Server : LiteSpeed System : Linux us-phx-web1202.main-hosting.eu 4.18.0-553.84.1.lve.el8.x86_64 #1 SMP Tue Nov 25 18:33:03 UTC 2025 x86_64 User : u615232177 ( 615232177) PHP Version : 8.1.33 Disable Function : NONE Directory : /home/u615232177/domains/ellexsleevesapartments.com/public_html/admin1249/ |
<?php session_start();
$page_name = basename($_SERVER['PHP_SELF']);
include("headerstrict.php"); ?>
<title><?php echo $company_name; ?>, Admin, Room Details</title>
<?php
if (isset($_GET['u'])){
$room_id = mysqli_real_escape_string($con,$_GET['u']);
$stmt = $con -> prepare('SELECT * FROM rooms WHERE id=?');
$stmt -> bind_param('s',$room_id);
$stmt -> execute();
$stmt -> store_result();
$stmt -> bind_result($id,$header,$paragraph,$price,$feature1,$feature2,$feature3,$feature4,$feature5,$picture1,$picture2,$picture3,$picture4,$featured,$feature1_wu,$feature2_wu,$feature3_wu,$feature4_wu,$feature5_wu,$number_rooms,$discount);
$numrows = $stmt -> num_rows();
if($numrows > 0){
while ($stmt -> fetch()) { }
}
}
else{echo "<meta http-equiv=\"refresh\" content=\"0; url=adminhome.php\">";exit();}
?>
<!-- ======= Breadcrumbs ======= -->
<section id="breadcrumbs" class="breadcrumbs">
<div class="container"> </div>
</section>
<!-- End Breadcrumbs -->
<!-- ======= Contact Section ======= -->
<section id="contact" class="contact inner-page">
<div class="container" data-aos="fade-up">
<div class="section-title">
<h2><?php echo $header; ?></h2>
<p></p>
</div>
<?php echo"<form action='";?><?php echo htmlspecialchars($_SERVER["PHP_SELF"]);?><?php echo"?u=$room_id' method='post' class='php-email-form1'enctype='multipart/form-data'>";?>
<?php
echo"
<div class='form-row'>
<div class='form-group col-md-12'>
<label>Room Name</label>
<input type='text' name='header' class='form-control' placeholder='Header' value='$header' required />
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-12'>
<label>Price</label>
<input type='text' name='price' class='form-control' placeholder='Price' value='$price' required />
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-12'>
<label>Set As Featured</label>
<select name='featured' class='form-control' required>
<option value='Yes' ";
if($featured == "Yes"){echo"selected";}echo">Yes</option>
<option value='No' ";
if($featured == "No"){echo"selected";}echo">No</option>
</select>
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-12'>
<label>Write up</label>
<textarea name='paragraph' style='height:200px;' class='form-control' placeholder='Description' required>$paragraph</textarea>
</div>
</div>";
echo"<div class='l'>Pictures</div> <div class='form-row'>
<div class='form-group col-md-3'>";
if($picture1 !==""){echo"<img style='width:100%;border-radius:5px;'src='../rooms/$picture1' class='img-fluid' alt=''>";
}
echo"
<input type='file' name='fileField1' class='form-control'/>
</div>
";
echo"
<div class='form-group col-md-3'>";
if($picture2 !==""){echo"<img style='width:100%;border-radius:5px;'src='../rooms/$picture2' class='img-fluid' alt=''>";
}
echo"
<input type='file' name='fileField2' class='form-control'/>
</div>
";
echo"
<div class='form-group col-md-3'>";
if($picture3 !==""){echo"<img style='width:100%;border-radius:5px;'src='../rooms/$picture3' class='img-fluid' alt=''>";
}
echo"
<input type='file' name='fileField3' class='form-control'/>
</div>
";
echo"
<div class='form-group col-md-3'>";
if($picture4 !==""){echo"<img style='width:100%;border-radius:5px;'src='../rooms/$picture4' class='img-fluid' alt=''>";
}
echo"
<input type='file' name='fileField4' class='form-control'/>
</div>
";
echo"
</div>";
echo"
<div class='l'>Features</div>
<div class='form-row'>
<div class='form-group col-md-4'>
<input type='text' name='feature1' class='form-control' placeholder='Feature 1 Caption' value='$feature1' />
</div>
<div class='form-group col-md-8'>
<input type='text' name='feature1_wu' class='form-control' placeholder='Feature 1 Write up' value='$feature1_wu' />
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-4'>
<input type='text' name='feature2' class='form-control' placeholder='Feature 2 Caption' value='$feature2' />
</div>
<div class='form-group col-md-8'>
<input type='text' name='feature2_wu' class='form-control' placeholder='Feature 2 Write up' value='$feature2_wu' />
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-4'>
<input type='text' name='feature3' class='form-control' placeholder='Feature 3 Caption' value='$feature3' />
</div>
<div class='form-group col-md-8'>
<input type='text' name='feature3_wu' class='form-control' placeholder='Feature 3 Write up' value='$feature3_wu' />
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-4'>
<input type='text' name='feature4' class='form-control' placeholder='Feature 4 Caption' value='$feature4' />
</div>
