<?php require_once "model/Backend.php"; $model = new Backend(); $link = "index.php?mod=articles&act=list"; if (isset($_GET['keyword'])) { $keyword = $model->processData($_GET['keyword']); $link .= '&keyword=' . $keyword; } else { $keyword = ''; } if (isset($_GET['category_id'])) { $category_id = $model->processData($_GET['category_id']); $link .= '&category_id=' . $category_id; } else { $category_id = -1; } $limit = 20; $arrTotal = $model->getListArticle($keyword, $category_id, -1, -1); $total_page = ceil($arrTotal['total'] / $limit); $page = isset($_GET['page']) ? (int) $_GET['page'] : 1; $offset = $limit * ($page - 1); $arrList = $model->getListArticle($keyword, $category_id, $offset, $limit); ?> <div class="row"> <div class="col-md-12"> <button class="btn btn-primary btn-sm right" onclick="location.href='index.php?mod=articles&act=form'">Tạo mới</button> <div class="box-header"> <h3 class="box-title">Danh sách bài viết</h3> </div> <!-- /.box-header -->
<?php session_start(); $list_url = "../index.php?mod=house&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = isset($_POST['id']) ? (int) $_POST['id'] : 0; $arrData['name'] = $name = $model->processData($_POST['name']); $arrData['description'] = $_POST['description']; $arrData['city_id'] = (int) $_POST['city_id']; $arrData['district_id'] = (int) $_POST['district_id']; $arrData['ward_id'] = (int) $_POST['ward_id']; $arrData['address'] = $_POST['address']; $arrData['no_room'] = (int) $_POST['no_room']; $arrData['video_url'] = $_POST['video_url']; $arrData['image_url'] = isset($_POST['image_url']) ? str_replace('../', '', $_POST['image_url']) : ""; $arrData['longitude'] = $_POST['longitude']; $arrData['latitude'] = $_POST['latitude']; $arrData['type'] = 1; $arrData['user_id'] = $_SESSION['user_id']; $str_image = isset($_POST['str_image']) ? $_POST['str_image'] : ""; $arrAddon = $_POST['addon']; $arrServiceId = $_POST['service_id']; //var_dump($arrServiceId);die; $table = "house"; if ($id > 0) { $arrData['id'] = $id; $arrData['updated_at'] = time(); $model->update($table, $arrData); } else { $arrData['created_at'] = time();
<?php $url = "../index.php?mod=articles&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['id']; $arrData['name_vi'] = $name_vi = $model->processData($_POST['name_vi']); $arrData['name_en'] = $name_en = $model->processData($_POST['name_en']); $arrData['alias_vi'] = $model->changeTitle($name_vi); $arrData['alias_en'] = $model->changeTitle($name_en); $arrData['description_vi'] = addslashes($_POST['description_vi']); $arrData['description_en'] = addslashes($_POST['description_en']); $arrData['content_vi'] = addslashes($_POST['content_vi']); $arrData['content_en'] = addslashes($_POST['content_en']); $arrData['is_hot'] = (int) $_POST['is_hot']; $arrData['cate_id'] = (int) $_POST['cate_id']; $image_url_upload = $_FILES['image_url_upload']; if ($image_url_upload['name'] != '') { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else { $image_url = str_replace('../', '', $_POST['image_url']); } $arrData['image_url'] = $image_url; $meta_title_vi = $model->processData($_POST['meta_title_vi']); if ($meta_title_vi == '') { $meta_title_vi = $name_vi; } $meta_title_en = $model->processData($_POST['meta_title_en']); if ($meta_title_en == '') { $meta_title_en = $name_en;
<?php require_once "model/Backend.php"; $model = new Backend(); $link = $link_back = "index.php?mod=product&act=list"; $link_form = "index.php?mod=product&act=form"; if (isset($_GET['name']) && $_GET['name'] != '') { $name = $model->processData($_GET['name']); $link .= "&name=" . $name; $link_back .= "&name=" . $name; } else { $name = ''; } if (isset($_GET['parent_id']) && $_GET['parent_id'] > 0) { $parent_id = $_GET['parent_id']; $link .= "&parent_id=" . $parent_id; $link_form .= "&parent_id=" . $parent_id; $detailParent = $model->getDetail('cate', $parent_id); } else { $parent_id = 0; } if (isset($_GET['cate_type_id']) && $_GET['cate_type_id'] > 0) { $arrCustom['cate_type_id'] = $_GET['cate_type_id']; $link .= "&cate_type_id=" . $arrCustom['cate_type_id']; $link_form .= "&cate_type_id=" . $arrCustom['cate_type_id']; } else { $arrCustom['cate_type_id'] = 1; } if (isset($_GET['menu_type']) && $_GET['menu_type'] > 0) { $menu_type = $_GET['menu_type']; } else {
