if(isset($_POST['save']))
{
/*if(!get_magic_quotes_gpc())
{
$_POST['hometown'] = addslashes($_POST['hometown']);
} */
$update= "update User set password ='".$_POST['password']."', Fname ='".$_POST['Fname']."', Minit ='".$_POST['Minit']."',
Lname ='".$_POST['Lname']."', Email ='".$_POST['Email']."', hometown ='".$_POST['hometown']."',
YearofBirth ='".$_POST['year']."-".$_POST['month']."-".$_POST['day']."' where userId= '".$_POST['name']."' ";
$result= mysqli_query($mysql, $update);
if(!$result)
{
echo "update failed";
exit;
}
else{
$select= "select * from User where userId='".$_POST['name']."' ";
$res= mysqli_query($mysql, $select);
if(!$res)
{
die('Invalid query: ' . mysql_error());
}
else{
echo "Your new update is
";
while ($row = mysqli_fetch_assoc($res))
{
echo "UserId: ", $row["userId"],"
";
echo "First Name: ", $row["Fname"],"
";
echo "Last Name: ", $row["Lname"],"
";
echo "Year of Birth: ", $row["YearofBirth"],"
";
echo "Your email: ", $row["Email"],"
";
echo "user home town: ", $row["hometown"],"
";
}
$res->close();
}
}
/* close result set */
}
/* close connection */
mysqli_close($mysql);
?>