Server : LiteSpeed System : Linux us-phx-web1202.main-hosting.eu 4.18.0-553.84.1.lve.el8.x86_64 #1 SMP Tue Nov 25 18:33:03 UTC 2025 x86_64 User : u615232177 ( 615232177) PHP Version : 8.1.33 Disable Function : NONE Directory : /home/u615232177/public_html/admin5352/ |
<?php session_start();
$page_name = basename($_SERVER['PHP_SELF']);
include("headerstrict.php"); ?>
<title><?php echo $company_name; ?>, Admin, Team members</title>
<?php
if (isset($_POST['add_team'])) {
$full_name = mysqli_real_escape_string($con,$_POST['full_name']);
$position = mysqli_real_escape_string($con,$_POST['position']);
$bio = mysqli_real_escape_string($con,$_POST['bio']);
$facebook = mysqli_real_escape_string($con,$_POST['facebook']);
$twitter = mysqli_real_escape_string($con,$_POST['twitter']);
$instagram = mysqli_real_escape_string($con,$_POST['instagram']);
$linkedin = mysqli_real_escape_string($con,$_POST['linkedin']);
if( ($_FILES["fileField"]["type"]=="") == false ){
$random_id = substr(md5(rand()), 0, 20);
$extension = pathinfo($_FILES["fileField"]["name"], PATHINFO_EXTENSION);
move_uploaded_file( $_FILES['fileField']['tmp_name'], "../assets/img/team/$random_id.$extension");
$picture ="$random_id.$extension";
}
$db_id=0;
$stmt = $con -> prepare('INSERT INTO team VALUES (?,?,?,?,?,?,?,?,?)');
$stmt -> bind_param('issssssss', $db_id,$full_name,$position,$bio,$facebook,$twitter,$instagram,$linkedin,$picture);
$stmt -> execute();
//create a session to verify it's coming from here
$_SESSION["action"] = "true";
$message="Team member successfully added.";
echo "<meta http-equiv=\"refresh\" content=\"0; url=success.php?u=$page_name&m=$message\">";
}
?>
<!-- ======= Breadcrumbs ======= -->
<section id="breadcrumbs" class="breadcrumbs">
<div class="container"> </div>
</section>
<!-- End Breadcrumbs -->
<!-- ======= Contact Section ======= -->
<section id="contact" class="contact inner-page">
<div class="container" data-aos="fade-up">
<div class="section-title">
<h2>Team Members</h2>
<p>Add a member</p>
</div>
<div class="row">
<div class="col-lg-6 mt-5 mt-lg-0 d-flex align-items-stretch">
<form action="<?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?>" method="post" class="php-email-form1" enctype='multipart/form-data'>
<div class='validate'><?php echo $error; ?></div>
<div class="form-row">
<div class="form-group col-md-6">
<input type="text" name="full_name" class="form-control" placeholder="Full name" required />
</div>
<div class="form-group col-md-6">
<input type="text" name="position" class="form-control" placeholder="Position"/>
</div>
</div>
<div class="form-row">
<div class="form-group col-md-6">
<input type="text" name="bio" class="form-control" placeholder="bio"/>
</div>
<div class="form-group col-md-6">
<input type='file' name='fileField' class="form-control" required />
</div>
</div>
<div class="form-row">
<div class="form-group col-md-6">
<input type="text" name="facebook" class="form-control" placeholder="Facebook profile link" />
</div>
<div class="form-group col-md-6">
<input type="text" name="twitter" class="form-control" placeholder="Twitter profile link"/>
</div>
</div>
<div class="form-row">
<div class="form-group col-md-6">
<input type="text" name="instagram" class="form-control" placeholder="Instagram profile link"/>
</div>
<div class="form-group col-md-6">
<input type="text" name="linkedin" class="form-control" placeholder="Linked-in profile link"/>
</div>
</div>
<div class="text-center">
<button type="submit" name='add_team'>Save</button>
</div>
</form>
</div>
<div class="col-lg-6 d-flex align-items-stretch">
</div>
</div><!-- end row -->
<br/></br>
<div class="section-title">
<p>Uploaded Team members</p>
</div>
<div class='row'>
<?php
