Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- if(isset($_POST['Submit']) and $_POST['Submit'] == "Submit"){
- include('../database.conf');
- $link = mysql_connect($database, $user, $password) or die('Could not connect to database!');
- $query = sprintf("SELECT * FROM byte_website.users WHERE User='%s' AND Password='%s'", mysql_real_escape_string($_POST['user']), mysql_real_escape_string(SHA1($POST['password'])));
- $result = mysql_query($query) or die('There was an error querying the database!');
- if($result){
- // Create an array containing existing pages...
- $query = 'SELECT Page,ID FROM byte_website.pages';
- $result = mysql_query($query) or die('There was an error querying the database!');
- $pagelist = array();
- $i = 0;
- $highestID;
- while($row = mysql_fetch_assoc($result)){
- $pagelist[$i] = $row['Page'];
- $i++;
- if (!isset($highestID) or $row['ID'] > $highestID){
- $highestID = $row['ID'];
- }
- }
- $exists = false;
- foreach($pagelist as $page){
- if ($_POST['page'] == $page){
- $exists = true;
- break;
- }
- }
- if($exists){ // Edit an existing page
- $query = sprintf("UPDATE byte_website.pages SET Content=\"%s\" WHERE Page='%s'", mysql_real_escape_string(($_POST['content'])), $_POST['page']);
- $result = mysql_query($query) or die('There was an error changing the page!');
- if ($result){
- echo "<p>Page edited!</p>";
- }
- }
- else{ // Create a new page
- $highestID += 1;
- $query = sprintf("INSERT INTO byte_website.pages VALUES (%s, '%s', \"%s\")", $highestID, $_POST['page'], mysql_real_escape_string(($_POST['content'])));
- $result = mysql_query($query) or die('There was an error adding the page!');
- if ($result){
- echo "<p>Page added!</p>";
- }
- }
- }
- }
- ?>
- <form action="<?php echo $_SERVER['PHP_SELF']; ?>" method="post">
- Page:<input type="text" size="14" name="page" value="" />
- <br />
- <textarea name="content" rows="20" cols="50">Page content.</textarea>
- <br />
- User:<input type="text" name="user" size="14" value="" maxlength="20" />
- Password:<input type="password" size="14" name="password" value="" maxlength="20" />
- <input type="submit" name="Submit" value="Submit" />
- </form>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement