<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "
http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<?php
mysql_connect("localhost","XXXXXX","XXXXXX")or die (mysql_error());
mysql_select_db("XXXXXX")or die (mysql_error());
mysql_query("SET NAMES hebrew");
if(intval($_GET['id']))
$res=mysql_query("SELECT * FROM parasa WHERE id={$_GET['id']} LIMIT 1") or die (mysql_error());
else
$res=mysql_query("SELECT * FROM parasa ORDER BY id DESC LIMIT 1") or die (mysql_error());
$parasa=mysql_fetch_array($res);
?>
<html>
<head>
<title>Untitled</title>
</head>
<body>
<?php
if(isset($_POST['submited']))
{
function my_err($my_msg)
{
global $failed;
global $err_msg;
if ($failed == FALSE)
{
$failed=TRUE;
$err_msg .="Error(s): <br /> \n";
}
$err_msg .= "$my_msg <br /> \n";
}
$parasa=mysql_query("SELECT 'title', 'body' FROM 'parasa' WHERE 'body' LIKE '%".$_POST['searchTXT']."%' LIMIT ".$_GET['id'] * 10 - 10.", ".$_GET['id'] * 10);
if(mysql_num_rows($parasa) == 0)
{
my_err('subject not found');
}
else
{
while($info=mysql_fetch_array($parasa))
{
$info['title'] = str_replace($info['title'], '<b>'.$info['title'].'</b>';
echo '<div>';
echo $info['title'].'<br />';
echo '<a href="'.$info['id'].'">Download now!</a>';
echo '</div>';
echo '<br />';
}
$parasa=mysql_query("SELECT `id` FROM `parasa` WHERE `title` LIKE '%".$_POST['searchTXT']."%'");
$rows=round(mysql_num_rows($parasa));
for($i = 1; $i <= $rows; $i++);
{
if($i == $_GET['page'])
{
echo '<a href="search.php?page='.$i.'"><b>'.$i.'</b></a>';
continue;
}
echo '<a href="search.php?page='.$i.'">'.$i.'</a>';
}
echo '</span>';
echo '</body>
</html>';
exit;
}
?>
<?php
if($failed)
echo '<span>'.$err_msg.'</span>';
?>
<form action="search.php" method="post">
<span>Search me:</span><input type="text" name="searchTXT" />
<input type="submit" name="submited" value="TRUE" />
</form>
</body>
</html>