| Server IP : 103.233.192.212 / Your IP : 18.222.231.86 Web Server : Apache/2 System : Linux sv1.inde.co.th 3.10.0-1160.36.2.el7.x86_64 #1 SMP Wed Jul 21 11:57:15 UTC 2021 x86_64 User : sumpatuan ( 1058) PHP Version : 5.5.38 Disable Function : symlink,shell_exec,exec,proc_close,proc_open,popen,system,dl,putenv,passthru,escapeshellarg,escapeshellcmd,pcntl_exec,proc_get_status,proc_nice,proc_terminate,pclose,ini_alter,virtual,openlog,ini_restore MySQL : ON | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF Directory : /home/sumpatuan/domains/sumpatuan.go.th/private_html/admin/top/action/ |
Upload File : |
<?php
require_once('session_backend_administrator.php');
header('Content-Type: text/html; charset=UTF-8');
date_default_timezone_set("Asia/Bangkok");
$datetime = date('d/m/Y H.i');
if($STT_login=="admin_login_true"){
if(!isset($_POST['edt_id']) or !isset($_POST['edt_name']) or !isset($_POST['edt_number']) or !isset($_POST['edt_oldnumber']) or !isset($_POST['edt_date']) or !isset($_POST['edt_exp']) or !isset($_POST['edt_namemb']) ){
echo "<SCRIPT type='text/javascript'>
alert('กรุณากรอกข้อมูลให้ครบ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
$data_idnewsbookmb = $con_db_administrator->real_escape_string($_POST['edt_id']);
$data_namenewsbook = trim($con_db_administrator->real_escape_string($_POST['edt_name']));
$data_numbernewsbook = trim($con_db_administrator->real_escape_string($_POST['edt_number']));
$data_oldnumber = $con_db_administrator->real_escape_string($_POST['edt_oldnumber']);
$data_datenewsbook = date("d/m/Y",strtotime($_POST['edt_date']));
$data_expnewsbook = date("d/m/Y",strtotime($_POST['edt_exp']));
$data_checkexpnewsbook = date("Ymd",strtotime($_POST['edt_exp']));
//// txt_namemb
$data_namembnewsbook = implode(", ", $_POST['edt_namemb']);
// $data_namembnewsbook_array = explode(", ", $data_namembnewsbook );
// echo $data_namembnewsbook;
// echo "<br>";
// print_r($data_namembnewsbook_array);
// exit;
$data_linknewsbook = $con_db_administrator->real_escape_string($_POST['linknewsbook']);
$data_sttnewsbook = $con_db_administrator->real_escape_string($_POST['statusshow']);
//check date
$now = date("Ymd");
$date1 = date("Ymd",strtotime($_POST['edt_date']));
$date2 = date("Ymd",strtotime($_POST['edt_exp']));
if($date1 >= $date2){
echo "<SCRIPT type='text/javascript'>
alert('แก้ไข วันที่ลง หรือ วันที่หมดอายุ ให้ถูกต้อง');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}
if($date2 <= $now){
echo "<SCRIPT type='text/javascript'>
alert('กรอก วันที่หมดอายุ ให้ถูกต้อง');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}
if($data_numbernewsbook==$data_oldnumber){
$ud_data = " UPDATE `data_newsbook` SET `name_newsbook`='$data_namenewsbook', `date_newsbook`='$data_datenewsbook', `exp_newsbook`='$data_expnewsbook',
`checkexp_newsbook`='$data_checkexpnewsbook', `namemb_newsbook`='$data_namembnewsbook', `stt_newsbook`='$data_sttnewsbook'
WHERE `id_newsbook`='$data_idnewsbookmb' ";
$action_ud_data = $con_db_administrator->query($ud_data);
if(!$action_ud_data){
echo "<SCRIPT type='text/javascript'>
alert('เกิดข้อผิดพลาด! แก้ไขข้อมูลไม่สำเร็จ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
echo "<SCRIPT type='text/javascript'>
alert('แก้ไขข้อมูล [ $data_namenewsbook ] สำเร็จ');
window.location.replace('../NewsbookMain');
</SCRIPT>";
exit;
}
}else{
$sql_check_number = " SELECT COUNT(`number_newsbook`) FROM `data_newsbook` WHERE `number_newsbook`='$data_numbernewsbook' ";
$qr_check_number = mysqli_query($con_db_administrator, $sql_check_number) or trigger_error("sql_check_number", E_USER_ERROR);
$r_check_number = mysqli_fetch_row($qr_check_number);
$rs_check_number = $r_check_number[0];
if($rs_check_number >= 1){
echo "<SCRIPT type='text/javascript'>
alert('หมายเลขระบบ Back Office $data_numbernewsbook ซ้ำ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
$ud_data = " UPDATE `data_newsbook` SET `name_newsbook`='$data_namenewsbook', `number_newsbook`='$data_numbernewsbook', `date_newsbook`='$data_datenewsbook',
`exp_newsbook`='$data_expnewsbook', `namemb_newsbook`='$data_namembnewsbook', `stt_newsbook`='$data_sttnewsbook'
WHERE `id_newsbook`='$data_idnewsbookmb' ";
$action_ud_data = $con_db_administrator->query($ud_data);
if(!$action_ud_data){
echo "<SCRIPT type='text/javascript'>
alert('เกิดข้อผิดพลาด! แก้ไขข้อมูลไม่สำเร็จ');
window.location.replace(document.referrer);
</SCRIPT>";
exit;
}else{
echo "<SCRIPT type='text/javascript'>
alert('แก้ไขข้อมูล [ $data_namenewsbook ] สำเร็จ');
window.location.replace('../NewsbookMain');
</SCRIPT>";
exit;
}
}
}
}
}else{
echo "<SCRIPT type='text/javascript'>
alert('กรุณาเข้าสู่ระบบ');
window.location.replace('../../index');
</SCRIPT>";
exit;
}
mysqli_close($con_db_administrator);
?>