<?php
include "../config.php";
include "../functions.php";
if(!empty($_POST))
{
$sql = "INSERT INTO gastebuch
(
name,
email,
url,
betreff,
text,
IP,
betriebsystem,
woher_kommt_user,
datum
)
VALUES
(
'" . addslashes($_POST["name"]) . "',
'" . addslashes($_POST["email"]) . "',
'" . addslashes($_POST["url"]) . "',
'" . addslashes($_POST["betreff"]) . "',
'" . addslashes($_POST["text"]) . "',
'" . $_SERVER["REMOTE_ADDR"]. "',
'" . $_SERVER["HTTP_USER_AGENT"]. "',
'" . $_SERVER['HTTP_REFERER']. "',
NOW()
)
";
mysql_query($sql) OR die(mysql_error());
header("Location: ");
exit;
}
?>
<!DOCTYPE HTML PUBLIC "-//W3C//DTD HTML 4.01 Transitional//EN" "http://www.w3.org/TR/html4/loose.dtd">
<html>
<head>
<meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1">
<title>Unbenanntes Dokument</title>
<script language="JavaScript" type="text/JavaScript">
<!--
function MM_findObj(n, d) { //v4.01
var p,i,x; if(!d) d=document; if((p=n.indexOf("?"))>0&&parent.frames.length) {
d=parent.frames[n.substring(p+1)].document; n=n.substring(0,p);}
if(!(x=d[n])&&d.all) x=d.all[n]; for (i=0;!x&&i<d.forms.length;i++) x=d.forms[i][n];
for(i=0;!x&&d.layers&&i<d.layers.length;i++) x=MM_findObj(n,d.layers[i].document);
if(!x && d.getElementById) x=d.getElementById(n); return x;
}
function MM_validateForm() { //v4.0
var i,p,q,nm,test,num,min,max,errors='',args=MM_validateForm.arguments;
for (i=0; i<(args.length-2); i+=3) { test=args[i+2]; val=MM_findObj(args[i]);
if (val) { nm=val.name; if ((val=val.value)!="") {
if (test.indexOf('isEmail')!=-1) { p=val.indexOf('@');
if (p<1 || p==(val.length-1)) errors+='- '+nm+' must contain an e-mail address.\n';
} else if (test!='R') { num = parseFloat(val);
if (isNaN(val)) errors+='- '+nm+' must contain a number.\n';
if (test.indexOf('inRange') != -1) { p=test.indexOf(':');
min=test.substring(8,p); max=test.substring(p+1);
if (num<min || max<num) errors+='- '+nm+' must contain a number between '+min+' and '+max+'.\n';
} } } else if (test.charAt(0) == 'R') errors += '- '+nm+' is required.\n'; }
} if (errors) alert('The following error(s) occurred:\n'+errors);
document.MM_returnValue = (errors == '');
}
//-->
</script>
</head>
<body>
<table width="95%" border="0" align="center">
<tr>
<td height="124"><form name="form1" method="post" action="eintragen_gaestebuch.php">
<table width="100%" border="0">
<tr>
<td width="22%" height="28">Name:</td>
<td width="78%"><input name="name" type="text" id="name" onBlur="MM_validateForm('name','','R');return document.MM_returnValue" size="40"></td>
</tr>
<tr>
<td height="27">WebSeite:</td>
<td><input name="url" type="text" id="url" onBlur="MM_validateForm('url','','R');return document.MM_returnValue" size="40"></td>
</tr>
<tr>
<td height="29">eMail:</td>
<td><input name="email" type="text" id="email" onBlur="MM_validateForm('email','','NisEmail');return document.MM_returnValue" size="40"></td>
</tr>
<tr>
<td height="26">Betreff:</td>
<td><input name="betreff" type="text" id="betreff" onBlur="MM_validateForm('email','','NisEmail');return document.MM_returnValue" size="40"></td>
</tr>
<tr>
<td height="38">Nachricht:</td>
<td><textarea name="text" cols="40" rows="4" id="text" onChange="MM_validateForm('text','','R');return document.MM_returnValue"></textarea></td>
</tr>
<tr>
<td height="38"> </td>
<td><input type="submit" name="Submit" value=">> eintragen"></td>
</tr>
</table>
</form></td>
</tr>
</table>
</body>
</html>