/**
* 对mysql敏感字符串转义
*
* @access public
* @param string $str
*
* @return string
*/
function dump_escape_string($str)
{
return mysqlDB::escape_string($str);
}
break;
}
$keyword = isset($_GET["keyword"]) ? $_GET["keyword"] : "";
$keyword = mysqli_real_escape_string($DBHandler->getLink(), $keyword);
$result = mysqli_query($DBHandler->getLink(), "SELECT `data` FROM " . TABLE . " WHERE keyword = '" . $keyword . "'");
$row = mysqli_fetch_assoc($result);
if (!$row) {
header("HTTP/1.0 404 Not Found");
} else {
header("Content-type: text/xml");
echo $row["data"];
}
break;
case "import":
setup_import();
$DBHandler = new mysqlDB();
if (!$DBHandler->connect()) {
header("HTTP/1.0 503 Service Unavailable");
break;
}
header("Content-type: text/xml");
echo $DBHandler->import();
break;
default:
header("HTTP/1.0 501 Not Implemented");
}
/*
list: 501/200
load: 501/200/404
save: 501/201
import: 501/200
