Your IP : 216.73.216.26
<?php
session_start();
include('../connection.php');
include '../function_lib.php';
if (isset($_POST['submit'])) {
$login_id = $_POST['uid'];
$uid = mysqli_fetch_object(mysqli_query($connection, "SELECT uid FROM user WHERE login_id = '$login_id'"))->uid;
if(!empty($uid)){
$amount = $_POST['amount'];
$product_category_id = $_POST['product_category_id'];
$date = date('Y-m-d');
$sql_insert_amount = "INSERT INTO `product_sale` (`uid`, `product_category_id`, `fid`, `pv_amount`, `pcost`, `date`) VALUES "
. "('$uid', '$product_category_id', '1', '$amount', '$amount', '$date')";
mysqli_query($connection, $sql_insert_amount);
$iaid = mysql_insert_id();
mysqli_query($connection, "UPDATE `user` SET `total_purchase` = `total_purchase` + $amount WHERE `uid` = '$uid'");
if ($iaid) {
setMessage('Successfully done', 'alert-msg success');
redirect('product_sale_done.php?id='.$iaid);
} else {
setMessage('Some error occur. Please try again', 'alert-msg error');
redirect('product_sale.php');
}
}
}
redirect('invest.php');
?>