• Forum
• Allgemein
• HTML, PHP, SQL,...
• was ist heir falsch

ilch Forum » Allgemein » HTML, PHP, SQL,... » was ist heir falsch

1. Fr. 15.09.2006 16:03 Uhr #1

   

   aka_admiral Mitglied

   Registriert seit

   25.08.2006

   Beiträge

   253

   Beitragswertungen

   

   Hallo wollte mal wieder was fragen. Mein freund hat mir ein modul geschrieben für das Profil nun kann ich keine Avatare mehr auswählen hier der Code: <?php
   # Copyright by: Manuel
   # Support: www.ilch.de
   
   
   defined ('main') or die ( 'no direct access' );
   
   
   $title = $allgAr['title'].' :: Users :: Profil';
   $hmenu = $extented_forum_menu.'<a class="smalfont" href="?user">Users</a><b> &raquo; </b> Profil'.$extented_forum_menu_sufix;
   $design = new design ( $title , $hmenu, 1, 'forum/index.htm' );
   
   
   
   if ( $_SESSION['authright'] <= -1 )
   {
   
   if ( empty ($_POST['submit']) )
   {
   $design->header();
   $abf = 'SELECT
   
   email,
   wohnort,
   homepage,
   avatar,
   status,
   staat,
   gebdatum,
   sig,
   opt_pm_popup,
   opt_pm,
   opt_mail,
   geschlecht,
   spezrank ,
   kwick,
   internet,
   provider,
   headset,
   festplatte,
   bildschirm,
   motherboard,
   mouspad,
   tastatur,
   maus,
   grafikkarte,
   ram,
   prozessor,
   betriebssystem,
   xfire,
   skype,
   aim,
   yahoo,
   msn,
   icq,
   tag,
   monat,
   jahr,
   hobbys,
   interessen,
   mich,
   single,
   beruf
   
   FROM `prefix_user` WHERE id = "'.$_SESSION['authid'].'"';
   
   $erg = db_query($abf);
   if ( db_num_rows($erg) > 0 )
   {
   $row = db_fetch_assoc($erg);
   
   $tpl = new tpl ('user/profil_edit');
   $row['staat'] = '<option></option>'.arliste ( $row['staat'] , get_nationality_array() , $tpl , 'staat' );
   $row['geschlecht0'] = ( $row['geschlecht'] < 1 ? 'checked' : '' );
   $row['geschlecht1'] = ( $row['geschlecht'] == 1 ? 'checked' : '' );
   $row['geschlecht2'] = ( $row['geschlecht'] == 2 ? 'checked' : '' );
   if ( $row['status'] == 1 ) { $row['status1'] = 'checked'; $row['status0'] = ''; } else { $row['status1'] = ''; $row['status0'] = 'checked'; }
   if ( $row['opt_mail'] == 1 ) { $row['opt_mail1'] = 'checked'; $row['opt_mail0'] = ''; } else { $row['opt_mail1'] = ''; $row['opt_mail0'] = 'checked'; }
   if ( $row['opt_pm'] == 1 ) { $row['opt_pm1'] = 'checked'; $row['opt_pm0'] = ''; } else { $row['opt_pm1'] = ''; $row['opt_pm0'] = 'checked'; }
   if ( $row['opt_pm_popup'] == 1 ) { $row['opt_pm_popup1'] = 'checked'; $row['opt_pm_popup0'] = ''; } else { $row['opt_pm_popup1'] = ''; $row['opt_pm_popup0'] = 'checked'; }
   
   $row['avatarbild'] = ( file_exists ( $row['avatar'] ) ? '<img src="'.$row['avatar'].'" alt=""><br />' : '' );
   $row['Fabreite'] = $allgAr['Fabreite'];
   $row['Fahohe'] = $allgAr['Fahohe'];
   $row['Fasize'] = $allgAr['Fasize'];
   $row['forum_max_sig'] = $allgAr['forum_max_sig'];
   
   $tpl->set_ar_out($row,0);
   
   profilefields_change ( $_SESSION['authid'] );
   $tpl->out(1);
   
   }
   else
   {
   $tpl = new tpl ( 'user/login.htm' );
   $tpl->set_out('WDLINK','index.php',0);
   }
   
