Quote

<?php
if($_SESSION["berechtigter_User"] != 1)
{
echo "Bitte logge dich ein um einen Eintrag zu verfassen!";

}
else
{
echo "Du bist eingeloggt";
}
?>



<form action = "kontaktundgaestebuch.php" method ="post">
Name:
<input type="text" size = "17" name = "name">
<br clear="all"/>
Kommentar:
<input type = "textfield" style="height: 150px; width: 300px" name = "kommentar">
<br clear="all"/>
<?php echo "Datum: ";?>
<?php
$datum = date("d.m.Y",$timestamp);
echo $datum;
?>
<br clear="all"/>
<input type = "Submit" value = "Abschicken">
</form>

<?php
if (!empty($_POST))
{
$name = $_POST['name'];
$comment = $_POST['kommentar'];

$eintrag = "INSERT INTO gaestebuch (name, kommentar) VALUES ('$name', '$comment')";

$eintragen = mysqli_query($db, $eintrag);
}
?>

<?php
$ergebnis = mysqli_query($db, "SELECT * FROM gaestebuch");
while($row = mysqli_fetch_object($ergebnis))
{
echo $row->name;
echo " schrieb am ";
echo $datum;
echo ": ";
echo $row->kommentar;
echo "<br />";
}
?>

Quote (jsbb @ Nov 25 2016 01:15am)

hey if you repost your code in english ill help

my project 4 allows all users to poat opinions on a certain book only if there logged in and all non logged in guests can click and view all opinions on that certain book,

ya i spent like 7 hours yesterday banges it out. still gotta add custon background and use css to make my maaterpeace look organized

Quote (AbDuCt @ Nov 27 2016 05:56pm)

Sanitize your inputs or use parameterized queries.

This isn't 1990 any more.

Quote (bochakaboy @ Nov 27 2016 09:41am)

actually i already fixed it, I had to redefine the variables in the first if clause, and the i could use the code for the formular in the else clause and it works alright :)

do you write css yourself?

Quote (bochakaboy @ Nov 27 2016 02:48pm)

What does it mean to sanatize your inputs and what are parameterized queries?
As I said I am new to this shit I started not even 1 week ago..