#!/usr/bin/perl -w
use CGI qw/:standard/;
use CGI::Carp qw(fatalsToBrowser);
use LWP::Simple;
use DBI;
require("cookie.lib");
my $cgi = new CGI;
my $DBNAME = "jejeno";
my $DBHOST = "sql24.webhuset.no";
my $DBUSERNAME = "jejeno";
my $DBPASSWORD = "lBEvGCx9t";
my $PATH = "/cgi-bin";
my $FILENAME = "jeje.cgi";
my $error = "";
my $error2 = "";
&GetCookies('jeje_id', 'jeje_al');
if ($cgi->param('submit_login')) {
my $email_tmp = $cgi->param('email');
my $password_tmp = $cgi->param('password');
if ($password_tmp =~ s/[^a-z0-9\_]//g) {
$error .= "* Ugyldig tegn i passordet. \n";
}
if ($error eq "") {
my $query = "SELECT id, email, password, access_level FROM users;";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$id, \$email, \$password, \$access_level);
while($sth->fetch()) {
if ($email_tmp eq $email && $password_tmp eq $password) {
$found = 1;
$v1 = $id;
$v2 = $access_level;
}
}
$sth->finish();
$dbh->disconnect;
}
if($found ne 1) {
$error .= "* E-post eller passord er feil.\n";
}
if($error eq "") {
&SetCookies('jeje_id', $v1);
&SetCookies('jeje_al', $v2);
print "Location: jeje.cgi\n\n";
exit;
} else {
print("Content-type: text/html\r\n\r\n");
getTop();
print("\n");
setPageHits(1);
getHtml(-1);
getBottom();
}
} elsif ($cgi->param('submit_signup')) {
my $name_tmp = $cgi->param('name');
my $email_tmp = $cgi->param('email');
my $password_tmp = $cgi->param('password');
if ($password_tmp =~ s/[^a-z0-9\_]//g) {
$error .= "* Ikke gyldig tegn, bruk a-z, 0-9 og _. \n";
}
$len = length($password_tmp);
if ($len <= 4) {
$error .= "* Passordet må være minst fem tegn. \n";
}
if ($name_tmp eq "") {
$error .= "* Navn må fylles ut. \n";
}
if ($email_tmp =~ /(@.*@)|(\.\.)|(@\.)|(\.@)|(^\.)/ || $email_tmp !~ /^.+\@(\[?)[a-zA-Z0-9\-\.]+\.([a-zA-Z]{2,3}|[0-9]{1,3})(\]?)$/) {
$error .= "* Vennligst skriv inn en gyldig epost. \n";
}
if ($error eq "") {
my $query = "SELECT email, password FROM users;";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$email, \$password);
while($sth->fetch()) {
if ($email_tmp eq $email) {
$found = 1;
}
}
$sth->finish();
$dbh->disconnect;
}
if ($found eq 1){
$error .= "* Beklager, men denne e-post adressen finnes allerede. \n";
}
if($error eq "") {
my ($second, $minute, $hour, $dayOfMonth, $month, $yearOffset, $dayOfWeek, $dayOfYear, $daylightSavings) = localtime();
my $year = 1900 + $yearOffset;
my $month = $month + 1;
my $date = "$year-$month-$dayOfMonth";
my $query = "INSERT INTO users VALUES (default, '$name_tmp', '$email_tmp', '$password_tmp', '', '', '', 'nor', '$date', 0, 2);";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$dbh->disconnect;
my $query = "SELECT id, access_level FROM users where email = '$email_tmp';";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$id, \$access_level);
$sth->fetch();
&SetCookies('jeje_id', $id);
&SetCookies('jeje_al', $access_level);
$sth->finish();
$dbh->disconnect;
print "Location: jeje.cgi\n\n";
exit;
} else {
print("Content-type: text/html\r\n\r\n");
getTop();
print("\n");
setPageHits(1);
getHtml(-1);
getBottom();
}
} elsif ($cgi->param('submit_user')) {
my $name_tmp = $cgi->param('name');
my $email_tmp = $cgi->param('email');
my $gender = $cgi->param('gender');
my $birthday_day = $cgi->param('birthday_day');
my $birthday_month = $cgi->param('birthday_month');
my $birthday_year = $cgi->param('birthday_year');
my $postal_code = $cgi->param('postal_code');
my $birthday = "$birthday_year-$birthday_month-$birthday_day";
if ($name_tmp eq "") {
$error .= "* Navn må fylles ut. \n";
}
if ($email_tmp =~ /(@.*@)|(\.\.)|(@\.)|(\.@)|(^\.)/ || $email_tmp !~ /^.+\@(\[?)[a-zA-Z0-9\-\.]+\.([a-zA-Z]{2,3}|[0-9]{1,3})(\]?)$/) {
