2) $gbshow = 0; $gbid = intval($_POST['gbid']); $gbcid = intval($_POST['gbcid']); if(!$gbemail || !$gbname) { $gberror = 'Old values recovered - no changes made'; } if(!$gberror) { $sql = "UPDATE ".DB_PREPEND."phpwcms_guestbook SET "; $sql .= "guestbook_msg='".aporeplace($gbmsg)."', "; $sql .= "guestbook_name='".aporeplace($gbname)."', "; $sql .= "guestbook_email='".aporeplace($gbemail)."', "; $sql .= "guestbook_url='".aporeplace($gburl)."', "; $sql .= "guestbook_show='".$gbshow."' WHERE "; $sql .= "guestbook_cid='".$gbcid."' AND guestbook_id='".$gbid."' LIMIT 1;"; mysql_query($sql, $db); } } $edit_ID = ' AND guestbook_id='.intval($_GET['edit']); } else { $edit_ID = ''; } ?> phpwcms Backend Guestbook
'.$row['guestbook_ip'].' | WHOIS' ?> edit guestbook entrydelete entry
'.htmlspecialchars($row['guestbook_email']).''; if($row['guestbook_url']) { echo ' (URL)'; } if($row['guestbook_msg']) { echo '
'.nl2br(htmlspecialchars($row['guestbook_msg'])); } ?>
[close]
 '.$row['guestbook_ip'].' | WHOIS' ?>
error: 
name: 
email: 
URL: 
msg: 
display:  /> show email   />hide email
/>show email as "info at mail dot com"
No guestbook entry available