function process_editsponsor_form($smarty) { global $Link; global $SPONSOR; $errors = array(); $sname = format_doublequotes($_POST['sponsorname']); $surl = $_POST['sponsorurl']; $sabout = format_paragraph(format_doublequotes($_POST['sponsorabout'])); $sponsorNameInsertSQL = 'UPDATE ' . SPONSORS . ' SET sponsorName="' . $sname . '", sponsorURL="' . $surl . '", sponsorAbout="' . $sabout . '"'; if ($_FILES['logo']['size'] > 0 && ($_FILES['logo']['type'] == 'image/jpeg' || $_FILES['logo']['type'] == 'image/gif')) { $sponsorNameInsertSQL .= get_logo_sql_info(); } $sponsorNameInsertSQL .= ' WHERE sponsorID=' . $SPONSOR; $sponsorNameInsertResult = mysql_query($sponsorNameInsertSQL, $Link) or die("sp_clubs (Line " . __LINE__ . "): " . mysql_errno() . ": " . mysql_error()); return $errors; }
function process_addnewsponsor_form($smarty) { global $Link; $errors = array(); $sname = format_doublequotes($_POST['sponsorname']); $surl = $_POST['sponsorurl']; $sabout = format_paragraph(format_doublequotes($_POST['sponsorabout'])); $sponsorNameInsertSQL = 'INSERT INTO ' . SPONSORS . ' (`sponsorName`, `sponsorURL`, `sponsorAbout`'; if ($_FILES['logo']['size'] > 0 && ($_FILES['logo']['type'] == 'image/jpeg' || $_FILES['logo']['type'] == 'image/gif')) { $sponsorNameInsertSQL .= ', `sponsorLogo`, `sponsorLogoWidth`, `sponsorLogoHeight`'; } $sponsorNameInsertSQL .= ') VALUES ("' . $sname . '", "' . $surl . '", "' . $sabout . '"'; if ($_FILES['logo']['size'] > 0 && ($_FILES['logo']['type'] == 'image/jpeg' || $_FILES['logo']['type'] == 'image/gif')) { $sponsorNameInsertSQL .= get_logo_sql_info(); } $sponsorNameInsertSQL .= ')'; $sponsorNameInsertResult = mysql_query($sponsorNameInsertSQL, $Link) or die("sp_clubs (Line " . __LINE__ . "): " . mysql_errno() . ": " . mysql_error()); return $errors; }