public function SuaPA($idSP)
{
$TieuDe = $_POST['TieuDe'];
$UrlHinh = isset($_POST['UrlHinh']) ? $_POST['UrlHinh'] : '';
$TomTat = isset($_POST['TomTat']) ? $_POST['TomTat'] : '';
$NoiDung = isset($_POST['NoiDung']) ? $_POST['NoiDung'] : '';
$Title = isset($_POST['Title']) ? $_POST['Title'] : '';
$Des = isset($_POST['Des']) ? $_POST['Des'] : '';
$Keyword = isset($_POST['Keyword']) ? $_POST['Keyword'] : '';
$Parent = isset($_POST['Parent']) ? $_POST['Parent'] : '';
$Lang = isset($_POST['Lang']) ? $_POST['Lang'] : 'vi';
settype($Parent, 'int');
settype($idGroup, 'int');
$TieuDe = parent::XoaDinhDang($TieuDe);
$Title = parent::XoaDinhDang($Title);
$Des = parent::XoaDinhDang($Des);
$Keyword = parent::XoaDinhDang($Keyword);
$UrlHinh = parent::XoaDinhDang($UrlHinh);
$TomTat = parent::XoaDinhDang($TomTat);
$Des = parent::XoaDinhDang($Des);
if ($Title == '') {
$Title = $TieuDe;
}
$TieuDeKD = parent::stripUnicode($TieuDe);
if ($idGroup == 2) {
$TieuDeKD = $TieuDeKD . "-" . $idSP;
}
if ($idGroup == 4) {
$TomTat = nl2br($TomTat, TRUE);
$NoiDung = nl2br($NoiDung, TRUE);
}
//Cập nhật vào db
$sql = "UPDATE mk_pages\n\t\t\t\tSET TieuDe = '{$TieuDe}',\n\t\t\t\t\tTieuDeKD = '{$TieuDeKD}',\n Title = '{$Title}',\n Des = '{$Des}',\n Keyword = '{$Keyword}',\n TomTat ='{$TomTat}',\n NoiDung = '{$NoiDung}',\n UrlHinh = '{$UrlHinh}',\n Parent = '{$Parent}',\n Lang ='{$Lang}'\n WHERE idPa = {$idSP}\n ";
mysql_query($sql) or die(mysql_error());
}
public function SuaPO($idSP)
{
//Tiếp nhận dữ liệu từ form
$UrlHinh = isset($_POST['UrlHinh']) ? $_POST['UrlHinh'] : "";
$TieuDe = isset($_POST['TieuDe']) ? $_POST['TieuDe'] : "";
$Des = isset($_POST['Des']) ? $_POST['Des'] : "";
$Keyword = isset($_POST['Keyword']) ? $_POST['Keyword'] : "";
$Title = isset($_POST['Title']) ? $_POST['Title'] : "";
$NoiDung = isset($_POST['NoiDung']) ? $_POST['NoiDung'] : "";
$TomTat = isset($_POST['TomTat']) ? $_POST['TomTat'] : "";
$idLoai = isset($_POST['idLoai']) ? $_POST['idLoai'] : "";
$idCL = isset($_POST['idCL']) ? $_POST['idCL'] : "";
$idGroup = isset($_POST['idGroup']) ? $_POST['idGroup'] : "";
//Kiểm tra dữ liệu đã nhận
settype($idLoai, "int");
settype($idCL, "int");
$UrlHinh = parent::XoaDinhDang($UrlHinh);
$TieuDe = parent::XoaDinhDang($TieuDe);
$Des = parent::XoaDinhDang($Des);
$Keyword = parent::XoaDinhDang($Keyword);
$Title = parent::XoaDinhDang($Title);
if ($Title == '') {
$Title = $TieuDe;
}
$TieuDeKD = parent::stripUnicode($TieuDe) . "-" . $idSP;
//chèn vào db
