@,;:\"\/\[\]?=]+@\w[\w-]*(\.\w[\w-]*)*\.[a-z]{2,}$/i",$string); } if(isset($_GET['template'])) $_SESSION['template']=$_GET['template']; elseif(!isset($_SESSION['template']))$_SESSION['template']=$__template; $smarty = new Smarty; $smarty->template_dir="templates/".$__template; //$smarty->compile_check = true; //$smarty->debugging = true; $smarty->assign("Title","MyNews V1.5"); $smarty->assign("_SERVER",$_SERVER); $smarty->assign("template",$_SESSION['template']); $smarty->display('header.tpl'); if(!isset($_GET['Archive'])){ $Sql="SELECT * FROM ".$SqlPrefix."news ORDER BY id DESC LIMIT ".$MaxPage; if($Result = mysql_query($Sql)){ while($Row = mysql_fetch_assoc($Result)){ $Sql1="SELECT COUNT(1) FROM ".$SqlPrefix."comments WHERE news_id='".$Row['id']."'"; if($Result1 = mysql_query($Sql1)){ $Re = mysql_result($Result1,0); }else{ $Re = 'Select error'; } $mss[]=array('id'=>$Row['id'], 'title'=>stripslashes(htmlspecialchars($Row['title'])), 'message'=>Message($Row['message']), '_time'=>datum_tijd($Row['_time']), 're'=>$Re); } $smarty->assign("mss", $mss); }else{ $error['error']=mysql_error(); $error['sql']=$Sql; $smarty->assign("error",$error); } $smarty->display('home.tpl'); }elseif($_GET['Archive'] == '0'){ $Sql = "SELECT id,title,_time FROM ".$SqlPrefix."news ORDER BY _time DESC"; if($Result = mysql_query($Sql)){ while($Row = mysql_fetch_assoc($Result)){ $Sql1="SELECT COUNT(1) FROM ".$SqlPrefix."comments WHERE news_id='".$Row['id']."'"; if($Result1 = mysql_query($Sql1)){ $Re=mysql_result($Result1,0); }else{ $error['error']=mysql_error(); $error['sql']=$Sql1; $smarty->assign("error",$error); } $archief[]=array('id'=>$Row['id'], 'title'=>stripslashes(htmlspecialchars($Row['title'])), '_time'=>datum($Row['_time']), 're'=>$Re); $smarty->assign("archief",$archief); } } $smarty->display('archive.tpl'); }else{ $Sql="SELECT * FROM ".$SqlPrefix."news WHERE id='".$_GET['Archive']."'"; if($Result = mysql_query($Sql)){ $Row = mysql_fetch_assoc($Result); $news=array('id'=>$Row['id'], 'title'=>stripslashes(htmlspecialchars($Row['title'])), 'message'=>Message($Row['message']), '_time'=>datum_tijd($Row['_time'])); $smarty->assign("news",$news); }else{ $error['error']=mysql_error(); $error['sql']=$Sql; $smarty->assign("error",$error); } if($_SERVER['REQUEST_METHOD'] == 'POST'){ if(!empty($_POST['name'])){ if(!empty($_POST['message'])){ if(!empty($_POST['email']) && checkmail($_POST['email'])){ mysql_query("INSERT INTO ".$SqlPrefix."comments (message,name,email,ip,news_id,datum) VALUES ('".$_POST['message']."','".$_POST['name']."','".$_POST['email']."','".$_SERVER['REMOTE_ADDR']."','".$_GET['Archive']."',NOW())")or die(mysql_error()); } } } } $Sql = "SELECT * FROM ".$SqlPrefix."comments WHERE news_id='".$_GET['Archive']."' ORDER BY id DESC"; if($Result = mysql_query($Sql)){ if(mysql_num_rows($Result) > 0){ while($Row = mysql_fetch_assoc($Result)){ $re[]=array('name'=>htmlspecialchars($Row['name']), 'email'=>htmlspecialchars($Row['email']), 'message'=>Reply($Row['message']), 'datum'=>datum_tijd($Row['datum'])); } $smarty->assign("re",$re); } }else{ $error['error']=mysql_error(); $error['sql']=$Sql; $smarty->assign("error",$error); } $smarty->display('article.tpl'); } $smarty->display('footer.tpl'); ?>