NÁSTENKA

Sem môžeš napísať nejaký odkaz, správu, pripomienku, ...



= '".$rok."/01/01 00:00:00' ORDER BY datum DESC;"; $result_set = pg_Exec ($conn, $sql); if ((!$result_set)) $rows=0; else $rows = pg_NumRows($result_set); $pocet=(int)(($rows-1)/20)+1; echo "
"; echo "Stránka: ".$stranka."/".$pocet." (Počet odkazov: ".$rows.")"; echo "Späť
"; if ($stranka != 1) echo "[<<]  "; for($j=0; $j < $rows / 20; $j++) { if ($j+1 != $stranka) echo zarovnaj($j+1)."".(string)($j+1)."  "; else echo zarovnaj($j+1).(string)($j+1)."  "; if ((($j+1) % 30 == 0)&&($j != 0)) echo "
"; } if ($stranka != $pocet) echo "[>>]  "; echo "
"; $riadok=($stranka-1)*20; if ($rows >= $riadok+20) $maxr=$riadok+19; else $maxr=$rows-1; for ($j=$riadok; $j <= $maxr; $j++) { echo ""; echo ""; echo ""; else echo "".$me.""; echo ""; echo "
 ".(string)($j+1).". Od: "; $me=pg_result($result_set,$j, "meno"); $mm=pg_result($result_set,$j, "mail"); if ($mm=='') echo $me." Pridane: "; $da=pg_result($result_set,$j, "datum"); $da2=psqldatum($da); echo $da2."

"; echo pg_result($result_set,$j, "obsah"); echo "

"; } echo "
"; if ($stranka != 1) echo "[<<]  "; for($j=0; $j < $rows / 20; $j++) { if ($j+1 != $stranka) echo zarovnaj($j+1)."".(string)($j+1)."  "; else echo zarovnaj($j+1).(string)($j+1)."  "; if ((($j+1) % 30 == 0)&&($j != 0)) echo "
"; } if ($stranka != $pocet) echo "[>>]  "; echo "

"; } $conn = pg_connect("host=localhost user=sezam dbname=sezam password=se45za7"); if (!$conn) { echo "An error occured.\n"; exit; } $dmeno = str_replace ("\n"," ", $_POST["dmeno"]); $dmeno = strip_tags($dmeno); $dmeno = str_replace ("<", " ", $dmeno); $dmeno = str_replace (">", " ", $dmeno); $dmeno = str_replace ("%", " ", $dmeno); $dmeno = str_replace ("#", " ", $dmeno); $dmeno = str_replace ("\x22", " ", $dmeno); $dmeno = str_replace ("\x27", " ", $dmeno); $dmeno = str_replace ("\x2f", " ", $dmeno); $dmeno = str_replace ("\x3f", " ", $dmeno); $dmeno = str_replace ("\x40", " ", $dmeno); $dmeno = str_replace ("\x5c", " ", $dmeno); $dmeno = str_replace ("\x60", " ", $dmeno); for ($z=0; $z <= 0x1f; $z++) str_replace($z," ",$dmeno); for ($z=0x7b; $z <= 0xff; $z++) str_replace($z," ",$dmeno); $dmeno = str_replace (" ", "", $dmeno); $dmeno = stripslashes ($dmeno); $dmail = strip_tags($_POST["dmail"]); //if (!isset($cislo)) $cislo=1; //echo "*".$_POST["posli"]."*".$dmeno."*"; //echo "%".$_SESSION['cislo']."% *".$_POST["dkod"]."*"; if ($_POST["posli"]) { $rok = date("Y"); $dac=date("Y/m/d H:i:s"); $adresa=getenv(REMOTE_ADDR); $dobsah=strip_tags($_POST["dobsah"]); $dobsah=nechaj($dobsah,5); $dobsah=str_replace("\n","
",$dobsah); $sql="SELECT * FROM nastenka WHERE visible=1 and datum >= '".$rok."/01/01 00:00:00' ORDER BY datum DESC;"; $result_set = pg_Exec ($conn, $sql); if (!$result_set) $rows=0; else $rows = pg_NumRows($result_set); if ($rows >= 3) $maxr=3; else $maxr=$rows; $zapisat=true; if ($maxr != 0) { for ($n=0; $n<$maxr; $n++) { $lobsah=pg_result($result_set,$n,"obsah"); $lmeno=pg_result($result_set,$n,"meno"); if (($lobsah==$dobsah)&&($lmeno==$dmeno)) $zapisat=false; } } if (($zapisat) && ($dmeno != '') && ($dobsah != '') && ($_SESSION['cislo'] == $_POST["dkod"])) { $sql="INSERT INTO nastenka (meno,mail,datum,ip,obsah,visible)"; $sql=$sql." VALUES ('".$dmeno."','".$dmail."','".$dac."','".$adresa."','".$dobsah."',1);"; // echo $sql." ".$adresa." ".$dobsah; if (($adresa != "212.89.234.182") && ($adresa != "158.193.146.192") && ($adresa != "194.160.74.100") ) { //echo "Adresa=".$adresa; $result_set = pg_Exec ($conn, $sql); if (!$result_set) echo "

ERROR M1 - zly INSERT !

"; } } } $_SESSION['cislo'] = rand(100,999); ?>

Meno: e-mail (nepovinný): Kód (povinný):

".dnesje()."
"; ?>
Späť