   }
   else
   {
   # submit
   
   # change poassword
   if ( !empty($_POST['np1']) AND !empty($_POST['np2']) AND !empty($_POST['op']))
   {
   if ($_POST['np1'] == $_POST['np2'])
   {
   $akpw = db_result(db_query("SELECT pass FROM prefix_user WHERE id = ".$_SESSION['authid']),0);
   
   if ($akpw == md5($_POST['op']))
   {
   $newpw = md5($_POST['np1']);
   db_query("UPDATE prefix_user SET pass = '".$newpw."' WHERE id = ".$_SESSION['authid']);
   setcookie(session_und_cookie_name(), $_SESSION['authid'].'='.$newpw, time() + 31104000, "/" );
   $fmsg = $lang['passwortchanged'];
   }
   else
   {
   $fmsg = $lang['passwortwrong'];
   }
   }
   else
   {
   $fmsg = $lang['passwortnotequal'];
   }
   }
   
   
   # avatar speichern START
   $avatar_sql_update = '';
   if ( !empty ( $_FILES['avatarfile']['name'] ) )
   {
   $file_tmpe = $_FILES['avatarfile']['tmp_name'];
   $file_type = $_FILES['avatarfile']['type'];
   $file_size = $_FILES['avatarfile']['size'];
   $file_name = $_FILES['avatarfile']['name'];
   $fmsg = $lang['avatarisnopicture'];
   
   if ( substr ( $file_type , 0 , 6 ) == 'image/' )
   {
   $endung = preg_replace("/.*\.([^\.]+)/", "\\1", $file_name);
   $size = getimagesize($file_tmpe);
   $breite = $size[0];
   $hoehe = $size[1];
   $fmsg = $lang['avatarcannotupload'];
   
   if ( $file_size <= $allgAr['Fasize'] AND $breite <= $allgAr['Fabreite'] AND $hoehe <= $allgAr['Fahohe'] )
   {
   $neuer_name = 'include/images/avatars/'.$_SESSION['authid'].'.'.$endung;
   @unlink (db_result(db_query("SELECT avatar FROM prefix_user WHERE id = ".$_SESSION['authid']),0));
   move_uploaded_file ( $file_tmpe , $neuer_name );
   $avatar_sql_update = "avatar = '".$neuer_name."',";
   $fmsg = $lang['pictureupload'];
   }
   }
   }
   elseif ( isset($_POST['avatarloeschen']) )
   {
   $fmsg = $lang['picturedelete'];
   @unlink (db_result(db_query("SELECT avatar FROM prefix_user WHERE id = ".$_SESSION['authid']),0));
   $avatar_sql_update = "avatar = '',";
   }
   # avatar speichern ENDE
   
   
   # email aendern
   if ($_POST['email'] != $_POST['aemail'])
   {
   $id = $_SESSION['authid'].'||'.md5 (uniqid (rand()));
   db_query("INSERT INTO prefix_usercheck (`check`,email,datime,ak)
   VALUES ('".$id."','".escape($_POST['email'],'string')."',NOW(),3)");
   $page = $_SERVER["HTTP_HOST"].$_SERVER["SCRIPT_NAME"];
   $text = $lang['changedthemail'] . sprintf ($lang['registconfirmlink'], $page, $id );
   icmail ($_POST['email'], $lang['mail'].' '.$lang['changed'], $text );
   $fmsg = $lang['pleaseconfirmmail'];
   }
   #
   
