode(trim($value)); if(preg_match($sql_pattern, $dec64) || preg_match("/<(.*)>/i",$dec64)) $$name = base64_encode(preg_replace("/[^0-9a-z_-]/i", "", strip_tags(preg_replace($sql_pattern, "", $dec64)))); else $$name = preg_replace($sql_pattern, "", preg_replace("/[^0-9a-z_-]/i", "", strip_tags(urldecode(trim($value))))); if (!get_magic_quotes_gpc()) $$name = addslashes($$name); $$name = preg_replace($sql_pattern, "", preg_replace($html_pattern, "", $$name)); } foreach($_POST as $name=>$value) { global $$name; $$name = urldecode(trim($value)); if (!get_magic_quotes_gpc()) $$name = addslashes($$name); $$name = preg_replace($sql_pattern, "", preg_replace($html_pattern, "", $$name)); } foreach($_COOKIE as $name=>$value) { global $$name; $dec64 = base64_decode(trim($value)); if(preg_match($sql_pattern, $dec64) || preg_match("/<(.*)>/i",$dec64)) $$name = base64_encode(preg_replace("/[^0-9a-z_-;,]/i", "", strip_tags(preg_replace($sql_pattern, "", $dec64)))); else $$name = preg_replace($sql_pattern, "", preg_replace("/[^<>0-9a-z_-;,]/i", "", strip_tags(urldecode(trim($value))))); if (!get_magic_quotes_gpc()) $$name = addslashes($$name); $$name = preg_replace($sql_pattern, "", preg_replace($html_pattern, "", $$name)); } */ /* foreach($_FILES as $name=>$value) { global $$name; $value = end(explode(".", $_FILES['userfile']['name'])); if (preg_match("/.php|.php3|.php4|.php5|.php6|.js|.phtml|.cgi|.pl|.perl|.asp|.inc/i", $value)) unset($_FILES['userfile']['name']); } */ $http_path = "http://proektstroy.ru/"; $disc_path = "/var/www/webdt/data/www/prs2.webdt.ru/"; mysql_select_db("proektstroy", mysql_connect("localhost", "proektstroy", "iQoOq1EM")); mysql_query("SET NAMES 'cp1251'"); //$link_menu[10]=$http_path; $link_menu[20]=$http_path."companies/"; $link_menu[30]=$http_path."prices/"; $link_menu[40]=$http_path."publications/"; $link_menu[50]=$http_path."standarts/"; $link_menu[60]=$http_path."exhibitions/"; $link_menu[70]=$http_path."doska/"; //$link_menu[80]=$http_path."ssylki/"; //$link_menu[90]=$http_path."tenders/"; $link_menu[100]=$http_path."brands/"; //$link_menu[110]=$http_path."about/"; $link_menu[120]=$http_path."buildpedia/"; //$link_menu[130]=$http_path."forum/"; $link_menu[140]=$http_path."about/inform_price.php"; //$link_head[10]=""; $link_head[20]=""; //$link_head[30]="NEW!!!"; $link_head[30]=""; $link_head[40]=""; $link_head[50]=""; $link_head[60]=""; $link_head[70]=""; //$link_head[80]=""; //$link_head[90]=""; $link_head[100]=""; //$link_head[110]=" "; $link_head[120]=""; //$link_head[130]=""; $link_head[140]=" "; if($_GET["exit"]=="Y"): $_SESSION["ident"]=""; $_SESSION["ident_pass"]=""; header("location:".$http_path); endif; if($_SESSION["ident_pass"]=="") $_SESSION["ident_pass"]=$_GET["ident_pass"]; if($_SESSION["ident"]=="") $_SESSION["ident"]=$_GET["ident"]; $_SESSION["ident_pass"]=substr($_SESSION["ident_pass"], 0, 16); $_SESSION["ident"]=substr($_SESSION["ident"], 0, 32); if(($_SESSION["ident_pass"]!="")&&($_SESSION["ident_pass"]!="")): $b=mysql_query("select comp_id from comp_users where comp_mail='".$_SESSION["ident"]."' and parol='".$_SESSION["ident_pass"]."'"); $b_num=mysql_num_rows($b); if($b_num>0): $br=mysql_fetch_array($b); $a=mysql_query("select contact1 from companies where company_id=".$br["comp_id"]." and to_days(now())<=to_days(enter_date)"); endif; endif; $no_show_kat=array(29,30); //include($disc_path."counting.inc"); ?>
Proektstroy.ru