creating receipt script

OTHER_INFORMATION/php files/create_receipt.php

+<?php
+
+if(isset($_POST['bookingID']) &&isset($_POST['museumID']) && isset($_POST['numberOfItems']) && isset($_POST['bookedDate']) && isset($_POST['bookedTime']) && isset($_POST['totalCost']) && isset($_POST['userEntered']) && isset($_POST['userChange'])){
+    require_once 'connect_db.php';
+    
+    $bookingID = (int)htmlspecialchars($_POST['bookingID']);
+    $numberOfItems = htmlspecialchars($_POST['numberOfItems']);
+    $museumID = htmlspecialchars($_POST['museumID']);
+    $bookedDate = htmlspecialchars($_POST['bookedDate']);
+    $bookedTime = htmlspecialchars($_POST['bookedTime']);
+    $totalCost = htmlspecialchars($_POST['totalCost']);
+    $userEntered = htmlspecialchars($_POST['userEntered']);
+    $userChange = htmlspecialchars($_POST['userChange']);
+ 
+    
+    $stmt = mysqli_stmt_init($connect);
+
+    $sql = 'INSERT INTO `receipt_museum` VALUES (?,?,?,?,?,?,?,?);';
+
+    if(!mysqli_stmt_prepare($stmt,$sql)){
+        echo 'failure';
+    }
+    else{
+        mysqli_stmt_bind_param($stmt,"iiisssss",$bookingID,$museumID,$numberOfItems,$bookedDate,$bookedTime,$totalCost,$userEntered,$userChange);
+
+        mysqli_stmt_execute($stmt);
+    
+        echo "success";
+    }
+    mysqli_stmt_close($stmt);
+}
+
+
+else{
+    echo "check isset";
+}
\ No newline at end of file