threadr.lostcave.ddnss.de/threadr/board/submit.php

<?php
%REQUIRE_LOGIN%
  
$pdo = new PDO('mysql:host=localhost;dbname=web', 'webstuff', 'Schei// auf Pa$$w0rter!')

$error = false;
$error_message = "";
if (!$error) {
  $statement = $pdo->prepare('INSERT INTO posts (board_id, user_id, title, content,) VALUES (:bid,:uid,:title,:content)');
  $result = $statement->execute(array('bid'=>$id, 'uid'=>$_SESSION[user_id], 'title'=>$_POST['title'], 'content'=>$_POST['content']));
  if (!$result) {
    $error_message = "<p>Error: SQL error.</p><pre>" . $statement->queryString . "</pre><pre>" . $statement->errorInfo()[2] . "</pre>";
  }
}
?>
created submit.php 2020-03-08 14:47:32 +01:00			`<?php`
submit posts 2020-03-08 16:57:47 +01:00			`%REQUIRE_LOGIN%`

			`$pdo = new PDO('mysql:host=localhost;dbname=web', 'webstuff', 'Schei// auf Pa$$w0rter!')`

			`$error = false;`
			`$error_message = "";`
			`if (!$error) {`
			`$statement = $pdo->prepare('INSERT INTO posts (board_id, user_id, title, content,) VALUES (:bid,:uid,:title,:content)');`
„threadr/board/submit.php“ ändern 2020-03-08 17:01:37 +01:00			`$result = $statement->execute(array('bid'=>$id, 'uid'=>$_SESSION[user_id], 'title'=>$_POST['title'], 'content'=>$_POST['content']));`
submit posts 2020-03-08 16:57:47 +01:00			`if (!$result) {`
			`$error_message = "<p>Error: SQL error.</p><pre>" . $statement->queryString . "</pre><pre>" . $statement->errorInfo()[2] . "</pre>";`
			`}`
			`}`
created submit.php 2020-03-08 14:47:32 +01:00			`?>`