Файловый менеджер - Редактировать - /home/u943413984/domains/jharkhandupdates.in/public_html/news-details.php
Назад
<?php session_start(); include('includes/config.php'); //Genrating CSRF Token if (empty($_SESSION['token'])) { $_SESSION['token'] = bin2hex(random_bytes(32)); } if(isset($_POST['submit'])) { //Verifying CSRF Token if (!empty($_POST['csrftoken'])) { if (hash_equals($_SESSION['token'], $_POST['csrftoken'])) { $name=$_POST['name']; $email=$_POST['email']; $comment=$_POST['comment']; $postid=intval($_GET['nid']); $st1='0'; $query=mysqli_query($con,"insert into tblcomments(postId,name,email,comment,status) values('$postid','$name','$email','$comment','$st1')"); if($query): echo "<script>alert('comment successfully submit. Comment will be display after admin review ');</script>"; unset($_SESSION['token']); else : echo "<script>alert('Something went wrong. Please try again.');</script>"; endif; } } } ?> <!DOCTYPE html> <html lang="en"> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1, shrink-to-fit=no"> <meta name="description" content=""> <meta name="author" content=""> <title>News Portal | Home Page</title> <!-- Bootstrap core CSS --> <link href="vendor/bootstrap/css/bootstrap.min.css" rel="stylesheet"> <!-- Custom styles for this template --> <link href="css/modern-business.css" rel="stylesheet"> </head> <body> <!-- Navigation --> <?php include('includes/header.php');?> <!-- Page Content --> <div class="container mt-5"> <div class="row" style="margin-top: 4%"> <!-- Blog Entries Column --> <div class="col-md-8"> <!-- Blog Post --> <?php $title_ar=array(); $subtitle=array(); $image_ar=array(); $sql = "SELECT * FROM ad_table ORDER BY RAND() LIMIT 5;"; $result = $con->query($sql); $counter = 1; while($row = $result->fetch_assoc()){ $title = $row['title']; array_push($title_ar,$title); $image = $row['ad_image']; array_push($image_ar,$image); } ?> <?php $pid=intval($_GET['nid']); $query=mysqli_query($con,"select tblposts.PostTitle as posttitle,tblposts.PostImage,tblcategory.CategoryName as category,tblcategory.id as cid,tblsubcategory.Subcategory as subcategory,tblposts.PostDetails as postdetails,tblposts.PostingDate as postingdate,tblposts.PostUrl as url from tblposts left join tblcategory on tblcategory.id=tblposts.CategoryId left join tblsubcategory on tblsubcategory.SubCategoryId=tblposts.SubCategoryId where tblposts.id='$pid'"); while ($row=mysqli_fetch_array($query)) { $pdate = $row['postingdate']; $pdatei = date('Y-m-d H:i',strtotime('+5 hour +30 minutes',strtotime($pdate))); ?> <div class="card mb-4"> <div class="card-body"> <h2 class="card-title"><?php echo htmlentities($row['posttitle']);?></h2> <p><b> </b> <a href="category.php?catid=<?php echo htmlentities($row['cid'])?>"><?php echo htmlentities($row['category']);?></a> <b> | </b><?php echo htmlentities($row['subcategory']);?> <b> | </b><?php echo htmlentities($pdatei);?></p> <hr /> <img class="img-fluid rounded" src="admin/postimages/<?php echo htmlentities($row['PostImage']);?>" alt="<?php echo htmlentities($row['posttitle']);?>"> <p class="card-text"><?php $pt=$row['postdetails']; echo (substr($pt,0));?></p> </div> <div class="container"> <p>Sponsered Ads</p> <div class="row"> <div id="carouselExampleIndicators" class="carousel slide" data-ride="carousel"> <div class="carousel-inner"> <div class="carousel-item active" data-interval="10000"> <img class="d-block w-100" src="admin/adimages/<?php echo $image_ar[0];?>" alt="First slide"> <div class="carousel-caption d-none d-md-block"> <h5 class="text-primary"><?php echo $title_ar[0];?></h5> </div> </div> <div class="carousel-item" data-interval="10000"> <img class="d-block w-100" src="admin/adimages/<?php echo $image_ar[1];?