Gecko [ midwest-tb.com ]

Name	Size	Permission
assets	[ DIR ]	drwxr-xr-x
functions	[ DIR ]	drwxr-xr-x
img	[ DIR ]	drwxr-xr-x
includes	[ DIR ]	drwxr-xr-x
.htaccess	4.65 KB	-rw-r--r--
.mad-root	0 B	-rw-r--r--
01admin.zip	112.24 KB	-rw-r--r--
add_user.php	11.21 KB	-rw-r--r--
banner.php	1.41 KB	-rw-r--r--
db.php	30 B	-rw-r--r--
delete.php	357 B	-rw-r--r--
delete_banner.php	736 B	-rw-r--r--
delete_post.php	960 B	-rw-r--r--
delete_user.php	991 B	-rw-r--r--
edit_banner.php	3.38 KB	-rw-r--r--
edit_post.php	11.55 KB	-rw-r--r--
edit_post2.php	5.62 KB	-rw-r--r--
edit_user.php	13.09 KB	-rw-r--r--
editsettings.php	2.61 KB	-rw-r--r--
error_log	54.03 KB	-rw-r--r--
function_users.php	6.8 KB	-rw-r--r--
functions.php	10.92 KB	-rw-r--r--
home.php	6.62 KB	-rw-r--r--
index.php	56 B	-rw-r--r--
insert_banners.php	3.07 KB	-rw-r--r--
insert_post.php	9.63 KB	-rw-r--r--
login.php	1.57 KB	-rw-r--r--
login_admin.php	3.11 KB	-rw-r--r--
logout.php	164 B	-rw-r--r--
member.php	17.64 KB	-rw-r--r--
payment_setting.php	2.97 KB	-rw-r--r--
picupload.php	2.12 KB	-rw-r--r--
post.php	2.02 KB	-rw-r--r--
posts.php	2.94 KB	-rw-r--r--
print_shipment.php	1.91 KB	-rw-r--r--
register_admin.php	8.45 KB	-rw-r--r--
remove_amount.php	1.01 KB	-rw-r--r--
searchmembers.php	2.94 KB	-rw-r--r--
send_email.php	5.02 KB	-rw-r--r--
testimony.php	3.15 KB	-rw-r--r--
upload_files.php	2.59 KB	-rw-r--r--
user_error.php	188 B	-rw-r--r--
user_withdrawal.php	4.99 KB	-rw-r--r--
view_admin.php	2.84 KB	-rw-r--r--
view_banners.php	2.4 KB	-rw-r--r--
view_posts.php	2.85 KB	-rw-r--r--
view_referrals_bonus.php	2.83 KB	-rw-r--r--
view_users.php	4.78 KB	-rw-r--r--
viewconversation.php	5.37 KB	-rw-r--r--
viewmessage.php	2.4 KB	-rw-r--r--
viewmessages.php	4.24 KB	-rw-r--r--
website_setting.php	3.09 KB	-rw-r--r--

Code Editor : edit_post.php

<?php include("includes/header.php");
include("includes/navbar.php");
//$sql = mysqli_query($con, "ALTER TABLE `posts` ADD `flight_id` VARCHAR(111) NOT NULL AFTER `tracking_id`");
?>
<head><title>EDIT</title></head>

<br/>
  <div class="row">
        <div class="col-12">
            <div class="card">
                <div class="card-header">
                         <b class="card-title">Edit Shipment Status </h4>
                   </div>  
                   <hr/>
      <div class="col-md-2">

<div class="col-md-6">
<?php

$id = $_GET['id'];

$sql = "SELECT * FROM posts WHERE id ='$id' ";
$retrival = mysqli_query($con, $sql);
$numrows=mysqli_num_rows($retrival);

if($numrows==0){
  ?>
<script type="text/javascript">
        window.location.href = "pagenotfound.php"
        </script>
  <?php
}

while($row=mysqli_fetch_array($retrival)){
    
         $id = $row['id'];

$s_fullname = mysql_escape_string($row['s_fullname']);
        $s_phone = mysql_escape_string($row['s_phone']);
        $s_email = mysql_escape_string($row['s_email']);
        $s_phone = mysql_escape_string($row['s_phone']);
        $s_address = mysql_escape_string($row['s_address']);
        $type = mysql_escape_string($row['type']);

$fullname = mysql_escape_string($row['fullname']);
        $phone = mysql_escape_string($row['phone']);
        $email = mysql_escape_string($row['email']);
        $phone = mysql_escape_string($row['phone']);
        $address = mysql_escape_string($row['address']);

$time = $row['time'];
        $weight = $row['weight'];
        $mode = $row['mode'];
        $comments = $row['comments'];
        $status = $row['status'];
        $origin = $row['origin'];
        $packages = $row['packages'];
        $destination = mysql_escape_string($row['destination']);
        $tracking_id = mysql_escape_string($row['tracking_id']);
        $current_location = mysql_escape_string($row['current_location']);
        $payment = mysql_escape_string($row['payment']);
  $owner = $row['owner'];
}
?>

<div class="form-group">
                  <label>Tracking ID:</label>
                  <input type="text"  name="tracking_id" class="form-control" placeholder="" value="<?php echo $tracking_id?>">
                </div>

<div class="form-group">
                  <label>Payment Made?:</label>
                          <select name="payment" class="form-control" id="" required="">
                              <option value="<?php echo $payment?>"><?php echo $payment?></option>
                            <option value="No">No</option>
                            <option value="Yes">Yes</option>
                          </select>
                      </div>

<div class="form-group">
                  <label>Shipper fullname:</label>
                  <input type="text"  name="s_fullname" class="form-control" placeholder="" value="<?php echo $s_fullname?>">
                </div>
                    
