NoPasteCms 2010 - index.php

index.php

Caricato da: Cassin.simone
Scarica il programma completo


	<?php //Cambia queste variabili: $host=""; //Il tuo host mysql $username=""; //Il tuo username mysql $password=""; //La tua password mysql $database=""; //Il tuo database mysql //Non cambiare più niente ora... $error_string="Si è verificato un errore durante l'uso del database. Perfavore, segnala questa disfunzione al webmaster cercando di spiegare come si è vefificato l'errore"; mysql_connect($host, $username, $password) or die ($error_string); mysql_select_db($database) or die ($error_string); ?> <!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN"> <html> <head> <meta http-equiv="content-type" content="text/html; charset=windows-1250"> <link rel="stylesheet" href="themes/css/stile.css" type="text/css"> <title>No Paste 2010</title> <?php $select_paste=mysql_query("SELECT * FROM nopaste WHERE id='".$_GET['id']."'") or die ($error_string); $array_paste=mysql_fetch_array($select_paste); $style='shBrush'.$array_paste['linguaggio'].'.js'; ?> <script>alert(<?php echo $style;?>)</script> <script type="text/javascript" src="./SyntaxHighlighter/scripts/shCore.js"></script> <script type="text/javascript" src="./SyntaxHighlighter/scripts/<?php echo $style; ?>"></script> <script type="text/javascript"> SyntaxHighlighter.config.clipboardSwf = './SyntaxHighlighter/scripts/clipboard.swf'; SyntaxHighlighter.all(); </script> <link type="text/css" rel="stylesheet" href="./SyntaxHighlighter/styles/shCore.css"/> <link type="text/css" rel="stylesheet" href="./SyntaxHighlighter/styles/shThemeDefault.css" id="shTheme"/> </head> <body> <?php mysql_connect($host, $username, $password) or die ($error_string); mysql_select_db($database) or die ($error_string); ?> <div id="body"> <a href="index.php"> <a href="index.php"><div id="header"> </div></a> </a> <div id="menu" align="center"> <a href="?action=create"><b>Paste!</b></a> </div> <p> <div align="center"> </div> <?php $select_all=mysql_query("SELECT * FROM nopaste ORDER BY id") or die ($error_string); $array_all_paste=mysql_fetch_array($select_all) or die ($error_string); $contatore=mysql_num_rows($select_all); if ($_GET['action']==""){ echo '<font size="3" face="Verdana"><b>Tutti i Paste</b></font>'; echo "<ul>"; while ($contatore<>0){ $select_paste=mysql_query("SELECT * FROM nopaste WHERE id='".$contatore."'") or die ($error_string); $array_paste=mysql_fetch_array($select_paste) or die ($error_string); echo "<li><b><a href='?action=view&id=".$array_paste['id']."'>".$array_paste['titolo']."</a></b></li>"; $contatore=$contatore-1; } echo "</ul>"; }else if($_GET['action']=='view' AND $_GET['id']<>""){ $select_paste=mysql_query("SELECT * FROM nopaste WHERE id='".$_GET['id']."'") or die ($error_string); $array_paste=mysql_fetch_array($select_paste); echo '<font face="Verdana" size="2">'; echo '<b>'.$array_paste['titolo'].'</b><br><br>'; echo $array_paste['descrizione'].'<br><br>'; echo 'Linguaggio: '.$array_paste['linguaggio'].'<br><br>'; echo '</font>'; ?> <pre class="brush: php"> <?php echo htmlentities($array_paste['codice']);?> </pre> <?php }else if($_GET['action']=='create' and $_GET['confirm']==""){ echo '<font size="3" face="Verdana"><b>Paste!</b></font>'; ?> <br><br> <table width="100%"> <form method="post" action="?confirm=yes&action=create"> <tr><td>Titolo: </td><td><input name="titolo" type="text" size="79"></td></tr> <tr><td>Descrizione: </td><td><input name="descrizione" type="text" size="79"></td></tr> <tr><td></td><td><textarea name="codice" cols="60" rows="10">Codice</textarea></td></tr> <tr><td>Linguaggio:</td><td> <select name="linguaggio"> <option value="Php">PHP</option> <option value="AS3">AS3</option> <option value="Bash">Bash</option> <option value="ColdFusion">ColdFusion</option> <option value="Cpp">C++</option> <option value="CSharp">C#</option> <option value="Css">Css</option> <option value="Delphi">Delphi</option> <option value="Diff">Diff</option> <option value="Erlang">Erlang</option> <option value="Grooby">Groovy</option> <option value="Java">Java</option> <option value="JavaFX">JavaFX</option> <option value="JScript">JScript</option> <option value="Perl">Perl</option> <option value="Plain">Plain</option> <option value="PowerShell">PowerShell</option> <option value="Python">Python</option> <option value="Ruby">Ruby</option> <option value="Scala">Scala</option> <option value="Sql">Sql</option> <option value="Vb">Vb</option> <option value="Xml">Xml</option> <option value="Core">Core</option> <option value="Legacy">Legacy</option> </select></td></tr> <tr><td></td><td><input name="Submit" value="Paste" type="Submit"></td></tr> </form> </table> <?php } else if($_GET['action']=='create' and $_GET['confirm']=="yes" and $_POST['codice']<>"" and $_POST['titolo']<>"" and $_POST['linguaggio']<>"" and $_POST['descrizione']<>""){ echo '<font size="3" face="Verdana"><b>Paste!</b></font>'; $codice=htmlspecialchars($_POST['codice']); $titolo=htmlspecialchars($_POST['titolo']); $descrizione=htmlspecialchars($_POST['descrizione']); $insert=mysql_query("INSERT INTO nopaste(titolo,descrizione,linguaggio,codice) VALUES ('$titolo','$descrizione', '$linguaggio', '$codice')") or die ($error_string); $select_paste=mysql_query("SELECT * FROM nopaste WHERE codice='".$codice."' AND titolo='".$titolo."' AND descrizione='".$descrizione."'") or die ($error_string); $array_paste=mysql_fetch_array($select_paste); echo '<div id="action_ok">Paste inserito con successo!<br><br>'; echo '<form>Il tuo codice si trova a <a href="http://www.pastebin.altervista.org/index.php?action=view&id='.$array_paste['id'].'">questo link</a>: <input value=\'http://www.pastebin.altervista.org/index.php?action=view&id='.$array_paste['id'].'\'></form><br>'; echo '<a href="#" onclick="clipboardData.setData(\'Text\',\'http://www.pastebin.altervista.org/index.php?action=view&id='.$array_paste['id'].'\')">Copia negli appunti questo link</a></div>'; } ?> </p> <div id="footer" align="center"> Powered By <a href="http://www.simonecassin.altervista.org"><b>Simone Cassin</b></a> </div> </div> </body> </html>