$error .= "* Vennligst skriv inn en gyldig epost. \n";
}
if ($error eq "") {
my $query = "SELECT email, password FROM users WHERE id <> $Cookies{'jeje_id'};";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$email, \$password);
while($sth->fetch()) {
if ($email_tmp eq $email) {
$found = 1;
}
}
$sth->finish();
$dbh->disconnect;
}
if ($found eq 1){
$error .= "* Beklager, men denne e-post adressen finnes allerede. \n";
}
print("Content-type: text/html\r\n\r\n");
getTop();
print("\n");
print("
\n");
print("");
print("
\n");
print("
Rediger bruker / bytt passord
\n");
print("
\n");
if($error eq "") {
print("På grunn av streng sikkerhet, skriv inn e-post og passord: \n");
print("
\n");
} else {
print("Rediger eller legg til nye detaljer:\n");
print("
\n");
print(" $error\n");
}
print("
\n");
print("\n");
getCatBar();
print("
\n");
print("\n");
getBottom();
} elsif ($cgi->param('submit_security')) {
my $name_hidden = $cgi->param('name_tmp');
my $email_hidden = $cgi->param('email_tmp');
my $gender = $cgi->param('gender');
my $birthday = $cgi->param('birthday');
my $postal_code = $cgi->param('postal_code');
my $email_tmp = $cgi->param('email');
my $password_tmp = $cgi->param('password');
if ($password_tmp =~ s/[^a-z0-9\_]//g) {
$error .= "* Ugyldig tegn i passordet. \n";
}
if ($error eq "") {
my $query = "SELECT id, email, password, access_level FROM users WHERE id = $Cookies{'jeje_id'};;";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$id, \$email, \$password, \$access_level);
while($sth->fetch()) {
if ($email_tmp eq $email && $password_tmp eq $password) {
$found = 1;
$v1 = $id;
$v2 = $access_level;
}
}
$sth->finish();
$dbh->disconnect;
}
if($found ne 1) {
$error .= "* E-post eller passord er feil.\n";
}
print("Content-type: text/html\r\n\r\n");
getTop();
print("\n");
print("
\n");
print("");
print("
\n");
print("
Rediger bruker / bytt passord
\n");
print("
\n");
if($error eq "") {
my $query = "UPDATE users SET name = '$name_hidden', email = '$email_hidden', gender = $gender, birthday = '$birthday', postal_code = $postal_code WHERE id = $Cookies{'jeje_id'};";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$dbh->disconnect;
print("Brukeren er endret! \n");
print "\n";
} else {
print("På grunn av streng sikkerhet, skriv inn e-post og passord: \n");
print("
\n");
print(" $error\n");
}
print("
\n");
print("\n");
getCatBar();
print("
\n");
print("\n");
getBottom();
} elsif ($cgi->param('submit_pass')) {
my $old_password = $cgi->param('old_password');
my $new_password1 = $cgi->param('new_password1');
my $new_password2 = $cgi->param('new_password2');
my $query = "SELECT password FROM users WHERE id = $Cookies{'jeje_id'};";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$password);
$sth->fetch();
if ($old_password eq $password) {
$found = 1;
}
$sth->finish();
$dbh->disconnect;
if ($found ne 1){
$error .= "* Gammelt passord stemmer ikke. \n";
}
if ($new_password1 =~ s/[^a-z0-9\_]//g) {
$error .= "* Ikke gyldig tegn i nytt passord, bruk a-z, 0-9 og _. \n";
}
if ($new_password1 ne $new_password2) {
$error .= "* Nytt passord og gjenta nytt passord er forskjellig. \n";
}
$len = length($new_password1);
if ($len <= 4) {
$error .= "* Nye passordet må være minst fem tegn. \n";
}
print("Content-type: text/html\r\n\r\n");
getTop();
print("\n");
print("
\n");
print("");
print("
\n");
print("
Rediger bruker / bytt passord
\n");
print("
\n");
if($error eq "") {
my $query = "UPDATE users SET password = '$new_password1' WHERE id = $Cookies{'jeje_id'};";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$dbh->disconnect;
print("Passordet er endret! \n");
print "\n";
} else {
print("Bytt passord:\n");