<?php $url = "../index.php?mod=page&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['id']; $arrData['page_name'] = $page_name = $model->processData($_POST['page_name']); $arrData['page_alias'] = $page_alias = $model->changeTitle($page_name); $arrData['description'] = $description = addslashes($_POST['description']); $arrData['content'] = $content = addslashes($_POST['content']); $image_url_upload = $_FILES['image_url_upload']; if ($image_url_upload['name'] != '') { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else { $image_url = str_replace('../', '', $_POST['image_url']); } $arrData['image_url'] = $image_url; $meta_title = $model->processData($_POST['meta_title']); $meta_keyword = $model->processData($_POST['meta_keyword']); $meta_description = $model->processData($_POST['meta_description']); if ($meta_title == '') { $meta_title = $page_name; } if ($meta_keyword == '') { $meta_keyword = $page_name; } if ($meta_description == '') { $meta_description = $page_name; } $arrData['meta_title'] = $meta_title;
<?php ini_set('display_errors', 0); require_once "../model/Backend.php"; $model = new Backend(); $arrResult = array(); $term = $model->processData($_GET['term']); $sql = "SELECT tag_id, tag_name FROM tag WHERE tag_name LIKE '%" . $term . "%' LIMIT 10 "; $rs = mysql_query($sql) or die(mysql_error()); while ($row = mysql_fetch_assoc($rs)) { $arrResult[] = array('id' => $row['tag_id'], 'value' => $row['tag_name']); } echo json_encode($arrResult);
<?php $url = "../index.php?mod=portfolio&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['id']; $portfolio_name_vi = $model->processData($_POST['portfolio_name_vi']); $portfolio_name_en = $model->processData($_POST['portfolio_name_en']); $portfolio_alias = $model->changeTitle($portfolio_name_vi); $description_vi = $model->processData($_POST['description_vi']); $client_en = $_POST['client_en']; $description_en = $model->processData($_POST['description_en']); $client_vi = $_POST['client_vi']; $text_link_vi = $_POST['text_link_vi']; $text_link_en = $_POST['text_link_en']; $link_url = $_POST['link_url']; $cate_id = (int) $_POST['cate_id']; $image_url = str_replace('../', '', $_POST['image_url']); if ($id > 0) { $model->updatePortfolio($id, $portfolio_name_vi, $portfolio_name_en, $portfolio_alias, $image_url, $description_vi, $description_en, $text_link_vi, $text_link_en, $client_vi, $client_en, $link_url, $cate_id); header('location:' . $url . '&cate_id=' . $cate_id); } else { $model->insertPortfolio($portfolio_name_vi, $portfolio_name_en, $portfolio_alias, $image_url, $description_vi, $description_en, $text_link_vi, $text_link_en, $client_vi, $client_en, $link_url, $cate_id); header('location:' . $url . '&cate_id=' . $cate_id); }
<?php session_start(); require_once "../model/Backend.php"; $model = new Backend(); $url = "../index.php?mod=city&act=list"; $arrParam['city_name'] = $model->processData($_POST['city_name']); $arrParam['city_alias'] = $model->changeTitle($arrParam['city_name']); $arrParam['display_order'] = $model->getOrderMax("city"); $city_id = (int) $_POST['city_id']; $table = "city"; if ($city_id > 0) { $arrParam['city_id'] = $city_id; $model->update($table, $arrParam); } else { $model->insert($table, $arrParam); } header('location:' . $url);
<?php $url = "../index.php?mod=age&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['id']; $range = $model->processData($_POST['range']); if ($id > 0) { $model->updateAgeRange($id, $range); header('location:' . $url); } else { $model->insertAgeRange($range); header('location:' . $url); }