>" alt="Second slide"> <div class="carousel-caption d-none d-md-block"> <h5 class="text-primary"><?php echo $title_ar[1];?></h5> </div> </div> <div class="carousel-item" data-interval="10000"> <img class="d-block w-100" src="admin/adimages/<?php echo $image_ar[2];?>" alt="Third slide"> <div class="carousel-caption d-none d-md-block"> <h5 class="text-primary"><?php echo $title_ar[2];?></h5> </div> </div> <div class="carousel-item" data-interval="10000"> <img class="d-block w-100" src="admin/adimages/<?php echo $image_ar[3];?>" alt="Third slide"> <div class="carousel-caption d-none d-md-block"> <h5 class="text-primary"><?php echo $title_ar[3];?></h5> </div> </div> <div class="carousel-item" data-interval="10000"> <img class="d-block w-100" src="admin/adimages/<?php echo $image_ar[4];?>" alt="Third slide"> <div class="carousel-caption d-none d-md-block"> <h5 class="text-primary"><?php echo $title_ar[4];?></h5> </div> </div> </div> <a class="carousel-control-prev" href="#carouselExampleIndicators" role="button" data-slide="prev"> <span class="carousel-control-prev-icon" aria-hidden="true"></span> <span class="sr-only">Previous</span> </a> <a class="carousel-control-next" href="#carouselExampleIndicators" role="button" data-slide="next"> <span class="carousel-control-next-icon" aria-hidden="true"></span> <span class="sr-only">Next</span> </a> </div> </div> </div> <div class="card-footer text-muted"> <h5 style="color:brown"> WhatsApp sharing Link </h5> <a id="sharewp" href=" data-action="share/whatsapp/share" target="_blank"> Share to WhatsApp </a> <script type="text/javascript" charset="utf-8"> const URL = window.location.href.slice(7); const link = document.querySelector('#sharewp'); link.href = "whatsapp://send?text="+URL; // Displaying in the console console.log(URL); </script> </div> </div> <?php } ?> </div> <!-- Sidebar Widgets Column --> <?php include('includes/sidebar.php');?> </div> <!-- /.row --> <!---Comment Section ---> <div class="row" style="margin-top: -8%"> <div class="col-md-8"> <div class="card my-4"> <h5 class="card-header">Leave a Comment:</h5> <div class="card-body"> <form name="Comment" method="post"> <input type="hidden" name="csrftoken" value="<?php echo htmlentities($_SESSION['token']); ?>" /> <div class="form-group"> <input type="text" name="name" class="form-control" placeholder="Enter your fullname" required> </div> <div class="form-group"> <input type="email" name="email" class="form-control" placeholder="Enter your Valid email" required> </div> <div class="form-group"> <textarea class="form-control" name="comment" rows="3" placeholder="Comment" required></textarea> </div> <button type="submit" class="btn btn-primary" name="submit">Submit</button> </form> </div> </div> <!---Comment Display Section ---> <?php $sts=1; $query=mysqli_query($con,"select name,comment,postingDate from tblcomments where postId='$pid' and status='$sts'"); while ($row=mysqli_fetch_array($query)) { ?> <div class="media mb-4"> <img class="d-flex mr-3 rounded-circle" src="images/usericon.png" alt=""> <div class="media-body"> <h5 class="mt-0"><?php echo htmlentities($row['name']);?> <br /> <span style="font-size:11px;"><b>at</b> <?php echo htmlentities($row['postingDate']);?></span> </h5> <?php echo htmlentities($row['comment']);?> </div> </div> <?php } ?> </div> </div> </div> <?php include('includes/footer.php');?> <!-- Bootstrap core JavaScript --> <script src="vendor/jquery/jquery.min.js"></script> <script src="vendor/bootstrap/js/bootstrap.bundle.min.js"></script> </body> </html>
| ver. 1.4 |
Github
|
.
| PHP 7.4.33 | Генерация страницы: 0 |
proxy
|
phpinfo
|
Настройка