nicht angemeldet
Script: Teil 1:
if($_REQUEST[preintrag] == "preintrag") {
if(!$_POST['eventname']) {
$m = base64_encode("Bitte fülle alle Felder aus!!");
header("Location: test.php?m=$m");
exit;
}
if(!$_POST['location']) {
$m = base64_encode("Bitte fülle alle Felder aus!!");
header("Location: test.php?m=$m");
exit;
}
if(!$_POST['partyplz']) {
$m = base64_encode("Bitte fülle alle Felder aus!!");
header("Location: test.php?m=$m");
exit;
}
if(!$_POST['partyort']) {
$m = base64_encode("Bitte fülle alle Felder aus!!");
header("Location: test.php?m=$m");
exit;
}
if(!$_POST['partytag']) {
$m = base64_encode("Bitte fülle alle Felder aus!!");
header("Location: test.php?m=$m");
exit;
}
if(!$_POST['partymon']) {
$m = base64_encode("Bitte fülle alle Felder aus!!");
header("Location: test.php?m=$m");
exit;
}
if(!$_POST['partyjahr']) {
$m = base64_encode("Bitte fülle alle Felder aus!!");
header("Location: test.php?m=$m");
exit;
}
if(!$_POST['einlass']) {
$m = base64_encode("Bitte fülle alle Felder aus!!");
header("Location: test.php?m=$m");
exit;
}
if(!$_POST['kosten']) {
$m = base64_encode("Bitte fülle alle Felder aus!!");
header("Location: test.php?m=$m");
exit;
}
if($_POST['partytag'] > 31) {
$m = base64_encode("Bitte überprüfe das Partydatum!!");
header("Location: test.php?m=$m");
exit;
}
if($_POST['partymon'] > 12) {
$m = base64_encode("Bitte überprüfe das Partydatum!!");
header("Location: test.php?m=$m");
exit;
}
if($_POST['partyjahr'] < date('Y')) {
$m = base64_encode("Bitte überprüfe das Partydatum!!");
header("Location: test.php?m=$m");
exit;
}
if($_POST['std'] > 23) {
$m = base64_encode("Leider hat der Tag nur 24 Std...");
header("Location: test.php?m=$m");
exit;
}
if($_POST['min'] > 59) {
$m = base64_encode("Leider hat der Tag nur 60 Minuten...");
header("Location: test.php?m=$m");
exit;
}
mysql_pconnect("xxxx","xxxx","xxxx");
mysql_select_db("usr_web429_1");
$eintrag= date('d.m.Y');
$user = mysql_fetch_array(mysql_query("SELECT * FROM user WHERE sessid='".$COOKIE['pdsessid']."'"));
mysql_query("INSERT INTO partyradar SET eventname='$_POST[eventname]',location='$_POST[location]',partyplz='$_POST[partyplz]',partyort='$_POST[partyort]',partytag='$_POST[partytag]',partymon='$_POST[partymon]',partyjahr='$_POST[partyjahr]',einlass='$_POST[einlass]',kosten='$_POST[kosten]',preview='$_POST[preview]',anfahrt='$_POST[anfahrt]',review='$_POST[review]',eintragdatum='$eintrag',user='$user[0]'");
$m = base64_encode("Dein Event wurde erfolgreich aufgenommen, bitte sende uns nach der Party auch einige Partyshots per email an mailto:fotos@partydoerf.de");
header("Location: ./fehler.php?m=$m");
}
if($_REQUEST[showpradar] == "showpradar") {
$data = mysql_fetch_array(mysql_query("SELECT * FROM user WHERE sessid='$_COOKIE[pdsessid]'"));
$partyradar = mysql_query("SELECT * FROM partyradar WHERE partymon='12'");
if(!mysql_num_rows($partyradar)) {
echo "<br><div align="center"><b>Für diesen Monat kein Eintrag vorhanden</b></div>";
} else {
while($datax = mysql_fetch_array($partyradar)) {
$datay = mysql_fetch_array(mysql_query("SELECT user FROM user WHERE id='$datax[16]'"));
echo "<table border="0" cellspacing="0" cellpadding="0">";
echo "<td width="100%" bgcolor="#00000"><object classid="clsid:d27cdb6e-ae6d-11cf-96b8-444553540000" codebase="http://fpdownload.macromedia.com/pub/shockwave/cabs/flash/swflash.cab#version=7,0,0,0" width="393" height="22" align="left">";
echo "<param name="allowScriptAccess" value="sameDomain" />";
echo "<param name="movie" value="../flashobjekte/s.swf?trxt=$datax[1] | $datax[2] | $datax[5].$datax[6].$datax[7]" />";
echo "<param name="quality" value="high" />";
echo "<param name="wmode" value="transparent" />";
echo "<embed src="../flashobjekte/s.swf?trxt=$datax[1] | $datax[2] | $datax[5].$datax[6].$datax[7]" quality="high" width="393" wmode="transparent" height="22" align="left" allowScriptAccess="sameDomain" type="application/x-shockwave-flash" pluginspage="http://www.macromedia.com/go/getflashplayer" />";
echo "</object>";
echo "</td>";
echo "</tr>";
echo "</table>";
echo "<table border="0" cellspacing="0" cellpadding="0" width="435">";
echo "<td valign="top">";
echo "<table border="0" cellspacing="0" cellpadding="0" width="1">";
echo "<td valign="top"><img border="2" width="156" height="128" src="../Bilder/sonstige/ril_teknite.jpg" alt="RiL Aftershow Sea Club Iserlohn 2005"></td>";
echo "</td>";
echo "</table>";
echo "<td width="1" valign="top">";
echo "<table valign="top" border="0" cellspacing="0" cellpadding="0" width="300">";
echo "<tr>";
echo "<td valign="top" align="left"><b>Eventname:</b></td>";
echo "<td colspan="3"><small>$datax[1]</small></td>";
echo "<tr>";
echo "<td valign="top" align="left"><b>Location:</b></td>";
echo "<td colspan="3"><small>$datax[2]</small></td>";
echo "<tr>";
echo "<td valign="top" align="left"><b>Ort:</b></td>";
echo "<td colspan="3"><small>$datax[3] $datax[4]</small>";
echo "<tr>";
echo "<td valign="top" align="left"><b>Datum:</b></td>";
echo " <td colspan="3"><small>$datax[5].$datax[6].$datax[7] $datax[8]:$datax[9] Uhr</small></td>";
echo "<tr>";
echo "<td valign="top" align="left"><b>Einlasskriterien:</b></td>";
echo "<td colspan="3"><small>$datax[10]</small></td>";
echo "<tr>";
echo "<td valign="top" align="left"><b>Eintritt:</b></td>";
echo "<td colspan="3"><small>$datax[11] €</small></td>";
echo "<tr>";
echo "<td colspan="2"><small><a href="../partypics2/rilaftershow.php">Review >>></a></small>   <small><a href="../partypics2/rilaftershowview.php">Preview >>></a></small></td>";
echo "<td><small><a href="../partys/anfahrt.php?partyid=5">Anfahrt >>></a></small></td>";
echo "<td><small><a href="../partypics2/rilaftershow.php">Fotos >>></a></small></td>";
echo "</tr>";
echo "</table>";
echo "</tr>";
echo "</table>";
echo "<small><b><div align="left">eingetragen am $datax[15] von $datax[16]</div></b></small>";
echo "<br>";
}
}
}
include "../includes/footer.inc" ?>
Vielleicht versteht mich jetzt jemand.
;)) `Jan
MudGuard