<?php $url = "../index.php?mod=catetype&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['cate_type_id']; $cate_type_name = $model->processData($_POST['cate_type_name']); $description = $model->processData($_POST['description']); $cate_type_alias = $model->changeTitle($cate_type_name); $is_menu = (int) $_POST['is_menu']; $hidden = (int) $_POST['hidden']; if ($id > 0) { $display_order = $_POST['display_order']; } else { $display_order = $model->getOrderMax("cate_type") + 1; } $image_url_upload = $_FILES['image_url_upload']; $icon_url_upload = $_FILES['icon_url_upload']; if ($image_url_upload['name'] != "") { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else { $image_url = str_replace('../', '', $_POST['image_url']); } if ($icon_url_upload['name'] != "") { $arrRe = $model->uploadImages($icon_url_upload); $icon_url = $arrRe['filename']; } else { $icon_url = str_replace('../', '', $_POST['icon_url']); } $meta_title = $model->processData($_POST['meta_title']);
<?php $url = "../index.php?mod=about&act=form&id=1"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['id']; $name_1_vi = $model->processData($_POST['name_1_vi']); $name_2_vi = $model->processData($_POST['name_2_vi']); $content_1_vi = $_POST['content_1_vi']; $content_2_vi = $_POST['content_2_vi']; $name_1_en = $model->processData($_POST['name_1_en']); $name_2_en = $model->processData($_POST['name_2_en']); $content_1_en = $_POST['content_1_en']; $content_2_en = $_POST['content_2_en']; $image_url = str_replace('../', '', $_POST['image_url']); if ($id > 0) { $model->updateAbout($id, $name_1_vi, $content_1_vi, $image_url, $name_2_vi, $content_2_vi, $name_1_en, $name_2_en, $content_1_en, $content_2_en); header('location:' . $url . '&mess=Success'); }
<?php $url = "../index.php?mod=articles&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['article_id']; $dataArr['article_title'] = $article_title = $model->processData($_POST['article_title']); $dataArr['title_en'] = $title_en = $model->processData($_POST['title_en']); $dataArr['article_alias'] = $article_alias = $model->processData($_POST['article_alias']); $dataArr['description'] = $description = $model->processData($_POST['description']); $dataArr['content'] = $content = mysql_escape_string($_POST['content']); $dataArr['source'] = $source = mysql_escape_string($_POST['source']); $dataArr['seo_text'] = $seo_text = mysql_escape_string($_POST['seo_text']); $dataArr['cate_id'] = $cate_id = (int) $_POST['cate_id']; $dataArr['is_hot'] = $is_hot = (int) $_POST['is_hot']; $dataArr['hidden'] = $hidden = (int) $_POST['hidden']; $image_url_upload = $_FILES['image_url_upload']; if ($image_url_upload['name'] != '') { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else { $image_url = str_replace('../', '', $_POST['image_url']); } $dataArr['image_url'] = $image_url; $meta_title = $model->processData($_POST['meta_title']); $seo_title = $model->processData($_POST['seo_title']); $dataArr['seo_title'] = $seo_title; $meta_keyword = $model->processData($_POST['meta_keyword']); $meta_description = $model->processData($_POST['meta_description']); if ($meta_title == '') { $meta_title = $page_name;
<?php $url = "../index.php?mod=convenient&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['id']; $arrData['name'] = $name = $model->processData($_POST['name']); $arrData['price'] = str_replace(",", "", $model->processData($_POST['price'])); $arrData['description'] = $model->processData($_POST['description']); $arrData['display_order'] = 1; $image_url_upload = $_FILES['image_url_upload']; if ($image_url_upload['name'] != '') { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else { $image_url = str_replace('../', '', $_POST['image_url']); } $arrData['image_url'] = $image_url; $table = "convenient"; if ($id > 0) { $arrData['id'] = $id; $arrData['updated_at'] = time(); $model->update($table, $arrData); } else { $arrData['created_at'] = time(); $arrData['updated_at'] = time(); $model->insert($table, $arrData); } header('location:' . $url);