<div class='form-group col-md-8'>
<input type='text' name='feature4_wu' class='form-control' placeholder='Feature 4 Write up' value='$feature4_wu' />
</div>
</div>
<div class='form-row'>
<div class='form-group col-md-4'>
<input type='text' name='feature5' class='form-control' placeholder='Feature 5 Caption' value='$feature5' />
</div>
<div class='form-group col-md-8'>
<input type='text' name='feature5_wu' class='form-control' placeholder='Feature 5 Write up' value='$feature5_wu' />
</div>
<div class='form-group col-md-12'>
<input type='text' name='number_rooms' class='form-control' placeholder='Number of Rooms' value='$number_rooms' />
</div>
<div class='form-group col-md-12'>
<input type='number' name='discount' class='form-control' placeholder='Discount' value='$discount' />
</div>
</div>
";
echo"
<div class='text-center'>
<button type='submit' name='update$id'>Update</button>
<button type='submit' name='delete$id'>Delete</button>
</div>
";
if (isset($_POST["update$id"])) {
$header = mysqli_real_escape_string($con,$_POST['header']);
$paragraph = mysqli_real_escape_string($con,$_POST['paragraph']);
$price = mysqli_real_escape_string($con,$_POST['price']);
$feature1 = mysqli_real_escape_string($con,$_POST['feature1']);
$feature2 = mysqli_real_escape_string($con,$_POST['feature2']);
$feature3 = mysqli_real_escape_string($con,$_POST['feature3']);
$feature4 = mysqli_real_escape_string($con,$_POST['feature4']);
$feature5 = mysqli_real_escape_string($con,$_POST['feature5']);
$feature1_wu = mysqli_real_escape_string($con,$_POST['feature1_wu']);
$feature2_wu = mysqli_real_escape_string($con,$_POST['feature2_wu']);
$feature3_wu = mysqli_real_escape_string($con,$_POST['feature3_wu']);
$feature4_wu = mysqli_real_escape_string($con,$_POST['feature4_wu']);
$feature5_wu = mysqli_real_escape_string($con,$_POST['feature5_wu']);
$featured = mysqli_real_escape_string($con,$_POST['featured']);
$number_rooms = mysqli_real_escape_string($con,$_POST['number_rooms']);
$discount = mysqli_real_escape_string($con,$_POST['discount']);
if( ($_FILES["fileField1"]["type"]=="") == false ){
unlink("../rooms/$picture1");
$random_id1 = substr(md5(rand()), 0, 20);
$extension1 = pathinfo($_FILES["fileField1"]["name"], PATHINFO_EXTENSION);
move_uploaded_file( $_FILES['fileField1']['tmp_name'], "../rooms/$random_id1.$extension1");
$picture1 ="$random_id1.$extension1";
}
if( ($_FILES["fileField2"]["type"]=="") == false ){
unlink("../rooms/$picture2");
$random_id2 = substr(md5(rand()), 0, 20);
$extension2 = pathinfo($_FILES["fileField2"]["name"], PATHINFO_EXTENSION);
move_uploaded_file( $_FILES['fileField2']['tmp_name'], "../rooms/$random_id2.$extension2");
$picture2 ="$random_id2.$extension2";
}
if( ($_FILES["fileField3"]["type"]=="") == false ){
unlink("../rooms/$picture3");
$random_id3 = substr(md5(rand()), 0, 20);
$extension3 = pathinfo($_FILES["fileField3"]["name"], PATHINFO_EXTENSION);
move_uploaded_file( $_FILES['fileField3']['tmp_name'], "../rooms/$random_id3.$extension3");
$picture3 ="$random_id3.$extension3";
}
if( ($_FILES["fileField4"]["type"]=="") == false ){
unlink("../rooms/$picture4");
$random_id4 = substr(md5(rand()), 0, 20);
$extension4 = pathinfo($_FILES["fileField4"]["name"], PATHINFO_EXTENSION);
move_uploaded_file( $_FILES['fileField4']['tmp_name'], "../rooms/$random_id4.$extension4");
$picture4 ="$random_id4.$extension4";
}
$stmt = $con -> prepare('UPDATE rooms SET header=?,paragraph=?,price=?,feature1=?,feature2=?,feature3=?,feature4=?,feature5=?,picture1=?,picture2=?,picture3=?,picture4=?,featured=?,featured1_wu=?,featured2_wu=?,featured3_wu=?,featured4_wu=?,featured5_wu=?,number_rooms=?,discount=? WHERE id = ?');
$stmt -> bind_param('ssssssssssssssssssssi',$header,$paragraph,$price,$feature1,$feature2,$feature3,$feature4,$feature5,$picture1,$picture2,$picture3,$picture4,$featured,$feature1_wu,$feature2_wu,$feature3_wu,$feature4_wu,$feature5_wu,$number_rooms,$discount,$id);
$stmt -> execute();
//create a session to verify it's coming from here
$_SESSION["action"] = "true";
$message="Update was successfully done.";
echo "<meta http-equiv=\"refresh\" content=\"0; url=success.php?u=$page_name?u=$room_id&m=$message\">";
}
if (isset($_POST["delete$id"])) {
$stmt = $con -> prepare('DELETE FROM rooms WHERE id = ?');
$stmt -> bind_param('i', $room_id);
$stmt -> execute();
unlink("../rooms/$picture1");
unlink("../rooms/$picture2");
unlink("../rooms/$picture3");
unlink("../rooms/$picture4");
//create a session to verify it's coming from here
$_SESSION["action"] = "true";
$message="Room successfully deleted.";
echo "<meta http-equiv=\"refresh\" content=\"0; url=success.php?u=rooms_tariff.php&m=$message\">";
}
?>
</form>
<br/></br>
</div>
</section><!-- End Contact Section -->
<?php include("footer.php"); ?>