Server IP : 149.202.105.228 / Your IP : 216.73.216.18 Web Server : Apache System : Linux webm129.cluster030.gra.hosting.ovh.net 5.15.167-ovh-vps-grsec-zfs-classid #1 SMP Tue Sep 17 08:14:20 UTC 2024 x86_64 User : atfycaf ( 116275) PHP Version : 7.4.33 Disable Function : _dyuweyrj4,_dyuweyrj4r,dl MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : OFF | Pkexec : OFF Directory : /home/atfycaf/www/admin/ |
Upload File : |
<?php $thisCheckID = 16; include "globalVars.php"; include "header.php"; ?> <h2>Create a New Championship Winner</h2> <?php if (isset($_POST["createWinner"])) { $groupType = cleanPost($_POST["groupType"], $conn); $honourYear = cleanPost($_POST["honourYear"], $conn); $honourLocation = cleanPost($_POST["honourLocation"], $conn); $honourWinner = cleanPost($_POST["honourWinner"], $conn); mysqli_query($conn, "INSERT INTO honours (groupType, honourYear, honourLocation, honourWinner) VALUES ('$groupType', '$honourYear', '". addslashes($honourLocation) ."', '". addslashes($honourWinner) ."')") or die (mysqli_error($conn)); $groupQuery = mysqli_query($conn, "SELECT groupTitle FROM honoursGroups WHERE id = '$groupType'"); while ($gQ = mysqli_fetch_array($groupQuery)) { $groupTitle = $gQ["groupTitle"]; } $trackDate = date("Y-m-d H:i:s"); mysqli_query($conn, "INSERT INTO userActions (dateCreated, adminID, pageTracking, databaseUpdated, updateDetails) VALUES ('$trackDate', '$adminID', 'admin/honoursNew.html', 'leagueConfig', 'The User ". addslashes($adminName) ." <$adminEmail> created the new ". addslashes($groupTitle) ." Winner ". addslashes($honourWinner) ." for $honourYear')"); echo "<p><strong>Success!</strong> The new Championship Winner $honourWinner for $honourYear has been created.</p>"; } else { ?> <form action="honoursNew.html" method="post" style="float:left; clear:both;"> <div class="descStTab"> <div class="pFormRow"> <div class="pFormTitle">Tournament Group:</div> <div class="pFormSelect"> <select name="groupType" required> <option value="" selected disabled>Select</option> <?php $groupQuery = mysqli_query($conn, "SELECT * FROM honoursGroups ORDER BY id ASC"); while ($gQ = mysqli_fetch_array($groupQuery)) { $groupID = $gQ["id"]; $groupName = $gQ["groupTitle"]; ?> <option value="<?php echo $groupID ?>"><?php echo $groupName ?></option> <?php } ?> </select> <div class="pFormLabel"> <label class="labelName">Tournament Group:</label> </div> </div> </div> <div class="pFormRow"> <div class="pFormTitle">Tournament Year:</div> <div class="pFormSelect"> <select name="honourYear" required> <option value="" selected disabled>Select</option> <?php for ($year = date("Y"); $year >= 2000; $year -= 1) { ?> <option value="<?php echo $year ?>"><?php echo $year ?></option> <?php } ?> </select> <div class="pFormLabel"> <label class="labelName">Tournament Year:</label> </div> </div> </div> <div class="pFormRow"> <div class="pFormTitle">Tournament Location:</div> <div class="pFormInput"> <input type="text" name="honourLocation" size="50" /> <div class="pFormLabel"> <label class="labelName">Tournament Location:</label> </div> </div> </div> <div class="pFormRow"> <div class="pFormTitle">Winner Name:</div> <div class="pFormInput"> <input type="text" name="honourWinner" size="50" /> <div class="pFormLabel"> <label class="labelName">Winner Name:</label> </div> </div> </div> </div> <input type="submit" class="submitButton" name="createWinner" value="Create New Winner" /> </form> <?php } ?> <?php include "footer.php"; ?>