File manager

File manager - Edit - /home/autoph/public_html/voc/home/DELETE_RESERVATION.php

Back
<?php include 'core/database/connect.php'; //$connect_error = 'Sorry, we\'re experiencing connection problem. Please try again later... Thank you!'; //mysql_connect('localhost','root','aee1024') or die ($connect_error); //mysql_select_db('db_vts') or die($connect_error); $toDate = date_create() ->format("Y/m/d"); $toTime =Explode(":", date('H:i:s')); error_reporting(0); //if submit/ save to database if(isset($_POST['done'])){ $resID = mysql_escape_string($_POST['resID']); $SelBrand = mysql_escape_string($_POST['SelBrand']); $myCompID = mysql_escape_string($_POST['myCompID']); mysql_query("UPDATE `db_sc_request` SET `status` = 'Cancelled' WHERE `req_id`='$resID'"); //====================================INSERT LOGS TO vts_vehicle_delivery_logs================================================================================================================= mysql_query("INSERT INTO vts_vehicle_delivery_logs (cs, notes, encoded_by) VALUES('{$selectedCS}','{$deliveryComment}','{$empID}')"); $getBrand=mysql_query("SELECT * FROM `db_sc_request` WHERE `brand_name`= '$SelBrand' AND `status`!='Cancelled' ORDER BY saved_date DESC"); //VALIDATE ACCESS //echo "COmpany ID:".$UserCompanyID; echo "<table id='mainModel' style='width:100%;margin:00px'>"; echo "<thead>"; echo "<th style='width:5%'>UNIT ID</th>"; echo "<th style='width:10%'>DATE</th>"; echo "<th style='width:20%'>SALES PERSON</th>"; echo "<th style='width:10%'>CS NUMBER</th>"; echo "<th style='width:10%'>BRAND</th>"; echo "<th style='width:20%'>VARIANT</th>"; echo "<th style='width:30%'>NOTES</th>"; echo "</thead>"; while($row=mysql_fetch_array($getBrand)){ $fName = mysql_result(mysql_query("SELECT `u_fname` FROM `vts_users` WHERE `u_id`='".$row['sc_id']."'"),0); $lName = mysql_result(mysql_query("SELECT `u_lname` FROM `vts_users` WHERE `u_id`='".$row['sc_id']."'"),0); $vID = $row['unit_id']; $company = mysql_result(mysql_query("SELECT `company` FROM `db_vehicle_inventory` WHERE `id`='$vID'"),0); $cs = mysql_result(mysql_query("SELECT `cs_number` FROM `db_vehicle_inventory` WHERE `id`='$vID'"),0); $unitCompID = mysql_result(mysql_query("SELECT `comp_id` FROM `vts_company` WHERE `comp_code`='$company'"),0); if($unitCompID == $myCompID){ ?><tr onclick="javascript:showClearanceInfo(this);" ondblclick="showDeleteForm()"><?php echo "<td style='text-align:left;padding:5px'>".$row['req_id']."</td>"; echo "<td style='text-align:left;padding:5px'>".$row['saved_date']."</td>"; echo "<td style='text-align:left;padding:5px'>".$lName.", ".$fName."</td>"; echo "<td style='text-align:left;padding:5px'>".$cs."</td>"; echo "<td style='text-align:left;padding:5px'>".$row['brand_name']."</td>"; echo "<td style='text-align:left;padding:5px'>".$row['variant_dest']."</td>"; echo "<td style='text-align:left;padding:5px'>".$row['notes']."</td>"; echo "</tr>"; } } exit(); } ?>

| ver. 1.4 | . | PHP 7.3.33 | Generation time: 0 | proxy | phpinfo | Settings