<?php$dbhost = "localhost"; //your hostname (normally localhost)$dbuser = "x

1. <?php
2. $dbhost = "localhost"; //your hostname (normally localhost)
3. $dbuser = "xxxxxxxxxx"; //database username
4. $dbpass = "xxxxxxxxxxx"; //database password
5. $dbname = "xxxxxxxxxxxxx"; //database name
6. $conn = mysql_connect("".$dbhost."","".$dbuser."","".$dbpass."");  
7. mysql_select_db("".$dbname."") or die(mysql_error());
8. $id = $_POST['id'];
9. function getpassword($id){
10.  
11.     $query = mysql_query("SELECT * FROM `paste` WHERE `id` = '$id'") or die(mysql_error());
12.  
13.     $row = mysql_fetch_array($query);
14.  
15.     return $row['1'];
16. }
17. function gettempo($id){
18.  
19.     $query = mysql_query("SELECT * FROM `paste` WHERE `id` = '$id'") or die(mysql_error());
20.  
21.     $row = mysql_fetch_array($query);
22.  
23.     return $row['5'];
24. }
25. $tempo = gettempo($id);
26. $password = getpassword($id);
27. $post = $_POST['password'];
28. $postpass = hash('sha512', $tempo . $post . $tempo);
29. $content = $_POST['text'];
30. $check = mysql_query("SELECT * FROM `paste` WHERE `id` = '$id'") or die(mysql_error());
31. if(mysql_num_rows($check) == 0){
32. header('Location: index.php');
33. }else if ( $postpass != $password ) {
34. session_start();
35. $_SESSION[ 'content' ] = $content;
36. $url = 'index.php?id=' . $id . '&error=1';
37. header('Location: ' . $url);
38. }else if(isset($_POST['delete'])) {
39. mysql_query("DELETE FROM `paste` WHERE `id` = '$id'");
40. $url = 'index.php';
41. header('Location: ' . $url);
42. }else{
43. mysql_query("UPDATE `paste` SET `content` = '$content' WHERE `id` = '$id'");
44. $url = 'index.php?id=' . $id;
45. header('Location: ' . $url);
46. }
47. ?>