<?php
if (!isset($titel)) $titel = '';
if (!isset($news)) $news = '';
if (!isset($_POST['news2'])) $_POST['news2'] = '';
if (!isset($_POST['news3'])) $_POST['news3'] = '';
if (!isset($_POST['news4'])) $_POST['news4'] = '';
if (!isset($id)) $id = '0';
if (!isset($_POST['auffuehren'])) $_POST['auffuehren'] = '0';
if (!isset($_POST['load'])) $_POST['load'] = '0';
if (!isset($_POST['loader'])) $_POST['loader'] = '0';
if ($_POST['news4'] == 'seite') {
$sql = sql::$db->query("UPDATE " . _VMS_ . "_kontodaten SET news='1' WHERE 1");
$sql->execute();
if ($_POST['id'] == 0){
$sql=sql::$db->prepare("INSERT INTO " . _VMS_ . "_news (zeit,titel,news) VALUES (?,?,?)");
$zeit=time();
$sql->execute(array($zeit, $_POST['titel'], $_POST['news']));
}
if ($_POST['id'] >= 1){
$sql=sql::$db->prepare("UPDATE " . _VMS_ . "_news SET titel=?,news=? WHERE id=?");
$sql->execute(array($_POST['titel'], $_POST['news'], $_POST['id']));
}
}
if ($_POST['news2'] == 'Newsletter und seite') {
$sql = sql::$db->query("UPDATE " . _VMS_ . "_kontodaten SET news='1' WHERE 1");
$sql->execute();
if ($_POST['id'] == 0){
$sql=sql::$db->prepare("INSERT INTO " . _VMS_ . "_news (zeit,titel,news) VALUES (?,?,?)");
$zeit=time();
$sql->execute(array($zeit, $_POST['titel'], $_POST['news']));
}
if ($_POST['id'] >= 1){
$sql=sql::$db->prepare("UPDATE " . _VMS_ . "_news SET titel=?,news=? WHERE id=?");
$sql->execute(array($_POST['titel'], $_POST['news']), $_POST['id']);
}
$empfaenger=sql::$db->query('SELECT emailadresse FROM ' . _VMS_ . '_emaildaten WHERE freigabe_fuer = 1 OR freigabe_fuer = 3 GROUP BY emailadresse');
while ($user = $empfaenger->fetch()){
usermail ($user['emailadresse'], $_POST['titel'], $_POST['news'], '"' . $system['seitenname'] . '" <' . $system['betreibermail'] . '>');
}
}
if ($_POST['news3'] == 'Newsletter') {
$sql = sql::$db->query("UPDATE " . _VMS_ . "_kontodaten SET news='1' WHERE 1");
$sql->execute();
$empfaenger=sql::$db->query('SELECT emailadresse FROM ' . _VMS_ . '_emaildaten WHERE freigabe_fuer = 1 OR freigabe_fuer = 3 GROUP BY emailadresse');
while ($user = $empfaenger->fetch()){
usermail ($user['emailadresse'], $_POST['titel'], $_POST['news'], '"' . $system['seitenname'] . '" <' . $system['betreibermail'] . '>');
}
}
if ($_POST['load'] == 'Editieren') {
$sql=sql::$db->query("SELECT * FROM " . _VMS_ . "_news WHERE id='" . $_POST['loader'] . "'");
$edit=$sql->fetch();
$titel = $edit['titel'];
$news = $edit['news'];
$id = $edit['id'];
}
if ($_POST['load'] == 'Löschen') {
$sql=sql::$db->prepare("DELETE FROM " . _VMS_ . "_news WHERE id=?");
$sql->execute(array($_POST['loader']));
}
head("News editieren / löschen");
?>
<table>
<form action="" method="post">
<tr>
<td>
<select name="loader" size="1">
<?php
$old_news = sql::$db->query("SELECT * FROM " . _VMS_ . "_news ORDER BY id DESC");
while ($load = $old_news->fetch()) {
echo '<option value="' . $load['id'] . '">(' . $load['id'] . ') - ' . $load['titel'] . ' (' . date("d.m.Y - H:i", $load['zeit']) . ')</option>';
}
?>
</select>
</td>
<td><input type="Submit" name="load" value="Editieren"></td>
<td><input type="Submit" name="load" value="Löschen"></td>
</tr>
</form>
</table>
<?php foot();
head("News schreiben (html erlaubt!)");
?>
<div align="center">
<form action="" method="post">
<b>Newstitel</b><br>
<input type="Text" name="titel" value="<?php echo $titel;?>"><br>
<br>
<b>News</b><br>
<textarea name="news" style="width:900px; height:1000px;"><?php echo $news;?></textarea><br>
<br>
<br>
<input type="Submit" name="news4" value="seite">
<input type="Submit" name="news2" value="Newsletter und seite">
<input type="Submit" name="news3" value="Newsletter">
<input type="Hidden" name="id" value="<?php echo $id;?>">
</form>
</div>
<?php foot();?>