$sql = "Insert into courses (Title, Provider, Description, Fee, Venue, AvPlaces, RePlaces, StartD, Days, StartT, EndT) Values ('$_POST[title]','$_POST[provider]','$_POST[desc]','$_POST[fee]','$_POST[ven]','$_POST[avPlaces]','$_POST[rePlaces]',$_POST[date]','$_POST[days]','$_POST[start]','$_POST[end]')";
Never build an SQL query by concatenating strings. Sooner or later, you will do it with user inputs, and this opens door to a vulnerability named "SQL injection", it is dangerous for your database and error prone.
A single quote in a name and your program crash. If a user input a name like "Brian O'Conner" can crash your app, it is an SQL injection vulnerability, and the crash is the least of the problems, a malicious user input and it is promoted to SQL commands with all credentials.
SQL injection - Wikipedia[
^]
SQL Injection[
^]
SQL Injection Attacks by Example[
^]
PHP: SQL Injection - Manual[
^]
How can I explain SQL injection without technical jargon? - Information Security Stack Exchange[
^]