0) { $input_id = $_id; } else { $input_id = $_REQUEST["input_id"]; } if ($input_id <> '') { $query = "SELECT * FROM main_infopoint_screens WHERE id = '" . $input_id . "' LIMIT 1"; $result = @mysqli_query($GLOBALS['mysql_con'], $query); if (@mysqli_num_rows($result) == 1) { $input_line = @mysqli_fetch_array($result); require_once("infopoint_screens_cardform.inc.php"); } } else { require_once("infopoint_screens_cardform.inc.php"); } } function save_screen() { $translation = \DynCom\mysyde\common\classes\Registry::get("translation"); $messages = array(); $id = $_REQUEST["input_id"]; $default_active = $_REQUEST["input_default_active"]; $header_id = ""; if ($_REQUEST["input_id"] <> '') { $query = "UPDATE main_infopoint_screens SET description = '" . mysqli_real_escape_string($GLOBALS['mysql_con'], $_REQUEST["input_description"]) . "' , modified_date = '" . time() . "', modified_user = '" . (int)$GLOBALS["admin_user"]['id'] . "', main_infopoint_preset_id = '" . $_REQUEST["input_infopoint_preset"] . "' WHERE id = " . $_REQUEST["input_id"] . " LIMIT 1"; $inserted = FALSE; } else { $hash = base64_encode(random_bytes(18)); $query = "INSERT INTO main_infopoint_screens (hash, description, modified_date, modified_user, main_infopoint_preset_id) VALUES ( '".$hash."', '".mysqli_real_escape_string($GLOBALS['mysql_con'], $_REQUEST["input_description"])."', '".time()."', '".(int)$GLOBALS["admin_user"]['id']."', '".$_REQUEST["input_infopoint_preset"]."' )"; $inserted = TRUE; } if ($_REQUEST["input_description"] == '') { $messages[] = "