Adding csv file in database

[sunnythangaraj]

Hey anybody can please guide me where I m wrong in this php code

please reply

 

here is the code

Only variables should be passed by reference on line 3

in that function area function get_file_extension($file_name)

 

main error I guess is the explode one

 

Aand yeah I checked adding

$file_name = $_FILES['fld']; before the function is started

 

<?php

 

require("include/dbconn.php");

 

    //$username = mysql_real_escape_string($_POST['username1']);

 

 

 

function get_file_extension($file_name) {

return end(explode('.',$file_name));

 

}

function errors($error){

if (!empty($error))

{

$i = 0;

while ($i < count($error)){

$showError.= '<div class="msg-error">'.$error[$i].'</div>';

$i ++;}

return $showError;

}// close if empty errors

} // close function

 

if (isset($_POST['submit'])){

 

$username = "Sunny";

$date1 = date("d m y");

    mysql_select_db("deals") or die(mysql_error());

 

if($username == "")

{

//header("location:newnewuser1.php");

echo "Username empty";

    //header("location:newnewuser1.php");

 

}

else

{

 

function createRandomPassword() {

    $chars = "abcdefghijkmnopqrstuvwxyz023456789";

    srand((double)microtime()*1000000);

    $i = 0;

    $pass = '' ;

    while ($i <= 7) {

 

        $num = rand() % 33;

 

        $tmp = substr($chars, $num, 1);

 

        $pass = $pass . $tmp;

 

        $i++;

 

    }

    return $pass;

}

// Usage

 

$password = createRandomPassword();

 

//$password = mysql_real_escape_string($_POST['Password']);

$date = strtotime("+2hours");

$date1 =  date("d-m-y",$date);

 

if(get_file_extension($_FILES["fld"]["name"])!= 'csv')

{

$error[] = 'Only CSV files accepted!';

echo "Wrong Input";

}//get_file_extension

 

if (!$error)

{

 

$tot = 0;

$handle = fopen($_FILES["fld"]["tmp_name"], "r");

 

 

while (($data = fgetcsv($handle, 1000, ",")) !== FALSE)

{

 

for ($c=0; $c < 1; $c++) {

   

      try {

mysql_query("INSERT INTO newusers (email,password,location,company,name,contact,sourcename,date)VALUES('".mysql_real_escape_string($data[0])."','$password','".mysql_real_escape_string($data[1])."',

'".mysql_real_escape_string($data[2])."','".mysql_real_escape_string($data[3])."','".mysql_real_escape_string($data[4])."','$username1','$date1')");

 

$tot++;

       

}

      catch(Exception $e)

      {

      PRINT 'ERROR:' +$e;

    }

  }//for

 

 

 

}//while

fclose($handle);

 

 

 

}// end no error

}//close if isset upfile

 

 

 

 

}

 

?>

 

and this is the form code

 

<form name="f1" action="" method="POST" enctype="multipart/form-data">

                            <table><tr><td><input type="file" value="Browse" name="fld" onselect="CheckExtension(fld)"><br/></td><td>     </td></tr><tr><td>Username :<input type="text" name="username1" value="" id="user" onfocus="validateForm1()"></td>

<td><input type="submit" name="submit" value="submit" id="submit"></td></tr></table>

                              </form>

 

Please help me I m stuck in this quite badly

Please

 

 

[attachment deleted by admin]