Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if( (isset($_GET['mode'])) AND ($_GET['mode'] == 'view') ) {
- $id = $_GET['id'];
- $sql = "SELECT * FROM blog WHERE id='".mysql_real_escape_string($id)."'";
- mysql_query("SET NAMES 'utf8'");
- $entry = mysql_query($sql,$datenbank) or die(mysql_error());
- while($blog = mysql_fetch_object($entry))
- {
- ?>
- <div id="postinfo">
- <div class="cpostinfo">
- <h4 id="s1">Post Info</h4>
- <p><a href="?p=autor&info=<?php echo $blog->autor ?>" class="ml"><?php echo $blog->autor ?></a><br />
- <a href="#" class="ml"><?php echo $blog->datum ?></a><br />
- <p class="ml">ID<span><?php echo $blog->id ?></span></p>
- <?php
- $abfrage = "SELECT id FROM blog_kommentare WHERE blog_id='".mysql_real_escape_string($blog->id)."'";
- mysql_query("SET NAMES 'utf8'");
- $ergebnis = mysql_query($abfrage);
- $menge = mysql_num_rows($ergebnis);
- ?>
- <a href="?p=blog&mode=view&id=<?php echo $blog->id ?>#comments" class="ml">Kommentare (<?php echo $menge ?>)</a><br />
- <g:plusone size="medium"></g:plusone></p>
- </div>
- </div>
- <div class="entry">
- <h2 id="s1"><?php echo $blog->title ?></h2>
- <p><span>Eingetragen unter</span> <a href="?p=blog&sel=cat&cat=<?php echo $blog->cat ?>"><?php echo $blog->cat ?></a>
- <p> </p>
- <?php echo $blog->text ?>
- </div>
- <?php } ?>
- <h4 id="s1"><a name="comments">Kommentare</a></h4>
- <?php
- $kid = $_GET['id'];
- ?>
- <?php
- $sql2 = "SELECT * FROM blog_kommentare WHERE blog_id='".mysql_real_escape_string($kid)."' AND display='yes'";
- mysql_query("SET NAMES 'utf8'");
- $entry2 = mysql_query($sql2,$datenbank) or die(mysql_error());
- while($kommentare = mysql_fetch_object($entry2))
- {
- ?>
- <div id="gb">
- <div class="gbentry">
- <p class="ml"><?php echo $kommentare->name ?> | <?php if($kommentare->homepage == "") { ?><s>Homepage</s><?php }else{ ?><a href="<?php echo $kommentare->homepage ?>" target="_blank" class="ml">Homepage</a><?php } ?></p>
- <hr />
- <p> </p>
- <div class="ml" style="margin-left:70px"><?php echo $kommentare->naricht ?></div>
- <p> </p>
- <hr />
- <p class="ml">Geschrieben am: <?php echo $kommentare->datum ?> | IP gespeichert</p>
- <p> </p>
- </div>
- </div>
- <p> </p>
- <?php } ?>
- <div id="kombox">
- <h4 id="s1">Kommentar schreiben</h4>
- <div class="middle">
- <form action="?p=blog&mode=view&id=<?php echo $kid ?>&action=commentpost" method="post" id="commentform">
- <label for="form-name">Name (erforderlich)</label><br />
- <input name="form-name" id="name" type="text" required>
- <label for="form-email"><br />Email (erfordlich)</label><br />
- <input name="form-email" id="email" type="email" required>
- <label for="form-url"><br />Homepage</label><br />
- <input name="form-url" id="url" type="url">
- <label for="form-comment" class="middle"><br />Dein Kommentar</label><br />
- <textarea name="form-comment" id="comment"></textarea>
- <br />Spamschutz:
- <?php
- require_once('core/include/recaptchalib.php');
- // Get a key from https://www.google.com/recaptcha/admin/create
- $publickey = "6Lfpvs4SAAAAANMGgRw6HQUBYp1Bc89-IO6TB-fb";
- $privatekey = "6Lfpvs4SAAAAAGH7bNbO-ItVzjlWbuouO-JfuGGk";
- # the response from reCAPTCHA
- $resp = null;
- # the error code from reCAPTCHA, if any
- $error = null;
- # was there a reCAPTCHA response?