   
   # statische felder speichern
   db_query("UPDATE prefix_user SET
   
   ".$avatar_sql_update."
   staat = '".escape($_POST['staat'], 'string')."',
   geschlecht = '".escape($_POST['geschlecht'], 'string')."',
   status = '".escape($_POST['status'], 'string')."',
   opt_mail = '".escape($_POST['opt_mail'], 'string')."',
   opt_pm = '".escape($_POST['opt_pm'], 'string')."',
   opt_pm_popup = '".escape($_POST['opt_pm_popup'], 'string')."',
   gebdatum = '".get_datum(escape($_POST['gebdatum'], 'string'))."',
   sig = '".substr(escape($_POST['sig'], 'string'),0,$allgAr['forum_max_sig'])."',
   icq = '".escape($_POST['icq'], 'string')."',
   msn = '".escape($_POST['msn'], 'string')."',
   xfire = '".escape($_POST['xfire'], 'string')."',
   yahoo = '".escape($_POST['yahoo'], 'string')."',
   skype = '".escape($_POST['skype'], 'string')."',
   aim = '".escape($_POST['aim'], 'string')."',
   kwick = '".escape($_POST['kwick'], 'string')."',
   prozessor = '".escape($_POST['prozessor'], 'string')."',
   ram = '".escape($_POST['ram'], 'string')."',
   grafikkarte = '".escape($_POST['grafikkarte'], 'string')."',
   maus = '".escape($_POST['maus'], 'string')."',
   tastatur = '".escape($_POST['tastatur'], 'string')."',
   mouspad = '".escape($_POST['mouspad'], 'string')."',
   motherboard = '".escape($_POST['motherboard'], 'string')."',
   bildschirm = '".escape($_POST['bildschirm'], 'string')."',
   festplatte = '".escape($_POST['festplatte'], 'string')."',
   headset = '".escape($_POST['headset'], 'string')."',
   betriebssystem = '".escape($_POST['betriebssystem'], 'string')."',
   provider = '".escape($_POST['provider'], 'string')."',
   internet = '".escape($_POST['internet'], 'string')."',
   tag = '".escape($_POST['tag'], 'string')."',
   monat = '".escape($_POST['monat'], 'string')."',
   jahr = '".escape($_POST['jahr'], 'string')."',
   mich = '".escape($_POST['mich'], 'string')."',
   interessen = '".escape($_POST['interessen'], 'string')."',
   hobbys = '".escape($_POST['hobbys'], 'string')."',
   single = '".escape($_POST['single'], 'string')."',
   beruf = '".escape($_POST['beruf'], 'string')."'
   
   WHERE id = ".$_SESSION['authid']
   );
   
   
   # change other profil fields
   
   profilefields_change_save ( $_SESSION['authid'] );
   $design->header();
   
   # definie and print msg
   $fmsg = ( isset($fmsg) ? $fmsg : $lang['changesuccessful'] );
   wd('?user-8' , $fmsg , 3 );
   
   }
   
   }
   else
   {
   $tpl = new tpl ( 'user/login' );
   $tpl->set_out('WDLINK', '?user-8', 0);
   }
   
   $design->footer();
   ?>
   
   
   
   was is daran falsch?
   
   
   Mfg
   
   aka_admiral
   0 Mitglieder finden den Beitrag gut.

   • zitieren
2. Fr. 15.09.2006 16:07 Uhr #2

   

   aka_admiral Mitglied

   Registriert seit

   25.08.2006

   Beiträge

   253

   Beitragswertungen

   

   Hallo wollte mal wieder was fragen. Mein freund hat mir ein modul geschrieben für das Profil nun kann ich keine Avatare mehr auswählen hier der Code:

   <?php
   #   Copyright by: Manuel
   #   Support: www.ilch.de
   
   
   defined ('main') or die ( 'no direct access' );
   
   
   $title = $allgAr['title'].' :: Users :: Profil';
   $hmenu  = $extented_forum_menu.'<a class="smalfont" href="?user">Users</a><b> &raquo; </b> Profil'.$extented_forum_menu_sufix;
   $design = new design ( $title , $hmenu, 1, 'forum/index.htm' );
   
   
   
   if ( $_SESSION['authright'] <= -1 )
   {
   
   if ( empty ($_POST['submit']) )
   {
   $design->header();
   $abf = 'SELECT
   
   email,
   wohnort,
   homepage,
   avatar,
   status,
   staat,
   gebdatum,
   sig,
   opt_pm_popup,
   opt_pm,
   opt_mail,
   geschlecht,
   spezrank ,
   kwick,
   internet,
   provider,
   headset,
   festplatte,
   bildschirm,
   motherboard,
   mouspad,
   tastatur,
   maus,
   grafikkarte,
   ram,
   prozessor,
   betriebssystem,
   xfire,
   skype,
   aim,
   yahoo,
   msn,
   icq,
   tag,
   monat,
   jahr,
   hobbys,
   interessen,
   mich,
   single,
   beruf
   
   FROM `prefix_user` WHERE id = "'.$_SESSION['authid'].'"';
   
   $erg = db_query($abf);
   if ( db_num_rows($erg) > 0 )
   {
   $row = db_fetch_assoc($erg);
   