                <div class="form-group">
                  <label>Shipper phone:</label>
                  <input type="text"  name="s_phone" class="form-control" placeholder="" value="<?php echo $s_phone?>">
                </div>
                    
                <div class="form-group">
                  <label>Shipper address:</label>
                  <input type="text"  name="s_address" class="form-control" placeholder="" value="<?php echo $s_address?>">
                </div>
                    
                <div class="form-group">
                  <label>Shipper email:</label>
                  <input type="text"  name="s_email" class="form-control" placeholder="" value="<?php echo $s_email?>">
                </div>

<div class="form-group">
                  <label>Current Location of item (Will display as google map):</label>
                  <input type="text"  name="current_location" class="form-control"  id="ship-address"  autocomplete="off" placeholder="" value="<?php echo $current_location?>">
                </div>
<script src="https://maps.googleapis.com/maps/api/js?key=AIzaSyAPWnBFSS3svWamoE-Ldu4h_UoHUOe8y3I&callback=initAutocomplete&libraries=places&v=weekly"
      async></script>

<div class="form-group">
                  <label>Type of shipment:</label>
                          <select name="type" class="form-control" id="" required="">
                            <option value="<?php echo $type?>"><?php echo $type?></option>
                      <?php include("functions/list_shipment.php");?>
                          </select>
                      </div>

<div class="form-group">
                  <label>mode:</label>
                  <input type="text"  name="mode" class="form-control" placeholder="" value="<?php echo $mode?>">
                </div>
                    
                <div class="form-group">
                  <label>origin:</label>
                  <input type="text"  name="origin" class="form-control" placeholder="" value="<?php echo $origin?>">
                </div>

<div class="form-group">
                  <label>status</label>
                  <input type="text"  name="status" class="form-control" placeholder="" value="<?php echo $status?>">
                </div>

<div class="form-group">
                  <label>Delivery Date:</label>
                  <input type="text"  name="time" class="form-control" placeholder="" value="<?php echo $time?>">
                </div>

<div class="form-group">
                  <label>packages:</label>
                  <input type="text"  name="packages" class="form-control" placeholder="" value="<?php echo $packages?>">
                </div>
                    
                <div class="form-group">
                  <label>weight:</label>
                  <input type="text"  name="weight" class="form-control" placeholder="" value="<?php echo $weight?>">
                </div>

<div class="form-group">
                  <label>Reciever fullname:</label>
                  <input type="text"  name="fullname" class="form-control" placeholder="" value="<?php echo $fullname?>">
                </div>
                    
                <div class="form-group">
                  <label>Reciever phone:</label>
                  <input type="text"  name="phone" class="form-control" placeholder="" value="<?php echo $phone?>">
                </div>
                    
                <div class="form-group">
                  <label>Reciever address:</label>
                  <input type="text"  name="address" class="form-control" placeholder="" value="<?php echo $address?>">
                </div>
                    
                <div class="form-group">
                  <label>Reciever email:</label>
                  <input type="text"  name="email" class="form-control" placeholder="" value="<?php echo $email?>">
                </div>
                    
                <div class="form-group">
                  <label>destination:</label>
                  <input type="text"  name="destination" class="form-control" placeholder="" value="<?php echo $destination?>">
                </div>

<div class="form-group">
                  <label>comments:</label>
                  <textarea class="form-control" name="comments" rows="7"><?php echo $comments?></textarea>
                </div>

</form>
            </div>
            
          </div>
          
        </div>
        
      </div>
      
    </section>
    
  </div>
</center>

<?php

if(isset($_POST['submit'])){

$s_fullname = mysql_escape_string($_POST['s_fullname']);
        $s_phone = mysql_escape_string($_POST['s_phone']);
        $s_email = mysql_escape_string($_POST['s_email']);
        $s_phone = mysql_escape_string($_POST['s_phone']);
        $s_address = mysql_escape_string($_POST['s_address']);

$fullname = mysql_escape_string($_POST['fullname']);
        $phone = mysql_escape_string($_POST['phone']);
        $email = mysql_escape_string($_POST['email']);
        $phone = mysql_escape_string($_POST['phone']);
        $address = mysql_escape_string($_POST['address']);

$time = $_POST['time'];
        $mode = $_POST['mode'];
        $comments = $_POST['comments'];
        $status = $_POST['status'];
        $origin = $_POST['origin'];
        $packages = $_POST['packages'];
        $type = $_POST['type'];
        $weight = $_POST['weight'];
        $destination = mysql_escape_string($_POST['destination']);
        $tracking_id = mysql_escape_string($_POST['tracking_id']);
        $current_location = mysql_escape_string($_POST['current_location']);
        $payment = mysql_escape_string($_POST['payment']);

if($tracking_id==""){
  echo " The fields are empty!<br/>";
  echo "<script> alert ('Some fields are empty')  </script>";

}

else{

$insert_query="UPDATE posts SET fullname ='$fullname', phone='$phone', email='$email', address='$address', s_fullname='$s_fullname', s_phone ='$s_phone', s_email='$s_email', s_address ='$s_address', time ='$time',  mode ='$mode', destination ='$destination', type ='$type',
weight ='$weight', tracking_id ='$tracking_id', packages ='$packages', origin ='$origin', comments ='$comments', status ='$status' , current_location ='$current_location', payment ='$payment' WHERE id='$id' ";
  $result = mysqli_query($con, $insert_query);

if($result){

?>
<script type="text/javascript">
          window.location.href = "post.php?id=<?php echo $id?>"
        </script>
  <?php

}
  else{
    echo"we couldnt publish post</br>";
//echo "<script> alert ('we couldnt publish post')  </script>";
}
}

}
?>

</div></div></div>
<?php
include("includes/footer.php");
?>

${this.title}

Code Editor : edit_post.php