<?php $list_url = "../index.php?mod=product&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = isset($_POST['id']) ? (int) $_POST['id'] : 0; $arrData['name_vi'] = $name_vi = $model->processData($_POST['name_vi']); $arrData['name_en'] = $name_en = $model->processData($_POST['name_en']); $arrData['alias_vi'] = $model->changeTitle($name_vi); $arrData['alias_en'] = $model->changeTitle($name_en); $arrData['description_vi'] = $model->processData($_POST['description_vi']); $arrData['description_en'] = $model->processData($_POST['description_en']); $arrData['gift_vi'] = $model->processData($_POST['gift_vi']); $arrData['gift_en'] = $model->processData($_POST['gift_en']); $price = $model->processData($_POST['price']); $arrData['price'] = str_replace(",", "", $price); $price_sale = $model->processData($_POST['price_sale']); $arrData['price_sale'] = str_replace(",", "", $price_sale); $arrData['content_vi'] = addslashes($_POST['content_vi']); $arrData['content_en'] = addslashes($_POST['content_en']); $arrData['note_1_vi'] = addslashes($_POST['note_1_vi']); $arrData['note_1_en'] = addslashes($_POST['note_1_en']); $arrData['note_2_vi'] = addslashes($_POST['note_2_vi']); $arrData['note_2_en'] = addslashes($_POST['note_2_en']); $image_url_upload = $_FILES['image_url_upload']; $image_url = ""; if ($image_url_upload['name'] != '') { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else { $image_url = str_replace("../", "", $_POST['image_url']);
<?php $url = "../index.php?mod=client&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['id']; $name_vi = $model->processData($_POST['name_vi']); $job_vi = $model->processData($_POST['job_vi']); $content_vi = $model->processData($_POST['content_vi']); $name_en = $model->processData($_POST['name_en']); $job_en = $model->processData($_POST['job_en']); $content_en = $model->processData($_POST['content_en']); $image_url = str_replace('../', '', $_POST['image_url']); if ($id > 0) { $model->updateClient($id, $name_vi, $job_vi, $content_vi, $name_en, $job_en, $content_en, $image_url); header('location:' . $url); } else { $model->insertClient($name_vi, $job_vi, $content_vi, $name_en, $job_en, $content_en, $image_url); header('location:' . $url); }
<?php session_start(); $list_url = "../index.php?mod=ma-giam-gia&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = isset($_POST['id']) ? (int) $_POST['id'] : 0; $arrData['code'] = $model->processData($_POST['code']); $arrData['title'] = $model->processData($_POST['title']); $arrData['content'] = $model->processData($_POST['content']); $arrData['label'] = $model->processData($_POST['label']); $arrData['start_date'] = date('Y-m-d H:i:s', strtotime($model->processData($_POST['start_date']))); $arrData['end_date'] = date('Y-m-d H:i:s', strtotime($model->processData($_POST['end_date']))); $arrData['status'] = (int) $_POST['status']; $table = "coupon"; //var_dump("<pre>", $arrData);die; if ($id > 0) { $arrData['id'] = $id; $model->update($table, $arrData); } header('location:' . $list_url);
<?php session_start(); require_once "../model/Backend.php"; $model = new Backend(); $url = "../index.php?mod=state&act=list"; $arrParam['state_name'] = $model->processData($_POST['state_name']); $arrParam['state_alias'] = $model->changeTitle($arrParam['state_name']); $arrParam['city_id'] = $city_id = (int) $_POST['city_id']; $state_id = (int) $_POST['state_id']; $arrParam['display_order'] = $model->getOrderMaxState("state", $city_id); $table = "state"; if ($state_id > 0) { $arrParam['id'] = $state_id; $model->update($table, $arrParam); } else { $model->insert($table, $arrParam); } header('location:' . $url . "&city_id=" . $city_id);
<?php $url = "../index.php?mod=services&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['id']; $arrData['name'] = $model->processData($_POST['name']); $arrData['price'] = $model->processData($_POST['price']); $arrData['cal_type'] = (int) $_POST['cal_type']; $arrData['display_order'] = 1; $table = "services"; if ($id > 0) { $arrData['id'] = $id; $arrData['updated_at'] = time(); $model->update($table, $arrData); } else { $arrData['created_at'] = time(); $arrData['updated_at'] = time(); $model->insert($table, $arrData); } header('location:' . $url);
<?php $url = "../index.php?mod=manu&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['manu_id']; $manu_name = $model->processData($_POST['manu_name']); $manu_alias = $model->changeTitle($manu_name); $catetype_id = $_POST['catetype_id']; $is_hot = (int) $_POST['is_hot']; $hidden = (int) $_POST['hidden']; if ($id > 0) { $display_order = $_POST['display_order']; } else { $display_order = $model->getOrderMax("manu") + 1; } $description = $_POST['description']; $meta_title = $model->processData($_POST['meta_title']); $meta_description = $model->processData($_POST['meta_description']); $meta_keyword = $model->processData($_POST['meta_keyword']); if ($meta_title == '') { $meta_title = $manu_name; } if ($meta_description == '') { $meta_description = $manu_name; } if ($meta_keyword == '') { $meta_keyword = $manu_name; } $image_url_upload = $_FILES['image_url_upload']; if ($image_url_upload['name'] != '') {
