# HG changeset patch
# User Franck Deroche <webmaster@defr.org>
# Date 1205249587 -3600
# Node ID 434751e80c88414ea56195443e08e1d6a54024c1
# Parent  d4f26e9767bfd7fb90484c34f4d34e0ae530d1fd
Utilisation de la classe Requete dans tb.php

Cela permet de gérer automatiquement l'ajout des quotes si on a pas de
magic_quotes notamment, empechant les injections SQL :-)

diff -r d4f26e9767bf -r 434751e80c88 tb.php
--- a/tb.php	Tue Mar 11 08:16:11 2008 -0700
+++ b/tb.php	Tue Mar 11 16:33:07 2008 +0100
@@ -1,13 +1,14 @@
 <?php
 	header("Content-Type: text/xml");
 	echo("<?xml version='1.0' encoding='utf-8'?>");
-	include("classes.php");
+	require_once("classes.php");
+	$Req = new Requete();
 	$id = $_GET['id'];
 	$Data->Query("SELECT * FROM Messages WHERE num_mess=$id");
 	$post_infos = $Data->GetRow();
-	$titre = array_key_exists("title", $_POST)?$_POST['title']:"Undefined";
-	$url = array_key_exists("url", $_POST)?$_POST['url']:"#";
-	$info = array_key_exists("__info", $_POST)?$_POST['__info']:-1;
+	$titre = $Req->Get('title', 'POST', 'Undefined');
+	$url = $Req->Get('url', 'POST', '#');
+	$info = $Req->Get('__info', 'POST', -1);
 	if($info == 1) {
 		$error = 0;
 		$message = "Some informations";