API tools faq
paste
Advertisement
Guest User

Untitled

a guest
Jul 30th, 2017
96
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 5.08 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2.  
  3.     function fetchRow($row, $table, $page){
  4.         $query = "SELECT ".$row." FROM ".$table." WHERE p = '".$page."' LIMIT 1";
  5.         $result = mysql_query($query)or die(mysql_error());
  6.         if($result){
  7.             $record = mysql_fetch_row($result);
  8.             echo $record[0];
  9.         }
  10.     }
  11.  
  12.     function fetchContent($row, $table, $epage){
  13.         $query = "SELECT ".$row." FROM ".$table." WHERE e = '".$epage."' LIMIT 1";
  14.         $result = mysql_query($query)or die(mysql_error());
  15.         if($result){
  16.             $record = mysql_fetch_row($result);
  17.             echo $record[0].'<br />'.PHP_EOL;
  18.         }
  19.     }
  20.  
  21.     function epages() {
  22.         $querya = "SELECT * FROM content ORDER BY id";
  23.         $resulta = mysql_query($querya);
  24.         while($recorda = mysql_fetch_array($resulta, MYSQL_ASSOC)){
  25.             if ($recorda['title'] == '404' || $recorda['p'] == 'register' || $recorda['p'] == 'login' || $recorda['p'] == 'admin' || $recorda['p'] == 'edit' || $recorda['p'] == 'add' || $recorda['p'] == 'delete') {
  26.  
  27.             }
  28.             else {
  29.                 echo '<ul>'.PHP_EOL;
  30.                 echo '<li><a href="index.php?p=edit&e='.$recorda['p'].'">'.$recorda['title'].'</a></li>'.PHP_EOL;
  31.                 echo '</ul>'.PHP_EOL;
  32.             }
  33.         }
  34.     }
  35.  
  36.     function pages() {
  37.         $querya = "SELECT * FROM content ORDER BY id";
  38.         $resulta = mysql_query($querya);
  39.         while($recorda = mysql_fetch_array($resulta, MYSQL_ASSOC)){
  40.             if ($recorda['title'] == '404' || $recorda['p'] == 'register' || $recorda['p'] == 'login' || $recorda['p'] == 'admin' || $recorda['p'] == 'edit' || $recorda['p'] == 'add' || $recorda['p'] == 'delete') {
  41.  
  42.             }
  43.             else {
  44.                 echo '<ul>'.PHP_EOL;
  45.                 echo '<li><a href="index.php?p='.$recorda['p'].'">'.$recorda['title'].'</a></li>'.PHP_EOL;
  46.                 echo '</ul>'.PHP_EOL;
  47.             }
  48.         }
  49.     }
  50.    
  51.     function login(){
  52.         if(isset($_GET['action']) && ($_GET['action'] == "login")) {
  53.             $user = mysql_real_escape_string($_POST['name']);
  54.             $pass = mysql_real_escape_string(md5($_POST['pass']));
  55.             $query = "SELECT * FROM users WHERE username = '".$user."' AND password = '".$pass."' AND enabled = 1";
  56.             $result = mysql_query($query)or die(mysql_error());
  57.             if(mysql_num_rows($result) < 1)  {
  58.                 die ('De gebruikersnaam bestaat niet of het wachtwoord is verkeerd, probeer nogmaals in te loggen.');
  59.             }
  60.             else {
  61.                 session_start();
  62.                 $_SESSION['name'] = $user;
  63.                 $_SESSION['pass'] = $pass;
  64.                 header('location:?p=about');
  65.             }
  66.         }
  67.         echo '<form action="?p=login&action=login" method="post">
  68. <label for="name">Loginnaam:</label>
  69. <input type="text" name="name" id="name" maxlength="30" /><br />
  70. <label for="pass">Wachtwoord:</label>
  71. <input type="password" name="pass" id="pass" maxlength="30" /><br />
  72. <label for="verzenden">&nbsp;</label>
  73. <input type="submit" value="Inloggen"><br />
  74. </form>
  75. ';
  76.     }
  77.  
  78.  
  79.  
  80.     function register(){
  81.         if(isset($_GET['action']) && ($_GET['action'] == "register")){
  82.             $user = mysql_real_escape_string($_POST['name']);
  83.             $pass = mysql_real_escape_string(md5($_POST['pass']));
  84.             $mailadres = mysql_real_escape_string($_POST['mailadres']);
  85.             $query = "INSERT INTO users (`username`, `password`, `mailadres`, `enabled`, `lastlogin`) VALUES ('".$user."', '".$pass."', '".$mailadres."', 1, NOW())";
  86.             empty($pass);
  87.             $pass = clean($_POST['pass']);
  88.             if(empty($user)) {
  89.                 echo 'naam is leeg';
  90.             }
  91.             elseif(empty($pass)) {
  92.                 echo 'pass is leeg';
  93.             }
  94.             elseif(empty($mailadres)) {
  95.                 echo 'mail is leeg';
  96.             }
  97.             else {
  98.                 if(mysql_query($query)){
  99.                     echo 'Registratie is gelukt. Klik <a href="?p=login">hier</a> om in te loggin.';
  100.                 }
  101.                 else {
  102.                     echo 'Registratie mislukt!';
  103.                 }
  104.             }
  105.         }
  106.         echo'<form action="?p=register&action=register" method="post">
  107. <label for="name">Loginnaam:</label>
  108. <input type="text" name="name" id="name" maxlength="30" /><br />
  109. <label for="pass">Wachtwoord:</label>
  110. <input type="password" name="pass" id="pass" maxlength="30" /><br />
  111. <label for="mailadres">Email:</label>
  112. <input type="text" name="mailadres" id="mailadres" maxlength="60" /><br />
  113. <label for="verzenden">&nbsp;</label>
  114. <input type="submit" name="verzenden" id="verzenden" value="Verzenden" /><br />
  115. </form>
  116. ';
  117.     }
  118.  
  119.  
  120.     function add() {
  121.         if(isset($_GET['action']) && ($_GET['action'] == "add")){
  122.             $title = mysql_real_escape_string($_POST['title']);
  123.             $content = mysql_real_escape_string($_POST['content']);
  124.             $query = "INSERT INTO content (`title`, `content`, `e`, `p`) VALUES ('".$title."', '".$content."', '".$title."', '".$title."')";
  125.                 if(mysql_query($query)){
  126.                     header('location:?p='.$title.'');
  127.                 }
  128.                 else {
  129.                     echo 'Registratie mislukt!';
  130.                 }
  131.             }
  132.             echo'<form action="?p=add&action=add" method="post">
  133. <label for="title">Titel:</label>
  134. <input type="text" name="title" id="title" maxlength="30" /><br />
  135. <label for="content">Content:</label>
  136. <input type="text" name="content" id="content" maxlength="30" /><br />
  137. <label for="verzenden">&nbsp;</label>
  138. <input type="submit" name="verzenden" id="verzenden" value="Verzenden" /><br />
  139. </form>
  140. ';
  141.        
  142.     }
  143.  
  144.     function clean($str) {
  145.         $str = @trim($str);
  146.         if(get_magic_quotes_gpc()) {
  147.             $str = stripslashes($str);
  148.         }
  149.         return mysql_real_escape_string($str);
  150.     }
  151.  
  152. ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
Public Pastes
Advertisement
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!