Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- session_start();
- $pdo = new PDO('mysql:host=localhost;dbname=', '', '');
- if(!isset($_SESSION['userid'])) {
- die('Bitte zuerst <a href="/login/login.php">einloggen</a>');
- }
- if(isset($_GET['abrufen'])) {
- $name = $_POST['name'];
- $passwort = $_POST['passwort'];
- $statement = $pdo->prepare("SELECT * FROM users WHERE name = :name");
- $result = $statement->execute(array('name' => $name));
- $user = $statement->fetch();
- if ($user !== false && password_verify($passwort, $user['passwort'])) {
- $_SESSION['userid'] = $user['id'];
- mysql_connect("localhost","","");
- mysql_select_db("zocker-ka");
- $pn = mysql_query("SELECT von, betreff, text FROM nachrichten WHERE an = $name");
- while($row = mysql_fetch_array($pn)) {
- echo "Von: " . $row[von] . " | Betreff: " . $row[betreff] . "<br><br>$row[text]"; // Ausgeben des Textes
- }
- }
- }
- ?>
- <html>
- <head>
- <title>Nachrichten abrufen</title>
- </head>
- <body>
- <h1>Nachrichtenn abrufen:</h1>
- <form action="?abrufen=1" method="post">
- <h2>Benutzername:<br />
- <input type="text" name="name" size="40" maxlength="255"><br />
- Passwort:<br />
- <input type="password" name="passwort" size="40" maxlength="255"><br />
- <input type="submit" name="abrufen" value="abrufen" />
- </h2>
- </form>
- </body>
- </html>
Add Comment
Please, Sign In to add comment