case 'edit': if (!isset($_POST['ID'])) { Error('You must give me an ID to work.'); } $query = 'UPDATE Articles SET'; if (!empty($_POST['title'])) { $query .= ' Title=\'' . $_POST['title'] . '\','; } if (!empty($_POST['body'])) { $query .= ' Body=\'' . $_POST['body'] . '\','; } if (!empty($_POST['category'])) { $query .= ' Category=\'' . $_POST['category'] . '\','; } $query[strlen($query) - 1] = ' '; $manage->alter_database($query . 'WHERE id=' . $_POST['ID'] . ''); break; case 'post': $manage->alter_database('INSERT INTO Articles ( Title, Body, Category ) VALUES (\'' . @$_POST['title'] . '\', \'' . @$_POST['body'] . '\', \'' . @$_POST['category'] . '\');'); break; case 'delete': $manage->alter_database('DELETE FROM Articles WHERE id=' . @$_POST['ID'] . ''); break; case 'change_permission': switch (@$_POST['permission']) { case 'Admin': $permission = ADMIN; break; case 'User': $permission = USER; break;