Here is my code, any help would great. -Thanks
Code: Select all
<?php
session_start();
if(!isset($_SESSION['adminctrl'])){
header('Location: admin.php'); die('<a href="admin.php">Login first!</a>');
}
$query = mysql_connect("************.net", "*****", "***********") or die(mysql_error());
mysql_select_db('*******', $query) or die(mysql_error());
$error = array();
if(isset($_POST['company'])) {
$result = @mysql_query('SELECT company FROM `customers_products` WHERE company = \''.mysql_real_escape_string($_POST['company']).'\'AND product_id = \''.mysql_real_escape_string($_POST['product_id']).'\'');
if($row = @mysql_fetch_row($result)) {
array_push($error, 'Combination already found.');
}
$len = strlen($_POST['company']);
$len = strlen($_POST['product_id']);
@mysql_query('INSERT INTO `customers_products` (company, product_id) VALUES (\''.mysql_real_escape_string($_POST['company']).'\', \''.mysql_real_escape_string($_POST['product_id']).'\')');
if(!$error) {
echo"Update was successful.";
}
}
php?>
<!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<title>Customer Update</title>
</head>
<html>
<body>
<form method="post" action="customer_info.php">
<?php
$conn ="SELECT company FROM `users`" ;
$result = mysql_query($conn,$query);
while($row=mysql_fetch_row($result))
{
$user[] = $row[0];
}
echo "<select name='company'>\n" ;
foreach( $user as $v )
{
echo "<option value='$v'>\n" .$v."</option>\n";
}
echo "</select>\n";
echo "<br/><br/>";
$conn ="SELECT product_id FROM `products`" ;
$result = mysql_query($conn,$query);
while($row=mysql_fetch_row($result))
{
$product[] = $row[0];
}
echo "<select name='product_id'>\n";
foreach( $product as $y )
{
echo "<option value='$y'>\n" .$y."</option>\n";
}
echo "</select>\n";
php?>
<br/><br/>
<input type="submit" name="submit" value="Update" />
</form>
</body>
</html>