echo $shl; } } else { header("Content-Type: text/plain"); $raw = $ml->showRawPaste($_GET['id']); if ($raw == NULL) { echo "Source not found!"; } else { echo $raw; } } } else { show_index(); } } else { if ($_SERVER['REQUEST_METHOD'] == 'POST') { if (isset($_POST['paste']) && !empty($_POST['paste'])) { $paste = $ml->addPaste($_POST['paste'], $_SERVER['REMOTE_ADDR']); echo $paste; } else { show_index(); } } else { show_index(); } } function show_index() { header("Content-type: text/plain"); echo file_get_contents("README"); }
* PHPFilm * * Copyright (C) 2002 Daniel Pecos Martínez * * Licensed under GPL */ include "init.php"; $page = page_order($page, "00"); include "config.php"; if (!isset($lang) || empty($lang) || !file_exists("lang/" . "{$lang}" . ".php")) { $lang = "language_en"; } include "lang/" . "{$lang}" . ".php"; include "common.php"; print_header(); print " <body bgcolor=\"" . $bgcolor . "\">\n"; print " <center>\n"; print " <h1><font color=\"" . $title_color . "\">" . $webtitle . "</font></h1>\n"; print " <h4><font color=\"" . $title_color . "\">[ <a href=\"index_detailed.php\">{$detailed}</a> | <a href=\"admin\">{$admin}</a> ]\n</font></h4>\n"; $query = "SELECT * FROM " . $db_prefix . "film ORDER BY title;"; show_index($query); print " <br><br>\n"; print " <small><a href=\"http://netpecos.org/projects/phpfilm/\" target=\"_new\"><font color=\"" . $title_color . "\">PHP Film " . $version . "</font></a></small>\n"; /*print " <p>\n"; print " <a href=\"http://validator.w3.org/check/referer\"><img border=\"0\"\n"; print " src=\"http://www.w3.org/Icons/valid-html401\"\n"; print " alt=\"Valid HTML 4.01!\" height=\"31\" width=\"88\"></a>\n"; print " </p>\n";*/ print " </center>\n"; print " </body>\n"; print "</html>\n";
function register() { if (isset($_SESSION['username'])) { show_index(); } else { global $connection; if (!empty($_POST)) { $errors = array(); $notifications = array(); if (!empty($_POST["username"])) { $username = sanitize_for_db($connection, $_POST['username']); } else { $errors[] = "Username not entered!"; } if (!empty($_POST["password"])) { $passwd = mysqli_real_escape_string($connection, $_POST['password']); } else { $errors[] = "Password not entered!"; } if (!empty($_POST["password_confirm"])) { $passwd_conf = mysqli_real_escape_string($connection, $_POST['password_confirm']); } else { $errors[] = "Password not entered!"; } if (!empty($_POST["forename"])) { $forename = sanitize_for_db($connection, $_POST['forename']); } else { $errors[] = "Forename not entered!"; } if (!empty($_POST["surename"])) { $surename = sanitize_for_db($connection, $_POST['surename']); } else { $errors[] = "Surename not entered!"; } if (!empty($_POST["usrtel"])) { $usrtel = sanitize_for_db($connection, $_POST['usrtel']); } else { $errors[] = "Phone number not entered!"; } if (!empty($_POST["email"])) { $email = sanitize_for_db($connection, $_POST['email']); } else { $errors[] = "E-mail address not entered!"; } if (!empty($_POST["password_confirm"]) && !empty($_POST["password"])) { if ($passwd != $passwd_conf) { $errors[] = "Entered passwords do not match"; } else { if ($passwd == $passwd_conf && empty($errors)) { // Kontroll, kas kasutajanimi juba andmebaasis olemas $query = "SELECT username FROM 10153316_user WHERE username = '******'"; $result = mysqli_query($connection, $query); if (mysqli_num_rows($result) >= 1) { $errors[] = "Username already in use"; } else { // lisab kasutja andmebaasi $query = "INSERT INTO `10153316_user`(`username`, `password`, `phone`, `email`, `forename`, `surename`) VALUES ('" . $username . "', SHA1('" . $passwd . "'), '" . $usrtel . "', '" . $email . "', '" . $forename . "', '" . $surename . "')"; $result = mysqli_query($connection, $query); $notifications[] = "Register successful"; } } else { $errors[] = "Error!"; } } } } include 'view/head.html'; include 'view/register.php'; include 'view/footer.php'; } }