PHP secureParam Examples

Programming Language: PHP

Method/Function: secureParam

Examples at hotexamples.com: 5

PHP secureParam - 5 examples found. These are the top rated real world PHP examples of secureParam extracted from open source projects. You can rate examples to help us improve the quality of examples.

Example #1

Show file

File: upvote.php Project: NCSUWebClass/fall15-futurepres1

<?php

// Favorite (upvote) a page
include 'util/dbopen.php';
$page = secureParam($_POST['page'], $conn);
$sql = "INSERT INTO {$upvotesTable} (pageid) VALUES ((SELECT pageid FROM {$pagesTable} WHERE path = '{$page}' LIMIT 1));";
mysqli_query($conn, $sql);
include 'util/dbclose.php';

Example #2

Show file

File: logPageChange.php Project: NCSUWebClass/fall15-futurepres1

<?php

// Log a new page change
include 'util/dbopen.php';
$page = secureParam($_POST['page'], $conn);
$ip = secureParam($_SERVER['REMOTE_ADDR'], $conn);
$sql = "INSERT INTO {$pageLogTable} (ip, pageid) VALUES ('{$ip}', (SELECT pageid FROM {$pagesTable} WHERE path = '{$page}' LIMIT 1));";
mysqli_query($conn, $sql);
include 'util/dbclose.php';

Example #3

Show file

File: getPageCount.php Project: NCSUWebClass/fall15-futurepres1

<?php

// Gets the current number of people on a page
include './util/dbopen.php';
$page = secureParam($_POST['page'], $conn);
$children = secureParam($_POST['children'], $conn);
// True if we want the count for children of this page, false otherwise
$sql = "";
if ($children) {
    $sql = "SELECT COUNT(*) AS viewers " . "FROM (SELECT pageid FROM {$pageLogTable} WHERE logid IN (SELECT MAX(logid) FROM {$pageLogTable} GROUP BY ip) GROUP BY ip) AS pt " . "WHERE pt.pageid IN (SELECT t.child AS pid FROM (SELECT * FROM {$relationsTable} ORDER BY parent DESC) AS t JOIN " . "(SELECT @pv := (SELECT pageid FROM {$pagesTable} WHERE path = '{$page}')) AS tmp WHERE FIND_IN_SET(t.parent, @pv) > 0 ORDER BY pid ASC) OR " . "pt.pageid IN (SELECT pageid FROM {$pagesTable} WHERE path = '{$page}');";
} else {
    $sql = "SELECT COUNT(*) AS viewers " . "FROM (SELECT pageid FROM {$pageLogTable} WHERE logid IN (SELECT MAX(logid) FROM {$pageLogTable} GROUP BY ip) GROUP BY ip) AS pt " . "WHERE pt.pageid IN (SELECT pageid FROM {$pagesTable} WHERE path = '{$page}');";
}
if ($result = mysqli_query($conn, $sql)) {
    echo intval(mysqli_fetch_assoc($result)["viewers"]);
} else {
    echo -1;
}
include './util/dbclose.php';

Example #4

Show file

File: answerQuestion.php Project: NCSUWebClass/fall15-futurepres1

<?php

// Answer a question
include 'util/dbopen.php';
$id = secureParam($_POST['id'], $conn);
$sql = "UPDATE {$questionsTable} SET answer = 1 WHERE questionsid = {$id};";
mysqli_query($conn, $sql);
include 'util/dbclose.php';

Example #5

Show file

File: question.php Project: NCSUWebClass/fall15-futurepres1

<?php

// Submit a question
include 'util/dbopen.php';
$page = secureParam($_POST['page'], $conn);
$question = secureParam($_POST['question'], $conn);
$sql = "INSERT INTO {$questionsTable} (pageid, question) VALUES ((SELECT pageid FROM {$pagesTable} WHERE path = '{$page}' LIMIT 1), '{$question}');";
mysqli_query($conn, $sql);
include 'util/dbclose.php';