include "../cdbcon.inc";
$sql1=mysql_query("select name from students where name='$name' and number1='$number' and number2='$number1'");
if ($rs=mysql_fetch_array($sql1)){
?>
}
else{
$sql2=mysql_query("select name from students where number1='$number' and number2='$number1'");
if ($res=mysql_fetch_array($sql2)){
?>
}
else{
if ($photo!=""){
$save_dir="../../".$s_no."/photo";
$isUploaded=FALSE;
$upload_file=$photo;
if(!strcmp($upload_file,"none")){
continue;
}else{
$upload_file_name=$photo_name;
$upload_file_size=$photo_size;
$upload_file_type=$photo_type;
if ( $upload_file_size >= (150*1024)){
?>
}else{
$filename=explode(".",$upload_file_name);
$extension=$filename[sizeof($filename)-1];
if(!strcmp($extension,"html")||!strcmp($extension,"htm")||!strcmp($extension,"php")||!strcmp($extension,"phtml")||!strcmp($extension,"inc")||!strcmp($extension,"txt")||!strcmp($extension,"asp"))
{
continue;
}
$dest=$save_dir."/".$upload_file_name;
if ($upload_file_name!=""){
copy($upload_file,$dest);
}
$isUploaded=TRUE;
}
}
}
$write_day=date('Ymd');
$teacher = addslashes($teacher);
$sql="insert into students(num,no,name,id,pwd,sex,number1,number2,address,tel,parentm,parentf,parentpwd,spplay,birth,hobby,speciality,email,homepage,info,teacher,photo,r,w,x) values('$num','$no','$name','$id','$pwd','$sex','$number','$number1','$address','$tel','$parentm','$parentf','$parentpwd','$spplay','$birth','$hobby','$speciality','$email','$homepage','$info','$teacher','$photo_name','o','o','x')";
mysql_query($sql);
include "../../dbcon.inc";
$sql="update member set name='$name',number1='$number',number2='$number1',parentf='$parentf',parentm='$parentm',s_no='$s_no' where no='$num'";
mysql_query($sql);
?>
}
}
?>