-
✘✘✘ WIBUHAX0R1337 ✘✘✘
-
✘
PATCH :
/
home
/
indianstaffing
/
.trash
/
configFQK
/
Jump
/
0-indianstaffing
/
admin
/
Upload File:
files >> /home/indianstaffing/.trash/configFQK/Jump/0-indianstaffing/admin/add-notifications.php
<?php include'include/header.php'; include'include/sidebar.php'; // $date = date("Y-m-d"); error_reporting(0); $msg = ''; $heading= ''; if (isset($_GET['id']) && $_GET['id']!="") { $required=""; $id = mysqli_real_escape_string($con, $_GET['id']); $res = mysqli_query($con, "select * from notification where id ='$id'"); $check = mysqli_num_rows($res); if ($check>0) { $arr = mysqli_fetch_assoc($res); $state = $arr['state']; $heading = $arr['heading']; $image = $arr['image']; $added_on = $arr['added_on']; // $description = $arr['description']; }else { header("location: notifications.php"); } } if (isset($_POST['sldrbtn'])) { if(isset($_GET['id'])){ $id = mysqli_real_escape_string($con, $_GET['id']); } $state = $_POST['state']; $heading = mysqli_real_escape_string($con, $_POST['sldrheading']); $added_on = mysqli_real_escape_string($con, $_POST['added_on']); // $description = mysqli_real_escape_string($con, $_POST['description']); $filename = $_FILES["image"]["name"]; $tempname = $_FILES["image"]["tmp_name"]; $folder = "uploads/advocacy/notification" . $filename; // $date = new date(); $res = mysqli_query($con, "select * from achievment where heading = '$heading' and id = '$id'"); $check = mysqli_num_rows($res); if ($check>0) { if (isset($_GET['id'])&& $_GET['id']!="") { $getdata=mysqli_fetch_assoc($res); if ($id==$getdata['id']) { }else{ // $msg= "this interview is already exist"; $msg = '<div class="alert alert-danger alert-dismissible"> <button type="button" class="close" data-dismiss="alert" aria-hidden="true">×</button> This notification is already exist. </div>'; } }else { $msg= '<div class="alert alert-danger alert-dismissible"> <button type="button" class="close" data-dismiss="alert" aria-hidden="true">×</button> This notification is already exist. </div>'; } } if ($msg=="") { if (isset($_GET['id']) && $_GET['id']!='') { if ($_FILES["image"]["tmp_name"]!="") { move_uploaded_file($tempname, $folder); $filename = $_FILES["image"]["name"]; }else{ $filename = $image; } $update = "UPDATE `notification` SET `heading`='$heading',`state`='$state',`image`='$filename',`added_on`='$added_on' WHERE id='$id'"; $update_query = mysqli_query($con, $update); if($update_query){ echo "<script>alert('notification updated successfully'); window.location.href='notifications.php';</script>"; }else{ echo "<script>alert('Something went wrong please try again'); window.location.href='notifications.php';</script>"; } }else { move_uploaded_file($tempname, $folder); $insertquery = "INSERT INTO `notification`(`state`,`heading`,`image`,`added_on`) VALUES ('$state','$heading','$filename','$added_on')"; $insert_query = mysqli_query($con,$insertquery); if ($insert_query) { echo "<script>alert('notification added successfully'); window.location.href='notifications.php';</script>"; } else { echo "<script>alert('notification not added')</script>"; } } echo "<script>window.location.href='notifications.php';</script>"; die(); } } ?> <!-- Content Wrapper. Contains page content --> <div class="content-wrapper"> <!-- Content Header (Page header) --> <div class="content-header"> <div class="container-fluid"> <div class="row mb-2"> <div class="col-sm-6"> <?php if(!empty($id)){ echo "<h1 class='m-0'>Update Notifications</h1>"; }else{ echo "<h1 class='m-0'>Add Notifications</h1>"; } ?> <!-- <h1 class="m-0">Add Notifications</h1> --> </div><!-- /.col --> <div class="col-sm-6"> <ol class="breadcrumb float-sm-right"> <li class="breadcrumb-item"><a href="<?= $weburl; ?>/index">Home</a></li> <?php if(!empty($id)){ echo "<li class='breadcrumb-item active'>Update Notifications</li>"; }else{ echo "<li class='breadcrumb-item active'>Add Notifications</li>"; } ?> <!-- <li class="breadcrumb-item active">Add Notifications</li> --> </ol> </div><!-- /.col --> </div><!-- /.row --> </div><!-- /.container-fluid --> </div> <!-- /.content-header --> <div class="row"> <div class="col-6 mx-auto"> <form action="" method="POST" enctype='multipart/form-data'> <div class="card-body"> <?php echo $msg; ?> <div class="form-group"> <label>Select State</label> <select name="state" id="" class="form-control"> <option value="0" <?php if($state=='0'){ echo 'selected'; } ?>>Central</option> <?php $sql = mysqli_query($con, "SELECT * FROM `state`"); $check = mysqli_num_rows($sql); if($check>0){ while($rows = mysqli_fetch_assoc($sql)){ ?> <option id="" value="<?=$rows['id']?>" <?php if($state==$rows['id']){ echo "selected"; } ?>><?=$rows['state']?></option> <?php } } ?> </select> </div> <div class="form-group"> <label for="sldrhdname">Heading</label> <input type="text" name="sldrheading" class="form-control" id="sldrhdname" placeholder="Heading" value="<?php echo $heading ?>"> <!-- <small><strong>Note: </strong>Max 35 character is allowed</small> --> </div> <div class="form-group"> <label for="image">Upload File</label><br> <input type="file" name="image" id="image"><br> <!-- <small><strong>Note: </strong>File Dimension (200px X 200px)</small><br> --> <?php if(!empty($image)){ ?> <a href="<?=$weburl?>/uploads/advocacy/notification<?=$image?>"> <img src="<?=$weburl;?>/uploads/advocacy/pdf.png" style="width:50px;"> </a> <?php } ?> </div> <div class="form-group"> <label for="addedon">Added date</label> <input type="date" name="added_on" class="form-control" id="addedon"value="<?php echo $added_on; ?>"> <!-- <small><strong>Note: </strong>Max 105 character is allowed</small> --> </div> <div> <input type="submit" name="sldrbtn" class="btn btn-primary" value="Submit"> </div> </div> </form> </div> </div> </div> <?php include'include/footer.php';?>
2022 - 2023 Copyright By Lutfifakee || Padang Blackhat ♥