$sql = "UPDATE mk_post\n SET TieuDe = '{$TieuDe}',\n TieuDeKD = '{$TieuDeKD}',\n UrlHinh = '{$UrlHinh}',\n Des = '{$Des}',\n Keyword = '{$Keyword}',\n Title = '{$Title}',\n NoiDung = '{$NoiDung}',\n idLoai = '{$idLoai}',\n TomTat = '{$TomTat}',\n idCL = '{$idCL}'\n WHERE idPO = {$idSP}\n ";
mysql_query($sql) or die(mysql_error());
}
public function SuaSU($idSP)
{
$HoTen = isset($_POST['HoTen']) ? $_POST['HoTen'] : '';
$DiaChi = isset($_POST['DiaChi']) ? $_POST['DiaChi'] : '';
$NoiDung = isset($_POST['NoiDung']) ? $_POST['NoiDung'] : '';
$HoTen = parent::XoaDinhDang($HoTen);
$DiaChi = parent::XoaDinhDang($DiaChi);
//Cập nhật vào db
$sql = "UPDATE mk_support\n\t\t\t\tSET HoTen = '{$HoTen}',\n\t\t\t\t\tDiaChi = '{$DiaChi}',\n NoiDung = '{$NoiDung}'\n WHERE idSU = {$idSP}\n ";
mysql_query($sql) or die(mysql_error());
}
public function ThemSLLoai($idLoai)
{
$UrlHinh = $_POST['UrlHinh'];
$idGroup = $_POST['idGroup'];
$idLoai = $_POST['idLoai'];
settype($idLoai, 'int');
settype($idGroup, 'int');
$UrlHinh = parent::XoaDinhDang($UrlHinh);
//Chèn dữ liệu vào database
$sql = "INSERT INTO mk_ads (UrlHinh, idGroup, idLoai)\n\t\t\t\tVALUES ('{$UrlHinh}', '{$idGroup}', '{$idLoai}')";
mysql_query($sql) or die(mysql_error());
}
public function SuaDM($idSP)
{
$TieuDe = isset($_POST['TieuDe']) ? $_POST['TieuDe'] : '';
$TomTat = isset($_POST['TomTat']) ? $_POST['TomTat'] : '';
$Title = isset($_POST['Title']) ? $_POST['Title'] : '';
$Des = isset($_POST['Des']) ? $_POST['Des'] : '';
$Parent = isset($_POST['Parent']) ? $_POST['Parent'] : '';
$Keyword = isset($_POST['Keyword']) ? $_POST['Keyword'] : '';
$idGroup = isset($_POST['idGroup']) ? $_POST['idGroup'] : '';
settype($Parent, "int");
$TieuDe = parent::XoaDinhDang($TieuDe);
$Title = parent::XoaDinhDang($Title);
$Keyword = parent::XoaDinhDang($Keyword);
$Des = parent::XoaDinhDang($Des);
if ($Title == '') {
$Title = $TieuDe;
}
$TieuDeKD = parent::stripUnicode($TieuDe) . "-" . $idSP;
//Cập nhật vào db
$sql = "UPDATE mk_catalog\n\t\t\t\tSET TieuDe = '{$TieuDe}',\n TieuDeKD = '{$TieuDeKD}',\n\t\t\t\t\tTitle = '{$Title}',\n\t\t\t\t\tDes = '{$Des}',\n\t\t\t\t\tParent = '{$Parent}',\n\t\t\t\t\tTomTat = '{$TomTat}',\n\t\t\t\t\tKeyword = '{$Keyword}'\n WHERE idLoai = {$idSP}\n ";
mysql_query($sql) or die(mysql_error());
}
<?php
require_once "../lib/class_quantri.php";
$qt = new quantri();
$bang = $_GET['bang'];
$ma = $_GET['ma'];
$id = $_GET['id'];
$value = $_GET['value'];
settype($id, "int");
$bang = $qt->XoaDinhDang($bang);
$ma = $qt->XoaDinhDang($ma);
$value = $qt->XoaDinhDang($value);
$get = $qt->ValueHienTai($bang, $ma, $id, $value);
if ($get == 0) {
$get = 1;
} else {
$get = 0;
}
$qt->ValueThayDoi($bang, $ma, $id, $value, $get);
echo $get;
<?php
require_once "../lib/class_quantri.php";
