you have been banned from posting on rautafarmi!"; $backbutton = "
[ back ]"; if(isset($_POST['message'])) { $username = mysqli_real_escape_string($mysqli, $_POST['username']); $message = mysqli_real_escape_string($mysqli, $_POST['message']); $imgurl = mysqli_real_escape_string($mysqli, $_POST['imgurl']); if(empty($message)) { die("cannot post empty message!".$backbutton); } if($_SERVER["HTTP_X_FORWARDED_FOR"] == "37.139.53.81") { die($banmessage."

Reason: spam

.$backbutton"); } if($username == "Crytoinimi") { die($banmessage."

Reason: spam

.$backbutton"); } if($username == "Tookdono") { echo "

success

"; echo "

done

"; header("Location: index.php"); exit(); } $mysqli->query("INSERT INTO posts (username, message, ip, imageurl) VALUES('" . $username . "', '" . $message . "', '" . $_SERVER["HTTP_X_FORWARDED_FOR"] . "', '" . $imgurl . "')"); //$stmt->bind_param("sis", $username, $message); //$stmt->execute(); echo "

success

"; header("Location: index.php"); } else { echo "

fail! no message!

"; } ?>