print("
\n");
print(" $error\n");
}
print("
\n");
print("\n");
getCatBar();
print("
\n");
print("\n");
getBottom();
} elsif ($cgi->param('submit_sendpass')) {
my $email_tmp = $cgi->param('password_email');
if ($email_tmp =~ /(@.*@)|(\.\.)|(@\.)|(\.@)|(^\.)/ || $email_tmp !~ /^.+\@(\[?)[a-zA-Z0-9\-\.]+\.([a-zA-Z]{2,3}|[0-9]{1,3})(\]?)$/) {
$error2 .= "* Vennligst skriv inn en gyldig epost. \n";
}
if ($error2 eq "") {
my $query = "SELECT email FROM users;";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$email);
while($sth->fetch()) {
if ($email_tmp eq $email) {
$found = 1;
}
}
$sth->finish();
$dbh->disconnect;
}
if ($found ne 1){
$error2 .= "* Beklager, men denne e-post adressen finnes ikke / er ikke registrert. \n";
}
print("Content-type: text/html\r\n\r\n");
getTop();
print("\n");
print("
\n");
print("");
print("
\n");
print("
Glemt passordet ditt?
\n");
print("
\n");
if($error2 eq "") {
sendPassword($email_tmp);
print("Passordet er sendt til e-post adresse: $email_tmp. \n");
print "\n";
} else {
print("Skriv inn e-post adressen som passordet skal sendes til. \n");
print("Denne e-postadressen må være identisk med din registrerte e-postadresse. \n");
print("
\n");
print(" $error2\n");
}
print("
\n");
print("\n");
getCatBar();
print("
\n");
print("\n");
getBottom();
} elsif($cgi->param('submit_link')) {
print("Content-type: text/html\r\n\r\n");
getTop();
my $title = $cgi->param('title');
my $description = $cgi->param('description');
my $url = $cgi->param('url');
my $search_words = $cgi->param('search_words');
my $cat_id = $cgi->param('cat_id');
print("\n");
print("
Nettsiden $title er sendt til godkjenning.. \n");
print("Hvis dette er en seriøs nettside, vil den være tilgjengelig for alle innen 24 timer. \n");
print("Tusen takk for bidraget!
..JEJE.no!
\n");
print "\n";
}
print("
\n");
print("\n");
getCatBar();
print("
\n");
getBottom();
} elsif($cgi->param('submit_cat')) {
print("Content-type: text/html\r\n\r\n");
getTop();
my $title = $cgi->param('title');
my $search_words = $cgi->param('search_words');
my $parent_id = $cgi->param('parent_id');
print("\n");
print("
Kategorien $title er sendt til godkjenning.. \n");
print("Hvis dette er en seriøs kategori, vil den være tilgjengelig for alle innen 24 timer. \n");
print("Tusen takk for bidraget!
\n");
#print("TIPS: Hvis du har en datamaskin som du eier eller bruker mye, ikke logg deg ut! Neste gang du bruker JEJE.no og du ikke har logget deg ut, er favoritter og de andre personlige elementene tilgjengelig med en gang! Altså du slipper å logge deg inn for hver gang. Brukerinformasjonen og passordet ditt er beskyttet med at du må gjenta e-post og passord når endringer gjøres.\n");
print("
\n");
print(" * er felter som må fylles ut!\n");
}
sub getAddLinkHtmlError {
my ($title, $description, $url, $search_words, $cat_id) = @_;
print("
\n");
print(" * er felter som må fylles ut!\n");
}
sub getAddCatHtml {
print("
\n");
print(" * er felter som må fylles ut!\n");
}
sub getAddCatHtmlError {
my ($title, $search_words, $parent_id) = @_;
print("
\n");
print(" * er felter som må fylles ut!\n");
}
sub getPosition {
my ($cat_id) = @_;
if($cat_id == -1) {
print("\n");
} else {
my $query = "SELECT title, parent_id FROM cat WHERE id=$cat_id";
my $dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
my $sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$title, \$parent_id);
$sth->fetch();
my $this_title = $title;
my $query2 = "SELECT id, title FROM cat WHERE id=$parent_id";
my $sth2 = $dbh->prepare($query2);
$sth2->execute();
$sth2->bind_columns(\$id, \$title);
$sth2->fetch();
print("
\n";
}
$sth->finish();
$dbh->disconnect;
