I'm trying to upload an image into a MYSQL DB enter code herefrom a form in html by using PHP $_FILES but I dunno what I'm doing wrong, I'm new with PHP.
<form action="upload.php" enctype="multipart/form-data">
Username: <input type="text" name="username" value=""><br>
Password: <input type="password" name="password" value=""><br>
Saga Title: <input type="text" name="saga_title"><br>
Saga Description: <input type="text" name="saga_description"><br>
Saga image (Max 4MB): <input type="file" name="saga_image"><br>
<input type="submit" name="upload_saga" value="Upload Saga"><br>
Episode Title: <input type="text" name="episode_title"><br>
Episode Saga: <input type="text" name="episode_saga"><br>
Episode Publication Date: <input type="text" name="episode_publication"><br>
Episode Link: <input type="text" name="episode_link"><br>
<input type="submit" name="upload_episode" value="Upload Episode">
</form>
<?php
include('./database_connection.php');
$connection = openConnection();
if ($_GET['username'] != "" && $_GET['password'] != "") {
echo $_FILES['saga_image']['tmp_name'];;
$username = $_GET['username'];
$password = $_GET['password'];
if ($username == "user" && $password == "pwd") {
if ($_GET['upload_saga'] != "") {
$imagename = $_FILES['saga_image']['name'];
$imagetmp=addslashes (file_get_contents($_FILES['saga_image']['tmp_name']));
$query = 'INSERT INTO "saga" (title, description, image) VALUES ("' . $_GET['saga_title'] . '", "' . $_GET['saga_description'] . '", ' . $imagetmp . ')';
echo $query;
$result = $connection->query($query);
if ($result === TRUE) {
echo '<p>Fatto</p>';
}
}
closeConnection($connection);
?>
