|
Server IP : 162.214.80.37 / Your IP : 216.73.216.83 Web Server : Apache System : Linux sh013.webhostingservices.com 4.19.286-203.ELK.el7.x86_64 #1 SMP Wed Jun 14 04:33:55 CDT 2023 x86_64 User : imyrqtmy ( 2189) PHP Version : 8.2.18 Disable Function : NONE MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON Directory (0755) : /home2/imyrqtmy/public_html/dtplenviro/admin/ |
| [ Home ] | [ C0mmand ] | [ Upload File ] |
|---|
<?php
include 'includes/config.php';
if(isset($_POST['add_tracking'])){
if(isset($_GET['id']) && isset($_POST['scn']) && isset($_POST['tid'])){
$id = $_GET['id'];
$scn = $_POST['scn'];
$tid = $_POST['tid'];
// Use prepared statements to prevent SQL injection
$stmt = $conn->prepare("UPDATE tbl_orders SET scn = ?, tid = ? WHERE id = ?");
$stmt->bind_param("ssi", $scn, $tid, $id);
if($stmt->execute()){
echo "<script>
alert('Data Added Successfully');
window.location.href='view-order.php';
</script>";
} else {
echo "<script>alert('Please add proper data');</script>";
}
$stmt->close();
}
}
?>