0byt3m1n1
Path:
/
data
/
17
/
1
/
18
/
11
/
1670011
/
user
/
1801231
/
htdocs
/
customtanningbed_dot_com
/
admin
/
[
Home
]
File: editbf.php
<?php session_start(); $a2=$_SESSION['admin']; if($a2!=1) { echo "You are restricted to enter"; include("index.php");exit(); } include_once("menu.php"); include_once("config.php");?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <meta http-equiv="Content-Type" content="text/html; charset=iso-8859-1" /> <title>Untitled Document</title> </head> <body> <script type="text/javascript"> function editbf20() { document.edit.submit(); } </script> <?php $id1=$_REQUEST['id']; if($_REQUEST['mode']=="editbf20") { $sql1="select * from tanningonline_20min where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="editbf18") { $sql1="select * from tanningonline_bf18 where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="editbf15") { $sql1="select * from tanningonline_bf15 where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="editwbtan14") { $sql1="select * from tanningonline_wbtan14 where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="editwbtan10") { $sql1="select * from tanningonline_wbtan10 where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="editwbtp14") { $sql1="select * from tanningonline_wb14 where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="editwbtp10") { $sql1="select * from tanningonline_wb10 where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="edittpsf") { $sql1="select * from tanningonline_tpsf where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="editsf") { $sql1="select * from tanningonline_sf where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="editwf20") { $sql1="select * from tanningonline_tan20bf where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="editwf18") { $sql1="select * from tanningonline_tan18bf where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } if($_REQUEST['mode']=="editwf15") { $sql1="select * from tanningonline_tan15bf where `id`='$id1'"; $rs=mysql_query($sql1); $row=mysql_fetch_array($rs); } ?> <form id="form1" name="edit" method="post" action="transact.php"> <input type="hidden" name="mode" value="<?php echo $_REQUEST['mode']?>" /> <input type="hidden" name="id" value="<?php echo $id1 ?>" /> <table width="95%" border="0" cellspacing="0" cellpadding="0"> <tr> <td width="9%">Description</td> <td width="91%"><label> <textarea name="desp" id="desp"><?php echo $row['description']?></textarea> </label></td> </tr> <tr> <td>Price</td> <td><label> <input name="price" type="text" id="price" value="<?php echo $row['price']?>" /> </label></td> </tr> <tr> <td>Rate</td> <td><label> <input name="rate" type="text" id="rate" value="<?php echo $row['rate']?> "/> </label></td> </tr> <tr> <td><label><a href="javascript:editbf20()">Change</a></label></td> <td> </td> </tr> </table> </form> </body> </html>