- if (!empty($_POST["recaptcha_response_field"])) {
- $resp = recaptcha_check_answer ($privatekey,
- $_SERVER["REMOTE_ADDR"],
- $_POST["recaptcha_challenge_field"],
- $_POST["recaptcha_response_field"]);
- if ($resp->is_valid) {
- echo "You got it!";
- } else {
- # set the error code so that we can display it
- $error = $resp->error;
- }
- }
- echo recaptcha_get_html($publickey, $error);
- ?>
- <br />
- <input class="button" type="submit" value="Kommentar eintragen" />
- </form>
- </div>
- </div>
- <?php }else if(isset($_GET['mode']) == 'archiv'){ ?>
- <ul class="archive">
- <?php
- $sql = "SELECT * FROM blog ORDER BY id DESC";
- mysql_query("SET NAMES 'utf8'");
- $entry = mysql_query($sql,$datenbank) or die(mysql_error());
- while($blog = mysql_fetch_object($entry))
- {
- ?>
- <li>
- <a href="?p=blog&mode=view&id=<?php echo $blog->id ?>" id="s1"><?php echo $blog->title ?></a>
- Geschrieben am <?php echo $blog->datum ?> | Gespeichert unter <a href="?p=blog&sel=cat&cat=<?php echo $blog->cat ?>" id="s1"><?php echo $blog->cat ?></a>
- </li>
- <?php } ?>
- </ul>
- <?php
- }else if(isset($_GET['sel']) == 'cat'){
- $smcat = $_GET['cat'];
- ?>
- <h2>Alle Artikel der Kategorie: <?php echo $_GET['cat'] ?></h2>
- <ul class="archive">
- <?php
- $sql = "SELECT * FROM blog WHERE cat='".mysql_real_escape_string($smcat)."' ORDER BY id DESC";
- mysql_query("SET NAMES 'utf8'");
- $entry = mysql_query($sql,$datenbank) or die(mysql_error());
- while($blog = mysql_fetch_object($entry))
- {
- ?>
- <li>
- <a href="?p=blog&mode=view&id=<?php echo $blog->id ?>"><?php echo $blog->title ?></a>
- Geschrieben am <?php echo $blog->datum ?></a> | Gespeichert unter <a href="?p=blog&sel=cat&cat=<?php echo $blog->cat ?>"><?php echo $blog->cat ?></a>
- </li>
- <?php } ?>
- </ul>
- <?php
- }else{
- $sql = "SELECT * FROM blog ORDER BY id DESC LIMIT 0, 5";
- mysql_query("SET NAMES 'utf8'");
- $entry = mysql_query($sql,$datenbank) or die(mysql_error());
- while($blog = mysql_fetch_object($entry))
- {
- ?>
- <div id="postinfo">
- <div class="cpostinfo">
- <h4 id="s1">Post Info</h4>
- <p><a href="?p=autor&info=<?php echo $blog->autor ?>" class="ml"><?php echo $blog->autor ?></a><br />
- <a href="#" class="ml"><?php echo $blog->datum ?></a><br />
- <p class="ml">ID<span><?php echo $blog->id ?></span></p>
- <?php
- $abfrage = "SELECT id FROM blog_kommentare WHERE blog_id='".mysql_real_escape_string($blog->id)."'";
- $ergebnis = mysql_query($abfrage);
- $menge = mysql_num_rows($ergebnis);
- ?>
- <a href="?p=blog&mode=view&id=<?php echo $blog->id ?>#comments" class="ml">Kommentare (<?php echo $menge ?>)</a><br />
- <a href="?p=blog&mode=view&id=<?php echo $blog->id ?>" class="ml">Permalink</a></p>
- </div>
- </div>
- <div class="entry">
- <h2 id="s1"><?php echo $blog->title ?></h2>
- <p><span>Eingetragen unter</span> <a href="?p=blog&sel=cat&cat=<?php echo $blog->cat ?>"><?php echo $blog->cat ?></a>
- <p> </p>
- <?php
- if(strlen($blog->text) >= 500) {
- $blog->text=wordwrap($blog->text,500); //Zeilenumbruch einfügen spätestens nach 200 Zeichen
- $blog->text = substr($blog->text,0,strpos($blog->text,"\n")).'...'; //bei Zeilenumbruch Text abschneinden
- }
- echo($blog->text);
- ?>
- <p> <br /> </p>
- <p id="s1"><a class="more" href="?p=blog&mode=view&id=<?php echo $blog->id ?>">weiterlesen »</a></p>
- </div>
- <?php
- }
- }
- if(isset($_GET['action']) AND 'commentpost' == $_GET['action']) {
- require_once('core/include/recaptchalib.php');
- $privatekey = "6Lfpvs4SAAAAAGH7bNbO-ItVzjlWbuouO-JfuGGk";
- $resp = recaptcha_check_answer ($privatekey,
- $_SERVER["REMOTE_ADDR"],
- $_POST["recaptcha_challenge_field"],
- $_POST["recaptcha_response_field"]);
- if (!$resp->is_valid) {
- // What happens when the CAPTCHA was entered incorrectly
- die ("The reCAPTCHA wasn't entered correctly. Go back and try it again." .
- "(reCAPTCHA said: " . $resp->error . ")");
- } else {
- $sqlk = "INSERT INTO blog_kommentare
- (
- blog_id,
- display,
- datum,
- name,
- email,
- homepage,
- naricht
- )
- VALUES
- (
- ".intval($_GET['id']).",
- 'yes',
- NOW(),
- '".mysql_real_escape_string($_POST['form-name'])."',
- '".mysql_real_escape_string($_POST['form-email'])."',
- '".mysql_real_escape_string($_POST['form-url'])."',
- '".mysql_real_escape_string($_POST['form-comment'])."'
- )";
- $qry = mysql_query($sqlk,$datenbank) or die(mysql_error());
- }
- }
- if(isset($_GET['action']) AND 'commentcheck' == $_GET['action']) {
- echo('<p>'.$_POST['blog_id'].'</p>'."\n");
- echo('<p>'.$_POST['form-name'].'</p>'."\n");
- echo('<p>'.$_POST['form-email'].'</p>'."\n");
- echo('<p>'.$_POST['form-url'].'</p>'."\n");
- echo('<p>'.$_POST['form-comment'].'</p>'."\n");
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement