exec("INSERT INTO `$dbname`.`csrf_token` (`token`,`timestamp`,`sessionid`) VALUES ('$csrf_token','".time()."','".session_id()."')") === false) { $err_msg = print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } if (($db_csrf = $mysqlcon->query("SELECT * FROM `$dbname`.`csrf_token` WHERE `sessionid`='".session_id()."'")->fetchALL(PDO::FETCH_UNIQUE|PDO::FETCH_ASSOC)) === false) { $err_msg = print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } if (isset($_POST['update']) && isset($db_csrf[$_POST['csrf_token']])) { $cfg['imprint_address'] = addslashes($_POST['imprint_address']); $cfg['imprint_email'] = addslashes($_POST['imprint_email']); $cfg['imprint_phone'] = addslashes($_POST['imprint_phone']); $cfg['imprint_notes'] = addslashes($_POST['imprint_notes']); $cfg['imprint_privacy-policy'] = addslashes($_POST['imprint_privacy-policy']); if (isset($_POST['imprint_enabled'])) $cfg['imprint_enabled'] = 1; else $cfg['imprint_enabled'] = 0; if ($mysqlcon->exec("INSERT INTO `$dbname`.`cfg_params` (`param`,`value`) VALUES ('imprint_enabled','{$cfg['imprint_enabled']}'),('imprint_address','{$cfg['imprint_address']}'),('imprint_email','{$cfg['imprint_email']}'),('imprint_phone','{$cfg['imprint_phone']}'),('imprint_notes','{$cfg['imprint_notes']}'),('imprint_privacy-policy','{$cfg['imprint_privacy-policy']}') ON DUPLICATE KEY UPDATE `value`=VALUES(`value`); DELETE FROM `$dbname`.`csrf_token` WHERE `token`='{$_POST['csrf_token']}'") === false) { $err_msg = print_r($mysqlcon->errorInfo(), true); $err_lvl = 3; } else { $err_msg = $lang['wisvsuc']." ".sprintf($lang['wisvres']); $err_lvl = NULL; } $cfg['imprint_address'] = $_POST['imprint_address']; $cfg['imprint_email'] = $_POST['imprint_email']; $cfg['imprint_phone'] = $_POST['imprint_phone']; $cfg['imprint_notes'] = $_POST['imprint_notes']; $cfg['imprint_privacy-policy'] = $_POST['imprint_privacy-policy']; } elseif(isset($_POST['update'])) { echo '

',$lang['errcsrf'],'

'; rem_session_ts3($rspathhex); exit; } ?>