ohctech_p8/save_user.php

<?php 
include('includes/config/config.php');
include ('includes/functions.php');
include ('log_entry.php');
error_log ( "Start Printing Request Attributes" );
$requestStr="";
foreach ( $_REQUEST as $key => $value ) {
    $requestStr.=$key . " : " . $value . "\n";
    error_log ( $key . " : " . $value . "<br />\r\n" );
}
error_log ( "End Printing Request Attributes" );
save_log($requestStr,'Users','SAVE','save_user.php');
// $_REQUEST['ohc_type'];
  $ohc_type_ids = implode(',', $_REQUEST['ohc_type']);
  $user_role_ids = implode(',', $_REQUEST['user_role']);
  error_log("USER ROLE IDS::" .$user_role_ids);
if(!empty($_REQUEST['user_id'])){
    $query = " update tbl_users  SET user_name='".addslashes($_REQUEST['user_name'])."',user_password='".addslashes($_REQUEST['user_password'])."',status='".$_REQUEST['status']."',vendor_id='".$_REQUEST['vendor_id']."',email='".addslashes($_REQUEST['user_email'])."',landing_page='".$_REQUEST['landing_page']."',ohc_type='".$ohc_type_ids."',remarks='".addslashes($_REQUEST['remarks'])."',emp_id ='".$_REQUEST['emp_id']."',role_id ='".$user_role_ids."', modified_by='".$_SESSION['user_id']."' where user_id = '".$_REQUEST['user_id']."'    ";
}
else {
    $query = "insert into tbl_users  SET user_name='".addslashes($_REQUEST['user_name'])."',user_password='".addslashes($_REQUEST['user_password'])."',email='".addslashes($_REQUEST['user_email'])."',landing_page='".$_REQUEST['landing_page']."', ohc_type='".$ohc_type_ids."',remarks='".addslashes($_REQUEST['remarks'])."',emp_id ='".$_REQUEST['emp_id']."',role_id ='".$user_role_ids."', modified_by='".$_SESSION['user_id']."' ";
}
//echo $query;
error_log("USER QUERY::" .$query);
if (!$result = @mysqli_query($conn,$query)) {
            die(mysqli_error($conn));
}
?>
added files and database 2024-10-16 19:18:52 +05:30			`<?php`
			`include('includes/config/config.php');`
			`include ('includes/functions.php');`
			`include ('log_entry.php');`
			`error_log ( "Start Printing Request Attributes" );`
			`$requestStr="";`
			`foreach ( $_REQUEST as $key => $value ) {`
			`$requestStr.=$key . " : " . $value . "\n";`
			`error_log ( $key . " : " . $value . "<br />\r\n" );`
			`}`
			`error_log ( "End Printing Request Attributes" );`
			`save_log($requestStr,'Users','SAVE','save_user.php');`
			`// $_REQUEST['ohc_type'];`
			`$ohc_type_ids = implode(',', $_REQUEST['ohc_type']);`
			`$user_role_ids = implode(',', $_REQUEST['user_role']);`
			`error_log("USER ROLE IDS::" .$user_role_ids);`
			`if(!empty($_REQUEST['user_id'])){`
			$query = " update tbl_users SET user_name='".addslashes($_REQUEST['user_name'])."',user_password='".addslashes($_REQUEST['user_password'])."',status='".$_REQUEST['status']."',vendor_id='".$_REQUEST['vendor_id']."',email='".addslashes($_REQUEST['user_email'])."',landing_page='".$_REQUEST['landing_page']."',ohc_type='".$ohc_type_ids."',remarks='".addslashes($_REQUEST['remarks'])."',emp_id ='".$_REQUEST['emp_id']."',role_id ='".$user_role_ids."', modified_by='".$_SESSION['user_id']."' where user_id = '".$_REQUEST['user_id']."' ";
			`}`
			`else {`
			`$query = "insert into tbl_users SET user_name='".addslashes($_REQUEST['user_name'])."',user_password='".addslashes($_REQUEST['user_password'])."',email='".addslashes($_REQUEST['user_email'])."',landing_page='".$_REQUEST['landing_page']."', ohc_type='".$ohc_type_ids."',remarks='".addslashes($_REQUEST['remarks'])."',emp_id ='".$_REQUEST['emp_id']."',role_id ='".$user_role_ids."', modified_by='".$_SESSION['user_id']."' ";`
			`}`
			`//echo $query;`
			`error_log("USER QUERY::" .$query);`
			`if (!$result = @mysqli_query($conn,$query)) {`
Upgrade 7 to 8 Upgrade 7 to 8 2024-11-02 18:03:13 +05:30			`die(mysqli_error($conn));`
added files and database 2024-10-16 19:18:52 +05:30			`}`
			`?>`