false, PDO::ATTR_ERRMODE=>PDO::ERRMODE_EXCEPTION)); $sql = "use $dbname"; $dbi->exec($sql); } catch(PDOException $e) { echo $sql . "
" . $e->getMessage(); } if (isset($_GET['genere'])) $genere=intval($_GET['genere']); else $genere=''; if (isset($_GET['id_cons_gen'])) $id_cons_gen=intval($_GET['id_cons_gen']); else $id_cons_gen='0'; if (isset($_GET['id_cons'])) $id_cons=intval($_GET['id_cons']); else $id_cons='0'; if (isset($_GET['op'])) $op=intval($_GET['op']); else $op='0'; if (isset($_GET['id_circ'])) $id_circ=intval($_GET['id_circ']); else $id_circ='0'; if (isset($_GET['id_sez'])) $id_sez=intval($_GET['id_sez']); else $id_sez='0'; if (isset($_GET['id_sede'])) $id_sede=intval($_GET['id_sede']); else $id_sede='0'; if (isset($_GET['id_lista'])) $id_lista=intval($_GET['id_lista']); else $id_lista='0'; if (isset($_GET['valista'])) $valista=intval($_GET['valista']); else $valista='0'; if (isset($_GET['sg'])) $sg=intval($_GET['sg']); else $sg='0'; if (isset($_GET['votinulli'])) $votinulli=intval($_GET['votinulli']); else $votinulli='0'; if (isset($_GET['contestati'])) $contestati=intval($_GET['contestati']); else $contestati='0'; if (isset($_GET['update'])) $update=intval($_GET['update']); else $update='0'; if (isset($_GET['pwd3'])) $pwd3=intval($_GET['pwd3']); else $pwd3='0'; if (isset($_GET['do'])) $do=intval($_GET['do']); else $do='0'; if (isset($_GET['valista'])) $validi=intval($_GET['valista']); else $validi='0'; if (isset($_GET['nulli'])) $nulli=intval($_GET['nulli']); else $nulli='0'; if (isset($_GET['bianchi'])) $bianchi=addslashes($_GET['bianchi']); else $bianchi='0'; if (isset($_GET['contestati'])) $contestati=addslashes($_GET['contestati']); else $contestati='0'; if (isset($_GET['votinulli'])) $votinulli=addslashes($_GET['votinulli']); else $votinulli='0'; if (isset($_GET['id_comune'])) $id_comune=intval($_GET['id_comune']); else $id_comune='0'; if (isset($_GET['ops'])) $ops=intval($_GET['ops']); else $ops='3'; if (isset($_GET['delete'])) $delete=intval($_GET['delete']); else $delete='0'; if (isset($_GET['circo'])) get_magic_quotes_gpc() ? $circo=$_GET['circo']:$circo=addslashes($_GET['circo']); else $circo=''; global $prefix,$id_parz,$fileout; $sql="SELECT tipo_cons FROM ".$prefix."_ele_consultazione where id_cons_gen='$id_cons_gen'" ; $res = $dbi->prepare("$sql"); $res->execute(); list($tipo_cons) = $res->fetch(PDO::FETCH_NUM); $sql="SELECT circo FROM ".$prefix."_ele_tipo where tipo_cons='$tipo_cons' "; $res = $dbi->prepare("$sql"); $res->execute(); list($circo)=$res->fetch(PDO::FETCH_NUM); if ($circo) $iscirco="and id_circ=$id_circ"; else $iscirco=''; if($id_lista){ $sql="select num_cand,id_cand from ".$prefix."_ele_candidati where id_cons='$id_cons' and id_lista='$id_lista' ORDER BY num_cand "; $result = $dbi->prepare("$sql"); $result->execute(); while(list($i,$y)=$result->fetch(PDO::FETCH_NUM)) { $vot="voti$i";$cand="id_cand$i"; if (isset($_GET[$cand])) $idcand[$i]=intval($_GET[$cand]); else $idcand[$i]=$y; if (isset($_GET[$vot])) $voti[$i]=intval($_GET[$vot]); else $voti[$i]='0'; # if (isset($_GET[$solo])) $solog[$i]=intval($_GET[$solo]); else $solog[$i]='0'; } }else{ $sql="select num_lista from ".$prefix."