<?php require_once '../config/prop.php'; if (isset($_SESSION['id'])) { if (isset($_SESSION['admin'])) { if (isset($_GET['nick'])) { $nick = mysql_real_escape_string($_GET['nick']); if ($_POST['bloquear']) { $ve = mysql_query("UPDATE `Login` SET `activo` = activo + 1 WHERE `idLogin`='" . getIDLogin($nick) . "'") or die(mysql_error()); echo "<script language='javascript'>window.location='../" . $nick . "'</script>"; } elseif ($_POST['nobloquear']) { $ve = mysql_query("UPDATE `Login` SET `activo` = activo - 1 WHERE `idLogin`='" . getIDLogin($nick) . "'") or die(mysql_error()); echo "<script language='javascript'>window.location='../" . $nick . "'</script>"; } } } else { echo 'Error 504. Página no existente'; } } else { echo 'Error 504. Página no existente'; }
<?php if (isset($_GET['nick'])) { $nick = mysql_real_escape_string($_GET['nick']); $gt = mysql_query("SELECT * FROM `Empresa` WHERE `idEmpresa`='" . getID($nick) . "'") or die(mysql_error()); $t = mysql_fetch_array($gt); $gn = mysql_query("SELECT * FROM `Login` WHERE `idLogin`='" . getIDLogin($nick) . "'") or die(mysql_error()); $n = mysql_fetch_array($gn); $gremio = mysql_query("SELECT * FROM `Gremio` WHERE `idGremio`='" . $t['idGremio'] . "'") or die(mysql_error()); $g = mysql_fetch_array($gremio); $horario = mysql_query("SELECT * FROM `HorarioAtencion` WHERE `idEmpresa`='" . $t['idEmpresa'] . "'") or die(mysql_error()); $at = mysql_fetch_array($horario); $ubicacion = mysql_query("SELECT * FROM `Ubicacion` WHERE `idEmpresa`='" . $t['idEmpresa'] . "'") or die(mysql_error()); $ub = mysql_fetch_array($ubicacion); $pais = mysql_query("SELECT * FROM `Ciudad` WHERE `idCiudad`='" . $ub['idCiudad'] . "'") or die(mysql_error()); $ct = mysql_fetch_array($pais); $diseno = mysql_query("SELECT * FROM `DisenoFD` WHERE `idEmpresa`='" . $t['idEmpresa'] . "'") or die(mysql_error()); $d = mysql_fetch_array($diseno); $gc = mysql_query("SELECT * FROM `fuerzaEmpresa` WHERE `idEmpresa`='" . getID($nick) . "'") or die(mysql_error()); $gi = mysql_query("SELECT * FROM `AnuncioEmpresa` WHERE `idEmpresa`='" . getID($nick) . "' ORDER BY `idAnuncio` ASC") or die(mysql_error()); $ci = mysql_num_rows($gi); $cs = mysql_num_rows($gc); echo ' <title>' . $t['nombre'] . ' - ' . $ct['nombreCiudad'] . '</title> <meta name="description" content="' . $d['slogan'] . ', Usando la plataforma empresarial Ioseet."/> <body background="misc/fondoperfil/' . $d['fondo'] . '" style="background-attachment: fixed;"> <body bgcolor="#fafafa"></body> </head> </body> <div id="tboxizqmin">'; echo "\n\t\t\t\t\t\t\t\t<div id='content-header'><div id='header1'><div id='h1'>" . verificadoCheck(getID($nick)) . "" . banCheck(getID($nick)) . " " . $t['nombre'] . "</div></div></div>\n\t\t\t\t\t\t\t\t<div style=\"background-image: url('misc/portadaperfil/" . $d['portada'] . "');\" id='portada'>\n\t\t\t\t\t\t\t\t<table>";
<?php require_once '../config/prop.php'; if (isset($_SESSION['id'])) { if (isset($_SESSION['admin'])) { if (isset($_GET['nick'])) { $nick = mysql_real_escape_string($_GET['nick']); if ($_POST['mute']) { $ve = mysql_query("UPDATE `Login` SET `mute` = mute + 1 WHERE `idLogin`='" . getIDLogin($nick) . "'") or die(mysql_error()); echo "<script language='javascript'>window.location='../" . $nick . "'</script>"; } elseif ($_POST['nomute']) { $ve = mysql_query("UPDATE `Login` SET `mute` = mute - 1 WHERE `idLogin`='" . getIDLogin($nick) . "'") or die(mysql_error()); echo "<script language='javascript'>window.location='../" . $nick . "'</script>"; } } } else { echo 'Error 504. Página no existente'; } } else { echo 'Error 504. Página no existente'; }