Untitled

<section>
<div class="headline" id="commentMessageArea">
    <h2><span class="ai ai-pencil2"></span> Leave a Comment</h2>
  </div>
  <form role="form">
    <div class="row">
      <div class="col-sm-12 col-md-6">
        <input type="name" class="form-control" id="name_entered" placeholder="Name">
      </div>
      <div class="col-sm-12 col-md-6">
        <input type="email" class="form-control" id="inputEmail" placeholder="Email">
      </div>
      <div class="col-xs-12" style="margin-top: 15px">
        <textarea class="form-control" id="comment_entered" placeholder="Comment" style="height:200px !important"></textarea>
      </div>
    </div>
    <div class="row" style="margin-top: 15px">
      <div class="col-xs-12">
        <button type="submit" value="Comment" class="btn btn-primary" onclick="submitcomment();">Submit</button>
        <div class="checkbox">
          <label>
            <input type="checkbox"> Notify me of new comments
          </label>
        </div>
      </div>
    </div>
  </form>
<div id="showcomments"></div>
<script>
function submitcomment() {
var request;
try {request= new XMLHttpRequest();
}
catch (tryMicrosoft) {
try {request= new ActiveXObject("Msxml2.XMLHTTP");
}
catch (otherMicrosoft)
{try {
request= new ActiveXObject("Microsoft.XMLHTTP");
}
catch (failed) {request= null;
}
}
}
var webpage= location.href;
position= webpage.lastIndexOf("/");
var lastpart= webpage.substring(position + 1);
var period= lastpart.indexOf(".");
var complete= lastpart.substring(0, period);
complete= complete.replace(/-/g, "_");
var url= "usercomments.php";
var username= document.getElementById("name_entered").value;
var usercomment= document.getElementById("comment_entered").value;
var vars= "name="+username+"&comment="+usercomment+"&webpage="+complete;
request.open("POST", url, true);
request.setRequestHeader("Content-type", "application/x-www-form-urlencoded");
request.onreadystatechange= function() {
if (request.readyState == 4 && request.status == 200) {
  var return_data=  request.responseText;
  document.getElementById("showcomments").innerHTML= return_data;
}
}
request.send(vars);
}
</script>
   </div>
  </section>

<?php
$name_entered= $_POST['name'];
$comment_entered= $_POST['comment'];
$table= $_POST['webpage'];
$date= date("m-d-Y");
$user = "sample";
$password = "sample";
$host = "sample";
$dbase = "sample";
$connection= mysqli_connect ($host, $user, $password);
if (!$connection)
{
die ('Could not connect:' . mysqli_error());
}
mysqli_select_db($dbase, $connection);
$val = mysqli_query("select 1 from $table");
if($val !== FALSE)
{
if ((!empty($name_entered)) && (!empty($comment_entered)))
{
mysqli_query("INSERT INTO $table (name, date, comments)
VALUES ('$name_entered', '$date', '$comment_entered')");
}
$result= mysqli_query( "SELECT * FROM $table ORDER BY ID DESC" )
or die("SELECT Error: ".mysqli_error());
while ($row = mysqli_fetch_array($result)){
$name_field= $row['name'];
$date_field= $row['date'];
$comment_field= $row['comments'];
echo "$name_field wrote: ($date_field) <br>";
echo "$comment_field";
echo "<br><hr><br>";
}
}
else
{
$createtable= "CREATE TABLE $table
( ".
"ID INT NOT NULL AUTO_INCREMENT, ".
"name VARCHAR(50) NOT NULL, ".
"date VARCHAR(50) NOT NULL, ".
"comments VARCHAR(60000) NOT NULL, ".
"PRIMARY KEY (ID)
);
";
$create= mysqli_query($createtable, $connection);
if ($create)
{
if ((!empty($name_entered)) && (!empty($comment_entered)))
{
mysqli_query("INSERT INTO $table (name, date, comments)
VALUES ('$name_entered', '$date', '$comment_entered')");
}
$result= mysqli_query( "SELECT * FROM $table ORDER BY ID DESC" )
or die("SELECT Error: ".mysqli_error());
while ($row = mysqli_fetch_array($result)){
$name_field= $row['name'];
$date_field= $row['date'];
$comment_field= $row['comments'];
echo "$name_field wrote: ($date_field) <br>";
echo "$comment_field";
echo "<br><hr><br>";
}
}//if createtable
}//else
?>