_ele_lista where id_cons='$id_cons' $iscirco ORDER BY num_lista "; $result = $dbi->prepare("$sql"); $result->execute(); $sololiste=0; while(list($i)=$result->fetch(PDO::FETCH_NUM)) { $vot="voti$i";$vnp="vnpl$i";$slp="slpl$i";$idlist="id_lista$i"; if (isset($_GET[$vnp])) $vnpl[$i]=intval($_GET[$vnp]); else $vnpl[$i]='0'; if (isset($_GET[$vot])) $voti[$i]=intval($_GET[$vot]); else $voti[$i]='0'; if (isset($_GET[$slp])) $slpl[$i]=intval($_GET[$slp]); else $slpl[$i]='0'; if (isset($_GET[$idlist])) $idlista[$i]=intval($_GET[$idlist]); else $idlista[$i]='0'; $sololiste+=$slpl[$i]; } } if (!isset($fileout)) $fileout=''; #if(($voti_u+$voti_d) and !$voti_t) $voti_t=$voti_u+$voti_d; if ($fileout) while (!$fp = fopen($fileout,"a")); ################## # if($id_lista){ if($pwd3==1) { $sql="delete from ".$prefix."_ele_voti_candidati where id_cons='$id_cons' and id_sez='$id_sez'"; $res = $dbi->prepare("$sql"); $res->execute(); $sql="delete from ".$prefix."_ele_controlli where tipo='candidato' and id_sez='$id_sez' "; $res = $dbi->prepare("$sql"); $res->execute(); if(!$id_lista){ $sql="delete from ".$prefix."_ele_voti_lista where id_cons='$id_cons' and id_sez='$id_sez'"; $res = $dbi->prepare("$sql"); $res->execute(); $sql="delete from ".$prefix."_ele_controlli where tipo='lista' and id_sez='$id_sez' "; $res = $dbi->prepare("$sql"); $res->execute(); $sql="update ".$prefix."_ele_sezioni set validi_lista='',contestati_lista='',voti_nulli_lista='',solo_gruppo='',solo_lista='' where id_cons='$id_cons' and id_sez='$id_sez'"; $res = $dbi->prepare("$sql"); $res->execute(); } }elseif($id_lista){ foreach($idcand as $idkey=>$idc){ $sql="select num_cand from ".$prefix."_ele_voti_candidati where id_sez='$id_sez' and id_cand='$idc'"; $result = $dbi->prepare("$sql"); $result->execute(); if($result->rowCount()) $sql="update ".$prefix."_ele_voti_candidati set voti='".$voti[$idkey]."' where id_sez='$id_sez' and id_cand='$idc'"; else $sql="insert into ".$prefix."_ele_voti_candidati values('$id_cons','$idc','$id_sez','$idkey','".$voti[$idkey]."')"; $result = $dbi->prepare("$sql"); $result->execute(); } }else{ $sql="update ".$prefix."_ele_sezioni set validi_lista='$validi',contestati_lista='$contestati',voti_nulli_lista='$votinulli',solo_gruppo='$sg' where id_cons='$id_cons' and id_sez='$id_sez'"; $res = $dbi->prepare("$sql"); $res->execute(); $sql="select num_lista,id_lista from ".$prefix."_ele_voti_lista where id_cons='$id_cons' and id_sez='$id_sez'"; $result = $dbi->prepare("$sql"); $result->execute(); if($result->rowCount()){ $sql="select num_lista,id_lista from ".$prefix."_ele_lista where id_cons='$id_cons' $iscirco"; $result = $dbi->prepare("$sql"); $result->execute(); while(list($i,$idl)=$result->fetch(PDO::FETCH_NUM)){ $sql="update ".$prefix."_ele_voti_lista set num_lista='$i',voti='".$voti[$i]."',nulli_lista='".$vnpl[$i]."',solo_lista='".$slpl[$i]."' where num_lista='$i' and id_sez='$id_sez'"; $res = $dbi->prepare("$sql"); $res->execute(); } }else{ $sql="select num_lista,id_lista from ".$prefix."_ele_lista where id_cons='$id_cons' $iscirco"; $result = $dbi->prepare("$sql"); $result->execute(); while(list($i,$idl)=$result->fetch(PDO::FETCH_NUM)){ $sql="insert into ".$prefix."_ele_voti_lista values('$id_cons','$idl','$id_sez','$i','".$voti[$i]."','".$vnpl[$i]."','".$slpl[$i]."')"; $res = $dbi->prepare("$sql"); $res->execute(); } } } include("ele_controlli.php"); controllo_votil($id_cons,$id_sez,$id_lista); include("ele_colora_sez.php"); if ($fileout) fclose($fp); $BASE=substr($_SERVER['PHP_SELF'], 0, strrpos($_SERVER['REQUEST_URI'], "/")-16); Header("Location: ".$BASE."admin.php?op=voti&id_cons_gen=$id_cons_gen&id_circ=$id_circ&id_sede=$id_sede&id_sez=$id_sez&do=spoglio&ops=$ops"); ################################# ?>