Файловый менеджер

Файловый менеджер - Редактировать - /home/umudio/public_html/repo/forall2.php.tar

Назад
home/umudio/public_html/OLD/forall2.php��0000644��00000004507�14773625671�0014020 0��ustar�00��<?php function getst($theValue) { //unset($temp); $theValue = trim($theValue); $theValue = stripslashes($theValue); //if($theValue!=""){ //if(preg_match('/^[a-zA-Z0-9^$.*+\[\]{,}]/u',$theValue)) $temp=$theValue; //if(!isset($temp)){echo "Sorry! Wrong Data!"; exit();} //} //$theValue=$temp; //$new_string=urlencode ($theValue); //$new_string=ereg_replace("%0D", "<br>", $new_string); //$new_string=ereg_replace("%22", """, $new_string); //$new_string=ereg_replace("%27", "&#39", $new_string); //$new_string=ereg_replace("%5C", "", $new_string); //$theValue=urldecode ($new_string); return $theValue; } function getva($theValue) { unset($temp); $theValue = trim($theValue); if($theValue!=""){ if(preg_match('/^[0-9]/u',$theValue)){ settype($theValue, 'int'); $temp=(int)$theValue; } if(!isset($temp)){echo "Sorry! Wrong Data!"; exit();} } $theValue=$temp; $new_string=urlencode ($theValue); $new_string=ereg_replace("%0D", "<br>", $new_string); $new_string=ereg_replace("%22", """, $new_string); $new_string=ereg_replace("%27", "&#39", $new_string); $theValue=urldecode ($new_string); return $theValue; } if(isset($_POST['addreflection'])){ $titler=getst($_POST['titler']); $contenter=getst($_POST['contenter']); $dater=getst($_POST['dater']); $who=getst($_POST['who']); $sql=sprintf("insert into reflections (titler, contenter, dater, who) VALUES ('%s', '%s', '%s', '%s')", mysql_real_escape_string($titler), mysql_real_escape_string($contenter), mysql_real_escape_string($dater), mysql_real_escape_string($who)); if (mysql_query($sql)){ $bb="<p>Reflections Successfully added</p>"; } else { $bb="<p>Unable to add your reflection: " . mysql_error() . "</p>"; } } if(isset($_POST['editreflection'])){ $titler=getst($_POST['titler']); $contenter=getst($_POST['contenter']); $dater=getst($_POST['dater']); $id=getva($_POST['sn']); $sql=sprintf("update reflections set titler='%s', contenter='%s', dater='%s' where sn = %s", mysql_real_escape_string($titler), mysql_real_escape_string($contenter), mysql_real_escape_string($dater), mysql_real_escape_string($id)); if (mysql_query($sql)){ $bb="<p>Reflection Successfully Edited</p>"; } else { $bb="<p>Unable to edit your reflection: " . mysql_error() . "</p>"; } } ?> ��

| ver. 1.4 | Github | . | PHP 5.6.40 | Генерация страницы: 0 | proxy | phpinfo | Настройка