$stmt = $con -> prepare('SELECT * FROM team');
$stmt -> execute();
$stmt -> store_result();
$stmt -> bind_result($id,$full_name,$position,$bio,$facebook,$twitter,$instagram,$linkedin,$picture);
$numrows = $stmt -> num_rows();
if($numrows > 0){
while ($stmt -> fetch()) {
echo"
<div class='col-md-6'>
<form action='";?><?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?><?php echo"' method='post'class='php-email-form1'enctype='multipart/form-data'>
<div class='form-row'>
<div class='form-group col-md-6'>
<input type='text' name='full_name' class='form-control' placeholder='Full name' value='$full_name' required />
</div>
<div class='form-group col-md-6'>
<input type='text' name='position' class='form-control' placeholder='Position' value='$position'required />
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-12'>
<input type='text' name='bio' class='form-control' placeholder='Bio' value='$bio' required />
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-12'>
<img style='width:100%;border-radius:5px;'src='../assets/img/team/$picture' class='img-fluid' alt=''>
<input type='file' name='fileField' class='form-control'/>
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-6'>
<input type='text' name='facebook' class='form-control' placeholder='Facebook profile' value='$facebook'/>
</div>
<div class='form-group col-md-6'>
<input type='text' name='twitter' class='form-control' placeholder='Twitter profile link' value='$twitter'/>
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-6'>
<input type='text' name='instagram' class='form-control' placeholder='Instagram profile' value='$instagram'/>
</div>
<div class='form-group col-md-6'>
<input type='text' name='linkedin' class='form-control' placeholder='Linkedin profile link' value='$linkedin'/>
</div>
</div>
<div class='text-center'>
<button type='submit' name='update$id'>Update</button>
<button type='submit' name='delete$id'>Delete</button>
</div>
</form>
</div>
";
if (isset($_POST["update$id"])) {
$full_name = mysqli_real_escape_string($con,$_POST['full_name']);
$position = mysqli_real_escape_string($con,$_POST['position']);
$bio = mysqli_real_escape_string($con,$_POST['bio']);
$facebook = mysqli_real_escape_string($con,$_POST['facebook']);
$twitter = mysqli_real_escape_string($con,$_POST['twitter']);
$instagram = mysqli_real_escape_string($con,$_POST['instagram']);
$linkedin = mysqli_real_escape_string($con,$_POST['linkedin']);
if( ($_FILES["fileField"]["type"]=="") == false ){
unlink("../assets/img/team/$picture");
$random_id = substr(md5(rand()), 0, 20);
$extension = pathinfo($_FILES["fileField"]["name"], PATHINFO_EXTENSION);
move_uploaded_file( $_FILES['fileField']['tmp_name'], "../assets/img/team/$random_id.$extension");
$picture ="$random_id.$extension";
}
$stmt = $con -> prepare('UPDATE team SET full_name=?,position=?,bio=?,facebook=?,twitter=?,instagram=?,linkedin=?,picture=? WHERE id = ?');
$stmt -> bind_param('ssssssssi',$full_name,$position,$bio,$facebook,$twitter,$instagram,$linkedin,$picture,$id);
$stmt -> execute();
//create a session to verify it's coming from here
$_SESSION["action"] = "true";
$message="Update was successfully done.";
echo "<meta http-equiv=\"refresh\" content=\"0; url=success.php?u=$page_name&m=$message\">";
}
if (isset($_POST["delete$id"])) {
$stmt = $con -> prepare('DELETE FROM team WHERE id = ?');
$stmt -> bind_param('i', $id);
$stmt -> execute();
unlink("../assets/img/team/$picture");
//create a session to verify it's coming from here
$_SESSION["action"] = "true";
$message="Team member successfully deleted.";
echo "<meta http-equiv=\"refresh\" content=\"0; url=success.php?u=$page_name&m=$message\">";
}
}
}
?>
</div>
</div>
</section><!-- End Contact Section -->
<?php include("footer.php"); ?>