<?php include "../includes/db.php" ?>
<?php
session_start();
if(isset($_POST['post'])){
//print_r($_POST);
// $description=mysqli_real_escape_string($connection,$_POST['description']);
$description=$_POST['description'];
$img_title=$_POST['title'];
$img = uniqid('uploaded-', true). '.' . strtolower(pathinfo($_FILES['image']['name'], PATHINFO_EXTENSION));
$img_Temp=$_FILES['image']['tmp_name'];
//print_r($_FILES);
//move_uploaded_file($img_Temp,"./images/news1/$img");
if(move_uploaded_file($img_Temp,"./images/banner/$img")){
echo "uploaded";
}else{
echo "no";
}
//print_r($returnvalue);
$query="INSERT INTO news(description,title,image) VALUES('{$description}','{$img_title}','{$img}') ";
//echo "INSERT INTO news(description,title,image) VALUES('{$description}','{$img_title}','{$img}') ";
$result=mysqli_query($connection,$query);
if($result){
$_SESSION['messages'] ="Successfully added";
header("Location:create_news.php");
}
else{
$message="server error";
}
}
?>
|