hash($_REQUEST[id].$_REQUEST[odkaz].$_REQUEST[user].'what do ya want for nothing?'); if ($_REQUEST[overeni]== $overeni_transakce) { //pridani komentare if($_POST[komentar]!=""){ $komentar=preg_replace("/(https?|ftp):\/\/\S+/i","*",$_POST[komentar]); $komentar=preg_replace("/www\.\S+/i","*",$komentar); $komentar = htmlentities( preg_replace( '/<+\s*\/*\s*([A-Z][A-Z0-9]*)\b[^>]*\/*\s*>+/i', '', $komentar ) ); $date=date('Y-m-d H:i:s'); $ip=$_SERVER['REMOTE_ADDR']; $výsledek = mysql_query( "INSERT INTO komentare valueS('','$_REQUEST[id]','$komentar','$_REQUEST[user]','$date','$ip')" )or die( mysql_error() ); $výsledek2 = mysql_query( "UPDATE users SET user_komentaru=user_komentaru+1 WHERE user_name='".$_REQUEST[user]."'" )or die( mysql_error() ); } } redirect('online-hra-'.$_REQUEST[odkaz].'/'); break; case 'smazat_oblibene': $id=$_REQUEST['id']; $sql = "DELETE FROM `oblibene` WHERE `id` = ".$id." LIMIT 1"; $result = mysql_query($sql); redirect('oblibene-1/'); break; } } ?>