|
Server IP : 82.197.83.136 / Your IP : 216.73.216.82 Web Server : LiteSpeed System : Linux us-bos-web1456.main-hosting.eu 4.18.0-553.84.1.lve.el8.x86_64 #1 SMP Tue Nov 25 18:33:03 UTC 2025 x86_64 User : u163988420 ( 163988420) PHP Version : 7.4.33 Disable Function : system, exec, shell_exec, passthru, mysql_list_dbs, ini_alter, dl, symlink, link, chgrp, leak, popen, apache_child_terminate, virtual, mb_send_mail MySQL : OFF | cURL : ON | WGET : ON | Perl : OFF | Python : ON Directory (0755) : /home/u163988420/domains/brshastrihospital.com/public_html/AACSITE/br-admin/ |
| [ Home ] | [ C0mmand ] | [ Upload File ] |
|---|
<?php
include('../connection.php');
// Update Admin
if (!empty($_POST['update_admin'])) {
$sno = $_POST['sno'];
$name = $_POST['name'];
$username = $_POST['username'];
$password = $_POST['password'];
$new_image = $_FILES['new_image']['name'];
if ($new_image != '')
{
$temp = $_FILES['new_image']['tmp_name'];
$folder = "uploads/admin/".$new_image;
$a = '';
if (!empty($_POST['old_image']))
{
unlink("uploads/admin/".$_POST['old_image']);
}
}
else
{
$new_image = $_POST['old_image'];
$a = 'true';
}
$up = "UPDATE `admin` SET `name`='$name',`username`='$username',`password`='$password',`image`='$new_image' WHERE `sno` ='$sno'";
$run = mysqli_query($con,$up);
if ($run) {
if($a == '')
{
move_uploaded_file($temp, $folder);
}
header('location:admin.php');
}
else
{
header('location:admin.php');
}
}
// Top Navbar
if (!empty($_POST['update_top_navbar']))
{
$sno = $_POST['sno'];
$title1 = $_POST['title1'];
$title2 = $_POST['title2'];
$title3 = $_POST['title3'];
$title4 = $_POST['title4'];
$q = "UPDATE `top_navbar` SET `title1`='$title1',`title2`='$title2',`title3`='$title3',`title4`='$title4' WHERE sno='$sno'";
$run = mysqli_query($con,$q);
if ($run)
{
$_SESSION['status'] ="Data Update Successfully";
$_SESSION['status_code'] = "success";
header('location:top_navbar.php');
}
else
{
$_SESSION['status'] ="Data Not Updated";
$_SESSION['status_code'] = "error";
header('location:top_navbar.php');
}
}
// Logo
if (!empty($_POST['update_logo']))
{
$sno = $_POST['sno'];
$new_image = $_FILES['new_image']['name'];
if ($new_image != '')
{
$temp = $_FILES['new_image']['tmp_name'];
$folder = "uploads/logo/".$new_image;
$a = '';
if (!empty($_POST['old_image']))
{
unlink("uploads/logo/".$_POST['old_image']);
}
}
else
{
$new_image = $_POST['old_image'];
$a = 'true';
}
$up = "UPDATE `logo` SET `image`='$new_image' WHERE `sno` ='$sno'";
$run = mysqli_query($con,$up);
if ($run) {
if($a == '')
{
move_uploaded_file($temp, $folder);
}
header('location:logo.php');
}
else
{
header('location:logo.php');
}
}
// Silder
if (!empty($_POST['update_silder'])) {
$sno = $_POST['sno'];
$title = $_POST['title'];
$details = $_POST['details'];
$f_title1 = $_POST['f_title1'];
$f_title2 = $_POST['f_title2'];
$f_title3 = $_POST['f_title3'];
$f_title4 = $_POST['f_title4'];
$new_image = $_FILES['new_image']['name'];
if ($new_image != '')
{
$temp = $_FILES['new_image']['tmp_name'];
$folder = "uploads/silder/".$new_image;
$a = '';
if (!empty($_POST['old_image']))
{
unlink("uploads/silder/".$_POST['old_image']);
}
}
else
{
$new_image = $_POST['old_image'];
$a = 'true';
}
$up = "UPDATE `silder` SET `title`='$title',`fdetails`='$fdetails', `f_title1`='$f_title1',`f_title2`='$f_title2',`f_title3`='$f_title3',`f_title4`='$f_title4',`image`='$new_image' WHERE `sno` ='$sno'";
$run = mysqli_query($con,$up);
