|
Server IP : 162.214.80.37 / Your IP : 216.73.216.68 Web Server : Apache System : Linux sh013.webhostingservices.com 4.19.286-203.ELK.el7.x86_64 #1 SMP Wed Jun 14 04:33:55 CDT 2023 x86_64 User : imyrqtmy ( 2189) PHP Version : 8.2.18 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON Directory (0755) : /home2/imyrqtmy/public_html/masterfin/admin/ |
| [ Home ] | [ C0mmand ] | [ Upload File ] |
|---|
<?php
session_start();
include("includes/config.php");
if(isset($_POST['add_share'])){
$share_name = $_POST['share_name'];
$share_price = $_POST['share_price'];
$rate = $_POST['rate'];
$company_name = $_POST['company_name'];
$face_value = $_POST['face_value'];
$eps = $_POST['eps'];
$pe_ratio = $_POST['pe_ratio'];
$week_high = $_POST['week_high'];
$day_low = $_POST['day_low'];
$sector = $_POST['sector'];
$office_addess = $_POST['office_addess'];
$transfer_address = $_POST['transfer_address'];
$description = $_POST['description'];
$pdf1 = $_POST['pdf1'];
$pdf2 = $_POST['pdf2'];
$pdf3 = $_POST['pdf3'];
// $description = $_POST['description'];
$photo = $_FILES['photo']['name'];
$allowed_image_extensions = array('gif','png','jpg','jpeg','webp','WEBP');
$photo_filename = $_FILES['photo']['name'];
$photo_file_extension = pathinfo($photo_filename, PATHINFO_EXTENSION);
if(!in_array($photo_file_extension, $allowed_image_extensions)){
$_SESSION['status'] = "The image file is not allowed. Please upload an image.";
header('Location: share.php');
exit;
} else {
$query = "INSERT INTO shares (share_name, share_price, rate, company_name, face_value, eps, pe_ratio, week_high, day_low, sector, office_addess, transfer_address, description, pdf1, pdf2, pdf3, photo ) VALUES ('$share_name', '$share_price', '$rate','$company_name', '$face_value', '$eps', '$pe_ratio', '$week_high', '$day_low', '$sector','$office_addess', '$transfer_address', '$description', '$pdf1', '$pdf3', '$pdf3', '$photo')";
$query_run = mysqli_query($conn, $query);
if($query_run){
move_uploaded_file($_FILES["photo"]["tmp_name"], "shares/".$_FILES["photo"]["name"]);
$_SESSION['status'] = "Uploaded Successfully";
echo "<script>window.location.href='view-share.php';</script>";
// header('Location: view-category.php');
exit;
} else {
$_SESSION['status'] = "Not Uploaded ";
echo "<script>window.location.href='share.php';</script>";
// header('Location: category.php');
exit;
}
}
}
// update
if(isset($_POST['update_ulist'])){
$id = $_POST['id'];
$sh_name = $_POST['sh_name'];
$lot_size = $_POST['lot_size'];
$rate = $_POST['rate'];
// $description = $_POST['description'];
$old_photo = $_POST['image_old'];
$update_photo_filename = $_FILES["photo"]["name"] ? $_FILES["photo"]["name"] : $old_photo;
$query = "UPDATE unlisted_shares SET sh_name='$sh_name', lot_size='$lot_size', rate='$rate' , photo='$update_photo_filename' WHERE id ='$id' ";
$query_run = mysqli_query($conn, $query);
if($query_run){
if($_FILES["photo"]["name"] !='' && $_FILES["photo"]["name"] != $old_photo){
move_uploaded_file($_FILES["photo"]["tmp_name"], "ushare/".$_FILES["photo"]["name"]);
unlink("ushare/". $old_photo);
}
$_SESSION['status'] = "Updated Successfully";
echo "<script>window.location.href='view-ulist.php';</script>";
// header('Location: view-category.php');
} else {
$_SESSION['status'] = "Not Updated ";
echo "<script>window.location.href='view-ulist.php';</script>";
// header('Location: view-category.php');
}
}
if (isset($_POST['delete_ulist'])) {
$id = $_POST['delete_id'];
$photo = $_POST['del_ulist'];
$query = "DELETE FROM unlisted_shares WHERE id = '$id'";
$query_run = mysqli_query($conn, $query);
if ($query_run) {
if (unlink("ushare/" . $photo)) {
$_SESSION['status'] = "Deleted Successfully";
echo "<script>
alert('Deleted Successfully');
window.location.href = 'view-ulist.php';
</script>";
} else {
$_SESSION['status'] = "Error deleting files";
echo "<script>
alert('Error deleting files');
window.location.href = 'view-ulist.php';
</script>";
}
} else {
$_SESSION['status'] = "Not Deleted Successfully";
echo "<script>
alert('Not Deleted Successfully');
window.location.href = 'view-ulist.php';
</script>";
}
} else {
$_SESSION['status'] = "Invalid request";
echo "<script>
alert('Invalid request');
window.location.href = 'view-ulist.php';
</script>";
}
?>