Edit file File name : testimonial-addf.php Content :<?php session_start(); include("../include/config.php"); include("../include/functions.php"); include("../include/simpleimage.php"); validate_admin(); $testimonial=mysqli_real_escape_string($GLOBALS['conn'],$_POST['testimonial']); $posted_by=mysqli_real_escape_string($GLOBALS['conn'],$_POST['posted_by']); $rating=mysqli_real_escape_string($GLOBALS['conn'],$_POST['rating']); if($rating>5){ $rating=5; } if($_REQUEST['submitForm']=='yes'){ //$Image=new SimpleImage(); if($_FILES['photo']['size']>0 && $_FILES['photo']['error']==''){ $Image= new SimpleImage(); $img=time().substr($_FILES['photo']['name'],-5); move_uploaded_file($_FILES['photo']['tmp_name'],"../upload_images/testimonial/".$img); copy("../upload_images/testimonial/".$img,"../upload_images/testimonial/thumb/".$img); $Image->load("../upload_images/testimonial/thumb/".$img); $Image->resize(61,61); $Image->save("../upload_images/testimonial/thumb/".$img); } if($_REQUEST['id']==''){ $obj->query("insert into $tbl_testimonial set testimonial='$testimonial',posted_by='$posted_by',rating='$rating',photo='$img',posted_date=now(),status=1 "); $_SESSION['sess_msg']='Testimonial added sucessfully'; }else{ $sql=" update $tbl_testimonial set testimonial='$testimonial',posted_by='$posted_by',rating='$rating' "; if($img){ $imageArr=$obj->query("select photo from $tbl_testimonial where id=".$_REQUEST['id']); $resultImage=$obj->fetchNextObject($imageArr); @unlink("../upload_images/testimonial/".$resultImage->photo); @unlink("../upload_images/testimonial/thumb/".$resultImage->photo); $sql.=" , photo='$img' "; } $sql.=" where id=".$_REQUEST['id']; $obj->query($sql); $_SESSION['sess_msg']='Testimonial updated sucessfully'; } header("location:testimonial-list.php"); exit(); } if($_REQUEST['id']!=''){ $sql=$obj->query("select * from $tbl_testimonial where id=".$_REQUEST['id']); $result=$obj->fetchNextObject($sql); } ?> <!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd"> <html xmlns="http://www.w3.org/1999/xhtml"> <head> <title><?php echo SITE_TITLE; ?></title> <meta http-equiv="Content-Type" content="text/html; charset=utf-8" /> <link href="css/admin.css" rel="stylesheet" type="text/css" /> <script type="text/javascript" language="javascript"> function validate(obj) { if(obj.posted_by.value==''){ alert("Please enter posted by"); obj.posted_by.focus(); return false; } if(obj.testimonial.value==''){ alert("Please enter testimonial"); obj.testimonial.focus(); return false; } } </script> </head> <body> <table width="100%" height="100%" border="0" cellpadding="0" cellspacing="0"> <?php include("header.php") ?> <tr> <td align="right" class="paddRtLt70" valign="top"> <table width="99%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="right" valign="top"> <table width="100%" border="0" cellspacing="0" cellpadding="0"> <tr> <td align="left" valign="middle" class="headingbg bodr text14"> <em><img src="images/arrow2.gif" width="21" height="21" hspace="10" align="absmiddle" /></em>Admin: Add Testimonial <span style="float:right; padding-right:10px;"> <input type="button" name="add" value="View Testimonials" class="button" onclick="location.href='testimonial-list.php'" /></span></td> </tr> <tr> <td height="100" align="left" valign="top" bgcolor="#f3f4f6" class="bodr"> <form name="frm" method="POST" enctype="multipart/form-data" action="" onsubmit="return validate(this)"> <input type="hidden" name="submitForm" value="yes" /> <input type="hidden" name="id" value="<?php echo $_REQUEST['id'];?>" /> <table width="100%" cellpadding="0" cellspacing="0"> <tr> <td align="center" colspan="2" class="paddRt14 paddBot11"> <font color="#FF0000"><strong><?php echo $_SESSION['sess_msg']; $_SESSION['sess_msg']='';?></strong></font></td> </tr> <tr> <td width="18%" align="right" class="paddBot11 paddRt14"> </td> <td width="82%" align="left" class="paddBot11"></td> </tr> <tr> <td align="right" class="paddBot11 paddRt14"><strong>Posted By :</strong></td> <td align="left" class="paddBot11"><input name="posted_by" type="text" id="posted_by" size="36" value="<?php echo stripslashes($result->posted_by);?>" /></td> </tr> <tr> <td align="right" class="paddBot11 paddRt14"><strong>Rating :</strong></td> <td align="left" class="paddBot11"><input name="rating" type="number" id="rating" size="36" step="0.01" required value="<?php echo stripslashes($result->rating);?>" style="width:237px" /></td> </tr> <tr> <td align="right" class="paddBot11 paddRt14"><strong>Testimonial:</strong></td> <td align="left" class="paddBot11"><textarea name="testimonial" rows="10" cols="60" ><?php echo stripslashes($result->testimonial); ?></textarea></td> </tr> <!-- <tr> <td align="right" class="paddBot11 paddRt14"><strong>Pic:</strong></td> <td align="left" class="paddBot11"><input type="file" name="photo" /><br/> <?php if(is_file("../upload_images/testimonial/thumb/".$result->photo)){ ?> <img src="../upload_images/testimonial/thumb/<?php echo $result->photo; ?>" width="80" height="80" /> <?php } ?></td> </tr> --> <tr> <td align="right" class="paddRt14 paddBot11"> </td> <td align="left" class="paddBot11"> </td> </tr> <tr> <td width="18%" align="right" class="paddRt14 paddBot11"> </td> <td width="82%" align="left" class="paddBot11"> <input type="submit" name="submit" value="Submit" class="submit" border="0"/> <input name="Reset" type="reset" id="Reset" value="Reset" class="submit" border="0" /> </td> </tr> </table></form> </td> </tr> </table> </td> </tr> </table> </td> </tr> <?php include('footer.php'); ?> </table> </body> </html> Save