<?php include '../../bd.php'; if (isset($_POST['link'], $_POST['comp_id'], $_POST['db'])) { $link = getScreened($conn, 'link'); $comp_id = $_POST['comp_id']; $db = $_POST['db']; $definition = getScreened($conn, 'definition'); $exploded = explode("=", $link); $i = count($exploded); $link = $exploded[$i - 1]; $query = "INSERT INTO {$db} (link,date,comp_id,definition,approved) VALUES('{$link}',NOW(),'{$comp_id}','{$definition}','1')"; $result = mysqli_query($conn, $query); if ($db == "videotutorial") { $page = "Tutorial"; } else { if ($db == "videoexecution") { $page = "Execution"; } } echo "<meta http-equiv='Refresh' content='0; URL=/maa/add" . $page . ".php?comp_id={$comp_id}'>"; } else { echo 0; } function getScreened($conn, $var) { return mysqli_real_escape_string($conn, $_POST[$var]); }
if (isset($_POST['start'], $_POST['sComp'], $_POST['sType'])) { include_once '../bd.php'; function getScreened($conn, $var) { return mysqli_real_escape_string($conn, $_POST[$var]); } function intoArray($cR) { global $a, $c; $a[$c]['cT'] = $cR['surname'] . ' ' . $cR['name'] . ' - ' . $cR['title']; $a[$c]['c_id'] = $cR['comp_id']; $a[$c]['cnt'] = $cR['count']; $c++; } $start = $_POST['start']; $sComp = getScreened($conn, 'sComp'); $sComp = substr($sComp, 0, 30); $sType = $_POST['sType']; $constAmount = 15; // 3. изменение колияества выводимого контента $a = array(); $c = 0; if ($start == 0) { $result = mysqli_query($conn, "SELECT comp_id,composition.authors_id,title,name,surname,count \n FROM composition LEFT JOIN composer ON (composition.authors_id=composer.authors_id)\n WHERE name LIKE '{$sComp}%' OR surname LIKE '{$sComp}%' OR title LIKE '{$sComp}%' \n ORDER BY {$sType}"); $sum_of_comp = mysqli_num_rows($result); echo $sum_of_comp . ".;"; if ($sum_of_comp < $constAmount) { $until = $sum_of_comp; } else { $until = $constAmount; }
$a[$c]['ac'] = $audio['comp_id']; $result2 = mysqli_query($connection, "SELECT aud_id FROM audlike WHERE aud_id='{$aud_id}' AND users_id='{$my_id}' LIMIT 1"); $num_of_rows = mysqli_fetch_assoc($result2); if (empty($num_of_rows['aud_id'])) { $a[$c]['like'] = 0; } else { $a[$c]['like'] = 1; } $c++; } $start = $_POST['start']; $my_id = $_POST['users_id']; $sType = $_POST['sType']; $constAmount = 15; // 2. изменение количества выводимого аудио $sAudio = getScreened($conn, 'sAudio'); $sAudio = substr($sAudio, 0, 30); $a = array(); $c = 0; if ($start == 0) { $result = mysqli_query($conn, "SELECT aud_id,name,surname,title,link,score,performer,audio.comp_id FROM audio \n LEFT JOIN composition ON (audio.comp_id=composition.comp_id)\n LEFT JOIN composer ON (composition.authors_id = composer.authors_id)\n WHERE name LIKE '{$sAudio}%' OR surname LIKE '{$sAudio}%' OR title LIKE '{$sAudio}%' OR performer LIKE '{$sAudio}%' \n ORDER BY {$sType}"); $sum_of_audio = mysqli_num_rows($result); echo $sum_of_audio . ".;"; if ($sum_of_audio < $constAmount) { $until = $sum_of_audio; } else { $until = $constAmount; } for ($i = 0; $i < $until; $i++) { $audioOut = mysqli_fetch_assoc($result); intoArray($audioOut, $conn);
<?php if (isset($_POST['text'], $_POST['comp_id'], $_POST['users_id'], $_POST['table'], $_POST['name'], $_POST['surname'])) { include '../bd.php'; $text = getScreened($conn, 'text'); $comp_id = $_POST['comp_id']; $users_id = $_POST['users_id']; $table = $_POST['table']; $name = getScreened($conn, 'name'); $surname = getScreened($conn, 'surname'); $query = "INSERT INTO {$table}(users_id,text,comp_id,date,name,surname) VALUES('{$users_id}','{$text}','{$comp_id}',NOW(),'{$name}','{$surname}')"; $result = mysqli_query($conn, $query); if ($result == TRUE) { $insertID = mysqli_insert_id($conn); echo $insertID + 'C'; } else { echo 'Базаға енгізілмеді. Кейін қайталаңыз.0'; } } else { echo 'Байланыс қателігі.0'; } function getScreened($conn, $var) { return mysqli_real_escape_string($conn, $_POST[$var]); }
$a[$c]['def'] = $def; $a[$c]['vn'] = $video['name']; $a[$c]['vsn'] = $video['surname']; $a[$c]['vt'] = $video['title']; $a[$c]['vd'] = $video['date']; $a[$c]['sc'] = $video['score']; $a[$c]['vc'] = $video['comp_id']; $a[$c]['l'] = $video['link']; $c++; } $start = $_POST['start']; $tType = $_POST['tType']; $sType = $_POST['sType']; $constAmount = 15; // 2. изменение количества выводимого видео $sVideo = getScreened($conn, 'sVideo'); $sVideo = substr($sVideo, 0, 30); $a = array(); $c = 0; if ($start == 0) { $result = mysqli_query($conn, "SELECT name,surname,title,score,link,composition.comp_id,{$tType}.date,definition FROM {$tType} \n LEFT JOIN composition ON ({$tType}.comp_id=composition.comp_id)\n LEFT JOIN composer ON (composition.authors_id = composer.authors_id)\n WHERE name LIKE '{$sVideo}%' OR surname LIKE '{$sVideo}%' OR title LIKE '{$sVideo}%' \n ORDER BY {$sType}"); $sum_of_video = mysqli_num_rows($result); echo $sum_of_video . ".;"; if ($sum_of_video < $constAmount) { $until = $sum_of_video; } else { $until = $constAmount; } for ($i = 0; $i < $until; $i++) { $videoOut = mysqli_fetch_assoc($result); intoArray($videoOut, $conn);