}
# Function setCatHits updates the sql with count of hits..
sub setCatHits {
my ($cat_id) = @_;
my $query = "UPDATE cat SET hits = hits + 1 WHERE id=" . $cat_id . ";";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$dbh->disconnect;
}
sub setPageHits {
my ($id) = @_;
my $query = "UPDATE page_hits SET hits = hits + 1 WHERE id=$id;";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$dbh->disconnect;
}
sub getInfo {
#open (FILE,"info.txt");
#$mainpage = "";
#while () {
# $mainpage .= $_;
#}
#close (FILE);
print("Hvorfor bruke JEJE.no? \n");
print("JEJE.no - Lett å nett!, en enkel vei ut på det store Internett. \n");
print("Denne startsiden har i motsetning til andre startsider en ren og fin meny som gjør det enkelt for brukerne å finne hva de måtte lete etter. \n");
print("Utseende har også et preg av enkelhet for at det skal bli oversiktlig og klar til bruk for enhver person som måtte ønske det. \n");
print("Så kom å bruk snareveier til søkemotorer og legg til dine favorittsider slik at du raskt og enkelt kan finne de igjen når du skal på internett! \n");
print("Har du en nettside som du liker godt er det bare å legge den til slik at JEJE.no blir større, og at andre brukere kan få glede av den også!
\n");
print("Hvorfor registrere seg på JEJE.no? \n");
print("Det tar deg nesten like lang tid å registrere deg som å logge deg inn på JEJE.no.. Med kun; navn, e-post og passord så er du registrert! \n");
print("Fordelen ved å være registrert er at du får tilgang til å legge til favoritter og bruke disse som snarvei. Du får også muligheten til å gjøre JEJE.no til en mer personlig startside.\n");
}
sub getPic {
my $query = "SELECT id, day, month, year, url FROM picture;";
my ($second, $minute, $hour, $dayOfMonth, $month, $yearOffset, $dayOfWeek, $dayOfYear, $daylightSavings) = localtime();
my $year = 1900 + $yearOffset;
my $month = $month + 1;
my $theTime = "$dayOfMonth.$month.$year";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$id, \$day, \$month, \$year, \$url);
while($sth->fetch()) {
my $theTime2 = "";
for($i=0;$i<=6;$i++) {
my $theTime2 = "" . ($day+$i) . ".$month.$year";
if($theTime eq $theTime2) {
print("\n");
setPicHits($id);
last;
}
}
}
$sth->finish();
$dbh->disconnect;
}
# Function setHits updates the sql with count of hits..
sub setPicHits {
my ($id) = @_;
my $query = "UPDATE picture SET hits = hits + 1 WHERE id=$id;";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$dbh->disconnect;
}
sub getSendMail {
print("Spørsmål? Send oss en e-post!
");
print("
\n");
}
sub sendMail {
my ($from, $subject, $message) = @_;
if($from eq "") {
$from = "anonym\@jeje.no";
}
open (MAIL, "|/usr/sbin/sendmail -t");
print MAIL "From: $from\n";
print MAIL "To: support\@jeje.no\n";
print MAIL "Subject: SUPPORT: $subject\n\n";
print MAIL "$message";
close(MAIL);
}
sub getTop {
print("\n");
print("\n");
print("\n");
print("\n");
print("\n");
print("\n");
print("\n");
print(" \n");
print(" \n");
print(" \n");
print(" \n");
print(" \n");
print("\n");
print(" JEJE.no - Lett på nett!\n");
print(" \n");
print(" \n");
print("
\n");
my $query = "SELECT name FROM users where id=$Cookies{'jeje_id'};";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$name);
$sth->fetch();
print("Logget inn som: \n");
print("$name
\n");
my $query = "SELECT name FROM users where id=$Cookies{'jeje_id'};";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$name);
$sth->fetch();
print("Logget inn som: \n");
print("$name
\n");
$sth->finish();
$dbh->disconnect;
print("Logg ut \n");
}
}
}
print("
\n");
print("\n");
print("\n");
print("
TOPP 10!
