Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- $html = file_get_contents("guestbook.html");
- $username="usr_10746419";
- $password="746419";
- $database="db_10746419";
- $db = mysql_connect("atlas.dsv.su.se", $username,$password)
- or die("Unable to connect to sql server");
- mysql_select_db($database,$db) or die("Unable to select database");
- if(isset($_POST['submit'])){
- $name=$_POST['name'];
- $comment=$_POST['comment'];
- $email=$_POST['email'];
- $homepage=$_POST['homepage'];
- $query = "INSERT INTO guestbook (email, comment, name, surname, homepage)
- VALUES ('$email','$comment','$name','default','$homepage')";
- mysql_query($query,$db) or die("kek");
- echo "Using username :$username \n";
- echo "Using password :$password \n";
- echo "Using database :$database \n";
- }
- $query = "SELECT * FROM guestbook";
- eval("print \"" . addcslashes(preg_replace("/(---(.+?)---)/", "\\2", $html), '"') . "\";");
- if ($results = mysql_query($query, $db)) {
- while ($row = mysql_fetch_assoc($results)) {
- $comment =mysql_real_escape_string( htmlentities($row['comment']));
- $date = mysql_real_escape_string( htmlentities($row['date']));
- $id = mysql_real_escape_string( htmlentities($row['id']));
- $name = mysql_real_escape_string( htmlentities($row['name']));
- $email = mysql_real_escape_string( htmlentities($row['email']));
- echo "<b>Inlägg ".$id." </b> <br /> <br />";
- echo "<b>Tid: </b> ".$date."<br />";
- echo "<b>Från:</b> ".$name." <br />";
- echo "<b>E-post: </b> ".$email." <br /> <br />";
- echo "<b>Kommentar:</b> ".$comment."<br /> <br /> ";
- }
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
