if (isset($_POST['locationcountry'])) { $locationcountry = $_POST['locationcountry']; } if (isset($_POST['workauthorization'])) { $workauthorization = $_POST['workauthorization']; } if (isset($_POST['functionalarea'])) { $functionalarea = $_POST['functionalarea']; } if (isset($_POST['industry'])) { $industry = $_POST['industry']; } if (isset($_POST['searchquery'])) { $searchquery = $_POST['searchquery']; } $id_js = GetJobSeekerID($id_user, $db); $name_search = $_POST['searchname']; $query = "INSERT INTO js_savesearchdetails(id_js, id_user, name_search, keywords, employer, positiontype, experience, salary, locationcity,\n\tlocationstate, locationcountry, workauthorization, functionalarea, industry, searchquery, createdon, updatedon) values({$id_js},{$id_user},'" . addslashes(strip_tags($name_search)) . "','" . addslashes(strip_tags($keyword)) . "','" . addslashes(strip_tags($employer)) . "','" . addslashes(strip_tags($positiontype)) . "', '" . addslashes(strip_tags($experience)) . "', '" . addslashes(strip_tags($salary)) . "','" . addslashes(strip_tags($locationcity)) . "','" . addslashes(strip_tags($locationstate)) . "','" . addslashes(strip_tags($locationcountry)) . "','" . addslashes(strip_tags($workauthorization)) . "','" . addslashes(strip_tags($functionalarea)) . "','" . addslashes(strip_tags($industry)) . "','" . addslashes(strip_tags($searchquery)) . "',now(),now())"; if ($res = $db->send_sql($query)) { header("location:jsadvancedsearch.php?s=1"); } } else { header("location:jsadvancedsearchresults.php?e=1"); } function GetJobSeekerID($id_user, $db) { $query = "Select id_js from js_personalinfo where id_user={$id_user}"; $id_js = 0; if ($res = $db->send_sql($query)) { while ($row = mysql_fetch_row($res)) { $id_js = $row[0];
$dcqualificationdesc = ""; } if (isset($_POST['experiencerequirement'])) { $experiencerequirement = addslashes(strip_tags($_POST['experiencerequirement'])); } else { $experiencerequirement = ""; } if ($experiencerequirement == "") { $experiencerequirement = -1; } include "./Class_Database.php"; $db = new database(); //$db->setup("kaushal", "kaushal", "localhost", "jobportaldb"); if (isset($_SESSION['userid'])) { $userid = $_SESSION['userid']; $id_emp = GetJobSeekerID($userid, $db); } else { header('Location:index.php'); } //EDIT FUNCTIONALITY //echo $_POST['id_job']; if (isset($_POST['id_job']) && $_POST['id_job'] != "") { $id_job = $_POST['id_job']; $query = "Update emp_jobdetails set title='" . addslashes(strip_tags($title)) . "', jobfunction='" . addslashes(strip_tags($jobfunction)) . "', industry='" . addslashes(strip_tags($industry)) . "', postiontype='" . addslashes(strip_tags($postiontype)) . "', jobdescription='" . addslashes(strip_tags($jobdescription)) . "', qualificationdesc='" . addslashes(strip_tags($qualificationdesc)) . "', SalaryRange='" . addslashes(strip_tags($SalaryRange)) . "',city='" . addslashes(strip_tags($city)) . "',state='" . addslashes(strip_tags($state)) . "', zip='" . addslashes(strip_tags($zip)) . "', country='" . addslashes(strip_tags($country)) . "',pday='" . addslashes(strip_tags($pday)) . "',pmonth='" . addslashes(strip_tags($pmonth)) . "',pyear='" . addslashes(strip_tags($pyear)) . "', eday='" . addslashes(strip_tags($eday)) . "',emonth='" . addslashes(strip_tags($emonth)) . "',eyear='" . addslashes(strip_tags($eyear)) . "',dsday='" . addslashes(strip_tags($dsday)) . "', dsmonth='" . addslashes(strip_tags($dsmonth)) . "',dsyear='" . addslashes(strip_tags($dsyear)) . "', deday='" . addslashes(strip_tags($deday)) . "',demonth='" . addslashes(strip_tags($demonth)) . "',deyear='" . addslashes(strip_tags($deyear)) . "', workauthorization='" . addslashes(strip_tags($workauthorization)) . "', keyword='" . addslashes(strip_tags($keyword)) . "',dcprofiledesciprion='" . addslashes(strip_tags($dcprofiledesciprion)) . "',dcqualificationdesc ='" . addslashes(strip_tags($dcqualificationdesc)) . "', experiencerequirement='" . addslashes(strip_tags($experiencerequirement)) . "', updatedon=Now() where id_job={$id_job}"; if ($res = $db->send_sql($query)) { header("Location:empviewjobdetail.php"); } else { header("Location:empjobdetail.php?e=4"); // Data can not be inserted. } } else {
if (isset($_POST['country'])) { $country = addslashes(strip_tags($_POST['country'])); } else { $country = ""; } if (isset($_POST['EduSummary'])) { $summary = addslashes(strip_tags($_POST['EduSummary'])); } else { $summary = ""; } include "./Class_Database.php"; $db = new database(); //$db->setup("kaushal", "kaushal", "localhost", "jobportaldb"); if (isset($_SESSION['userid'])) { $userid = $_SESSION['userid']; $js_id = GetJobSeekerID($userid, $db); } else { header("location:index.php"); } //EDIT FUNCTIONALITY if (isset($_POST['edu_id']) && $_POST['edu_id'] != "") { $edu_id = $_POST['edu_id']; $query = "Update js_edu set edu_degreename= '" . addslashes(strip_tags($degree)) . "', edu_studyname= '" . addslashes(strip_tags($field)) . "', edu_gpa= '" . addslashes(strip_tags($edu_gpa)) . "', edu_startdate= '" . addslashes(strip_tags($startmonth)) . "', edu_startyear= '" . addslashes(strip_tags($startyear)) . "', edu_enddate= '" . addslashes(strip_tags($endmonth)) . "', edu_endyear= '" . addslashes(strip_tags($endyear)) . "', edu_institutename= '" . addslashes(strip_tags($institute)) . "', edu_city= '" . addslashes(strip_tags($city)) . "', edu_state= '" . addslashes(strip_tags($state)) . "', edu_instZipcode= '" . addslashes(strip_tags($zip)) . "', edu_country= '" . addslashes(strip_tags($country)) . "', edu_summary= '" . addslashes(strip_tags($summary)) . "', edu_updatedon=Now() where edu_id={$edu_id}"; if ($res = $db->send_sql($query)) { //echo "<h2>Education Details Updated Successfully!</h2>"; //echo "<a href='jsviewprofile.php' class='button'>Back</a> "; header("Location:jsviewprofile.php"); } else { header("Location:jseducation.php?e=4"); // Data can not be inserted. }
function SaveFile($type_file, $format, $file_name, $title) { $title = addslashes(strip_tags($title)); include "./Class_Database.php"; $db = new database(); //$db->setup("kaushal", "kaushal", "localhost", "jobportaldb"); $ip = $_SERVER['REMOTE_ADDR']; if (isset($_SESSION["userid"])) { $id_user = $_SESSION["userid"]; } $id_js = GetJobSeekerID($id_user, $db); $query = "Insert into js_files(id_js,id_user,type_file,title_file, path_file,ip,createdon,updatedon) values({$id_js},{$id_user},'" . addslashes(strip_tags($type_file)) . "','" . addslashes(strip_tags($title)) . "', '" . addslashes(strip_tags($file_name)) . "','" . addslashes(strip_tags($ip)) . "',Now(),Now())"; if ($res = $db->send_sql($query)) { return true; } else { return false; } }