\n");
print("
\n");
getTopp10();
print("
\n");
print("\n");
print("
\n");
print("\n");
print("
\n");
print("
\n");
my $year = getYear();
my $datetime = getDateTime();
print("\n");
print("
\n");
print("
\n");
print("\n");
print("\n");
print("\n");
print("\n");
}
sub getTopp10 {
my $query = "SELECT id, title, description, hits FROM link order by hits desc;";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$id, \$title, \$description, \$hits);
my $count = 1;
while($sth->fetch()) {
if($count ne 1) {
print("\n");
}
if ($Cookies{'jeje_id'} ne "" && $Cookies{'jeje_al'} ne "") {
my $found = 0;
my $query = "SELECT user_id, link_id FROM favorite where user_id = $Cookies{'jeje_id'};";
$sth2 = $dbh->prepare($query);
$sth2->execute();
$sth2->bind_columns(\$user_id, \$link_id);
while($sth2->fetch()) {
if($user_id eq $Cookies{'jeje_id'} && $link_id eq $id) {
$found = 1;
}
}
$sth2->finish();
if($found ne 1) {
print("\n");
}
}
print "
\n");
print("For å legge til en favoritt: Gå til arkivet, søk eller topp 100. Der finnes det mange nettsider. Til høyre for en av nettsidene, er det en stjerne. Klikk på denne! \n");
}
}
sub addFavorite {
my ($id1, $id2) = @_;
my $query = "SELECT user_id, link_id FROM users;";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$user_id, \$link_id);
while($sth->fetch()) {
if ($id1 eq $user_id && $id2 eq $link_id) {
$found = 1;
}
}
$sth->finish();
$dbh->disconnect;
if($found ne 1) {
print("
\n");
}
print "\n";
}
sub editFavorites {
if ($Cookies{'jeje_id'} ne "" && $Cookies{'jeje_al'} ne "") {
my $query = "SELECT link_id FROM favorite where user_id = $Cookies{'jeje_id'};";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$link_id);
my $count = 0;
while($sth->fetch()) {
if($link_id) {
$count = $count + 1;
if($count ne 1 and $count ne 2) {
print("\n");
}
my $query2 = "SELECT title FROM link where id = $link_id;";
$sth2 = $dbh->prepare($query2);
$sth2->execute();
$sth2->bind_columns(\$title);
$sth2->fetch();
print("
\n");
}
sub getSendPassword {
print("Skriv inn e-post adressen som passordet skal sendes til. \n");
print("Denne e-postadressen må være identisk med din registrerte e-postadresse. \n");
print("
\n");
}
sub sendPassword {
my ($email) = @_;
my $query = "SELECT password FROM users WHERE email = '$email';";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$password);
$sth->fetch();
open (MAIL, "|/usr/sbin/sendmail -t");
print MAIL <<__END_OF_MESSAGE__;
To: $email
From: support\@jeje.no
Subject: Passord til JEJE.no
__END_OF_MESSAGE__
print MAIL ("Hei!
Her er passordet til brukeren din:
e-post:\t\t\t $email
passord:\t\t\t$password
NB! Pga. sikkerhet, anbefales passord-bytte med en gang du logger inn.
Med vennlig hilsen
JEJE.no Support Team
support\@jeje.no\n");
close (MAIL);
$sth->finish();
$dbh->disconnect;
}
sub getLast10 {
my $query = "SELECT id, title, description, hits FROM link order by id desc;";
$dbh = DBI->connect("dbi:mysql:$DBNAME;$DBHOST",$DBUSERNAME,$DBPASSWORD);
$sth = $dbh->prepare($query);
$sth->execute();
$sth->bind_columns(\$id, \$title, \$description, \$hits);
my $count = 1;
while($sth->fetch()) {
if($count ne 1) {
print("\n");
}
if ($Cookies{'jeje_id'} ne "" && $Cookies{'jeje_al'} ne "") {
my $found = 0;
my $query = "SELECT user_id, link_id FROM favorite where user_id = $Cookies{'jeje_id'};";
$sth2 = $dbh->prepare($query);
$sth2->execute();
$sth2->bind_columns(\$user_id, \$link_id);
while($sth2->fetch()) {
if($user_id eq $Cookies{'jeje_id'} && $link_id eq $id) {
$found = 1;
}
}
$sth2->finish();
if($found ne 1) {
print("\n");
}
}
print "