<?php session_start(); include('pdo.php'); require_once 'tools/HTMLPurifier.standalone.php'; $editFlag = $_POST['editFlag'] ?? false; $contentID = $_POST['id'] ?? false; $userContent = $_POST['userContent'] ?? false; $section = 1; $config = HTMLPurifier_Config::createDefault(); $purifier = new HTMLPurifier($config); $clean_html = $purifier->purify($userContent); if ($editFlag != "1"){ $stmt = $db->prepare("INSERT INTO userContent (section, author, content) VALUES (:section, :author, :content)"); $stmt->execute(['section' => $section, 'author' => $author, 'content' => $content]); } else { $stmt = $db->prepare("UPDATE userContent SET section=:section, author=:author, content=:content WHERE id=:contentID"); $stmt->execute(['section' => $section, 'author' => $author, 'content' => $content, 'contentID' => $contentID]); } ?>
You have javascript disabled. You will not be able to edit any code.