$value ) { if ( !is_array( $key ) ) { $value = strip_tags( $value ); $_POST[$key] = htmlspecialchars( stripslashes( trim( $value ) ) ); } } date_default_timezone_set( 'Etc/UTC' ); date_default_timezone_set( "America/Mexico_City" ); function h_busqueda( $busc ) { $coma_i = 0; $i = 0; $trozos_j = array(); do { $coma_i = strpos( $busc, '"' ); if ( $coma_i === true ) { $coma_f = strpos( $busc, '"', ( $coma_i + 1 ) ); if ( $coma_f === true ) { $trozos_j[$i] = substr ( $busc, $coma_i, ( $coma_f - $coma_i ) ); $encontrado = true; $i++; $busc = substr( $busc,( $coma_f + 1 ) ); } else { $encontrado = false; } } } while ( $encontrado ); $busc = str_replace( '"', "", $busc ); $busc = str_replace( '\\', "", $busc ); $trozos_i = explode( " ", $busc ); $trozos = array_merge( $trozos_j, $trozos_i ); $idro = count( $trozos ); $bus = "+" . $trozos[0]; for ( $i = 1; $i < $idro; $i++ ) { $bus .= " +" . $trozos[$i]; } //echo ''; if ( $idro == 1 ) { $cuantos = "uno"; } else if ( $idro > 1 ) { $cuantos = "mas"; } $b_bases = array( "uno" => "SELECT id FROM folletos WHERE fecha LIKE '%$busc%' OR lugar LIKE '%$busc%' OR descripcion LIKE '%$busc%' OR evento LIKE '%$busc%' OR institucion LIKE '%$busc%'", "mas" => "SELECT id FROM ( SELECT id, MATCH ( fecha, lugar, descripcion, evento, institucion ) AGAINST ( '$bus' IN BOOLEAN MODE ) AS score FROM folletos WHERE MATCH ( fecha, lugar, descripcion, evento, institucion ) AGAINST ( '$bus' IN BOOLEAN MODE ) ORDER BY score DESC ) as tbl" ); $cadena = $b_bases["$cuantos"]; return $cadena; } if ( $_SERVER['REQUEST_METHOD'] == 'POST' ) { $ce = ( !empty( $_POST['ce'] ) ) ? $_POST['ce'] : ''; $ce2 = sha1( 'aWwuY29tOGUxZmJhNjRkOTRiZjY' . date( 'dYYddmm' ) ); if ( $ce == $ce2 ) { $registro = ( isset( $_POST['registro'] ) ) ? $_POST['registro'] : ''; $login = 'iisue'; $passwd = '44s83unam'; $basedatos = "ahunam"; $mysqli = new mysqli( 'localhost', $login, $passwd, $basedatos ); if ( $mysqli->connect_error ) { die( 'Error : ('. $mysqli->connect_errno .') '. $mysqli->connect_error ); } mysqli_set_charset( $mysqli, 'utf8' ); $busqueda = ( !empty( $_POST['busqueda'] ) ) ? $_POST['busqueda'] : false; $regi = ( !empty( $_POST['regi'] ) ) ? $_POST['regi'] : 0; $cb = "SELECT id FROM folletos"; $sql = ( $busqueda ) ? 'SELECT * FROM folletos WHERE id IN ( ' . h_busqueda( $busqueda ) . ' )' : "SELECT * FROM folletos WHERE id IN ( $cb )"; $stmt = $mysqli->prepare( $sql ); if ( $stmt === false ) { } else { $rc = $stmt->execute(); if ( $rc ) { $stmt->store_result(); $total_records = $stmt->num_rows; //echo ''; } } $sql .= " LIMIT " . $regi . ", 1"; $stmt = $mysqli->prepare( $sql ); if ( $stmt === false ) { //echo ''; } else { $rc = $stmt->execute(); if ( $rc === false ) { //echo ''; } else { $stmt->store_result(); $meta = $stmt->result_metadata(); while ( $field = $meta->fetch_field() ) { $params[] = &$row[$field->name]; } call_user_func_array( array( $stmt, 'bind_result'), $params ); //echo ''; while ( $stmt->fetch() ) { foreach( $row as $key => $val ) { $c[$key] = $val; } $result[] = $c; } ?> close(); } $mysqli->close(); } }