", "<=", ">=", "!=", "LIKE", "REGEXP", "IN", "IS NULL"); if ($table_status["Engine"] == "MyISAM") { $operators[] = "AGAINST"; } $fields = fields($_GET["select"]); $rights = array(); $columns = array(); unset($text_length); foreach ($fields as $key => $field) { if (isset($field["privileges"]["select"])) { $columns[] = $key; if (preg_match('~text|blob~', $field["type"])) { $text_length = (isset($_GET["text_length"]) ? $_GET["text_length"] : "100"); } } $rights += $field["privileges"]; } $select = array(); $group = array(); foreach ((array) $_GET["columns"] as $key => $val) { if ($val["fun"] == "count" || (in_array($val["col"], $columns, true) && (!$val["fun"] || in_array($val["fun"], $functions) || in_array($val["fun"], $grouping)))) { $select[$key] = (in_array($val["col"], $columns, true) ? (!$val["fun"] ? idf_escape($val["col"]) : ($val["fun"] == "distinct" ? "COUNT(DISTINCT " : strtoupper("$val[fun](")) . idf_escape($val["col"]) . ")") : "COUNT(*)"); if (!in_array($val["fun"], $grouping)) { $group[] = $select[$key]; } } } $where = array(); foreach ($indexes as $i => $index) { if ($index["type"] == "FULLTEXT" && strlen($_GET["fulltext"][$i])) { $where[] = "MATCH (" . implode(", ", array_map('idf_escape', $index["columns"])) . ") AGAINST ('" . $mysql->escape_string($_GET["fulltext"][$i]) . "'" . (isset($_GET["boolean"][$i]) ? " IN BOOLEAN MODE" : "") . ")"; } } foreach ((array) $_GET["where"] as $val) { if (strlen($val["col"]) && in_array($val["op"], $operators)) { if ($val["op"] == "IN") { $in = process_length($val["val"]); $where[] = (strlen($in) ? idf_escape($val["col"]) . " IN ($in)" : "0"); } elseif ($val["op"] == "AGAINST") { $where[] = "MATCH (" . idf_escape($val["col"]) . ") AGAINST ('" . $mysql->escape_string($val["val"]) . "' IN BOOLEAN MODE)"; } else { $where[] = idf_escape($val["col"]) . " $val[op]" . ($val["op"] == "IS NULL" ? "" : " '" . $mysql->escape_string($val["val"]) . "'"); } } } $order = array(); foreach ((array) $_GET["order"] as $key => $val) { if (in_array($val, $columns, true)) { $order[] = idf_escape($val) . (isset($_GET["desc"][$key]) ? " DESC" : ""); } elseif (preg_match('(^(COUNT\\(\\*\\)|(' . strtoupper(implode('|', $functions) . '|' . implode('|', $grouping)) . ')\\((' . implode('|', array_map('preg_quote', array_map('idf_escape', $columns))) . ')\\))$)', $val)) { $order[] = $val . (isset($_GET["desc"][$key]) ? " DESC" : ""); } } $limit = (isset($_GET["limit"]) ? $_GET["limit"] : "30"); $from = "FROM " . idf_escape($_GET["select"]) . ($where ? " WHERE " . implode(" AND ", $where) : "") . ($group && count($group) < count($select) ? " GROUP BY " . implode(", ", $group) : "") . ($order ? " ORDER BY " . implode(", ", $order) : "") . (strlen($limit) ? " LIMIT " . intval($limit) . (intval($_GET["page"]) ? " OFFSET " . ($limit * $_GET["page"]) : "") : ""); if ($_POST && !$error) { $result = true; $deleted = 0; if ($_POST["export"] || $_POST["export_result"]) { dump_headers($_GET["select"]); dump_table($_GET["select"], ""); } if (isset($_POST["truncate"])) { $result = queries($where ? "DELETE FROM " . idf_escape($_GET["select"]) . " WHERE " . implode(" AND ", $where) : "TRUNCATE " . idf_escape($_GET["select"])); $deleted = $mysql->affected_rows; } elseif ($_POST["export_result"]) { dump_data($_GET["select"], "INSERT", ($where ? "FROM " . idf_escape($_GET["select"]) . " WHERE " . implode(" AND ", $where) : "")); } elseif (is_array($_POST["delete"])) { foreach ($_POST["delete"] as $val) { parse_str($val, $delete); if ($_POST["export"]) { dump_data($_GET["select"], "INSERT", "FROM " . idf_escape($_GET["select"]) . " WHERE " . implode(" AND ", where($delete)) . " LIMIT 1"); } else { $result = queries("DELETE FROM " . idf_escape($_GET["select"]) . " WHERE " . implode(" AND ", where($delete)) . " LIMIT 1"); if (!$result) { break; } $deleted += $mysql->affected_rows; } } } elseif ($_POST["delete_selected"]) { if ($_POST["export"]) { dump_data($_GET["select"], "INSERT", $from); } else { $result1 = $mysql->query("SELECT * $from"); while ($row1 = $result1->fetch_assoc()) { parse_str(implode("&", unique_idf($row1, $indexes)), $delete); $result = queries("DELETE FROM " . idf_escape($_GET["select"]) . " WHERE " . implode(" AND ", where($delete)) . " LIMIT 1"); if (!$result) { break; } $deleted += $mysql->affected_rows; } $result1->free(); } } if ($_POST["export"] || $_POST["export_result"]) { exit; } query_redirect(queries(), remove_from_uri("page"), lang('%d item(s) have been deleted.', $deleted), $result, false, !$result); } page_header(lang('Select') . ": " . htmlspecialchars($_GET["select"]), ($error ? lang('Error during deleting') . ": $error" : "")); if (isset($rights["insert"])) { //! pass search values forth and back echo '
\n"; } if (!$columns) { echo "" . lang('Unable to select the table') . ($fields ? "" : ": " . htmlspecialchars($mysql->error)) . ".
\n"; } else { echo "\n"; $query = "SELECT " . ($select ? (count($group) < count($select) ? "SQL_CALC_FOUND_ROWS " : "") . implode(", ", $select) : "*") . " $from"; echo "" . htmlspecialchars($query) . "
" . lang('Edit') . "
" . htmlspecialchars($mysql->error) . "
\n"; } else { if (!$result->num_rows) { echo " \n"; } else { $foreign_keys = array(); foreach (foreign_keys($_GET["select"]) as $foreign_key) { foreach ($foreign_key["source"] as $val) { $foreign_keys[$val][] = $foreign_key; } } echo "\n"; } $result->free(); } }