<?php require_once $_SERVER['DOCUMENT_ROOT'].'/admin/scripts-includes/universal.php'; $connID = connect_to_db(); if(!$image_id=is_numeric_id($_POST['image_id'], false)) { getout('Invalid image ID'); exit; } $whitelist = array( 'title' => 'title' ); foreach($whitelist as $f => $v) { $$f = (isset($_POST[$v])) ? clean_plain_data($_POST[$v]) : ''; //echo $$f.' | '; //debugging } $connID=connect_to_db(); if (!$result=mysql_query("update image_data set title='$title' where image_id='$image_id'")) { getout(mysql_error()); exit; } mysql_close($connID); $message="Image title updated successfully."; getout($message,'?tab=images'); exit; ?>
cải xoăn