File manager

File manager - Edit - /home/autoph/public_html/connect/ASA_AddNewProspect.php

Back
<?php date_default_timezone_set('Asia/Manila'); header('Content-Type: application/json'); $sqlUser = 'autoph_arnel'; $sqlDatabase = 'autoph_connect'; $sqlPass = 'Hke@2001'; $toDate = date_create() ->format("Y/m/d"); $conn = mysql_connect($sqlHost, $sqlUser, $sqlPass) or die ("Couldn't connct to MySQL server on $sqlHost: ". mysql_error(). '.'); $db = mysql_select_db($sqlDatabase, $conn) or die ("Couldn't select database $sqlDatabase: ". mysql_error(). '.'); $keyID= $_REQUEST['keyID']; //====================================================================== if($keyID == 9000009019){ $FName= $_REQUEST['FName']; $LName= $_REQUEST['LName']; $prosName = strtoupper($LName.', '.$FName); $Mobile = $_REQUEST['Mobile']; $Variant= $_REQUEST['Variant']; $AskDiscount= $_REQUEST['AskDiscount']; $ApprovedDiscount= $_REQUEST['ApprovedDiscount']; $AddedBy= $_REQUEST['AddedBy']; $sql = "INSERT INTO sales_prospecting (prospect_name, sales_id,active_mobile, car_variant, asked_discount , approved_discount,date_added) VALUES('$prosName', '$AddedBy','$Mobile','$Variant','$AskDiscount','$ApprovedDiscount', '$toDate')"; $sqlQuery = mysql_query($sql, $conn) or die("Couldn't perform query $sql (".__LINE__."): " . mysql_error() . '.'); $msg ="Record has been saved"; $json = json_encode(["Status"=>$msg]); } if($keyID == 10241024){ $scID= $_REQUEST['scID']; $return_dir = Array(); $sql = "SELECT * FROM sales_prospecting WHERE `sales_id`='$scID' AND `status` !='Closed' AND `status` !='Cancelled'"; $sqlTable = mysql_query($sql, $conn); while($sqlRecord = mysql_fetch_assoc($sqlTable)) { $return_dir[]= $sqlRecord; } $json = json_encode($return_dir); } if($keyID == 888888888){ //SEARCHING $scID= $_REQUEST['scID']; $searchText= $_REQUEST['searchText']; $return_dir = Array(); $sql = "SELECT * FROM sales_prospecting WHERE `sales_id`='$scID' AND `prospect_name` LIKE '%$searchText%'"; $sqlTable = mysql_query($sql, $conn); while($sqlRecord = mysql_fetch_assoc($sqlTable)) { $return_dir[]= $sqlRecord; } $json = json_encode($return_dir); } if($keyID == 7000009077){ //$ProsName= $_REQUEST['ProsName']; $RecordID= $_REQUEST['RecordID']; $Mobile = $_REQUEST['Mobile']; $Variant= $_REQUEST['Variant']; $AskDiscount= $_REQUEST['AskDiscount']; $ApprovedDiscount= $_REQUEST['ApprovedDiscount']; $AddedBy= $_REQUEST['AddedBy']; mysql_query("UPDATE sales_prospecting SET active_mobile='$Mobile',car_variant='$Variant', asked_discount='$AskDiscount',approved_discount='$ApprovedDiscount' WHERE id='$RecordID'"); $msg ="Record has been updated".$RecordID;; $json = json_encode(["Status"=>$msg]); } if($keyID == 3300000333){ $RecordID= $_REQUEST['RecordID']; mysql_query("UPDATE sales_prospecting SET status='closed'WHERE id='$RecordID'"); $msg ="Record has been removed-".$RecordID; $json = json_encode(["Status"=>$msg]); } echo $json; ?>

| ver. 1.4 | . | PHP 7.3.33 | Generation time: 0 | proxy | phpinfo | Settings