Advertisement
Not a member of Pastebin yet?
Sign Up,
it unlocks many cool features!
- <?php
- //SQLi apsaugos funkcija
- function extendedAddslash(array $params): array{
- foreach ($params as &$var) {
- is_array($var) ? ExtendedAddslash($var) : $var = addslashes($var);
- unset($var);
- }
- return $params;
- }
- //Doumenų gavimas
- $submissionData = @$_POST;
- //Duomenų patikra
- if (! isset($submissionData["submission_id"])) {
- die("Invalid submission data! 'submission_id' not exists.")
- //Databazės duomenys
- $db_host = "localhost";
- $db_username = '123';
- $db_password = '123';
- $db_name = '123';
- //Prisijungimas į databazę
- mysql_connect($db_host, $db_username, $db_password) or die(mysql_error()); //Connect your MYSQL database
- mysql_select_db($db_name); //Select your corresponding database where your table is located 'table_name'
- //Patikrinti ar jau yra tokia informacija
- $query = "SELECT * FROM `table_name` WHERE `submission_id` = '" . $submissionData["submission_id"] . "'";
- $sqlsearch = mysql_query($query);
- $resultcount = mysql_numrows($sqlsearch);
- //Jei duomenys jau yra databazėje, juos atnaujinti
- if ($resultcount > 0) {
- mysql_query("UPDATE `table_name` SET
- `name` = '" . $submissionData["name"] . "',
- `email` = '" . $submissionData["email"] . "',
- `message` = '" . $submissionData["message"] . "'
- WHERE `submission_id` = '" . $submissionData["submission_id"] . "'") or die(mysql_error());
- } else {
- mysql_query("INSERT INTO `table_name` (submission_id, formID, name, email, message)
- VALUES ('" . $submissionData["submission_id"] . "',
- '" . $submissionData["formID"] . "',
- '" . $submissionData["name"] . "',
- '" . $submissionData["email"] . "',
- '" . $submissionData["message"] . "' ) ") or die(mysql_error());
- }
- ?>
Advertisement
Add Comment
Please, Sign In to add comment
Advertisement
