Query is not unlinking image from db

Question

Why won't the image from directory get deleted?

The rest working fine but just the image is not getting unlinked.

Here is my php code:

if(isset($_POST['delbtn'])){
$code = $_POST['delete'];

$stmt = $db->prepare("SELECT * FROM interviews WHERE reference = :reference");
$stmt->bindParam(':reference', $code, PDO::PARAM_STR);
$stmt->execute();
$cnt = $stmt->rowCount();
if($cnt!='0'){

$query = "delete from interviews where id IN(".$_GET['coach'].")";
$stmt = $db->prepare($query);
$stmt->execute();
while($rw = $stmt->fetch())
 {
     $file='uploads/interviews/'.$rw['image'];
     @unlink($file);
 }          
                echo "<script type='text/javascript'>
                alert('Entry successfully deleted.');
                window.location.href = 'need-help-with-interview.php';
                </script>";
exit;
}else{
                echo "<script type='text/javascript'>
                alert('You are not authorized to delete this entry.');
                window.location.href = 'need-help-with-interview.php';
                </script>";
exit;
 }
}

Answer 1

$query = "delete from interviews where id IN(".$_GET['coach'].")";
$stmt = $db->prepare($query);
$stmt->execute();
while($rw = $stmt->fetch())
{
 $file='uploads/interviews/'.$rw['image'];
 @unlink($file);
} 

You are writing code to delete from table which will return Boolean value not rows. First select data which you are deleting from database and then delete images from folder.

After deleting images delete records from DB.

(Note: you have a SQL injection security vulnerability in your delete query. This could be easily modified by an attacker to delete everything in your table. Please use parameter binding to fix this).