File: /home/httpd/html/camrub.com/public_html/includes/inc.add_favorites.php
<?
session_start();
include('../admin/db.php');
if(!$_SESSION['userid']) {
$info = 'You have to be logged in to add this content to your favorites.';
}
if(!isset($info)){
if(!isset($_REQUEST['site']) || !isset($_REQUEST['username'])) {
$info = 'Invalid content ID.';
} else {
$site = (int)$_REQUEST['site'];
$username = mysqli_real_escape_string($dblink,$_REQUEST['username']);
dbQuery("INSERT IGNORE INTO favorites SET user = '".(int)$_SESSION['userid']."', performer_name = '".$username."', performer_site = '".(int)$site."'");
$info = "Added to favorites!";
}
}
echo $info;