intcast($_SESSION['uid']); } else { $statuslogged = "Log in"; $statusloggedurl = "login/"; $statusloggedurl = "../login/"; header("Location: ../"); exit; $uid = $db->intcast($_SESSION['uid']); } // get database information on profile. // get and set a proper token for our instance. if(!isset($_SESSION['token']) || empty($_SESSION['token']) ) { $csrf = $db->getToken(); $_SESSION['token'] = $csrf; } else { $csrf = $db->clean($_SESSION['token'],'encode'); } // search $pieces = explode('=',$_SERVER["REDIRECT_QUERY_STRING"]); $search = $db->clean($pieces[1],'encode'); ?>

Searching...

clean($search,'search')."%"; $sql = "SELECT * FROM timeline,profile WHERE timeline.post LIKE ? AND profile.id = timeline.uid ORDER BY timeline.tid DESC LIMIT 255"; $stmt = $mysqli->prepare($sql); $stmt->bind_param("s", $hashtag); $stmt->execute(); $result = $stmt->get_result(); $rows = $result->fetch_all(MYSQLI_ASSOC); for($k=0; $k < count($rows); $k++) { ?>

@clean($rows[$k]['username'],'encode');?>

prepareHTML($rows[$k]['post']);?>

close(); ?>