threadr.lostcave.ddnss.de/threadr/boards/thread.php

45 lines
1.4 KiB
PHP

<?php
session_start();
%NO_CHEAP_SESSION_STEALING%
$navbar="boards";
function _GET($par, $parType = '') {
if($parType == '') {
$parType = gettype($par);
}
$return = filter_input(INPUT_GET, $par, FILTER_SANITIZE_NUMBER_INT);
}
$id = _GET('id')
?>
<!DOCTYPE html>
<html>
<head>
<title>ThreadR - Boards</title>
<link rel="stylesheet" type="text/css" href="%CONTENT_DIR%/style.css">
<link rel="icon" type="image/png" href="%CONTENT_DIR%/img/favicon-32x32.png" sizes="32x32" />
<meta name="viewport" content="width=device-width, initial-scale=1.0">
</head>
<body>
%NAVBAR%
<div class="container">
<div class="item-1">
<h1><center>
<?php
$pdo = new PDO('mysql:host=localhost;dbname=web', 'webstuff', 'Schei// auf Pa$$w0rter!');
$error = false;
$error_message = "";
if (!$error) {
$statement = $pdo->prepare("SELECT * FROM boards WHERE id=$id");
$statement->execute();
$statement->fetchAll() as $ROW
echo "$ROW[name]";
}
if (!$result) {
$error_message = "Error: SQL error.\n" . $statement->queryString . "\n" . $statement->errorInfo()[2];
}
?>
</center></h1>
</div>
</div>
</body>
</html>