<?php
function GetSQLValueString($theValue, $theType, $theDefinedValue = "", $theNotDefinedValue = "")
{
$theValue = (!get_magic_quotes_gpc()) ? addslashes($theValue) : $theValue;
switch ($theType) {
case "text":
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
break;
case "long":
case "int":
$theValue = ($theValue != "") ? intval($theValue) : "NULL";
break;
case "double":
$theValue = ($theValue != "") ? "'" . doubleval($theValue) . "'" : "NULL";
break;
case "date":
$theValue = ($theValue != "") ? "'" . $theValue . "'" : "NULL";
break;
case "defined":
$theValue = ($theValue != "") ? $theDefinedValue : $theNotDefinedValue;
break;
}
return $theValue;
}
$editFormAction = $HTTP_SERVER_VARS['PHP_SELF'];
if (isset($HTTP_SERVER_VARS['QUERY_STRING'])) {
$editFormAction .= "?" . $HTTP_SERVER_VARS['QUERY_STRING'];
}
if ((isset($HTTP_POST_VARS["MM_insert"])) && ($HTTP_POST_VARS["MM_insert"] == "form1")) {
$insertSQL = sprintf("INSERT INTO turnieranmeldungen (name, vorname, strasse, plz, ort, telefon, handynr, mail, verein, verband, rlplatz, idnr, sex, ak, kto, blz, bank, inh) VALUES (%s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s, %s)",
GetSQLValueString($HTTP_POST_VARS['name'], "text"),
GetSQLValueString($HTTP_POST_VARS['vorname'], "text"),
GetSQLValueString($HTTP_POST_VARS['strasse'], "text"),
GetSQLValueString($HTTP_POST_VARS['plz'], "text"),
GetSQLValueString($HTTP_POST_VARS['ort'], "text"),
GetSQLValueString($HTTP_POST_VARS['telefon'], "text"),
GetSQLValueString($HTTP_POST_VARS['handynr'], "text"),
GetSQLValueString($HTTP_POST_VARS['mail'], "text"),
GetSQLValueString($HTTP_POST_VARS['verein'], "text"),
GetSQLValueString($HTTP_POST_VARS['verband'], "text"),
GetSQLValueString($HTTP_POST_VARS['rlplatz'], "text"),
GetSQLValueString($HTTP_POST_VARS['idnr'], "text"),
GetSQLValueString($HTTP_POST_VARS['sex'], "text"),
GetSQLValueString($HTTP_POST_VARS['ak'], "text"),
GetSQLValueString($HTTP_POST_VARS['kto'], "text"),
GetSQLValueString($HTTP_POST_VARS['blz'], "text"),
GetSQLValueString($HTTP_POST_VARS['bank'], "text"),
GetSQLValueString($HTTP_POST_VARS['inh'], "text"));
mysql_select_db($database_xx, $dbxx;
$Result1 = mysql_query($insertSQL, $dbxx) or die(mysql_error());
}
{
mail("mail@provider.de", "Meldung", "Eine Meldung ist eingegangen", "From: mail@provider.de") ;
}
{
mail("mail@provider.de", "Meldung", "Eine Meldung ist eingegangen", "From: mail@provider.de") ;
}
?>