$qt = new quantri();
$table = $_GET['bang'];
$ma = $_GET['ma'];
$id = $_GET['id'];
settype($id, "int");
$bang = $qt->XoaDinhDang($table);
$ma = $qt->XoaDinhDang($ma);
$anhien = $qt->LayAnHien($table, $ma, $id);
if ($anhien == 0) {
$anhien = 1;
} else {
$anhien = 0;
}
$qt->DoiAnHien($table, $ma, $id, $anhien);
echo $anhien;
public function SuaPO($idSP)
{
//Tiếp nhận dữ liệu từ form
$MaSo = isset($_POST['MaSo']) ? $_POST['MaSo'] : "";
$HoTen = isset($_POST['HoTen']) ? $_POST['HoTen'] : "";
$Tuoi = isset($_POST['Tuoi']) ? $_POST['Tuoi'] : "";
$GioiTinh = isset($_POST['GioiTinh']) ? $_POST['GioiTinh'] : "";
$DacBiet = isset($_POST['DacBiet']) ? $_POST['DacBiet'] : "";
$DienThoai = isset($_POST['DienThoai']) ? $_POST['DienThoai'] : "";
$DiaChi = isset($_POST['DiaChi']) ? $_POST['DiaChi'] : "";
$Khoa = isset($_POST['Khoa']) ? $_POST['Khoa'] : "";
$Benh = isset($_POST['Benh']) ? $_POST['Benh'] : "";
$NgayHenKham = isset($_POST['NgayHenKham']) ? $_POST['NgayHenKham'] : "";
$NgayDenKham = isset($_POST['NgayDenKham']) ? $_POST['NgayDenKham'] : "";
$NguonThongTin = isset($_POST['NguonThongTin']) ? $_POST['NguonThongTin'] : "";
$TuVanTu = isset($_POST['TuVanTu']) ? $_POST['TuVanTu'] : "";
$NguoiNhap = isset($_POST['NguoiNhap']) ? $_POST['NguoiNhap'] : "";
$NoiDung = isset($_POST['NoiDung']) ? $_POST['NoiDung'] : "";
$GhiChu = isset($_POST['GhiChu']) ? $_POST['GhiChu'] : "";
//Kiểm tra dữ liệu đã nhận
settype($Tuoi, "int");
settype($GioiTinh, "int");
settype($DacBiet, "int");
$MaSo = parent::XoaDinhDang($MaSo);
$HoTen = parent::XoaDinhDang($HoTen);
$DienThoai = parent::XoaDinhDang($DienThoai);
$DiaChi = parent::XoaDinhDang($DiaChi);
$Khoa = parent::XoaDinhDang($Khoa);
$Benh = parent::XoaDinhDang($Benh);
$NguonThongTin = parent::XoaDinhDang($NguonThongTin);
$NguoiNhap = parent::XoaDinhDang($NguoiNhap);
//chèn vào db
$sql = "UPDATE mk_benh_tv\n SET MaSo = '{$MaSo}',\n HoTen = '{$HoTen}',\n DienThoai = '{$DienThoai}',\n DiaChi = '{$DiaChi}',\n Khoa = '{$Khoa}',\n Benh = '{$Benh}',\n NguonThongTin = '{$NguonThongTin}',\n NguoiNhap = '{$NguoiNhap}',\n NgayDenKham = '{$NgayDenKham}',\n NgayHenKham = '{$NgayHenKham}',\n GioiTinh = '{$GioiTinh}',\n DacBiet = '{$DacBiet}',\n TuVanTu = '{$TuVanTu}',\n GhiChu = '{$GhiChu}',\n NoiDung = '{$NoiDung}',\n Tuoi = '{$Tuoi}'\n WHERE idTV = {$idSP}\n ";
mysql_query($sql) or die(mysql_error());
}
public function SuaTKMK($idSP)
{
$Pass = $_POST['PassNew'];
$Pass = parent::XoaDinhDang($Pass);
$Pass = md5($Pass);
$sql = "UPDATE mk_users\n\t\t\t\tSET Pass = '******'\n WHERE idUser = {$idSP}\n ";
mysql_query($sql) or die(mysql_error());
}
