<?php include "conn.php"; include "security.php"; include "getIPAddress.php"; $email = Antixss($_REQUEST["email"]); $content = Antixss($_REQUEST['content']); $mid = check_num($_REQUEST['mid']); $IP = get_client_ip(); $sql = "INSERT INTO feedback (magazine,email,content,IPAddress,isProcessed) VALUES(" . $mid . ",'" . $email . "','" . $content . "','" . $IP . "',0)"; mysql_query($sql, $conn); mysql_close($conn); //应该加个验证来防止邮件轰炸,你们说对不对呀!
<?php include "security.php"; $AppKey = Antixss($_REQUEST['appkey']); include "conn.php"; $sql = "SELECT * FROM `appkey` WHERE appkey='" . $AppKey . "'";
<?php include "security.php"; $date = date("Y-m-d h:i:s"); $email = Antixss($_REQUEST["email"]); $sid = Antixss($_REQUEST['sid']); include 'conn.php'; $sql2 = "INSERT INTO subscription (email,seriesID,subscriptTime)VALUES('" . $email . "','" . $sid . "','" . date("Y-m-d h:i:s") . "');"; mysql_query($sql2, $conn); mysql_close($conn);
<script type="text/javascript" src="static/js/jquery.mobile.min.js"></script> <script type="text/javascript" src="static/js/common.js"></script> </head> <body> <?php if (isset($_REQUEST['mid'])) { echo "<script>var MagazineID=" . $_REQUEST['mid'] . ";var msize=" . $_REQUEST['msize'] . ";</script>"; } else { echo "<script>var MagazineID=0;var msize=0;</script>"; } ?> <div id="MainView" class="Activity"> <div class="TitleBar"> RT校园传媒<?php echo urldecode(Antixss($_REQUEST['mname'])); ?> </div> <div class="MenuButton" onClick="FlipMenu();"></div> <?php include "main.php"; ?> </div> <div id="blackbackground"></div> <div id="blackbackground2"></div> <img id="pageBox"> <img id="pageBoxLast"> <img id="pageBoxNext"> <div class="spinner"> <div class="rect1"></div>