funchat/modules/search/search.php

<?php
If (!defined("INBCWE")) {
    die("Dieses Script kann nicht ausserhalb des Frameworks laufen!");
} 
page_begin("Search", False);
$rightnavi=FALSE;
$topnav_home="<li><a href=\"/index.php\">Home</a></li>";
$topnav_module=" <li>Suchergebnisse</li>";

If ($_POST['search']!="" || $_GET['websearch']=="1") {

If(isset($_GET['start'])){
$start=intval($_GET['start']);
} else {
$start=0;
}

if($_GET['websearch']=="1"){
$search=$db->escape_string(htmlentities($_GET['search'],ENT_NOQUOTES, CHARSET));
$stype=$db->escape_string($_GET['styp']);
$sexact=$db->escape_string($_GET['sexact']);
}else{
$search=$db->escape_string(htmlentities($_POST['search'],ENT_NOQUOTES, CHARSET));
$stype=$db->escape_string($_POST['styp']);
$sexact=$db->escape_string($_POST['sexact']);
}
If($sexact==""){
$sexact="0";
}

If($stype==""){
$stype="all";
}

If(isset($search) && $search!=""){
If($stype=="all"){

If($sexact=="1"){
$resultr = $db->query("SELECT * FROM ".TABLE_PREFIX."reviews WHERE `interpret` LIKE '$search' OR `title` LIKE '$search' OR `isbn` LIKE '$search' OR `review` LIKE '$search' OR `description` LIKE '$search' OR `publisher` LIKE '$search' OR `author` LIKE '$search' AND appr='1'  ORDER BY timestamp DESC") or die(mysqli_error());
//$resultc = $db->query("SELECT * FROM ".TABLE_PREFIX."reviews WHERE `interpret` LIKE '$search' OR `title` LIKE '$search' OR `isbn` LIKE '$search' OR `review` LIKE '$search' OR `description` LIKE '$search' OR `publisher` LIKE '$search' OR `author` LIKE '$search' AND appr='1'  ORDER BY timestamp") or die(mysqli_error());
} else {
$resultr = $db->query("SELECT * FROM ".TABLE_PREFIX."reviews WHERE `interpret` LIKE '%$search%' OR `title` LIKE '%$search%' OR `isbn` LIKE '%$search%' OR `review` LIKE '%$search%' OR `description` LIKE '%$search%' OR `publisher` LIKE '%$search%' OR `author` LIKE '%$search%' AND appr='1'  ORDER BY timestamp DESC") or die(mysqli_error());
//$resultc = $db->query("SELECT * FROM ".TABLE_PREFIX."reviews WHERE `interpret` LIKE '%$search%' OR `title` LIKE '%$search%' OR `isbn` LIKE '%$search%' OR `review` LIKE '%$search%' OR `description` LIKE '%$search%' OR `publisher` LIKE '%$search%' OR `author` LIKE '%$search%' AND appr='1'  ORDER BY timestamp") or die(mysqli_error());
}

}else{

if($sexact=="1"){
$resultr = $db->query("SELECT * FROM ".TABLE_PREFIX."reviews WHERE `". $stype ."` LIKE '$search' AND appr='1' ORDER BY timestamp") or die(mysqli_error());
//$resultc = $db->query("SELECT * FROM ".TABLE_PREFIX."reviews WHERE `". $stype ."` LIKE '$search' AND appr='1' ORDER BY timestamp") or die(mysqli_error());
} else {
$resultr = $db->query("SELECT * FROM ".TABLE_PREFIX."reviews WHERE `". $stype ."` LIKE '%$search%' AND appr='1'  ORDER BY timestamp") or die(mysqli_error());
//$resultc = $db->query("SELECT * FROM ".TABLE_PREFIX."reviews WHERE `". $stype ."` LIKE '%$search%' AND appr='1'  ORDER BY timestamp") or die(mysqli_error());
}

}

}
//$numrows = $db->num_rows($resultc);
//var_dump($numrows);
$pages=ceil($numrows/20);
$i=1;
if($numrows > 20){
if($start > 0){
$thispage=($start+20)/1;
   $footage="<a href=\"/index.php?task=reviews&amp;start=" . ($start -20) .$add."\"><< Zur&uuml;ck</a>";
        }else{
   $footage="<a><< Zur&uuml;ck</a>";
        $thispage=1;
        }
while($i<=$pages){
If(20*$i==$start+20){
 $footage=$footage." "."<a>".$i."</a>";
}else{
$footage=$footage." <a href=\"/index.php?task=reviews&amp;start=" . (($i-1)*20) .$add. "\">".$i."</a>";
}
$i++;
}
if($numrows > ($start + 20)){
   $footage=$footage." <a href=\"/index.php?task=reviews&amp;start=" . ($start + 20) .$add ."\">Weiter >></a><br />\n";
   }else{
 $footage=$footage." <a>Weiter >></a><br />\n";
}
}

$reviews=overview($resultr,$start);
$tpl -> assign('link',$link);
$tpl -> assign('reviews',$reviews);
$tpl -> assign('footage',$footage);
$content=$tpl -> fetch('listsearch.tpl');
}else{
$content=$tpl -> fetch('search.tpl');
}
?>