|
$value)
{
$$key=addslashes(htmlspecialchars(strip_tags($value)));
}
$asport =mysql_connect("localhost", "sportal_mnd", "13shtator") or die ("E pamundur lidhja!");
mysql_select_db("albsport",$asport) or die (mysql_error());
$sql = "SELECT * FROM materiali where idmateriali = '$idm'";
$rs = mysql_query($sql,$asport);
$materiali=mysql_fetch_object($rs);
echo ''.$materiali->titulli.'
 '.nl2br($materiali->teksti).'rererere
';
shtokoment();
Rendit();
function shtokoment()
{
foreach ($_REQUEST as $key => $value)
{
$$key=addslashes(htmlspecialchars(strip_tags($value)));
}
echo'';
}
function Rendit()
{ include_once 'koment/SPAF_FormValidator.class.php';
$obj = new SPAF_FormValidator();
foreach ($_REQUEST as $key => $value)
{
$$key=addslashes(htmlspecialchars(strip_tags($value)));
}
if (isset($_POST['code'])) {
if ($obj->validRequest($_POST['code'])) {
$titulli=addslashes($_POST["titulli"]);
$permbajtja=addslashes($_POST["permbajtja"]);
$query=mysql_query("Insert INTO komente (id,Titulli,Trupi,ArtID) VALUES ('','$titulli','$permbajtja','$idm')");
// destroy successful code
$obj->destroy();
}
else {
echo 'Error - Bete nje gabim.Provojeni edhe njehere.';
}
}
$query2="SELECT * FROM komente where ArtID='$idm' ORDER BY id DESC";
$rezultat=mysql_query($query2);
echo'';
while ($rez=mysql_fetch_array($rezultat))
{ echo'
'.$rez["Titulli"].' |
'.$rez["Trupi"].' |
| | ';
}
echo' ';
}//fund rendit+shto
/* QENDRA E LAJMEVE - JASHTE TEMPLATET GRAFIK */
?>
|