if ($run) {
if($a == '')
{
move_uploaded_file($temp, $folder);
}
header('location:silder.php');
}
else
{
header('location:silder.php');
}
}
// Home About
if (!empty($_POST['update_home_about'])) {
$sno = $_POST['sno'];
$title = $_POST['title'];
$details = $_POST['details'];
$new_image = $_FILES['new_image']['name'];
if ($new_image != '')
{
$temp = $_FILES['new_image']['tmp_name'];
$folder = "uploads/home_about/".$new_image;
$a = '';
if (!empty($_POST['old_image']))
{
unlink("uploads/home_about/".$_POST['old_image']);
}
}
else
{
$new_image = $_POST['old_image'];
$a = 'true';
}
$up = "UPDATE `home_about` SET `title`='$title',`details`='$details',`image`='$new_image' WHERE `sno` ='$sno'";
$run = mysqli_query($con,$up);
if ($run) {
if($a == '')
{
move_uploaded_file($temp, $folder);
}
header('location:home_about.php');
}
else
{
header('location:home_about.php');
}
}
// Home treatment
if (!empty($_POST['update_home_treatment']))
{
$sno = $_POST['sno'];
$title = $_POST['title'];
$details = $_POST['details'];
$p_1 = $_POST['p_1'];
$p_2 = $_POST['p_2'];
$p_3 = $_POST['p_3'];
$q = "UPDATE `home_treat` SET `title`='$title',`details`='$details',`p_1`='$p_1',`p_2`='$p_2',`p_3`='$p_3' WHERE sno='$sno'";
$run = mysqli_query($con,$q);
if ($run)
{
$_SESSION['status'] ="Data Update Successfully";
$_SESSION['status_code'] = "success";
header('location:home_treatment.php');
}
else
{
$_SESSION['status'] ="Data Not Updated";
$_SESSION['status_code'] = "error";
header('location:home_treatment.php');
}
}
// Department
if (!empty($_POST['update_department'])) {
$sno = $_POST['sno'];
$title = $_POST['title'];
$new_image = $_FILES['new_image']['name'];
if ($new_image != '')
{
$temp = $_FILES['new_image']['tmp_name'];
$folder = "uploads/department/".$new_image;
$a = '';
if (!empty($_POST['old_image']))
{
unlink("uploads/department/".$_POST['old_image']);
}
}
else
{
$new_image = $_POST['old_image'];
$a = 'true';
}
$up = "UPDATE `department` SET `title`='$title',`image`='$new_image' WHERE `sno` ='$sno'";
$run = mysqli_query($con,$up);
if ($run) {
if($a == '')
{
move_uploaded_file($temp, $folder);
}
header('location:departments.php');
}
else
{
header('location:departments.php');
}
}
// services
if (!empty($_POST['update_services'])) {
$sno = $_POST['sno'];
$title = $_POST['title'];
$new_image = $_FILES['new_image']['name'];
if ($new_image != '')
{
$temp = $_FILES['new_image']['tmp_name'];
$folder = "uploads/services/".$new_image;
$a = '';
if (!empty($_POST['old_image']))
{
unlink("uploads/services/".$_POST['old_image']);
}
}
else
{
$new_image = $_POST['old_image'];
$a = 'true';
}
$up = "UPDATE `services` SET `title`='$title',`image`='$new_image' WHERE `sno` ='$sno'";
$run = mysqli_query($con,$up);
if ($run) {
if($a == '')
{
move_uploaded_file($temp, $folder);
}
header('location:services.php');
}
else
{
header('location:services.php');
}
}
// Footer About
if (!empty($_POST['update_footer_about'])) {
$sno = $_POST['sno'];
$details = $_POST['details'];
$new_image = $_FILES['new_image']['name'];
if ($new_image != '')
{
$temp = $_FILES['new_image']['tmp_name'];
$folder = "uploads/logo/".$new_image;
$a = '';
if (!empty($_POST['old_image']))
{
unlink("uploads/logo/".$_POST['old_image']);
}
}
else
{
$new_image = $_POST['old_image'];
$a = 'true';
}
$up = "UPDATE `footer_about` SET `details`='$details',`image`='$new_image' WHERE `sno` ='$sno'";
$run = mysqli_query($con,$up);
