diff --git a/client_files.php b/client_files.php
index 86231d60..bc3edd61 100644
--- a/client_files.php
+++ b/client_files.php
@@ -249,6 +249,7 @@ $num_of_files = mysqli_num_rows($sql);
while ($row = mysqli_fetch_array($sql)) {
$file_id = intval($row['file_id']);
$file_name = nullable_htmlentities($row['file_name']);
+ $file_description = nullable_htmlentities($row['file_description']);
$file_reference_name = nullable_htmlentities($row['file_reference_name']);
$file_ext = nullable_htmlentities($row['file_ext']);
if ($file_ext == 'pdf') {
@@ -283,7 +284,10 @@ $num_of_files = mysqli_num_rows($sql);
-
" target="_blank" class="text-secondary"> |
+
+ " target="_blank" class="text-secondary">
+
+ |
|
diff --git a/post/file.php b/post/file.php
index bf49af63..3e575352 100644
--- a/post/file.php
+++ b/post/file.php
@@ -7,6 +7,7 @@
if (isset($_POST['upload_files'])) {
$client_id = intval($_POST['client_id']);
$folder_id = intval($_POST['folder_id']);
+ $description = sanitizeInput($_POST['description']);
if (!file_exists("uploads/clients/$client_id")) {
mkdir("uploads/clients/$client_id");
@@ -39,7 +40,7 @@ if (isset($_POST['upload_files'])) {
// Extract .ext from reference file name to be used to store SHA256 hash
$file_hash = strstr($file_reference_name, '.', true) ?: $file_reference_name;
- mysqli_query($mysqli,"INSERT INTO files SET file_reference_name = '$file_reference_name', file_name = '$file_name', file_ext = '$file_extension', file_hash = '$file_hash', file_folder_id = $folder_id, file_client_id = $client_id");
+ mysqli_query($mysqli,"INSERT INTO files SET file_reference_name = '$file_reference_name', file_name = '$file_name', file_description = '$description', file_ext = '$file_extension', file_hash = '$file_hash', file_folder_id = $folder_id, file_client_id = $client_id");
//Logging
$file_id = intval(mysqli_insert_id($mysqli));
|