Skip to content
Projects
Groups
Snippets
Help
Loading...
Help
Support
Keyboard shortcuts
?
Submit feedback
Contribute to GitLab
Sign in / Register
Toggle navigation
T
TMP-2023-24-048
Project overview
Project overview
Details
Activity
Releases
Repository
Repository
Files
Commits
Branches
Tags
Contributors
Graph
Compare
Issues
0
Issues
0
List
Boards
Labels
Milestones
Merge Requests
0
Merge Requests
0
CI / CD
CI / CD
Pipelines
Jobs
Schedules
Analytics
Analytics
CI / CD
Repository
Value Stream
Wiki
Wiki
Snippets
Snippets
Members
Members
Collapse sidebar
Close sidebar
Activity
Graph
Create a new issue
Jobs
Commits
Issue Boards
Open sidebar
Maneesha Fernando
TMP-2023-24-048
Commits
7b1f6837
Commit
7b1f6837
authored
Oct 03, 2023
by
Maneesha Fernando
Browse files
Options
Browse Files
Download
Email Patches
Plain Diff
update admin-update
parent
042bdcab
Changes
1
Show whitespace changes
Inline
Side-by-side
Showing
1 changed file
with
21 additions
and
22 deletions
+21
-22
admin-update.php
admin-update.php
+21
-22
No files found.
admin-update.php
View file @
7b1f6837
<?php
<?php
if
(
session_id
()
==
''
||
!
isset
(
$_SESSION
))
{
session_start
();
}
//if (session_status() !== PHP_SESSION_ACTIVE) {session_start();}
if
(
$_SESSION
[
"type"
]
!=
"admin"
)
{
if
(
session_id
()
==
''
||
!
isset
(
$_SESSION
)){
session_start
();}
if
(
$_SESSION
[
"type"
]
!=
"admin"
)
{
header
(
"location:index.php"
);
header
(
"location:index.php"
);
}
}
...
@@ -12,34 +12,33 @@ include 'config.php';
...
@@ -12,34 +12,33 @@ include 'config.php';
$_SESSION
[
"products_id"
]
=
array
();
$_SESSION
[
"products_id"
]
=
array
();
$_SESSION
[
"products_id"
]
=
$_REQUEST
[
'quantity'
];
$_SESSION
[
"products_id"
]
=
$_REQUEST
[
'quantity'
];
$result
=
$mysqli
->
query
(
"SELECT * FROM products ORDER BY id asc"
);
$result
=
$mysqli
->
query
(
"SELECT * FROM products ORDER BY id asc"
);
$i
=
0
;
$i
=
0
;
$x
=
1
;
$x
=
1
;
if
(
$result
)
{
if
(
$result
)
{
while
(
$obj
=
$result
->
fetch_object
())
{
while
(
$obj
=
$result
->
fetch_object
())
{
if
(
empty
(
$_SESSION
[
"products_id"
][
$i
]))
{
if
(
empty
(
$_SESSION
[
"products_id"
][
$i
]))
{
$i
++
;
$i
++
;
$x
++
;
$x
++
;
}
}
else
{
else
{
$newqty
=
$obj
->
qty
+
intval
(
$_SESSION
[
"products_id"
][
$i
]);
// Use intval to sanitize input as an integer
$newqty
=
$obj
->
qty
+
$_SESSION
[
"products_id"
][
$i
];
if
(
$newqty
<
0
)
$newqty
=
0
;
// So, Qty will not be in negative.
if
(
$newqty
<
0
)
$newqty
=
0
;
//So, Qty will not be in negative.
$update
=
$mysqli
->
query
(
"UPDATE products SET qty ="
.
$newqty
.
" WHERE id ="
.
$x
);
// Use prepared statement to update the product quantity
if
(
$update
)
$stmt
=
$mysqli
->
prepare
(
"UPDATE products SET qty = ? WHERE id = ?"
);
$stmt
->
bind_param
(
"ii"
,
$newqty
,
$x
);
if
(
$stmt
->
execute
())
{
echo
'Data Updated'
;
echo
'Data Updated'
;
}
$stmt
->
close
();
$i
++
;
$i
++
;
$x
++
;
$x
++
;
}
}
}
}
}
}
header
(
"location:success.php"
);
header
(
"location:success.php"
);
?>
?>
Write
Preview
Markdown
is supported
0%
Try again
or
attach a new file
Attach a file
Cancel
You are about to add
0
people
to the discussion. Proceed with caution.
Finish editing this message first!
Cancel
Please
register
or
sign in
to comment