/
/
home
/
u523034047
/
domains
/
rakeshfilms.in
/
public_html
/
skw
/
admin
Server: in-mum-web1112.main-hosting.eu (62.72.28.111)
You: 216.73.216.130
PHP 8.3.16
Dir:
/home/u523034047/domains/rakeshfilms.in/public_html/skw/admin
Edit:
/home/u523034047/domains/rakeshfilms.in/public_html/skw/admin/visaapproval.php
<?php include('conn.php'); session_start(); if (!isset($_SESSION['username'])) { header('location:index.php'); exit(); } else { if (isset($_POST['sub'])) { error_reporting(0); $a = strip_tags($_POST['t1']); $msg = ''; $file = $_FILES['file']; $imageName = $file['name']; $tmpPath = $file['tmp_name']; $fileSize = $file['size']; $fileError = $file['error']; // Allowed MIME types for common image formats $allowedMimeTypes = [ 'image/jpeg', 'image/png', 'image/gif', 'image/bmp', 'image/webp', 'image/jpg' ]; // Maximum allowed file size: 5MB $maxSize = 5 * 1024 * 1024; // Get real MIME type $finfo = finfo_open(FILEINFO_MIME_TYPE); $mimeType = finfo_file($finfo, $tmpPath); finfo_close($finfo); if (in_array($mimeType, $allowedMimeTypes) && $fileSize <= $maxSize) { if ($fileError > 0) { $msg = "Error Code: " . $fileError; } else { if (!is_dir("visastudent")) { mkdir("visastudent", 0777, true); } $ext = pathinfo($imageName, PATHINFO_EXTENSION); $newFileName = uniqid("visa_", true) . "." . strtolower($ext); $uploadPath = "visastudent/" . $newFileName; if (move_uploaded_file($tmpPath, $uploadPath)) { $sql = "INSERT INTO `visaapproval` (`name`, `image`) VALUES (?, ?)"; $stmt = mysqli_prepare($connection, $sql); mysqli_stmt_bind_param($stmt, "ss", $a, $newFileName); if (mysqli_stmt_execute($stmt)) { $msg = "✅ File uploaded successfully."; } else { $msg = "❌ DB Error: " . mysqli_error($connection); } mysqli_stmt_close($stmt); } else { $msg = "❌ Failed to move uploaded file."; } } } else { $msg = "❌ Invalid image format or file too large (max 5MB)."; } echo $msg; } if(isset($_POST['del'])) { $id = $_POST['id']; $sql="delete from `visaapproval` where id='".$id."'"; $query=mysqli_query($connection,$sql); header('location:visaapproval.php'); } } ?> <!DOCTYPE html> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta charset="utf-8" /> <meta name="viewport" content="width=device-width, initial-scale=1.0" /> <title>Admin</title> <!-- BOOTSTRAP STYLES--> <link href="assets/css/bootstrap.css" rel="stylesheet" /> <!-- FONTAWESOME STYLES--> <link href="assets/css/font-awesome.css" rel="stylesheet" /> <!-- CUSTOM STYLES--> <link href="assets/css/custom.css" rel="stylesheet" /> <!-- GOOGLE FONTS--> <link href='http://fonts.googleapis.com/css?family=Open+Sans' rel='stylesheet' type='text/css' /> </head> <body> <div id="wrapper"> <div class="navbar navbar-inverse navbar-fixed-top"> <?php include ('header.php');?> </div> <!-- /. NAV TOP --> <nav class="navbar-default navbar-side" role="navigation"> <?php include ('menu.php');?> </nav> <!-- /. NAV SIDE --> <div id="page-wrapper" > <div id="page-inner"> <div class="row"> <div class="col-md-12"> <h2>Upload Images </h2> </div> </div> <!-- /. ROW --> <hr /> <!-- /. ROW --> <div class="panel panel-primary" data-collapsed="0"> <div class="panel-heading"> <div class="panel-title" > <i class="entypo-plus-circled"></i> Gallery Entry </div> </div> <form method="post" action="" enctype="multipart/form-data"> <div class="panel-body"> <div class="form-group"> <label for="field-1" class="col-sm-3 control-label"> Name</label> <div class="col-sm-5"> <input type="text" class="form-control" name="t1" data-validate="required" data-message-required="Value Required" value="" autofocus> </div> </div></br> <div class="form-group"> <label for="field-1" class="col-sm-3 control-label">Image</label> <div class="col-sm-5"> <input type="file" name="file" id="file"> </div> </div></br> <?php if($msg !='') { ?> <div style="width=100%" class="row cvmsgok"><?php echo $msg; ?></div> <?php } elseif($msgno !='') { ?> <div style="width=100%" class="row cvmsgno"><?php echo $msgno; ?></div> <?php } ?> </br></br> </br> <div class="form-group" align="center"> <div class="col-sm-8"> <input type="submit" class="btn btn-info" name="sub" value="Save"> <input type="Reset" class="btn btn-danger" name="sub1" value="Reset"> </div> </div></br> </form> </div> </div> <div class="panel panel-primary" data-collapsed="0"> <div class="panel-heading"> <div class="panel-title" > <i class="entypo-plus-circled"></i> Status </div> </div> <div class="panel-body"> <div style="overflow-x:auto;"> <div class="col-lg-12 col-md-12"> <div class="table-responsive"> <table class="table"> <thead> <tr> <th>#</th> <th> Image</th> <th>Name</th> <th>Action</th> </tr> </thead> <?php $sql="select * from visaapproval order by id desc"; $query=mysqli_query($connection,$sql); $count=1; while($fetch = mysqli_fetch_array($query)){ ?> <tbody> <tr class="info"> <td><?php echo $count++;?></td> <td><img src="visastudent/<?php echo $fetch[2]?>"height="50px" width="50px"; ></td> <td><?php echo $fetch[1];?></td> <td><form method='POST'> <input type=hidden name=id value="<?php echo $fetch[0];?>" > <input type=submit value=Delete class="btn btn-danger" name=del > </form></td> </tr> </tbody> <?php } ?> </table> </div> </div> </div> </div> </div> </div> </div> <!-- /. PAGE INNER --> </div> <!-- /. PAGE WRAPPER --> </div> <div class="footer"> <?php include ('footer.php');?> </div> <!-- /. WRAPPER --> <!-- SCRIPTS -AT THE BOTOM TO REDUCE THE LOAD TIME--> <!-- JQUERY SCRIPTS --> <script src="assets/js/jquery-1.10.2.js"></script> <!-- BOOTSTRAP SCRIPTS --> <script src="assets/js/bootstrap.min.js"></script> <!-- CUSTOM SCRIPTS --> <script src="assets/js/custom.js"></script> </body> </html>
Ukuran: 8.7 KB