<?
include "../../inc/inc.php";
session_start();
//---------------------文件上传---------------------------------------
//取得当前日期信息,并连接成为一个字符串
$time = date('Ymdhis');
$yzm=$_POST["yzm"];
if($yzm!=$_SESSION["authnum_session"]){
echo "<SCRIPT LANGUAGE='JavaScript'>";
echo "alert('验证码输入错误!');";
echo "history.go(-1);";
echo "</SCRIPT>";
exit;
}
//上传文件的存储目录
$uploaddir="./../../sysadm/uploadfiles/";
//得到上传文件的扩展名
function extend($file_name)
{
$extend =explode("." , $file_name);
$va=count($extend)-1;
return $extend[$va];
}
$file_name=extend($_FILES["upfilepic"]["name"]);
//文件上传后全路径名称
$uploadfile=$uploaddir.$time.".".$file_name;
$pic=$time.".".$file_name;
move_uploaded_file($_FILES["upfilepic"]["tmp_name"],$uploadfile);
//---------------------文件上传END-------------------------------------
$datetime=date("Y-m-d H:i:s") ;
$sql="INSERT INTO feedback (
name,
sex,
position,
company,
email,
phone,
fax,
website,
postalcode,
address,
type,
aspect,
content,
ip,
date,
uploadfilename1,
name1,
name2,
name3,
name4,
name5,
name6,
name7,
name8,
name9,
name10,
name11,
name12,
name13,
name14,
ctid
)VALUES(
'".$_POST['name']."',
'".$_POST['sex']."',
'".$_POST['position']."',
'".$_POST['company']."',
'".$_POST['email']."',
'".$_POST['phone']."',
'".$_POST['fax']."',
'".$_POST['website']."',
'".$_POST['postalcode']."',
'".$_POST['address']."',
'".$_POST['type']."',
'".$_POST['aspect']."',
'".$_POST['content']."',
'".$_SERVER['REMOTE_ADDR']."',
'$datetime',
'$pic',
'".$_POST['name1']."',
'".$_POST['name2']."',
'".$_POST['name3']."',
'".$_POST['name4']."',
'".$_POST['name5']."',
'".$_POST['name6']."',
'".$_POST['name7']."',
'".$_POST['name8']."',
'".$_POST['name9']."',
'".$_POST['name10']."',
'".$_POST['name11']."',
'".$_POST['name12']."',
'".$_POST['name13']."',
'".$_POST['name14']."',
'".$_POST['ctid']."'
)";
$result=mysql_query($sql);
if($result)
{
$url="../../feedback.php";
echo "<SCRIPT LANGUAGE='JavaScript'>";
echo "alert('信息提交成功!');";
echo "location.href='$url'";
echo "</SCRIPT>";
}
else
{
echo "数据连接失败!";
}
?>