كود PHP:
<? /*
if (get_magic_quotes_gpc()) {
foreach ($HTTP_GET_VARS as $k => $v)
$_GET[$k] = stripslashes($v);
foreach ($HTTP_POST_VARS as $k => $v)
$_POST[$k] = stripslashes($v);
}
*/
if ($_GET[url]) $_GET[url] = urldecode($_GET[url]);
if ($_GET[description]) $_GET[description] = urldecode($_GET[description]);
if ($_POST[tags]) $_POST[tags] = urldecode($_POST[tags]);
if ($_POST[tags]) {
$_POST[tags] = ereg_replace('[^a-zA-Z0-9 ;]', '', $_POST[tags]);
$_POST[tags] = ereg_replace('( +)', ' ', $_POST[tags]);
$_POST[tags] = ereg_replace('(;+)', ';', $_POST[tags]);
if ($_POST[tags][0] == ' ') $_POST[tags] = substr($_POST[tags], 1);
if ($_POST[tags][strlen($_POST[tags])-1] == ' ') $_POST[tags] = substr($_POST[tags], 0, -1);
if ($_POST[tags][strlen($_POST[tags])-1] == ';') $_POST[tags] = substr($_POST[tags], 0, -1);
if ($_POST[tags][strlen($_POST[tags])-1] == ' ') $_POST[tags] = substr($_POST[tags], 0, -1);
}
include($_SERVER['DOCUMENT_ROOT']."/conf.php");
include($_SERVER['DOCUMENT_ROOT']."/key.php");
/*
$do_error = 0;
if (($_POST['url']) and preg_match('(\bhttp://[^ ]+\b)', $_POST['url'])) {
$do_error = 1;
}
*/
if ($_POST['url'] and $_POST['description'] and $_POST['tags'] and !$_POST['fromindex']) {
if ($_POST['notes']) $notes = ", notes='$_POST[notes]'";
if ($_POST['share']) $share = ", share='$_POST[share]'";
$add_at = time();
$user_name_email = $_SESSION[collectf][login];
$q = "INSERT INTO content SET user='$user_name_email', userid=".$_SESSION[collectf][userid].", url='$_POST[url]', description=' $_POST[description]'".$notes.", tags='$_POST[tags]'".$share.", add_at=$add_at" or die(mysql_error());
if (mysql_query($q)) {
$onetag = explode(';', $_POST['tags']);
foreach ($onetag as $ke => $ve) {
$res_check = mysql_query ("select id from tags where tag='$ve' and userid=".$_SESSION[collectf][userid]);
if ($res_check and mysql_num_rows($res_check)==0) {
if ($ve[0] == ' ') $ve = substr($ve, 1);
if ($ve[strlen($ve)-1] == ' ') $ve = substr(ve, 0, -1);
$q = "INSERT INTO tags SET userid=".$_SESSION[collectf][userid].", tag='".$ve."', add_at=".time();
mysql_query($q);
}
}
$sql="SELECT id from content where user='$user_name_email' AND add_at=$add_at";
$result_f = mysql_query($sql) or die(mysql_error());
$content_ID = mysql_fetch_array($result_f);
if (mysql_num_rows($result_f)>0) {
if (!is_dir($_SERVER['DOCUMENT_ROOT']."/content/".$_SESSION[collectf][userid]."/".$content_ID['id'])) {
if (mkdir($_SERVER['DOCUMENT_ROOT']."/content/".$_SESSION[collectf][userid]."/".$content_ID['id'],0777)) {
// echo "Folder created";
chmod($_SERVER['DOCUMENT_ROOT']."/content/".$_SESSION[collectf][userid]."/".$content_ID['id'],0777);
include($_SERVER['DOCUMENT_ROOT']."/freplace.php");
$ret=find_replace($_POST['url'], $_SERVER['DOCUMENT_ROOT']."/content/".$_SESSION[collectf][userid]."/".$content_ID['id']."/");
if ($_POST['sendnot'] == '1') {
$sednfav="";
$handle = @fopen ($_SERVER['DOCUMENT_ROOT'].'/favorite.tpl', "rb");
/* if(!$handle){
break;
}*/
do {
$data = fread($handle, 8192);
if (strlen($data) == 0) {
break;
}
$sednfav .= $data;
} while(true);
fclose ($handle);
$sednfav = str_replace('%%description%%', $_POST['description'], $sednfav);
$sednfav = str_replace('%%url%%', $_POST['url'], $sednfav);
$sednfav = str_replace('%%saved_at%%', $htt_uri."content/".$_SESSION[collectf][userid]."/".$content_ID['id'], $sednfav);
$onetag = explode(';', $_POST['share']);
foreach ($onetag as $ke => $ve) {
if(preg_match('#^(\w|[-])+(\.(\w|[-])+)*@((\[([0-1]\d\d|2[0-4]\d|25[0-5])\.([0-1]\d\d|2[0-4]\d|25[0-5])\.([0-1]\d\d|2[0-4]\d|25[0-5])\.([0-1]\d\d|2[0-4]\d|25[0-5])\])|((([a-zA-Z0-9])+(([-])+([a-zA-Z0-9])+)*\.)+([a-zA-Z])+(([-])+([a-zA-Z0-9])+)*))$#', $ve))
mail($ve, "Shared webpage", $sednfav, "From: $user_name_email \n" ."Reply-To: $user_name_email \n");
}
}
if ($ret) {
header("Location: /mylinks.php?write=1");
exit();
} else {
header("Location: /mylinks.php?write=2");
exit();
}
}
}
} else {
$sql="DELETE from content where user='$user_name_email' AND add_at=$add_at";
$result_f = mysql_query($sql) or die(mysql_error());
echo "Try again.";
}
}
} else {
include($_SERVER['DOCUMENT_ROOT']."/header.php");
/*if ($do_error <> 0) {
if ($do_error == 1) {
echo "Type a valid URL.";
} else {
echo "Fill all required fields.";
}*/
?>
قرأت عن دالة ereg_replace وايضا preg_match ولكني لم استطيع استخلاص طريقة لمساعدتي علي حل هذة المشكلة، ولان ليس لدي خبرة في مثل هذة المشاكل فأتمني ان اجد مساعد لحل هذة المشكلتين السابق ذكرهم وحتي ولو بمقابل لا مشكلة.