function Do_Edit($cats = array()) { if (empty($_POST['option'])) { Do_Error("Error", "No option selected <a href='rules_admin.php'>Go Back</a>"); } if (!isset($_POST['cat']) || empty($_POST['cat']) || !is_valid_id($_POST['cat'])) { Do_Error("Error", "No Section selected"); } $cat_id = (int) $_POST['cat']; $option = $_POST['option'] == 'heading' ? 'rules_categories' : 'rules'; $sql = mysql_query("SELECT * FROM {$option} WHERE cid = {$cat_id}") or stderr("SQL Error", "OOps!"); if (!mysql_num_rows($sql)) { stderr("SQL Error", "Nothing doing here!"); } stdhead("Edit " . htmlspecialchars($option)); if ('rules_categories' == $option) { while ($row = mysql_fetch_assoc($sql)) { echo "<div class='faqhead'>heading No.{$row['cid']}</div><div class='faqbody'>"; echo "<form name='inputform' method='post' action='rules_admin.php'>"; echo "<input type='hidden' name='action' value='cat_update' />"; echo "<input type='hidden' name='cat' value='{$row['cid']}' />"; echo "<input type='text' value='" . htmlentities($row['rcat_name'], ENT_QUOTES) . "' name='rcat_name' style='width:380px;' /> "; echo "<input type='submit' name='submit' value='Edit' class='button'>"; echo "</form></div>"; } } else { while ($row = mysql_fetch_assoc($sql)) { begin_frame(); echo "<div class='faqhead'>Faq No.{$row['id']}</div><div class='faqbody'>"; print $row['mtime']; echo "<form name='compose' method='post' action='rules_admin.php'>"; echo "<input type='hidden' name='action' value='rules_update' />"; echo "<input type='hidden' name='rules_id' value='{$row['id']}' />"; echo "<input type='text' value='{$row['heading']}' name='heading' style='width:380px;' /> "; echo "<select name='cat'><option value=''>--Select One--</option>"; foreach ($cats as $v) { print "<option value='" . $v['cid'] . "'>" . $v['rcat_name'] . '</option>'; } echo "</select><br />"; // echo "<textarea name='text' rows='5' style='width:380px;'>".htmlentities($row['text'])."</textarea>"; $body = htmlentities($row['body']); textbbcode("compose", "body", $body); echo "<br /><input type='submit' name='submit' value='Edit This Entry' class='button'>"; echo "</form></div>"; // ===added delete echo "<form name='deleteform' method='post' action='rules_admin.php'>"; echo "<input type='hidden' name='action' value='rules_delete' />"; echo "<input type='hidden' name='id' value='{$row['id']}' />"; echo "<br><input type='submit' name='submit' value='Delete This Entry' class='button'>"; echo "</form></div>"; end_frame(); } } Stdfoot(); exit; }
function Do_Edit($cats = array()) { if (empty($_POST['option'])) { Do_Error("Error", "No option selected <a href='faqadmin.php'>Go Back</a>"); } if (!isset($_POST['cat']) || empty($_POST['cat']) || !is_valid_id($_POST['cat'])) { Do_Error("Error", "No Category selected"); } $cat_id = (int) $_POST['cat']; $option = $_POST['option'] == 'category' ? 'faq_categories' : 'faq'; $sql = sql_query("SELECT * FROM {$option} WHERE cid = {$cat_id}") or stderr("SQL Error", "OOps!"); if (!mysql_num_rows($sql)) { stderr("SQL Error", "Nothing doing here!"); } stdhead("Edit " . safechar($option)); if ('faq_categories' == $option) { while ($row = mysql_fetch_assoc($sql)) { echo "<div class='faqhead'>Category No.{$row['cid']}</div><div class='faqbody'>"; echo "<form name='inputform' method='post' action='faqadmin.php'>"; echo "<input type='hidden' name='action' value='cat_update' />"; echo "<input type='hidden' name='cat' value='{$row['cid']}' />"; echo "<input type='text' value='" . htmlentities($row['fcat_name'], ENT_QUOTES) . "' name='fcat_name' style='width:380px;' /> "; echo "<input type='submit' name='submit' value='Edit' class='btns'>"; echo "</form></div>"; } } else { while ($row = mysql_fetch_assoc($sql)) { echo "<div class='faqhead'>Faq No.{$row['id']}</div><div class='faqbody'>"; print $row['mtime']; echo "<form name='inputform' method='post' action='faqadmin.php'>"; echo "<input type='hidden' name='action' value='faq_update' />"; echo "<input type='hidden' name='faq_id' value='{$row['id']}' />"; echo "<input type='text' value='{$row['question']}' name='question' style='width:380px;' /> "; echo "<select name='cat'><option value=''>--Select One--</option>"; foreach ($cats as $v) { print "<option value='" . $v['cid'] . "'>" . $v['fcat_name'] . '</option>'; } echo "</select><br /><textarea name='Answer' rows='5' style='width:380px;'>" . htmlentities($row['answer']) . "</textarea><br />"; echo "<input type='submit' name='submit' value='Edit' class='btns'>"; echo "</form></div>"; } } Stdfoot(); exit; }