/*
========================================================
InfoTechBBS Version 2.0 (2001.1.8)
--------------------------------------------------------
ÇÁ·Î±×·¥¸í : delete.html
¹öÀü : 2.0
±â´É : °Ô½Ã¹°»èÁ¦·çƾÀ¸·Î °ü¸®ÀÚÀϰæ¿ì´Â ÀÓÀÇ»èÁ¦ °¡´É
°ü¸®ÀÚ°¡ ¾Æ´Ò°æ¿ì¿¡´Â ºñ¹Ð¹øÈ£¸¦ È®ÀÎÇÏ¿© »èÁ¦
±ÇÇѺο©
========================================================
*/
// Comment °Ô½ÃÆÇ ȯ°æ¼³Á¤ ÆÄÀÏÀ» ºÒ·¯¿Â´Ù
include "cfg.html";
//******** ÀԷ°ª¿¡ ´ëÇÑ Å¸´ç¼º °Ë»ç¸¦ ¼öÇàÇÑ´Ù
include "user_function_info.php";
if(!ereg("(^[0-9a-zA-Z]{4,}$)", $passwd)) {
error("INVALID_PASSWD");
exit;
}
//******** µ¥ÀÌÅͺ£À̽º¿¡ ¿¬°áÇÑ´Ù
include "dbconn_info.php";
//******** »èÁ¦ÇϰíÀÚ ÇÏ´Â ±ÛÀÌ ´äº¯±ÛÀ» Çϳª¶óµµ ´Þ°í ÀÖÀ¸¸é »èÁ¦ÇÒ ¼ö ¾øµµ·Ï ÇÑ´Ù
if(!$allow_delete_thread) {
$query = "SELECT thread FROM $code WHERE fid = $fid AND length(thread) = length('$thread')+1 AND locate('$thread',thread) = 1 ORDER BY thread DESC LIMIT 1";
$result = mysql_query($query,$dbconn);
if(!$result) {
error("QUERY_ERROR");
exit;
}
$rows = mysql_num_rows($result);
if($rows) {
error("NO_ACCESS_DELETE_THREAD");
exit;
}
}
//******** °ü¸®ÀÚ·Î ÀÎÁõµÈ °æ¿ì ¸ðµç ±ÛÀ» »èÁ¦ÇÒ ¼ö ÀÖ´Ù
if($HTTP_COOKIE_VARS[$adminid])
{
$query = "DELETE FROM $code WHERE fid = $fid AND thread = '$thread'";
$result = mysql_query($query,$dbconn);
if (!$result) {
error("QUERY_ERROR");
exit;
}
echo("");
} else {
//******** ÇØ´ç°Ô½Ã¹°ÀÇ ¾ÏÈ£°ªÀ» »Ì¾Æ³½´Ù
$result = mysql_query("SELECT passwd FROM $code WHERE fid = $fid AND thread = '$thread'",$dbconn);
if(!$result) {
error("QUERY_ERROR");
exit;
}
$real_pass = mysql_result($result,0,0);
//******** »ç¿ëÀÚ°¡ ÀÔ·ÂÇÑ ¾ÏÈ£¹®ÀÚ¿À» ¾ÏÈ£ÈÇÑ´Ù
$result = mysql_query("SELECT password('$passwd')",$dbconn);
$user_pass = mysql_result($result,0,0);
//******** ÷ºÎÆÄÀÏÀÌ ÀÖÀ¸¸é ÷ºÎÆÄÀϺÎÅÍ »èÁ¦ÇÑ´Ù
if($file_ex==1){
$query = "SELECT uufile FROM $code WHERE fid = $fid AND thread = '$thread'";
$result = mysql_query($query,$dbconn);
$uufile = mysql_result($result,0,0);
$file2del=$code . "_files" . "/" . $uufile;
if(file_exists($file2del)) {
unlink($file2del);
}
}
//******** °Ô½Ã¹°ÀÇ ¾ÏÈ£¿Í »ç¿ëÀÚ°¡ ÀÔ·ÂÇÑ ¾ÏÈ£°¡ °°À¸¸é °Ô½Ã¹°À» »èÁ¦ÇÑ´Ù
if (!strcmp($real_pass,$user_pass)) {
$query = "DELETE FROM $code WHERE fid = $fid AND thread = '$thread'";
$result = mysql_query($query,$dbconn);
if (!$result) {
error("QUERY_ERROR");
exit;
}
//******** ¸®½ºÆ® Ãâ·ÂȸéÀ¸·Î À̵¿ÇÑ´Ù
$encoded_key = urlencode($key);
echo("");
} else {
error("NO_ACCESS_DELETE");
exit;
}
}
?>