API tools faq
paste
Guest User

Untitled

a guest
Dec 24th, 2017
81
0
Never
Add comment
Not a member of Pastebin yet? Sign Up, it unlocks many cool features!
PHP 1.84 KB | None | 0 0
raw download clone embed print report
  1. <?php
  2. session_start();
  3. echo 'Welcome to private message system!';
  4. echo '<form method="POST">
  5. Username:
  6. <input type="text" name="Username">
  7. <br>Password:
  8. <input type="password" name="pass">
  9. <br><input type="submit" name="goo" value="Login">
  10. </form>';
  11. mysql_connect('host', 'user', 'pass');
  12. mysql_select_db('Oh, this is tralala');
  13. if ($_POST['goo']== 'Login') {
  14.     $username=$_POST['Username'];
  15.     $password=$_POST['pass'];
  16.     $query="SELECT * FROM Users WHERE Username=\"$username\" AND Password=\"$password\"";
  17.     $q = mysql_query($query);
  18.     if ($q == true) {
  19.         while ($row = mysql_fetch_assoc($query)) {
  20.             str_replace('||', '<br>', $row['Messages']);
  21.             echo $row['Messages'];
  22.         }
  23.         $_SESSION['isLogged'] == true;
  24.         $_SESSION['Username'] = $_POST['username'];
  25.         echo '<br><a href="privatemessage.php?send=true">Send a message</a>';
  26.     } elseif ($query == false) {
  27.         echo 'Wrong username or passsword!';
  28.     }
  29. }
  30.  
  31. if ($_SESSION['isLogged'] == true && $_GET['send'] == true) {
  32.     echo '<form method="POST">
  33. Username to send to:
  34. <input type="text" name="usernametosend">
  35. <textarea rows="10" cols="20" name="Message">
  36. Enter your message text here :)
  37. </textarea>
  38. <input type="submit" name="goez123" value="Send">';
  39.     if ($_POST['goez123']== 'Send') {
  40.         $msgfrom = $_SESSION['username'];
  41.         $msgseperator = '||';
  42.         $uns=$_POST['usernametosend'];
  43.         $oldstuff="SELECT * FROM Users WHERE Username=\"$uns\"";
  44.         $oldq = mysql_query($oldstuff);
  45.         $oldmsg = mysql_fetch_assos($oldq);
  46.         $msgcontent = 'From: ' . $msgfrom . $oldmsg['privatemssages'] . $msgseperator . $_POST['Message'];
  47.         $newq="UPDATE SET privatemessages = \"$msgcontent\" WHERE Username=\"$uns\"";
  48.         mysql_query($newq);
  49.         echo 'Friend Added :)';
  50.     }
  51. }
  52. ?>
Add Comment
Please, Sign In to add comment
Public Pastes
We use cookies for various purposes including analytics. By continuing to use Pastebin, you agree to our use of cookies as described in the Cookies Policy.  OK, I Understand
Not a member of Pastebin yet?
Sign Up, it unlocks many cool features!