Tsar_Lyagushka/HB
1
0
Fork 0
forked from halo-battle/game
Code Issues Pull requests Projects Releases Wiki Activity

Version 1.7i

Browse source
This commit is contained in:
nemunaire 2008-11-16 12:00:00 +01:00
commit ba5e741c99
136 changed files with 2561 additions and 2105 deletions
Download patch file Download diff file Expand all files Collapse all files

11
onyx/hb_game/jeu/envoyer.php
View file

@ -4,15 +4,18 @@ $page = 'envoyer';
$titre = 'Envoyer un message';
if (!empty($_POST['objet']) && !empty($_POST['nom']) && !empty($_POST['message'])) {
$util = $_POST['nom'];
$util = htmlentities($_POST['nom']);
$bdd->connexion();
$bdd->escape($util);
if ($bdd->unique_query("SELECT pseudo FROM $table_user WHERE pseudo = '$util';")) {
$message = htmlspecialchars($_POST['message']);
$objet = htmlspecialchars($_POST['objet']);
$pseudo = $queryUser["pseudo"];
$time = time();
$bdd->escape($message);
$bdd->escape($objet);
$bdd->query("INSERT INTO $table_mail VALUES(NULL, '1', '$util', '".$queryUser["pseudo"]."', '$objet', '$message', '".time()."');");
$bdd->escape($pseudo);
$bdd->query("INSERT INTO $table_mail VALUES(NULL, '1', '$util', '$pseudo', '$objet', '$message', '$time');");
$bdd->deconnexion();
$template->assign('message','Votre message a été envoyé avec succès.');
@ -31,6 +34,6 @@ if (!empty($_POST['objet']) && !empty($_POST['nom']) && !empty($_POST['message']
}
}
if (isset($_GET['d'])) $template->assign('destinataire', $_GET['d']);
if (isset($_GET['o'])) $template->assign('objet', $_GET['o']);
if (isset($_GET['d'])) $template->assign('destinataire', htmlentities($_GET['d']));
if (isset($_GET['o'])) $template->assign('objet', htmlentities($_GET['o']));
?>