December
Sunday 4 January 2009 photo 4/5
|
Emelie listade ut vad mitt namn står för grattis för den insatsen :P <3
L.Y.M.I.C.S.E = Love you Malin can´t love somebody else ^^ (hoppas du inte blir sur nu)
Annons
Anonymous
Mon 5 Jan 2009 12:25
eeh? Fin bild NOt:P <3
voncarlsson92
Sun 4 Jan 2009 14:34
<?php
if(INCLUDED != "yes"){die("Access Denied.");}
if(isset($_GET['add'])){
function addcomment()
{
$error = array();
$msg = array();
global $error,$msg;
$articleid = mysql_real_escape_string(htmlentities($_POST['articleid']));
$comment = mysql_real_escape_string(htmlentities($_POST['comment']));
$ip = mysql_real_escape_string(htmlentities($_SERVER['REMOTE_ADDR']));
$authorid = mysql_real_escape_string(htmlentities($_SESSION['id']));
$title = mysql_real_escape_string(htmlentities($_POST['title']));
if(!is_numeric($articleid)) $error[] = "Artikel ID måste vara ett nummer.";
if(!is_numeric($authorid)) $error[] = "Author ID måste vara ett nummer.";
if(empty($title)) $title = "";
if(empty($authorid)) $error[] = "Du måste vara inloggad för att skriva en kommentar.";
if(empty($ip)) $error[] = "Din IP adress kunde inte indentifieras.";
if(empty($comment)) $error[] = "Du måste skriva någit i din kommentar.";
if(empty($articleid)) $error[] = "Du måste svara till en artikel.";
$sql = "SELECT * FROM `articles` WHERE `id` = '$articleid'";
$result = mysql_query($sql) or die(mysql_fel());
if (mysql_num_rows($result) == 0) $error[] = "Du måste svara till en befintlig artikel.";
$sql = "SELECT * FROM `comments` WHERE `author_id` = '$authorid' && `created` > ' ".date(' Y-m-d H:i:s',strtotime("-1 minute"))."' ";
$result = mysql_query($sql) or die(mysql_fel());
if (mysql_num_rows($result) > 1) $error[] = "Du får bara skriva en kommentar per minut.";
if(!empty($error)) return false;
$sql = mysql_query("INSERT INTO `comments` (`articleid`, `comment`, `ip`, `author_id`, `title`)
VALUES ('$articleid','$comment','$ip','$authorid','$title')");
if(!$query)
{
$error[] = mysql_fel();
}else{
$msg[] = "Lyckades lägga till kommentaren.";
}
$error[] = mysql_fel();
return true;
}
addcomment();
echo '<script>alert("';
if (!empty($error)){
foreach($error as $text)
echo $text." ";
}
if (!empty($msg)){
foreach($msg as $text)
echo $text." ";
}
echo '"); document.location="index.php?do=chose&cat='.mysql_real_escape_string(htmlentities($_GET['cat'])).'&type='.mysql_real_escape_string(htmlentities($_GET['type'])).'&id='.mysql_real_escape_string(htmlentities($_POST['articleid'])).'";</script>';
} ?>
if(INCLUDED != "yes"){die("Access Denied.");}
if(isset($_GET['add'])){
function addcomment()
{
$error = array();
$msg = array();
global $error,$msg;
$articleid = mysql_real_escape_string(htmlentities($_POST['articleid']));
$comment = mysql_real_escape_string(htmlentities($_POST['comment']));
$ip = mysql_real_escape_string(htmlentities($_SERVER['REMOTE_ADDR']));
$authorid = mysql_real_escape_string(htmlentities($_SESSION['id']));
$title = mysql_real_escape_string(htmlentities($_POST['title']));
if(!is_numeric($articleid)) $error[] = "Artikel ID måste vara ett nummer.";
if(!is_numeric($authorid)) $error[] = "Author ID måste vara ett nummer.";
if(empty($title)) $title = "";
if(empty($authorid)) $error[] = "Du måste vara inloggad för att skriva en kommentar.";
if(empty($ip)) $error[] = "Din IP adress kunde inte indentifieras.";
if(empty($comment)) $error[] = "Du måste skriva någit i din kommentar.";
if(empty($articleid)) $error[] = "Du måste svara till en artikel.";
$sql = "SELECT * FROM `articles` WHERE `id` = '$articleid'";
$result = mysql_query($sql) or die(mysql_fel());
if (mysql_num_rows($result) == 0) $error[] = "Du måste svara till en befintlig artikel.";
$sql = "SELECT * FROM `comments` WHERE `author_id` = '$authorid' && `created` > ' ".date(' Y-m-d H:i:s',strtotime("-1 minute"))."' ";
$result = mysql_query($sql) or die(mysql_fel());
if (mysql_num_rows($result) > 1) $error[] = "Du får bara skriva en kommentar per minut.";
if(!empty($error)) return false;
$sql = mysql_query("INSERT INTO `comments` (`articleid`, `comment`, `ip`, `author_id`, `title`)
VALUES ('$articleid','$comment','$ip','$authorid','$title')");
if(!$query)
{
$error[] = mysql_fel();
}else{
$msg[] = "Lyckades lägga till kommentaren.";
}
$error[] = mysql_fel();
return true;
}
addcomment();
echo '<script>alert("';
if (!empty($error)){
foreach($error as $text)
echo $text." ";
}
if (!empty($msg)){
foreach($msg as $text)
echo $text." ";
}
echo '"); document.location="index.php?do=chose&cat='.mysql_real_escape_string(htmlentities($_GET['cat'])).'&type='.mysql_real_escape_string(htmlentities($_GET['type'])).'&id='.mysql_real_escape_string(htmlentities($_POST['articleid'])).'";</script>';
} ?>
6 comments on this photo
Directlink:
http://dayviews.com/aquaz/315271806/
Visa toppen
Show footer