hjkhhrtertererrrdfbdfbdfbdfbdfgdrtertertertrt

<?php include_once "header.php"; $msg=0; if(isset($_POST['save'])) { $cats=$_POST['cats']; $prd=$_POST['prd']; $dis=$_POST['dis']; $target_dir = "../uploads/"; $klyes=generateRandomString(); $target_file = $target_dir .$klyes. basename($_FILES["fileToUpload"]["name"]); $files = $klyes.$_FILES["fileToUpload"]["name"]; $imageFileType = strtolower(pathinfo($target_file,PATHINFO_EXTENSION)); if (move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $target_file)) { $sql="INSERT INTO `product`( `cid`, `name`, `mainimg`, `disc`) VALUES ('$cats','$prd','$files','$dis')"; dbset($sql,1); $msg=1; } else { echo "Sorry, there was an error uploading your file."; } } if (isset($_GET['del'])) { $did=$_GET['del']; $sql="DELETE FROM prspec WHERE `prspec`.`id` = $did"; dbset($sql,1); } function generateRandomString($length = 10) { $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ'; $charactersLength = strlen($characters); $randomString = ''; for ($i = 0; $i < $length; $i++) { $randomString .= $characters[random_int(0, $charactersLength - 1)]; } return $randomString; } ?> <div class="content"> <!-- Animated --> <div class="animated fadeIn"> <div class="row"> <div class="col-lg-6"> <div class="card"> <div class="card-header"> <strong class="card-title">Add Product</strong> </div> <?php if($msg==1) { ?> <div class="sufee-alert alert with-close alert-success alert-dismissible fade show"> <span class="badge badge-pill badge-success">Success</span> Added successfully <button type="button" class="close" data-dismiss="alert" aria-label="Close"> <span aria-hidden="true">×</span> </button> </div> <?php } ?> <div class="card-body"> <!-- Credit Card --> <div id="pay-invoice"> <div class="card-body"> <div class="card-title"> <h3 class="text-center"></h3> </div> <hr> <form action="?" method="post" enctype="multipart/form-data" novalidate="novalidate"> <div class="form-group"> <label for="cc-payment" class="control-label mb-1">Category</label> <select name="cats" class="form-control"> <?php $sql = "SELECT * FROM `cat` WHERE `sts` = 1;"; $rl=dbset($sql,1); while($row=mysqli_fetch_array($rl)) { ?> <option value="<?php echo $row[0]?>"><?php echo $row[1]?></option> <?php } ?> </select> </div> <div class="form-group"> <label for="cc-payment" class="control-label mb-1">Name</label> <input id="cc-payment" required name="prd" type="text" class="form-control" aria-required="true" aria-invalid="false" value=""> </div> <div class="form-group"> <label for="cc-payment" class="control-label mb-1">description</label> <textarea id="cc-payment" class="form-control" name="dis" ></textarea> </div> <div class="form-group has-success"> <label for="cc-name" class="control-label mb-1">Main Image</label> <input id="cc-name" required name="fileToUpload" type="file" class="form-control cc-name valid" data-val="true" data-val-required="Please enter the name on card" autocomplete="cc-name" aria-required="true" aria-invalid="false" aria-describedby="cc-name"> </div> <div> <button id="payment-button" type="submit" name="save" class="btn btn-lg btn-info btn-block"> <i class="fa fa-lock fa-lg"></i>&nbsp; <span id="payment-button-amount">Save</span> <span id="payment-button-sending" style="display:none;">Sending…</span> </button> </div> </form> </div> </div> </div> </div> <!-- .card --> </div><!--/.col--> <div class="col-lg-6"> <div class="card"> <div class="card-header"> <strong class="card-title">Products</strong> </div> <div class="table-stats order-table ov-h"> <table class="table "> <thead> <tr> <th>Name</th> <th>Action</th> </tr> </thead> <tbody> <?php $sql = "SELECT * FROM `product` WHERE `sts` = 1;"; $rl=dbset($sql,1); while($row=mysqli_fetch_array($rl)) { ?> <tr> <td><?php echo $row[2]?> </td> <td> <a href="addspec.php?id=<?php echo $row[0]?>" class="badge badge-success">Add Details</a> <a href="addpics.php?id=<?php echo $row[0]?>" class="badge badge-success">Add Images</a> <a href="?del=<?php echo $row[0]?>" class="badge badge-danger">Delete</a> </td> </tr> <?php } ?> </tbody> </table> </div> <!-- /.table-stats --> </div> </div> </div> </div> </div> <? include_once "footer.php"; ?>