$model->deletePrivi($user_id); if (!empty($privi)) { foreach ($privi as $value) { $model->insertPrivi($user_id, $value); } } header('location:' . $url); } elseif ($act == "changepass") { $user_id = $_SESSION['user_id']; $password = md5($_POST['password']); $model->changePass($user_id, $password); session_destroy(); header('location:../login.php'); } else { $user_id = (int) $_POST['user_id']; $city_id = (int) $_POST['city_id']; $full_name = $model->processData($_POST['full_name']); $username = $model->processData($_POST['username']); $phone = $model->processData($_POST['phone']); $email = $model->processData($_POST['email']); $address = $model->processData($_POST['address']); $back_url = $_POST['back_url']; $status = $_POST['status']; if ($user_id > 0) { $model->updateUser($user_id, $email, $full_name, $address, $city_id, $phone, $status); header('location:' . $url . $back_url); } else { $model->insertUser($username, $full_name, $email, $phone, $address, $city_id, $status); header('location:' . $url); } }
<?php $url = "../index.php?mod=user&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = isset($_POST['id']) ? (int) $_POST['id'] : 0; $arrData['name'] = $name = $model->processData($_POST['name']); $arrData['email'] = $model->processData($_POST['email']); $arrData['yahoo'] = $model->processData($_POST['yahoo']); $arrData['skype'] = $model->processData($_POST['skype']); $arrData['phone'] = $model->processData($_POST['phone']); $arrData['address'] = $model->processData($_POST['address']); $image_url_upload = $_FILES['image_url_upload']; if ($image_url_upload['name'] != '') { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else { $image_url = str_replace('../', '', $_POST['image_url']); } $arrData['image_url'] = $image_url; $arrData['level'] = 2; $arrData['status'] = 1; $table = "users"; if ($id > 0) { $arrData['id'] = $id; $arrData['updated_at'] = time(); $model->update($table, $arrData); } else { $arrData['created_at'] = time(); $arrData['updated_at'] = time(); $pass = $model->processData($_POST['password']);
if (isset($_GET['cate_id']) && $_GET['cate_id'] > -1) { $cate_id = (int) $_GET['cate_id']; $link .= "&cate_id={$cate_id}"; $link_form .= "&cate_id={$cate_id}"; } else { $cate_id = -1; } if (isset($_GET['hidden']) && $_GET['hidden'] > -1) { $hidden = (int) $_GET['hidden']; $link .= "&hidden={$hidden}"; $link_form .= "&hidden={$hidden}"; } else { $hidden = -1; } if (isset($_GET['keyword'])) { $keyword = $model->processData($_GET['keyword']); $link .= '&keyword=' . $keyword; $link_form .= '&keyword=' . $keyword; } else { $keyword = ''; } if (isset($_GET['tungay'])) { $tungay = $model->processData($_GET['tungay']); $link .= '&tungay=' . $tungay; $link_form .= '&tungay=' . $tungay; } else { $tungay = ''; } if (isset($_GET['denngay'])) { $denngay = $model->processData($_GET['denngay']); $link .= '&denngay=' . $denngay;
<?php require_once "model/Backend.php"; $model = new Backend(); $link = $link_back = "index.php?mod=articles&act=list"; $link_form = "index.php?mod=articles&act=form"; if (isset($_GET['name_vi']) && $_GET['name_vi'] != '') { $arrCustom['name_vi'] = $model->processData($_GET['name_vi']); $link .= "&name=" . $arrCustom['name_vi']; $link_back .= "&name=" . $arrCustom['name_vi']; } else { $arrCustom['name_vi'] = ''; } if (isset($_GET['cate_id']) && $_GET['cate_id'] > 0) { $cate_id = $_GET['cate_id']; $link .= "&cate_id=" . $cate_id; $link_form .= "&cate_id=" . $cate_id; $arrCustom['cate_id'] = $cate_id; $detailParent = $model->getDetail('articles_cate', $cate_id); } else { $cate_id = -1; } if (isset($_GET['is_hot'])) { $is_hot = $_GET['is_hot']; $link .= "&is_hot=" . $is_hot; $link_form .= "&is_hot=" . $is_hot; $arrCustom['is_hot'] = $is_hot; } else { $is_hot = -1; } $table = "articles";
