validate_presence($required_fields); if (empty($errors)) { $sname = $_POST['sname']; $email = $_POST['email']; $filter_club = implode(" ", $_POST['club']); $query = "UPDATE users SET sname = '{$sname}', email = '{$email}', filter_club = '{$filter_club}' WHERE username = '******' LIMIT 1"; $result = mysqli_query($conn, $query); if ($result && mysqli_affected_rows($conn) == 1) { redirect_to("buzz.php"); } else { $_SESSION["message"] = "Updation failed."; } } } elseif ($pass_check == "no" && $propic_check == "no" && empty($_POST['branch']) && empty($_POST['club'])) { $required_fields = array("sname", "email"); validate_presence($required_fields); if (empty($errors)) { $sname = $_POST['sname']; $email = $_POST['email']; $query = "UPDATE users SET sname = '{$sname}', email = '{$email}' WHERE username = '******' LIMIT 1"; $result = mysqli_query($conn, $query); if ($result && mysqli_affected_rows($conn) == 1) { redirect_to("buzz.php"); } else { $_SESSION["message"] = "Updation failed."; } } } } ?> <!DOCTYPE html "-//W3C//DTD XHTML 1.0 Strict//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-strict.dtd">
compress_table($active_page); } global $connection; check_event_delete(); check_event_add(); if (isset($_POST['submit']) && $admin) { // I have to filter all of the values. $query = "SELECT * FROM events"; $response = mysqli_query($connection, $query); $numevents = mysqli_num_rows($response); $required_fields = array("event_name", "event_location", "event_description", "event_datetime"); for ($i = 1; $i <= (int) $numevents; $i++) { foreach ($required_fields as $requirement) { // Perform all necessary checks in here. $validationvalue = $requirement . $i; validate_presence($validationvalue); $_POST[$validationvalue] = mysql_prep($_POST[$validationvalue]); } } // If no errors, update page. if (empty($errors)) { for ($i = 1; $i <= (int) $numevents; $i++) { $query = "UPDATE events SET "; $query .= "name = '{$_POST["event_name{$i}"]}', "; $query .= "location = '{$_POST["event_location{$i}"]}', "; $query .= "description = '{$_POST["event_description{$i}"]}', "; $query .= "datetime = '{$_POST["event_datetime{$i}"]}' "; $query .= "WHERE id = {$i} "; $query .= "LIMIT 1"; $result = mysqli_query($connection, $query); confirm_query($result);