   $tpl = new tpl ('user/profil_edit');
   $row['staat'] = '<option></option>'.arliste ( $row['staat'] , get_nationality_array() , $tpl , 'staat' );
   $row['geschlecht0'] = ( $row['geschlecht'] < 1 ? 'checked' : '' );
   $row['geschlecht1'] = ( $row['geschlecht'] == 1 ? 'checked' : '' );
   $row['geschlecht2'] = ( $row['geschlecht'] == 2 ? 'checked' : '' );
   if ( $row['status'] == 1 ) { $row['status1'] = 'checked'; $row['status0'] = ''; } else { $row['status1'] = ''; $row['status0'] = 'checked'; }
   if ( $row['opt_mail'] == 1 ) { $row['opt_mail1'] = 'checked'; $row['opt_mail0'] = ''; } else { $row['opt_mail1'] = ''; $row['opt_mail0'] = 'checked'; }
   if ( $row['opt_pm'] == 1 ) { $row['opt_pm1'] = 'checked'; $row['opt_pm0'] = ''; } else { $row['opt_pm1'] = ''; $row['opt_pm0'] = 'checked'; }
   if ( $row['opt_pm_popup'] == 1 ) { $row['opt_pm_popup1'] = 'checked'; $row['opt_pm_popup0'] = ''; } else { $row['opt_pm_popup1'] = ''; $row['opt_pm_popup0'] = 'checked'; }
   
   $row['avatarbild'] = ( file_exists ( $row['avatar'] ) ? '<img src="'.$row['avatar'].'" alt=""><br />' : '' );
   $row['Fabreite'] = $allgAr['Fabreite'];
   $row['Fahohe'] = $allgAr['Fahohe'];
   $row['Fasize'] = $allgAr['Fasize'];
   $row['forum_max_sig'] = $allgAr['forum_max_sig'];
   
   $tpl->set_ar_out($row,0);
   
   profilefields_change ( $_SESSION['authid'] );
   $tpl->out(1);
   
   }
   else
   {
   $tpl = new tpl ( 'user/login.htm' );
   $tpl->set_out('WDLINK','index.php',0);
   }
   
   }
   else
   {
   # submit
   
   # change poassword
   if ( !empty($_POST['np1']) AND !empty($_POST['np2']) AND !empty($_POST['op']))
   {
   if ($_POST['np1'] == $_POST['np2'])
   {
   $akpw = db_result(db_query("SELECT pass FROM prefix_user WHERE id = ".$_SESSION['authid']),0);
   
   if ($akpw == md5($_POST['op']))
   {
   $newpw = md5($_POST['np1']);
   db_query("UPDATE prefix_user SET pass = '".$newpw."' WHERE id = ".$_SESSION['authid']);
   setcookie(session_und_cookie_name(), $_SESSION['authid'].'='.$newpw, time() + 31104000, "/" );
   $fmsg = $lang['passwortchanged'];
   }
   else
   {
   $fmsg = $lang['passwortwrong'];
   }
   }
   else
   {
   $fmsg = $lang['passwortnotequal'];
   }
   }
   
   
   # avatar speichern START
   $avatar_sql_update = '';
   if ( !empty ( $_FILES['avatarfile']['name'] ) )
   {
   $file_tmpe = $_FILES['avatarfile']['tmp_name'];
   $file_type = $_FILES['avatarfile']['type'];
   $file_size = $_FILES['avatarfile']['size'];
   $file_name = $_FILES['avatarfile']['name'];
   $fmsg = $lang['avatarisnopicture'];
   
   if ( substr ( $file_type , 0 , 6 ) == 'image/' )
   {
   $endung = preg_replace("/.*.([^.]+)/", "\1", $file_name);
   $size   = getimagesize($file_tmpe);
   $breite = $size[0];
   $hoehe  = $size[1];
   $fmsg   = $lang['avatarcannotupload'];
   
   if ( $file_size <= $allgAr['Fasize'] AND $breite <= $allgAr['Fabreite'] AND $hoehe <=  $allgAr['Fahohe'] )
   {
   $neuer_name = 'include/images/avatars/'.$_SESSION['authid'].'.'.$endung;
   @unlink (db_result(db_query("SELECT avatar FROM prefix_user WHERE id = ".$_SESSION['authid']),0));
   move_uploaded_file ( $file_tmpe , $neuer_name );
   $avatar_sql_update = "avatar = '".$neuer_name."',";
   $fmsg = $lang['pictureupload'];
   }
   }
   }
   elseif ( isset($_POST['avatarloeschen']) )
   {
   $fmsg = $lang['picturedelete'];
   @unlink (db_result(db_query("SELECT avatar FROM prefix_user WHERE id = ".$_SESSION['authid']),0));
   $avatar_sql_update = "avatar = '',";
   }
   # avatar speichern ENDE
   
