<% if Session("loggedin") <> "" then success = 1 end if if request("del") <> "" then sql = "delete from [guestbook] where guestbookid=" & request("del") dbConnObj.Execute(sql) end if if request("sub") <> "" then login=request("login") password=request("password") fail = 0 if login = "" or password = "" then fail = 1 else if login = "mumzy" and password = "mew" then success = 1 Session("loggedin") = "mumzy" end if end if end if if request("pvt") <> "" or fail = 1 then %> <% if fail = 1 then %> <% end if %> <% end if %> <% if success = 1 then %> <% end if %> <% if success <> 1 then %> <% end if %>
 
  Welcome to OzLadyM's GuestBook!
  View my Guestbook   Add to Guestbook
  *Invalid username or password.
 
Username:
  Password:
 
  Hello Mumzy!
  <% if success = 1 then sql = "select * from [guestbook] order by datePosted desc" else sql = "select * from [guestbook] order by datePosted desc" end if set rs = dbConnObj.Execute(sql) do while not rs.EOF name=""&rs("name") email=""&rs("email") comments=""&rs("comments") datePosted=""&rs("datePosted") location=""&rs("location") homepage=""&rs("homepage") priv=""&rs("private") ip=""&rs("ip") id=""&rs("guestbookID") %> <% if success = 1 then %> <% end if %> <% if homepage <> "" then %> <% end if %> <% rs.moveNext loop %>
(IP: <%=handleDQ(handleHTML(ip))%>) Delete
Name: <%=name%> <% if success = 1 then %> (edit)<% end if %> Email: <% if trim(email) = "" then %>(none)<% else %><%=handleDQ(handleHTML(email))%><% end if %>
Date Posted: <%=FormatDateTime(datePosted, 1)%>
Location: <% if location = "" then %>(none)<% else %><%=handleDQ(handleHTML(location))%><% end if %>
Homepage: <%=handleDQ(handleHTML(homepage))%>
Comments:
<%=comments%>

  Administrator? click here to view all entries (private/public).