if ($run) {
if($a == '')
{
move_uploaded_file($temp, $folder);
}
header('location:footer_about.php');
}
else
{
header('location:footer_about.php');
}
}
// Footer Department
if (!empty($_POST['update_footer_dept']))
{
$sno = $_POST['sno'];
$dept_name = $_POST['dept_name'];
$q = "UPDATE `footer_dept` SET `dept_name`='$dept_name' WHERE sno='$sno'";
$run = mysqli_query($con,$q);
if ($run)
{
header('location:footer_dept.php');
}
else
{
header('location:footer_dept.php');
}
}
// Contact
if (!empty($_POST['update_contact']))
{
$sno = $_POST['sno'];
$title = $_POST['title'];
$details = $_POST['details'];
$number = $_POST['number'];
$address = $_POST['address'];
$time = $_POST['time'];
$q = "UPDATE `contact` SET `title`='$title',`details`='$details',`number`='$number',`address`='$address',`time`='$time' WHERE sno='$sno'";
$run = mysqli_query($con,$q);
if ($run)
{
$_SESSION['status'] ="Data Update Successfully";
$_SESSION['status_code'] = "success";
header('location:contact.php');
}
else
{
$_SESSION['status'] ="Data Not Updated";
$_SESSION['status_code'] = "error";
header('location:contact.php');
}
}
// Gallery
if (!empty($_POST['update_gallery'])) {
$sno = $_POST['sno'];
$new_image = $_FILES['new_image']['name'];
if ($new_image != '')
{
$temp = $_FILES['new_image']['tmp_name'];
$folder = "uploads/gallery/".$new_image;
$a = '';
if (!empty($_POST['old_image']))
{
unlink("uploads/gallery/".$_POST['old_image']);
}
}
else
{
$new_image = $_POST['old_image'];
$a = 'true';
}
$up = "UPDATE `gallery` SET `image`='$new_image' WHERE `sno` ='$sno'";
$run = mysqli_query($con,$up);
if ($run) {
if($a == '')
{
move_uploaded_file($temp, $folder);
}
header('location:gallery.php');
}
else
{
header('location:gallery.php');
}
}
// update about
if (!empty($_POST['update_about'])) {
$sno = $_POST['sno'];
$title = $_POST['title'];
$details = $_POST['details'];
$p1 = $_POST['p1'];
$p2 = $_POST['p2'];
$p3 = $_POST['p3 '];
$p4 = $_POST['p4'];
$p5 = $_POST['p5 '];
$p6 = $_POST['p6'];
$new_image = $_FILES['new_image']['name'];
if ($new_image != '')
{
$temp = $_FILES['new_image']['tmp_name'];
$folder = "uploads/about/".$new_image;
$a = '';
if (!empty($_POST['old_image']))
{
unlink("uploads/about/".$_POST['old_image']);
}
}
else
{
$new_image = $_POST['old_image'];
$a = 'true';
}
$up = "UPDATE `about` SET `title`='$title',`details`='$details',`p1`='$p1',`p2`='$p2',`p3`='$p3',`p4`='$p4',`p5`='$p5',`p6`='$p6',`image`='$new_image' WHERE `sno` ='$sno'";
$run = mysqli_query($con,$up);
if ($run) {
if($a == '')
{
move_uploaded_file($temp, $folder);
}
header('location:about.php');
}
else
{
header('location:about.php');
}
}
// Update Doctor
if (!empty($_POST['update_doctor'])) {
$sno = $_POST['sno'];
$name = $_POST['name'];
$specialization = $_POST['specialization'];
$details = $_POST['details'];
$new_image = $_FILES['new_image']['name'];
if ($new_image != '')
{
$temp = $_FILES['new_image']['tmp_name'];
$folder = "uploads/doctor/".$new_image;
$a = '';
if (!empty($_POST['old_image']))
{
unlink("uploads/doctor/".$_POST['old_image']);
}
}
else
{
$new_image = $_POST['old_image'];
$a = 'true';
}
$up = "UPDATE `doctor` SET `name`='$name',`specialization`='$specialization',`details`='$details',`image`='$new_image' WHERE `sno` ='$sno'";
$run = mysqli_query($con,$up);
if ($run) {
if($a == '')
{
move_uploaded_file($temp, $folder);
}
header('location:doctor.php');
}
else
{
header('location:doctor.php');
}
}
?>