1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
|
<?php require("configure.php");
$GCardParenten = htmlspecialchars($_POST["GCardParenten"],ENT_QUOTES);
$GCardStudenten = htmlspecialchars($_POST["GCardStudenten"],ENT_QUOTES);
$GCardDescen = preg_replace("/'/","\'",$_POST["GCardDescen"]);
$GCardParenttc = htmlspecialchars($_POST["GCardParenttc"],ENT_QUOTES);
$GCardStudenttc = htmlspecialchars($_POST["GCardStudenttc"],ENT_QUOTES);
$GCardDesctc = preg_replace("/'/","\'",$_POST["GCardDesctc"]);
$GCardParentsc = htmlspecialchars($_POST["GCardParentsc"],ENT_QUOTES);
$GCardStudentsc = htmlspecialchars($_POST["GCardStudentsc"],ENT_QUOTES);
$GCardDescsc = preg_replace("/'/","\'",$_POST["GCardDescsc"]);
$GCardSort = $_POST["GCardSort"];
//print_r($_POST);
$sql = "select max(GCardId) as maxid ";
$sql .= "from GCard ";
$result=mysql_query($sql);
$row = mysql_fetch_array($result,MYSQL_ASSOC);
$GCardId = $row{maxid}+1;
if ($GCardSort == '' || $GCardSort == '0') {
$sql = "select max(GCardSort) as maxid ";
$sql .= "from GCard ";
$result=mysql_query($sql);
$row = mysql_fetch_array($result,MYSQL_ASSOC);
$GCardSort = $row{maxid}+1;
}
if( mysql_num_rows(mysql_query("SELECT GCardId FROM GCard WHERE GCardSort=$GCardSort ")) > 0){
mysql_query("UPDATE GCard SET GCardSort= GCardSort+1 WHERE GCardSort >=$GCardSort ");
}
$sql = "insert into GCard (GCardId, GCardParenten, GCardStudenten, GCardDescen, GCardParenttc, GCardStudenttc, GCardDesctc, GCardParentsc, GCardStudentsc, GCardDescsc, GCardSort) values ('$GCardId', '$GCardParenten', '$GCardStudenten', '$GCardDescen', '$GCardParenttc', '$GCardStudenttc', '$GCardDesctc', '$GCardParentsc', '$GCardStudentsc', '$GCardDescsc', '$GCardSort')";
mysql_query($sql);
if( mysql_errno() > 0 ){
echo 'Greeting Card Add Error:<br />'. mysql_error() .'<br />SQL: '. $sql;
exit;
}
mysql_close($dbh);
header("Location: gcard_index.php?msg=Add Successful");
?>
|