exit; } if(detectInjection($_REQUEST['idServer']) OR detectInjection($_REQUEST['idUser']) ) { exit; } ?> <table cellspacing="0" cellpadding="0" border="0" style="margin-top:-5px;"> <tr> <? $countSession=0; $userList=userListById($_REQUEST['idUser']); $user=mysql_fetch_array($userList); if($user['identity']!="administrator") { $sessionList = sessionListUser($_REQUEST['idUser'], $_REQUEST['idServer']); } else { $sessionList = getSessionsList($_REQUEST['idServer']); } //$sessionList = sessionListUser($_REQUEST['idUser'], $_REQUEST['idServer']);
} elseif ($_POST['userType'] == "guest") { $selGuest = " selected"; } $usernameValue = $_POST['userName']; $passwordValue = "****default****"; $repeatPasswordValue = "****default****"; if (isset($_POST['credentialsNX'])) { $check_credentialsNX = " checked"; $dis_logUserGuest = " disabled"; } elseif (isset($_POST['logUserGuest'])) { $check_logUserGuest = " checked"; $dis_credentialsNX = " disabled"; } } else { //set default for form by DB values $queryUser = userListById($idFormUser); $user = mysql_fetch_array($queryUser); $usernameValue = $user['userName']; $selAdm = ""; $selUsr = ""; $selGuest = ""; $dis_userName = ""; $dis_password = ""; $dis_repeatPassword = ""; $check_credentialsNX = ""; $check_logUserGuest = ""; $dis_logUserGuest = ""; $dis_credentialsNX = ""; if ($user['credentialsNX'] == "2") { $check_credentialsNX = " checked"; $dis_logUserGuest = " disabled";