ok
Direktori : /home/keydecors/www/ca/admin/app/controller/ |
Current File : /home/keydecors/www/ca/admin/app/controller/patients_profile_back.php |
<?php //include database configuration file include("../model/dboperation.php"); $sp_medicine = mysqli_real_escape_string($mysqli , $_POST['sp_medicine']); $profile_number = mysqli_real_escape_string($mysqli , $_POST['profile_number']); $pname = mysqli_real_escape_string($mysqli , $_POST['name']); $age = mysqli_real_escape_string($mysqli , $_POST['age']); $address = mysqli_real_escape_string($mysqli , $_POST['address']); $doctor_name = mysqli_real_escape_string($mysqli , $_POST['doctor_name']); $gender = mysqli_real_escape_string($mysqli , $_POST['gender']); $hospital = mysqli_real_escape_string($mysqli , $_POST['hospital']); $phone = mysqli_real_escape_string($mysqli , $_POST['hospital']); $mobile = mysqli_real_escape_string($mysqli , $_POST['mobile']); $medicine = mysqli_real_escape_string($mysqli , $_POST['medicines']); $vbusiness = mysqli_real_escape_string($mysqli , $_POST['bvolume']); $enq_date = mysqli_real_escape_string($mysqli , $_POST['endate']); $delidate = mysqli_real_escape_string($mysqli , $_POST['delidate']); $remindate = mysqli_real_escape_string($mysqli , $_POST['remindate']); $sql = "INSERT INTO swathi_patient(speciality_medicine_p, profile_no, patients_name, patients_age, gender, phone, mobile, address, doctor_name, hospital, medicines, volume_of_business, date_enquery, date_remin, date_delivery) VALUES ('$sp_medicine', '$profile_number', '$pname', '$age', '$gender', '$phone', '$mobile', '$address', '$doctor_name', '$hospital', '$medicine', '$vbusiness', '$enq_date', '$remindate', '$delidate')"; if (!mysqli_query($mysqli,$sql)) { die('Error: ' . mysqli_error($mysqli)); } header("location:../patients_profile.php"); ?>