<?php
if(!isset($_POST['action']))
{
echo '
<div class="form">
<form method="post" action="arnab.php?nocache='.$nocache.'&amp;ver=html&amp;'.SID.'&amp;pass='.$pass.'&amp;mod=add_bad_nicks">
Add Bad Nick:<br />
<input name="bad" maxlength="200" title="badnick"/><br />
<input type="hidden" name="action" value="add" />
<input type="submit" value="Submit" /></form></div><br />
';
}
else
{
$insult = mysql_escape_string($_POST['bad']);
$sql = mysql_query("SELECT * FROM `chat_banned_nicknames` WHERE `nickname` = '".$insult."';");

	if(mysql_affected_rows() != 0)
	{
	echo "Already Exists.<br/>\n";
	echo "<a href=\"arnab.php?".SID."&amp;pass=$pass&amp;ver=html\">Owner CP</a><br/>\n";
	echo "<br/><a href=\"menu.php?".SID."&amp;ver=html\">Hall</a><br/>";
	list($msec, $sec) = explode(chr(32), microtime());
	echo "<br/><small>[".round(($sec+$msec)-$headtime,5)."] sec</small><br/>\n";
	echo "</div></body></html>";
	break;
	}

	if(empty($insult))
	{
	echo "Empty!.<br/>\n";
	echo "<a href=\"arnab.php?".SID."&amp;pass=$pass&amp;ver=html\">Owner CP</a><br/>\n";
	echo "<br/><a href=\"menu.php?".SID."&amp;ver=html\">Hall</a><br/>";
	list($msec, $sec) = explode(chr(32), microtime());
	echo "<br/><small>[".round(($sec+$msec)-$headtime,5)."] sec</small><br/>\n";
	echo "</div></body></html>";
	break;
	}

$sql = mysql_query("INSERT INTO `chat_banned_nicknames` VALUES(0, '".$insult."');");

	if($sql)
	{
	echo "Successfully Added!.<br/>\n";
	echo "<a href=\"arnab.php?".SID."&amp;pass=$pass&amp;ver=html\">Owner CP</a><br/>\n";
	echo "<br/><a href=\"menu.php?".SID."&amp;ver=html\">Hall</a><br/>";
	list($msec, $sec) = explode(chr(32), microtime());
	echo "<br/><small>[".round(($sec+$msec)-$headtime,5)."] sec</small><br/>\n";
	echo "</div></body></html>";
	break;
	}
	else
	{
	echo "Error!<br/>\n";
	echo mysql_error()."<br/>\n";
	}
}
?>