<?php $url = "../index.php?mod=product&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['product_id']; $table = "product"; $cateTypeArr = $_POST['cate_type_id']; $arrCate = $_POST['cate_id']; $arr['deal_amount'] = $deal_amount = (int) $_POST['deal_amount']; $arr['da_ban'] = $da_ban = (int) $_POST['da_ban']; $arr['start_date'] = $start_date = $_POST['start_date'] != '' ? strtotime($_POST['start_date']) : 0; $arr['end_date'] = $end_date = $_POST['end_date'] != '' ? strtotime($_POST['end_date']) : 0; $arr['product_code'] = $product_code = $model->processData($_POST['product_code']); $arr['product_name'] = $product_name = $model->processData($_POST['product_name']); $arr['name_en'] = $name_en = $model->processData($_POST['name_en']); $arr['product_alias'] = $product_alias = $model->changeTitle($product_name); $arr['is_hot'] = $is_hot = (int) $_POST['is_hot']; $arr['is_new'] = $is_new = (int) $_POST['is_new']; $arr['hidden'] = $hidden = (int) $_POST['hidden']; $arr['trangthai'] = $trangthai = (int) $_POST['trangthai']; $arr['is_saleoff'] = $is_saleoff = (int) $_POST['is_saleoff']; $arr['percent_deal'] = $percent_deal = $_POST['percent_deal']; $arr['size'] = $size = $_POST['size']; $arr['color'] = $color = $_POST['color']; $arr['price'] = $price = str_replace(",", "", $_POST['price']); $arr['price_saleoff'] = $price_saleoff = str_replace(",", "", $_POST['price_saleoff']); $arr['display_order'] = 1; $arr['description'] = $description = nl2br($_POST['description']); $arr['content'] = $content = mysql_real_escape_string($_POST['content']); $arr['guide_use'] = $guide_use = mysql_real_escape_string($_POST['guide_use']);
<?php $url = "../index.php?mod=cate_articles&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['cate_id']; $dataArr['cate_name'] = $cate_name = $model->processData($_POST['cate_name']); $dataArr['cate_alias'] = $cate_alias = $model->processData($_POST['cate_alias']); $dataArr['is_hot'] = $is_hot = (int) $_POST['is_hot']; $dataArr['hidden'] = $hidden = (int) $_POST['hidden']; $dataArr['meta_title'] = $meta_title = $model->processData($_POST['meta_title']); $dataArr['seo_title'] = $seo_title = $model->processData($_POST['seo_title']); $meta_description = $model->processData($_POST['meta_description']); $meta_keyword = $model->processData($_POST['meta_keyword']); if ($meta_title == '') { $meta_title = $cate_name; } if ($meta_description == '') { $meta_description = $cate_name; } if ($meta_keyword == '') { $meta_keyword = $cate_name; } $dataArr['meta_title'] = $meta_title; $dataArr['meta_description'] = $meta_description; $dataArr['meta_keyword'] = $meta_keyword; $image_url_upload = $_FILES['image_url_upload']; if ($image_url_upload['name'] != '') { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else {
<?php session_start(); $type = (int) $_POST['type']; if ($type == 1) { $mod = "content"; } elseif ($type == 2) { $mod = "tin-dung"; } else { $mod = "tai-sao"; } $list_url = "../index.php?mod=" . $mod . "&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = isset($_POST['id']) ? (int) $_POST['id'] : 0; $arrData['name'] = $model->processData($_POST['name']); $arrData['title'] = $model->processData($_POST['title']); $arrData['description'] = $model->processData($_POST['description']); $arrData['content'] = $_POST['content']; $image_url_upload = $_FILES['image_url_upload']; if ($image_url_upload['name'] != '') { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else { $image_url = str_replace('../', '', $_POST['image_url']); } $arrData['image_url'] = $image_url; $arrData['type'] = (int) $_POST['type']; $table = "content"; if ($id > 0) { $arrData['id'] = $id;
