WebSVN – cheapmusic – Diff – /www/savetransfer.php



    $_sess_db = MySessionHandler::getDBSessionId();
 
    $access = mysqli_real_escape_string($_sess_db, time());
    $url = mysqli_real_escape_string($_sess_db, base64_decode($_POST["target"]));
    $userId = (empty($_SESSION['sessData']['userID']) ? 'NULL' : $_SESSION['sessData']['userID']);
    $ip = inet_pton($_SERVER['REMOTE_ADDR']);
 
    $sql = "INSERT
            INTO transfers
            (sessId, access, ip, url, userId)
            VALUES  ('" . session_id() . "', '$access', '$ip', '$url', $userId)";
 
    if (!mysqli_query($_sess_db, $sql)) {
        error_log("Error: " . $sql . " | " . mysqli_error($_sess_db));
    }
}

Rev 77	Rev 96
Line 23...	Line 23...
23	`$_sess_db = MySessionHandler::getDBSessionId();`	23	`$_sess_db = MySessionHandler::getDBSessionId();`
24		24
25	`$access = mysqli_real_escape_string($_sess_db, time());`	25	`$access = mysqli_real_escape_string($_sess_db, time());`
26	`$url = mysqli_real_escape_string($_sess_db, base64_decode($_POST["target"]));`	26	`$url = mysqli_real_escape_string($_sess_db, base64_decode($_POST["target"]));`
27	`$userId = (empty($_SESSION['sessData']['userID']) ? 'NULL' : $_SESSION['sessData']['userID']);`	27	`$userId = (empty($_SESSION['sessData']['userID']) ? 'NULL' : $_SESSION['sessData']['userID']);`
-		28	`$ip = inet_pton($_SERVER['REMOTE_ADDR']);`
28		29
29	`$sql = "INSERT`	30	`$sql = "INSERT`
30	`INTO transfers`	31	`INTO transfers`
31	`(sessId, access, url, userId)`	32	`(sessId, access, ip, url, userId)`
32	`VALUES ('" . session_id() . "', '$access', '$url', $userId)";`	33	`VALUES ('" . session_id() . "', '$access', '$ip', '$url', $userId)";`
33		34
34	`if (!mysqli_query($_sess_db, $sql)) {`	35	`if (!mysqli_query($_sess_db, $sql)) {`
35	`error_log("Error: " . $sql . " \| " . mysqli_error($_sess_db));`	36	`error_log("Error: " . $sql . " \| " . mysqli_error($_sess_db));`
36	`}`	37	`}`
37	`}`	38	`}`

Subversion Repositories cheapmusic

(root)/www/savetransfer.php – Rev 77 → 96