<?php $query = "SELECT * FROM articulos WHERE codigo = " . $_REQUEST['codigo']; $result = mysql_query($query); if (mysql_num_rows($result) > 0) { $action_message = "El código ya ha sido utilizado"; return; } include_once "include/image_handler.php"; $image = new ImageHandler("images/articulos/"); $ImagenSubida = $image->load(); $query = "\n INSERT INTO articulos (\n codigo,\n descripcion,\n categoria,\n proveedor,\n marca,\n costo,\n precio,\n alicuota,"; if ($ImagenSubida) { $query .= "imagen,"; } $query .= " resumen, existencia) VALUES (\n '" . $_REQUEST['codigo'] . "',\n '" . htmlspecialchars(addslashes($_REQUEST['descripcion'])) . "',\n " . $_REQUEST['categoria'] . ",\n " . $_REQUEST['proveedor'] . ",\n " . $_REQUEST['marca'] . ",\n " . $_REQUEST['costo'] . ",\n " . $_REQUEST['precio'] . ",\n " . $_REQUEST['alicuota'] . ","; if ($ImagenSubida) { $query .= "'" . $ImagenSubida . "',"; } $query .= "'" . htmlspecialchars(addslashes($_REQUEST['resumen'])) . "', 0)"; if (!mysql_query($query)) { $action_message = mysql_error(); return; } $action_message = "Se ha agregado el artículo";