<?php $url = "../index.php?mod=banner&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['banner_id']; $name_event = $model->processData($_POST['name_event']); $name_en = $model->changeTitle($name_event); $status = $_POST['status'] == null ? 1 : 0; $position_id = (int) $_POST['position_id']; $description = $_POST['description']; $link_url = $_POST['link_url']; $start_time = $_POST['start_time'] != '' ? strtotime($_POST['start_time']) : 0; $end_time = $_POST['end_time'] != '' ? strtotime($_POST['end_time']) : 0; $link_url = $_POST['link_url']; $type_id = (int) $_POST['type_id']; if ($type_id != 3) { $link_url = ''; } $size_default = $_POST['size_default']; $content = mysql_escape_string($_POST['content']); $image_url_upload = $_FILES['image_url_upload']; if ($image_url_upload['name'] != '') { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else { $image_url = str_replace('../', '', $_POST['image_url']); } if ($id > 0) { $model->updateBanner($id, $name_event, $name_en, $start_time, $end_time, $position_id, $description, $content, $image_url, $link_url, $type_id, $size_default, $status); header('location:' . $url . '&position_id=' . $position_id);
<?php $url = "../index.php?mod=articles&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['id']; $arrData['name'] = $name = $model->processData($_POST['name']); $arrData['alias'] = $model->changeTitle($name); $arrData['description'] = $model->processData($_POST['description']); $arrData['source'] = $model->processData($_POST['source']); $arrData['content'] = addslashes($_POST['content']); $arrData['is_hot'] = (int) $_POST['is_hot']; $arrData['category_id'] = (int) $_POST['category_id']; $image_url_upload = $_FILES['image_url_upload']; if ($image_url_upload['name'] != '') { $arrRe = $model->uploadImages($image_url_upload); $image_url = $arrRe['filename']; } else { $image_url = str_replace('../', '', $_POST['image_url']); } $meta_title = $model->processData($_POST['meta_title']); $meta_keyword = $model->processData($_POST['meta_keyword']); $meta_description = $model->processData($_POST['meta_description']); $arrData['meta_title'] = $meta_title == '' ? $name : $meta_title; $arrData['meta_keyword'] = $meta_keyword == '' ? $name : $meta_keyword; $arrData['meta_description'] = $meta_description == '' ? $name : $meta_description; $arrData['image_url'] = $image_url; $table = "articles"; if ($id > 0) { $arrData['id'] = $id; $arrData['updated_at'] = time();
<?php session_start(); $user_id = $_SESSION['user_id']; $url = "../index.php?mod=contract&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = isset($_POST['id']) ? (int) $_POST['id'] : 0; //save customer $customer_id_old = isset($_POST['customer_id_old']) ? (int) $_POST['customer_id_old'] : 0; $object_type = $_POST['object_type']; $object_id = (int) $_POST['object_id']; $contract_id = isset($_POST['id']) ? (int) $_POST['id'] : 0; if ($customer_id_old == 0) { // new $customerArr['name'] = $model->processData($_POST['name']); if ($customerArr['name'] != '') { $customerArr['gender'] = (int) $_POST['gender']; $customerArr['phone'] = $model->processData($_POST['phone']); $customerArr['email'] = $model->processData($_POST['email']); $customerArr['birthday'] = $model->processData($_POST['birthday']); $customerArr['address'] = $model->processData($_POST['address']); $customerArr['cmnd'] = $model->processData($_POST['cmnd']); $customerArr['updated_at'] = time(); $customerArr['user_id'] = $user_id; $customerArr['status'] = 1; $customerArr['is_main'] = 1; $customer_id = (int) $_POST['customer_id']; if ($customer_id > 0) { $customerArr['id'] = $customer_id; $model->update('customers', $customerArr);
<?php $url = "../index.php?mod=customers&act=list"; require_once "../model/Backend.php"; $model = new Backend(); $id = (int) $_POST['id']; $arrData['name'] = $name = $model->processData($_POST['name']); $arrData['phone'] = $model->processData($_POST['phone']); $arrData['email'] = $model->processData($_POST['email']); $arrData['cmnd'] = $model->processData($_POST['cmnd']); $arrData['birthday'] = $model->processData($_POST['birthday']); $arrData['address'] = $model->processData($_POST['address']); $arrData['user_id'] = (int) $_POST['user_id']; $arrData['gender'] = (int) $_POST['gender']; $arrData['status'] = 1; $table = "customers"; if ($arrData['name']) { if ($id > 0) { $arrData['id'] = $id; $arrData['updated_at'] = time(); $model->update($table, $arrData); } else { $arrData['created_at'] = time(); $arrData['updated_at'] = time(); $model->insert($table, $arrData); } } header('location:' . $url);