adminInsert.php

<?php  

require_once ("config.php");

	$link 			= 	mysqli_escape_string($conn,$_POST['link']);
	$type 			= 	mysqli_escape_string($conn,$_POST['type']);
    
   


    $target_dir = "advertisment/";
	$target_file = $target_dir .date('Hms')."_".basename($_FILES["fileToUpload"]["name"]);
	$uploadOk = 1;
	$imageFileType = pathinfo($target_file,PATHINFO_EXTENSION);
// Check if image file is a actual image or fake image
if(isset($_POST["submit"])) {
    $check = getimagesize($_FILES["fileToUpload"]["tmp_name"]);
    if($check !== false) {
        echo "File is an image - " . $check["mime"] . ".";
        $uploadOk = 1;
    } else {
        echo "File is not an image.";
        $uploadOk = 0;
    }
}
// Check if file already exists
if (file_exists($target_file)) {
    echo "Sorry, file already exists.";
    $uploadOk = 0;
}

// Allow certain file formats
if($imageFileType != "jpg" && $imageFileType != "png" && $imageFileType != "jpeg"
&& $imageFileType != "gif" ) {
    echo "Sorry, only JPG, JPEG, PNG & GIF files are allowed.";
    $uploadOk = 0;
}
// Check if $uploadOk is set to 0 by an error
if ($uploadOk == 0) {
    echo "Sorry, your file was not uploaded.";
// if everything is ok, try to upload file
} else {
    if (move_uploaded_file($_FILES["fileToUpload"]["tmp_name"], $target_file)) {
        echo "The file ". basename( $_FILES["fileToUpload"]["name"]). " has been uploaded.";
    } else {
        echo "Sorry, there was an error uploading your file.";
    }
}




		  	$sql ="INSERT INTO advertisment(
							link,
							type,
							picture
							) 
				VALUES (
							
							'$link', 
							'$type',
							'$target_file')";

if ($conn->query($sql) ===TRUE){
	echo "<script> alert('Advertisment insert successfully')</script>";
	
	echo "<script> window.location='adminIndex.php'</script>";
}else{
	echo"Error: ".$sql."<br>".$conn->error;
		  	
		  	
		  }

		  

	









$conn->close();


















?>