<?php if (isset($_POST['id'])) { include_once "functions.php"; include "header_db.php"; $id = $_POST['id']; include_once "addslashes_to_POST.php"; $sql = "UPDATE events SET Title = " . build_value_type($_POST['event_title']) . ", Description = " . build_value_type($_POST['event_desc']) . ", Date = " . build_value_type($_POST['event_date']) . ", Time = " . build_value_type($_POST['event_time']) . ", Location = " . build_value_type($_POST['event_location']) . ", Dress_Code = " . build_value_type($_POST['event_dress']) . " WHERE id = " . $id . ";"; $sql .= "UPDATE events_full SET Title = " . build_value_type($_POST['event_title']) . ", Description = " . build_value_type($_POST['event_desc']) . ", Date = " . build_value_type($_POST['event_date']) . ", Time = " . build_value_type($_POST['event_time']) . ", Location = " . build_value_type($_POST['event_location']) . ", Dress_Code = " . build_value_type($_POST['event_dress']) . " WHERE id = " . $id . ";"; $sql .= "UPDATE `db_version` SET `version` = version + 1;"; if (mysqli_multi_query($connection, $sql)) { mysqli_close($connection); header("Location:event_html.php"); } }
<?php if (isset($_POST['male_name'])) { include_once "../functions.php"; include "../header_db.php"; include "upload.php"; $id = $_POST['id']; //echo $_POST['male_dob']; include_once "addslashes_to_POST.php"; $location = "../images/" . $id; $image_name = upload_image($_FILES, $location); $has_partner = 0; if (isset($_POST['female_name'])) { $has_partner = 1; } $sql = "UPDATE s_male SET Name = " . build_value_type($_POST['male_name']) . ", DOB = " . build_value_type($_POST['male_dob']) . ", Email = " . build_value_type($_POST['male_email_id']) . ", Mobile = " . build_value_type($_POST['male_mobile']) . ", Blood_Group = " . build_value_type($_POST['male_blood_group']) . ", Occupation = " . build_value_type($_POST['male_occupation']) . ", off_addr1 = " . build_value_type($_POST['male_off_addr1']) . ", off_addr_area = " . build_value_type($_POST['male_off_area']) . ", off_addr_pin = " . build_value_type((int) $_POST['male_off_pincode']) . ", Office_phone = " . build_value_type($_POST['male_off_phone']) . ", has_partner = " . $has_partner . " WHERE id = " . $_POST['id'] . ";"; $sql .= "UPDATE s_common SET DOM = " . build_value_type($_POST['comm_wedding_date']) . ", res_addr1 = " . build_value_type($_POST['comm_res_addr1']) . ", res_addr_area = " . build_value_type($_POST['comm_res_area']) . ", res_addr_pin = " . build_value_type((int) $_POST['comm_res_pincode']) . ", Residence_Phone = " . build_value_type($_POST['comm_res_phone']) . " WHERE id = " . $_POST['id'] . ";"; $sql .= "UPDATE s_female SET Name = " . build_value_type($_POST['female_name']) . ", DOB = " . build_value_type($_POST['female_dob']) . ", Email = " . build_value_type($_POST['female_email_id']) . ", Mobile = " . build_value_type($_POST['female_mobile']) . ", Blood_Group = " . build_value_type($_POST['female_blood_group']) . ", Occupation = " . build_value_type($_POST['female_occupation']) . ", has_partner = " . $has_partner . " WHERE id = " . ($_POST['id'] + 1) . ";"; $no_of_kids = (int) $_POST['no_of_kids']; if ($no_of_kids > 0) { $kids_start_id = $_POST['kid_id']; for ($i = 0; $i < $no_of_kids; $i++) { $sql .= "UPDATE s_kids SET Name = " . build_value_type($_POST['kid_name' . $i]) . ", DOB = " . build_value_type($_POST['kid_dob' . $i]) . ", Email = " . build_value_type($_POST['kid_email_id' . $i]) . ", Mobile = " . build_value_type($_POST['kid_mobile_no' . $i]) . ", Blood_Group = " . build_value_type($_POST['kid_blood_group' . $i]) . " WHERE id = " . $kids_start_id . ";"; $kids_start_id++; } } if (mysqli_multi_query($connection, $sql)) { mysqli_close($connection); header("Location:index.php"); } }