<?php
include_once '/../includes/user_function.php';
include_once '/../includes/hw_function.php';
$string = $_POST['password'];
$userid = substr($string, 0, 3);
$password = substr($string, 3);
$result = get_single_user($userid);
if (!empty($result)) {
if ($result->password == $password) {
$data = '<1>';
set_result($data);
insert_log($result->name);
} else {
$data = '<0>';
set_result($data);
}
} else {
$data = '<0>';
set_result($data);
}
}
if (isset($_POST['post_statut']) && $_POST['post_statut'] != '') {
$blog_status = $_POST['post_statut'];
} else {
$blog_status = 'INIT';
}
// $blog_id = $_POST['manage_blog_blog_id'];
$hidden_tags = preg_replace("/(%+)/", "%", $hidden_tags);
$tags = explode("%", $hidden_tags, 10);
if (isset($_SESSION['login'])) {
$login = $_SESSION['login'];
} else {
header('Location: VUE/BILLES/v_erreur.php?id=1001');
exit;
}
$user = get_single_user($sql_user, $login);
$login_id = $user['ID'];
if ($blog_id != 0) {
$blog = get_blogs_by_id($blog_id);
if ($blog['b_post_user_id'] != $login_id && $user['profile'] != 'ADMIN') {
header('Location: VUE/BILLES/v_erreur.php?id=1008');
exit;
}
$requete = 'UPDATE b_post set b_post_text = ' . $bdd->quote($post_text) . ', b_post_title = ' . $bdd->quote($post_title) . ', b_statut = \'' . $blog_status . '\' where b_post_id = ' . $blog_id;
} else {
$requete = 'INSERT INTO b_post ( b_post_text, b_post_title, b_post_user_id, b_statut ) values (' . $bdd->quote($post_text) . ',' . $bdd->quote($post_title) . ',' . $login_id . ',\'' . $blog_status . '\');';
}
//ecrireLog('SQL', 'INFO', 'SET_POST| REQUETE = '.$requete);
$req = $bdd->prepare($requete);
if (!$req->execute()) {
header('Location: VUE/BILLES/v_erreur.php?id=1002');
<body> <?php include_once 'inc/header.php'; ?> <div class="content"> <div class="container"> <div class="row row-margin"> <div class="col-md-4 clearfix user-info"> <h2>My Info</h2> <div class="well well-small"> <?php get_single_user($ranks_id, $programs_id, $user_id); ?> </div> </div> <div class="col-md-8"> <h2>My Rank Info</h2> <div class="well well-small user-info"> <div class="row"> <div class="col-md-4"> <h3><?php echo $rank_name; ?> Belt</h3> <h4><?php echo $program_name; ?>
<body> <?php include_once '../inc/header.php'; ?> <div class="container"> <div class="row row-margin"> <div class="col-md-4 clearfix user-info"> <h2>Student Info</h2> <div class="well well-small"> <?php $id = $_GET['user']; get_single_user($id); ?> </div> </div> <div class="col-md-4"> <h2>Announcements</h2> <?php echo get_announcements(); ?> </div> <div class="col-md-4"> <h2>Calendar</h2> <div class="calendar"></div> </div> </div>
<?php include_once '/view/header.php'; ?> <div class="row"> <?php include_once 'view/navbar.php'; ?> <div class="col-sm-9"> <div class="panel panel-primary"> <div class="panel-heading clearfix"> <h3 class="panel-title">User</h3> </div> <div class="panel-body"> <form role="form" id="user-form" method="post" action="/danzsecurity/includes/user_exec/"> <?php $user = get_single_user($_POST['edit']); ?> <div class="form-group"> <label>User ID</label> <div> <input type="text" class="form-control" name="userid" id="userid" placeholder="User ID" readonly value="<?php echo $user->userid; ?> "> </div> </div> <div class="form-group"> <label>Name</label> <div> <input type="text" class="form-control" name="name" id="name" placeholder="Name" value="<?php echo $user->name;
