23 lines
501 B
PHP
23 lines
501 B
PHP
<?php
|
|
|
|
require 'creds.php';
|
|
|
|
if(isset($_POST['message'])) {
|
|
$username = mysqli_real_escape_string($mysqli, $_POST['username']);
|
|
$message = mysqli_real_escape_string($mysqli, $_POST['message']);
|
|
|
|
if(empty($message)) {
|
|
die("cannot post empty message!");
|
|
}
|
|
|
|
$mysqli->query("INSERT INTO posts (username, message, ip) VALUES('" . $username . "', '" . $message . "', '" . $_SERVER["HTTP_X_FORWARDED_FOR"] . "')");
|
|
|
|
echo "<p>success</p>";
|
|
|
|
header("Location: index.php");
|
|
}
|
|
echo "<p>done</p>";
|
|
|
|
|
|
?>
|