42 lines
1.1 KiB
PHP
42 lines
1.1 KiB
PHP
<?php
|
|
$sub_menu = "200300";
|
|
include_once('./_common.php');
|
|
|
|
if ($w == 'u' || $w == 'd')
|
|
check_demo();
|
|
|
|
auth_check($auth[$sub_menu], 'w');
|
|
|
|
check_admin_token();
|
|
|
|
$ma_id = isset($_POST['ma_id']) ? (int) $_POST['ma_id'] : 0;
|
|
$ma_subject = isset($_POST['ma_subject']) ? strip_tags($_POST['ma_subject']) : '';
|
|
|
|
if ($w == '')
|
|
{
|
|
$sql = " insert {$g5['mail_table']}
|
|
set ma_subject = '{$ma_subject}',
|
|
ma_content = '{$_POST['ma_content']}',
|
|
ma_time = '".G5_TIME_YMDHIS."',
|
|
ma_ip = '{$_SERVER['REMOTE_ADDR']}' ";
|
|
sql_query($sql);
|
|
}
|
|
else if ($w == 'u')
|
|
{
|
|
$sql = " update {$g5['mail_table']}
|
|
set ma_subject = '{$ma_subject}',
|
|
ma_content = '{$_POST['ma_content']}',
|
|
ma_time = '".G5_TIME_YMDHIS."',
|
|
ma_ip = '{$_SERVER['REMOTE_ADDR']}'
|
|
where ma_id = '{$ma_id}' ";
|
|
sql_query($sql);
|
|
}
|
|
else if ($w == 'd')
|
|
{
|
|
$sql = " delete from {$g5['mail_table']} where ma_id = '{$ma_id}' ";
|
|
sql_query($sql);
|
|
}
|
|
|
|
goto_url('./mail_list.php');
|
|
?>
|