   
   # email aendern
   if ($_POST['email'] != $_POST['aemail'])
   {
   $id = $_SESSION['authid'].'||'.md5 (uniqid (rand()));
   db_query("INSERT INTO prefix_usercheck (`check`,email,datime,ak)
   VALUES ('".$id."','".escape($_POST['email'],'string')."',NOW(),3)");
   $page = $_SERVER["HTTP_HOST"].$_SERVER["SCRIPT_NAME"];
   $text = $lang['changedthemail'] . sprintf ($lang['registconfirmlink'], $page, $id );
   icmail ($_POST['email'], $lang['mail'].' '.$lang['changed'], $text );
   $fmsg = $lang['pleaseconfirmmail'];
   }
   #
   
   
   # statische felder speichern
   db_query("UPDATE prefix_user SET
   
   ".$avatar_sql_update."
   staat 		= '".escape($_POST['staat'], 'string')."',
   geschlecht 	= '".escape($_POST['geschlecht'], 'string')."',
   status 		= '".escape($_POST['status'], 'string')."',
   opt_mail 	= '".escape($_POST['opt_mail'], 'string')."',
   opt_pm 		= '".escape($_POST['opt_pm'], 'string')."',
   opt_pm_popup 	= '".escape($_POST['opt_pm_popup'], 'string')."',
   gebdatum 	= '".get_datum(escape($_POST['gebdatum'], 'string'))."',
   sig 		= '".substr(escape($_POST['sig'], 'string'),0,$allgAr['forum_max_sig'])."',
   icq		= '".escape($_POST['icq'], 'string')."',
   msn		= '".escape($_POST['msn'], 'string')."',
   xfire		= '".escape($_POST['xfire'], 'string')."',
   yahoo		= '".escape($_POST['yahoo'], 'string')."',
   skype		= '".escape($_POST['skype'], 'string')."',
   aim		= '".escape($_POST['aim'], 'string')."',
   kwick		= '".escape($_POST['kwick'], 'string')."',
   prozessor	= '".escape($_POST['prozessor'], 'string')."',
   ram		= '".escape($_POST['ram'], 'string')."',
   grafikkarte	= '".escape($_POST['grafikkarte'], 'string')."',
   maus		= '".escape($_POST['maus'], 'string')."',
   tastatur	= '".escape($_POST['tastatur'], 'string')."',
   mouspad		= '".escape($_POST['mouspad'], 'string')."',
   motherboard	= '".escape($_POST['motherboard'], 'string')."',
   bildschirm	= '".escape($_POST['bildschirm'], 'string')."',
   festplatte	= '".escape($_POST['festplatte'], 'string')."',
   headset		= '".escape($_POST['headset'], 'string')."',
   betriebssystem	= '".escape($_POST['betriebssystem'], 'string')."',
   provider	= '".escape($_POST['provider'], 'string')."',
   internet	= '".escape($_POST['internet'], 'string')."',
   tag		= '".escape($_POST['tag'], 'string')."',
   monat		= '".escape($_POST['monat'], 'string')."',
   jahr		= '".escape($_POST['jahr'], 'string')."',
   mich		= '".escape($_POST['mich'], 'string')."',
   interessen	= '".escape($_POST['interessen'], 'string')."',
   hobbys		= '".escape($_POST['hobbys'], 'string')."',
   single		= '".escape($_POST['single'], 'string')."',
   beruf		= '".escape($_POST['beruf'], 'string')."'
   
   WHERE id = ".$_SESSION['authid']
   );
   
   
   # change other profil fields
   
   profilefields_change_save ( $_SESSION['authid'] );
   $design->header();
   
   # definie and print msg
   $fmsg = ( isset($fmsg) ? $fmsg : $lang['changesuccessful'] );
   wd('?user-8' , $fmsg  , 3 );
   
   }
   
   }
   else
   {
   $tpl = new tpl ( 'user/login' );
   $tpl->set_out('WDLINK', '?user-8', 0);
   }
   
   $design->footer();
   ?>

   
   
   
   
   was is daran falsch? Denn ich kann keine Avatare mehr Hochladen und Benutzen. Bitte helft mir!
   
   
   Mfg
   
   aka_admiral
   0 Mitglieder finden den Beitrag gut.

   • zitieren
3. Fr. 15.09.2006 16:31 Uhr #3

   

   aka_admiral Mitglied

   Registriert seit

   25.08.2006

   Beiträge

   253

   Beitragswertungen

   

   Ja ich geb ja zu damit ich einen fehler begangen hab (2x Gepostet) nur bitte helft mir das ist sehr wichtig!:(
   
   Mfg
   
   aka_admiral
   0 Mitglieder finden den Beitrag gut.

   • zitieren