45 lines
1.4 KiB
PHP
45 lines
1.4 KiB
PHP
<?php
|
|
session_start();
|
|
%NO_CHEAP_SESSION_STEALING%
|
|
$navbar="boards";
|
|
function _GET($par, $parType = '') {
|
|
if($parType == '') {
|
|
$parType = gettype($par);
|
|
}
|
|
$return = filter_input(INPUT_GET, $par, FILTER_SANITIZE_NUMBER_INT);
|
|
}
|
|
$id = _GET('id')
|
|
?>
|
|
<!DOCTYPE html>
|
|
<html>
|
|
<head>
|
|
<title>ThreadR - Boards</title>
|
|
<link rel="stylesheet" type="text/css" href="%CONTENT_DIR%/style.css">
|
|
<link rel="icon" type="image/png" href="%CONTENT_DIR%/img/favicon-32x32.png" sizes="32x32" />
|
|
<meta name="viewport" content="width=device-width, initial-scale=1.0">
|
|
</head>
|
|
<body>
|
|
%NAVBAR%
|
|
<div class="container">
|
|
<div class="item-1">
|
|
<h1><center>
|
|
<?php
|
|
$pdo = new PDO('mysql:host=localhost;dbname=web', 'webstuff', 'Schei// auf Pa$$w0rter!');
|
|
$error = false;
|
|
$error_message = "";
|
|
if (!$error) {
|
|
$statement = $pdo->prepare("SELECT * FROM boards WHERE id=$id");
|
|
$statement->execute();
|
|
$statement->fetchAll() as $ROW
|
|
echo "$ROW[name]";
|
|
}
|
|
if (!$result) {
|
|
$error_message = "Error: SQL error.\n" . $statement->queryString . "\n" . $statement->errorInfo()[2];
|
|
}
|
|
?>
|
|
</center></h1>
|
|
</div>
|
|
</div>
|
|
</body>
|
|
</html>
|