| Server IP : 149.202.105.228 / Your IP : 216.73.216.18 Web Server : Apache System : Linux webm129.cluster030.gra.hosting.ovh.net 5.15.167-ovh-vps-grsec-zfs-classid #1 SMP Tue Sep 17 08:14:20 UTC 2024 x86_64 User : atfycaf ( 116275) PHP Version : 7.4.33 Disable Function : _dyuweyrj4,_dyuweyrj4r,dl MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /home/atfycaf/www/admin/ |
Upload File : |
<?php
$thisCheckID = 23;
include "globalVars.php";
include "header.php";
if (isset($_POST["commID"])) {
$commID = $_POST["commID"];
$committeeQuery = mysqli_query($conn, "SELECT memberPosition FROM committeeMembers WHERE id = '$commID'") or die (mysqli_error());
while ($cQ = mysqli_fetch_array($committeeQuery)) {
$memberPosition = $cQ["memberPosition"];
}
} else {
header("Location: /admin/committeeEdit.html");
}
?>
<h2>Update the <?php echo $memberPosition ?> Position</h2>
<?php
if (isset($_POST["updateMember"])) {
$memberName = cleanPost($_POST["memberName"], $conn);
$emailAddress = cleanPost($_POST["memberEmail"], $conn);
$showEmail = cleanPost($_POST["showEmail"], $conn);
mysqli_query($conn, "UPDATE committeeMembers SET memberName = '". addslashes($memberName) ."', emailAddress = '". addslashes($emailAddress) ."', showEmail = '". addslashes($showEmail) ."' WHERE id = '$commID'");
$trackDate = date("Y-m-d H:i:s");
mysqli_query($conn, "INSERT INTO userActions (dateCreated, adminID, pageTracking, databaseUpdated, updateDetails) VALUES ('$trackDate', '$adminID', 'admin/committeeEditU.html', 'committeeMembers', 'The User ". addslashes($adminName) ." <$adminEmail> updated ". addslashes($memberName) ." to the committee position ". addslashes($memberPosition) ."')");
echo "<p>Success! The $memberPosition position has been successfully updated</p>";
}
$committeeQuery = mysqli_query($conn, "SELECT * FROM committeeMembers WHERE id = '$commID'") or die (mysqli_error());
while ($cQ = mysqli_fetch_array($committeeQuery)) {
$memberName = $cQ["memberName"];
$emailAddress = $cQ["emailAddress"];
$showEmail = $cQ["showEmail"];
}
?>
<div class="descStTab">
<form action="committeeEditU.html" method="post">
<input type="hidden" name="commID" value="<?php echo $commID ?>">
<div class="pFormRow">
<div class="pFormTitle">Name:</div>
<div class="pFormInput">
<input type="text" name="memberName" size="50" value="<?php echo $memberName ?>" />
<div class="pFormLabel">
<label class="labelName">Name:</label>
</div>
</div>
</div>
<div class="pFormRow">
<div class="pFormTitle">Email Address:</div>
<div class="pFormInput">
<input type="email" name="memberEmail" size="50" value="<?php echo $emailAddress ?>" />
<div class="pFormLabel">
<label class="labelName">Email Address:</label>
</div>
</div>
</div>
<div class="pFormRow">
<div class="pFormTitle">Show Email Address on the website?:</div>
<div class="pFormSelect">
<select name="showEmail">
<option value="0"<?php if ($showEmail == 0) {?> selected<?php } ?>>No</option>
<option value="1"<?php if ($showEmail == 1) {?> selected<?php } ?>>Yes</option>
</select>
<div class="pFormLabel">
<label class="labelName">Show Email Address on the website?:</label>
</div>
</div>
</div>
<input type="submit" class="submitButton" name="updateMember" value="Update this Position" />
</form>
</div>
<?php
include "footer.php";
?>