Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- include "connetti.php";
- $giorno=date(j);
- $mese=date(n);
- $anno=date(Y);
- $Data=$anno.'-'.$mese.'-'.$giorno;
- $user=htmlspecialchars( $_REQUEST["user"]);
- $password=htmlspecialchars( $_REQUEST["pass"]);
- $query = "SELECT * FROM impiegato WHERE (impiegato.username = '".$user."') AND (impiegato.admin = 0) AND (impiegato.password = '".$password."')";
- $result = mysql_query($query);
- if(mysql_num_rows($result) > 0) {
- foreach($_REQUEST['commessa'] as $v){
- if($v[0] != "null"){
- $query = "inserto into commessa(username,nomecommessa,commessa1,visibile,data) values('".$user."','".$v[0]."',".$v[1].",0,".$Data.")";
- mysql_query($query);
- $queryfuuu = "select * from commessa where nomecommessa='".$v[0]."' and username='".$user."'";
- $rr = mysql_query($queryfuuu);
- $rr = mysql_fetch_assoc($rr);
- $Query1 = "insert into impiegato_has_commessa(commessa_idcommessa,impiegato_username) values (".$rr['idcommessa']." , '".htmlspecialchars($user)."');";
- mysql_query($Query1);
- }
- }
- echo "eseguito con successo";
- }
- else {
- print("Login invalido.");
- exit;
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement