File manager - Edit - /home/autoph/public_html/connect/home/prf_saveExecomComment.php
Back
<?php include_once 'core/init.php'; $myUid= $_GET['uid']; if(isset($_POST['done'])){ $myComment = mysql_escape_string($_POST['myComment']); $senderID = mysql_escape_string($_POST['senderID']); //$requestorID = mysql_escape_string($_POST['requestorID']); $itemID = mysql_escape_string($_POST['itemID']); $getPRFHeader = mysql_result(mysql_query("SELECT `header_ref_code` FROM `prf_request_detl` WHERE `id`='$itemID'"),0); $requestorID = mysql_result(mysql_query("SELECT `request_by` FROM `prf_request_hdr` WHERE `reference_code`='$getPRFHeader'"),0); mysql_query("INSERT INTO prf_execomnotes(item_id,sender_id,requestor_id,my_notes) VALUES('{$itemID}','{$senderID}','{$requestorID}','{$myComment}')"); //echo 'myITEM'. $itmID; $getComments = mysql_query("SELECT * FROM `prf_execomnotes` WHERE `item_id`='$itemID' ORDER BY `id` DESC"); while($row=mysql_fetch_array($getComments)){ $getSender = $row['sender_id']; if($getSender == $myUID){ $color =' #047f22 '; }else{ $color ='#49584c '; } $serFName = mysql_result(mysql_query("SELECT u_fname FROM `vts_users` WHERE `u_id`='$getSender'"),0); $serLName = mysql_result(mysql_query("SELECT u_lname FROM `vts_users` WHERE `u_id`='$getSender'"),0); echo "<p style='margin:10px;padding:10px;font-family:Calibri;margin-bottom:15px;Calibri;font-size:12px;color:$color;background:#f6fff8;border1px solid #eff3f0 ;border-radius:8px;box-shadow:1px 1px lightgray'>"; echo "<b style='font-family:Calibri;font-size:10px;'> SENDER: ".$serFName. " ".$serLName."</b><br><br>"; echo $row['my_notes']."<br><br>"; echo "<i style='padding:5px;float:right;font-family:Calibri;font-size:10px'>".$row['timestamp']."</i>"; echo "<br></p>"; } } ?>
| ver. 1.4 |
.
| PHP 7.3.33 | Generation time: 0.13 |
proxy
|
phpinfo
|
Settings