if (isset($_GET['id']) && is_numeric($_GET['id'])){$id = $_GET['id'];$name =

1. if (isset($_GET['id']) && is_numeric($_GET['id']))
2. {
3. $id = $_GET['id'];
4.  
5. $name = "SELECT name FROM images WHERE id=$id";
6. $name=mysql_fetch_assoc($name);
7. $name=$name['name'];
8.  
9. if ($stmt = $con->prepare("DELETE FROM images WHERE id = ? LIMIT 1"))
10. {
11. $stmt->bind_param("i",$id);
12.  
13. $stmt->execute();
14. unlink("../upload/" . $name);
15. $stmt->close();
16. }
17.  
18. else
19. {
20. echo "ERROR: could not prepare SQL statement.";
21. }
22. $con->close();
23.  
24. header("Location: images_delete.php");
25. }
26. else
27. {
28. header("Location: images_delete.php");
29. }
30.  
31. if (isset($_GET['id']) && is_numeric($_GET['id']))
32. {
33.  
34. $id = $_GET['id'];
35. $name = "SELECT * FROM images WHERE id=$id" or die(mysqli_error($con));
36. $res = mysqli_query($con, $name);
37. $row = mysqli_fetch_assoc($res);
38. $name1 = $row['name'];
39. //print_r($name1);
40. if ($stmt = $con->prepare("DELETE FROM images WHERE id = ? LIMIT 1"))
41. {
42. $stmt->bind_param("i",$id);
43. $folder = 'C:wampwwwupload';
44. chown($folder,465);
45.  
46. //var_dump($name1);
47. unlink($_SERVER['DOCUMENT_ROOT'] . "/upload/$name1");
48.  
49. $stmt->execute();
50. $stmt->close();
51. }
52.  
53. else
54. {
55. echo "ERROR: could not prepare SQL statement.";
56. }
57. $con->close();