/[LeafOK_CVS]/fenglin/bbs/article_service_post.php

Diff of /fenglin/bbs/article_service_post.php

- Revision 1.1 by sysadm,
 Wed Apr 23 05:51:23 2025 UTC
+ Revision 1.4 by sysadm,
 Sun Apr 27 02:35:47 2025 UTC
  Line 496
                                  exit(json_encode($result_set));
                          }
-                         $ext = strtolower(substr($filename, (strrpos($filename, ".") ? strrpos($filename, ".") + 1 : 0)));
+                         $ext = strtolower(pathinfo($filename, PATHINFO_EXTENSION));
                          switch ($ext)
                          {
                                  case "bmp":
  Line 624
                          $sql = "UPDATE bbs SET reply_count = reply_count + 1,
                                          last_reply_dt = NOW(), last_reply_UID=" . $_SESSION["BBS_uid"] .
                                          ", last_reply_username = '" . $_SESSION["BBS_username"] .
-                                         "', last_reply_nickname = '$nickname' WHERE Aid = $tid";
+                                         "', last_reply_nickname = '" . mysqli_real_escape_string($db_conn, $nickname) .
+                                         "' WHERE Aid = $tid";
                          $rs = mysqli_query($db_conn, $sql);
                          if ($rs == false)

  Legend:

 
 
 Removed lines/characters
  
 
 
 Changed lines/characters
 
 
  
 Added lines/characters
 Legend:

 
 
 Removed lines/characters
  
 
 
 Changed lines/characters
 
 
  
 Added lines/characters
-Removed lines/characters
+Added lines/characters

webmaster@leafok.com	ViewVC Help
Powered by ViewVC 1.3.0-beta1