"); $_SESSION['name'] = $name; $_SESSION['comment'] = $comment; //begin error checking //check for bad characters foreach ($badChars as $v) { if(strstr($comment,$v)) { $formErrors = true; $htmlErrors = true; } else { } } if($htmlErrors == true){ $_SESSION['formMessage'] .= "Comments may not contain html tags.
"; } else{ } if ($captcha != $_SESSION['__img_code__']){ $_SESSION['formMessage'] .= "Code verification falied. Refresh and try again.
"; $formErrors = true; unset($_SESSION['__img_code__']); } else{ unset($_SESSION['__img_code__']); } if (!$name || !$comment){ $_SESSION['formMessage'] .= "Come on. Please enter both a name and a comment.
"; $formErrors = true; } else{ } if ($formErrors == true){ header("Location: post.html"); die("Redirect error, please use this link: click here"); } else{ //Insert into database. $query = "INSERT INTO comments (id, timestamp, name, class, comment, ip) VALUES (NULL, NULL, '$name', '$class', '$comment', '$ip')"; mysql_query($query) or die(mysql_error()); $_SESSION['formMessage'] = "*Your comment was posted."; //Redirect header("Location: read.html"); die("Redirect error, please use this link: click here"); unset($_SESSION['comment']); unset($_SESSION['name']); } } //display page and form else{ include("includes/site_upper.php"); ?>

Post a Message:

*Error:
Name:
Class:
Comment:	<?php echo $_SESSION['comment']; unset($_SESSION['comment']); ?>
	(enter code)