mysql_close($link); } else { $_SESSION['message'] = "The file was not uploaded.<br />"; } } else { $_SESSION['message'] = "Only .jpg or .JPG<br />"; } header("Location: admin.php?page=tools"); exit; break; case "addtexttab": $content_id = flashclean($_POST, "content_id"); $linklabel = flashclean($_POST, "linklabel"); $title = flashclean($_POST, "title"); $contentbody = flashclean($_POST, "contentbody"); $visible = flashclean($_POST, "visible"); $visible = (int) $visible; if ($content_id == "0") { $sql = "INSERT INTO content (link_label, title, content_body, visible)VALUES('{$linklabel}','{$title}','{$contentbody}','{$visible}')"; $act = "added"; } else { $sql = "UPDATE content SET link_label='{$linklabel}', title='{$title}', content_body='{$contentbody}', visible='{$visible}' WHERE content_id = '{$content_id}'"; $act = "updated"; } if (!mysql_query($sql)) { $_SESSION['message'] = "Query error ONE<br />"; } else { $_SESSION['message'] = "Tab {$linklabel} {$act}."; } mysql_close($link); header("Location: admin.php?page=tools");
<?php session_start(); require_once "functions.php"; $titletext = flashclean($_POST, "title"); $artisttext = flashclean($_POST, "artist"); $uploaddir = "/absolute/path/to/laborec/tracks/"; $filename = trim($_FILES['upfile']['name']); $filename = ereg_replace(" ", "", $filename); if (ereg(".mp3", $filename)) { $uploadfile = $uploaddir . $filename; if (move_uploaded_file($_FILES['upfile']['tmp_name'], $uploadfile)) { $link = mysql_connect("localhost", "user", "pass"); if (!$link) { $_SESSION['message'] = "Connection error!"; } $db = mysql_select_db("laborec"); if (!$db) { $_SESSION['message'] = "DB selection error!"; } $sql = "INSERT INTO tracks (title, artist, file)VALUES('{$titletext}','{$artisttext}','" . $filename . "')"; if (!mysql_query($sql)) { $_SESSION['message'] = "Query error!"; mysql_close($link); } else { mysql_close($link); $_SESSION['message'] = "File upload was successfull!"; } } else { $_SESSION['message'] = "File upload failed!"; }
<?php session_start(); require_once "functions.php"; $titletext = flashclean($_POST, "title"); $authortext = flashclean($_POST, "author"); $bodytext = flashclean($_POST, "body"); $linktext = flashclean($_POST, "link"); $date = date("d-m-y"); $link = mysql_connect("localhost", "user", "pass"); if (!$link) { $_SESSION['message'] = "Connection error!"; } $db = mysql_select_db("laborec"); if (!$db) { $_SESSION['message'] = "DB selection error!"; } $sql = "INSERT INTO news (title, author, body, link, date)VALUES('{$titletext}','{$authortext}','{$bodytext}','{$linktext}','" . $date . "')"; if (!mysql_query($sql)) { $_SESSION['message'] = "Query error!"; mysql_close($link); header("Location: index.php"); exit; } else { mysql_close($link); $_SESSION['message'] = "Your message was succesfully added to the newspage!"; header("Location: index.php"); exit; }
<?php session_start(); require_once "functions.php"; $titletext = flashclean($_POST, "title"); $uploaddir = "/absolute/path/to/laborec/samples/"; $filename = trim($_FILES['upfile']['name']); $filename = ereg_replace(" ", "", $filename); if (ereg(".zip", $filename)) { $uploadfile = $uploaddir . $filename; if (move_uploaded_file($_FILES['upfile']['tmp_name'], $uploadfile)) { $link = mysql_connect("localhost", "user", "pass"); if (!$link) { $_SESSION['message'] = "Connection error!"; } $db = mysql_select_db("laborec"); if (!$db) { $_SESSION['message'] = "DB selection error!"; } $sql = "INSERT INTO samples (title, file)VALUES('{$titletext}','" . $filename . "')"; if (!mysql_query($sql)) { $_SESSION['message'] = "Query error!"; mysql_close($link); } else { mysql_close($link); $_SESSION['message'] = "File upload was successfull!"; } } else { $_SESSION['message'] = "File upload failed!"; } } else {
<?php session_start(); require_once "functions.php"; $linktext = flashclean($_POST, "link"); $commenttext = flashclean($_POST, "comment"); $link = mysql_connect("localhost", "user", "pass"); if (!$link) { $_SESSION['message'] = "Connection error!"; } $db = mysql_select_db("laborec"); if (!$db) { $_SESSION['message'] = "DB selection error!"; } $sql = "INSERT INTO links (link, comment)VALUES('{$linktext}','{$commenttext}')"; if (!mysql_query($sql)) { $_SESSION['message'] = "Query error!"; mysql_close($link); header("Location: index.php"); exit; } else { mysql_close($link); $_SESSION['message'] = "Your link was succesfully added to the linkspage!"; header("Location: index.php"); exit; }