Haha, if you look at the date of that review, it was made in August of last year. I have no idea why it suddenly showed up. The review I was speaking of previously wasn't that.
I typed a review for a game, clicked submit and was taken to the page that says, "Your review has been submitted and can be seen here." When I clicked the link, it wasn't there.
i have an odd feeling that the code for the review and comments scripts are still sending their updates to zzt.org, which no longer exists. i may be wrong though! i don't really know about these things
he looked upon the world and saw it was still depraved
I am able to make test comments without a problem. As for reviews, I figured out the problem: single quotes/apostrophes were not being escaped in the review text, which screwed up the SQL queries if your review contained this character. This was why the review script worked for me but nobody else; I was testing it using random letters (but no punctuation), while everybody else was posting real reviews (including characters such as apostrophes).
http://yahoo.com/ wrote:So uh, how did that script ever work on the old site?
It's because of a little feature called Magic Quotes. Magic Quotes basically runs addslashes() automatically on all input received by the script; the idea is to escape certain characters (such as quotes) so that they don't mess up stuff like SQL queries. As far as I can tell, it was meant as a convenience; escaping important characters is one less thing you have to worry about.
However, I don't like it that much because it's a feature that can be turned on or off, depending on how PHP is configured. If your PHP script relies on Magic Quotes, moving it to a server on which that option is turned off will break it; the same goes for moving a script that expects raw input. This convenient feature actually makes PHP scripts less portable; to be portable, you must check to see if Magic Quotes is on before calling addslashes(), and this just seems like more hassle than it's worth.