/
home
/
efamember
/
domains
/
efa-member.com
/
public_html
/
backoffice
/
ajax
/
blog_setting
/
up file
home
<?php include("../../../config/main_function.php"); $secure = "cAh3DrJACzw4RbU"; $connection = connectDB($secure); if ($connection) { $sql_update1 = ''; if ($_FILES["image"]["name"] != "") { $allowed = array('gif', 'png', 'jpg', "jpeg"); $file_type = $_FILES['image']['name']; $ext = pathinfo($file_type, PATHINFO_EXTENSION); if (in_array($ext, $allowed)) { $file = explode(".", $_FILES['image']['name']); $file_surname = end($file); $filename_images = md5(date("dmYhis") . rand(1000, 9999)) . "." . $file_surname; $target_file = "../../../files/blog_files/" . $filename_images; if (move_uploaded_file($_FILES["image"]["tmp_name"], $target_file)) { $sql_update1 .= " ,blog_image = '$filename_images'"; } } } else { $sql_update1 .= " ,blog_image = 'no-image.png'"; } $blog_id = getRandomID2(10, 'tbl_blog', 'blog_id'); $member_id = mysqli_real_escape_string($connection, $_POST['member_id']); $temp_id = explode(".", $member_id); $member_id = bigsara_decode($temp_id[0], $temp_id[1]); $blog_title = mysqli_real_escape_string($connection, $_POST['blog_title']); $description = mysqli_real_escape_string($connection, $_POST['description']); $meta_tag = mysqli_real_escape_string($connection, $_POST['meta_tag']); $meta_description = mysqli_real_escape_string($connection, $_POST['meta_description']); $page_title = mysqli_real_escape_string($connection, $_POST['page_title']); $content = mysqli_real_escape_string($connection, $_POST['content']); $show_date = explode('/', $_POST['show_date']); $show_date = date('Y-m-d', strtotime($show_date['0'] . "-" . $show_date['1'] . "-" . $show_date['2'])); $sql = "INSERT INTO `tbl_blog` SET `blog_id` = '$blog_id', `create_user_id` = '$member_id', `show_date` = '$show_date', `blog_title` = '$blog_title', `blog_description` = '$description', `meta_tag` = '$meta_tag', `meta_description` = '$meta_description', `page_title` = '$page_title', `tag` = '$content' $sql_update1, blog_status = '0' "; if (mysqli_query($connection, $sql)) { $arr['result'] = 1; } else { $arr['result'] = 0; } } else { $arr['result'] = 9; } echo json_encode($arr);