function DisplayFullText() { $conn = connectToDB(); $FeedbackID = $_GET['FeedbackID']; SanitizeIn($FeedbackID); $sql = "SELECT `Text` FROM `Feedbacks` WHERE `FeedbackID`='" . $FeedbackID . "'"; $feedback = GetSingleDbValue($sql, $conn); if (!$feedback) { echo 'No such feedback found.'; } else { echo SanitizeOut($feedback['Text']); } $conn->close(); }
function getTagsArray() { $conn = connectToDB(); SanitizeIn($FeedbackID); $sql = "SELECT * FROM `Tags`"; $tags = CheckedQuery($sql, $conn); $retVal = array(); if ($tags) { while ($tag = $tags->fetch_assoc()) { $retVal[SanitizeOut($tag['CName'])][SanitizeOut($tag['TName'])] = SanitizeOut($tag['TEntryAdvice']); } } $conn->close(); return $retVal; }