website/public/newComment.php

<?php
include("./internal/mysql.php");

$ref = $_SERVER["HTTP_REFERER"];
$article =  $conn->escape_string(explode(".php", explode("Projekte/", $ref)[1])[0]);
$name = $conn->escape_string($_POST["name"]);
$email = $conn->escape_string($_POST["email"]);
$comment = $conn->escape_string($_POST["comment"]);

$sql = "INSERT INTO comments (name, email, comment, article) VALUES ('$name', '$email', '$comment', '$article')";

if ($conn->query($sql) === TRUE) {
    header("Location: $ref");
} else {
    echo "Error: " . $sql . "<br>" . $conn->error;
}
added comment publish function 2020-10-27 13:46:22 +01:00			`<?php`
			`include("./internal/mysql.php");`

			`$ref = $_SERVER["HTTP_REFERER"];`
			`$article = $conn->escape_string(explode(".php", explode("Projekte/", $ref)[1])[0]);`
			`$name = $conn->escape_string($_POST["name"]);`
			`$email = $conn->escape_string($_POST["email"]);`
			`$comment = $conn->escape_string($_POST["comment"]);`

			`$sql = "INSERT INTO comments (name, email, comment, article) VALUES ('$name', '$email', '$comment', '$article')";`

			`if ($conn->query($sql) === TRUE) {`
			`header("Location: $ref");`
			`} else {`
			`echo "Error: " . $sql . "<br>" . $conn->error;`
			`}`