you have been banned from posting on rautafarmi!";
$backbutton = "
[ back ]";
if(isset($_POST['message'])) {
$username = mysqli_real_escape_string($mysqli, $_POST['username']);
$message = mysqli_real_escape_string($mysqli, $_POST['message']);
$imgurl = mysqli_real_escape_string($mysqli, $_POST['imgurl']);
if(empty($message)) {
die(" ".$backbutton);
}
if($_SERVER["HTTP_X_FORWARDED_FOR"] == "37.139.53.81") {
die($banmessage."
Reason: spam
.$backbutton"); } if($username == "Crytoinimi") { die($banmessage."Reason: spam
.$backbutton"); } if($username == "Tookdono") { echo "success
"; echo "done
"; header("Location: index.php"); exit(); } $mysqli->query("INSERT INTO posts (username, message, ip, imageurl) VALUES('" . $username . "', '" . $message . "', '" . $_SERVER["HTTP_X_FORWARDED_FOR"] . "', '" . $imgurl . "')"); //$stmt->bind_param("sis", $username, $message); //$stmt->execute(); echo "success
"; header("Location: index.php"); } else { echo "fail! no message!
"; } ?>