Mr.Fn4ticHz Shell
Server IP : 162.240.98.243  /  Your IP : 3.16.81.33
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/btiyawmy/public_html/login.easenup.in/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /home/btiyawmy/public_html/login.easenup.in/department_edit.php
<?php 
session_start();
require_once('../LoginManager.php');
require_once('../DBManager.php');
include('menu.php');
include('header.php');
if(isset($_POST['signup']))
{
$sql ="UPDATE department SET usertype='$_POST[usertype]',department_section='$_POST[department_section]',Heading_department='$_POST[Heading_department]',Number_beds='$_POST[Number_beds]' WHERE departmentid='$_GET[departmentid]'";
if($qsql = mysqli_query($con,$sql))
		{
    echo "<script>alert('Department update successfully');</script><script> window.history.go(-2)</script>;";
  } else {
    echo "Failed to Update";
  } 
    
}

?>



<!DOCTYPE html>
<html lang="en">

<meta http-equiv="content-type" content="text/html;charset=UTF-8" />
<title> Pt Signup</title>
<meta charset="UTF-8">
<meta name="viewport" content="width=device-width, initial-scale=1">
<link rel="stylesheet" href="new2.css">
</head>
<body>
    <div class="content-wrapper">
        <section class="content-header">
         
<form name="signup" method="post" name="submit">
    	<h3><i class="fa fa-angle-right"></i>  Department Edit
 </h3>
 
 <?php
 $sql2 ="SELECT * FROM department WHERE  departmentid='$_GET[departmentid]'";
$qsql2 = mysqli_query($con,$sql2);
while($rs = mysqli_fetch_array($qsql2))
{
 echo"
    	<div  class='account-details'>
    	    			</div>
	

		  <label>Department</label>
		  <select name='usertype'>
		       <option value='$rs[name]'> ";switch ($rs[name]) {
		      
  case 'DP_Intensive_care':
    echo '&nbsp;Intensive care unit Nursing station</option>';
    break;
    case 'DP_General_ward':
    echo ' &nbsp;General ward Nursing Station</option>';
    break;
    case 'DP_Doctors_Notepad':
    echo ' &nbsp;Doctors Notepad</option>';
    break;
     case 'DP_reception':
    echo '&nbsp;Reception</option>';
    break;
       case 'OPD_Front_desk':
    echo '&nbsp;OPD Front desk</option>';
    break;
       case 'DP_SEMI_Pvt_ward':
    echo ' &nbsp;SEMI Pvt ward</option>';
    break;
    case 'DP_Pvt_Ward':
    echo ' &nbsp;Pvt Ward Nursing station</option>';
    break;
     case 'DP_OT_complex':
    echo '&nbsp;OT complex Nursing station</option>';
    break;
      case 'DP_Pharmacy':
    echo ' &nbsp;Pharmacy</option>';
    break;
       case 'DP_Laboratory':
    echo ' &nbsp;Laboratory</option>';
    break;
        case 'DP_Diagnostic':
    echo ' &nbsp;Diagnostic</option>';
    break;
        case 'DP_Accounts':
    echo ' &nbsp;Accounts</option>';
    break;
    case 'e_a_nursing_station':
    echo ' &nbsp;E&A Nursing Station</option>';
    break;
     default:
    echo '';
}
 echo "
		      $rs[name]
		     
		  </select>
		  <label>Department section</label>
		  <input type='text' value='$rs[department_section]' name='department_section'>
		   ";
		  
		   $sql3 ="SELECT * FROM department WHERE  departmentid='$_GET[departmentid]' AND usertype='e_a_nursing_station' OR departmentid='$_GET[departmentid]' AND usertype='DP_OT_complex' OR departmentid='$_GET[departmentid]' AND usertype='DP_SEMI_Pvt_ward' OR departmentid='$_GET[departmentid]' AND usertype='DP_General_ward' OR departmentid='$_GET[departmentid]' AND usertype='DP_General_ward' OR departmentid='$_GET[departmentid]' AND usertype='DP_Intensive_care' ";
$qsql3 = mysqli_query($con,$sql3);
while($rs = mysqli_fetch_array($qsql3))
{
echo"
 <label for='item'> Number of beds</label>
<input class='input100' type='text' value='$rs[Number_beds]' name='Number_beds' placeholder='Number of beds'>
";
}
}
?>
       <?php
session_start();
$sql ="SELECT * FROM department WHERE departmentid='$_GET[departmentid]'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
if(OPD_Front_desk==$rs[name])
{
?>
<label>Doctar Name</label>
<select name="Heading_department" id="select2">
          <option value="">Select</option>
        
                    <?php
include("dbconnection.php");
$narayan=LoginManager::currentUser();
        $hari=LoginManager::getUserTypeByuname("$narayan");
        	$sqlpatient1 = "SELECT * FROM site_users WHERE userno='$hari'";
	$qsqlpatient1 = mysqli_query($con,$sqlpatient1);
while($rsn = mysqli_fetch_array($qsqlpatient1))
	{
          	$sqldoctor= "SELECT * FROM dr Where entered_by='$rsn[entered_by]'";
			$qsqldoctor = mysqli_query($con,$sqldoctor);
			while($rsdoctor = mysqli_fetch_array($qsqldoctor))
			{
				if($rsdoctor[drid] == $rsedit[Drname])
				{
				echo "<option value='$rsdoctor[drid]' selected>$rsdoctor[drid]-$rsdoctor[Drname]</option>";
				}
				else
				{
				echo "<option value='$rsdoctor[drid]'>$rsdoctor[drid]-$rsdoctor[Drname]</option>";				
				}
			}
	}
		  ?>
          </select>
<?php
}
}
?>

<button type='submit' name='signup'>Update
</button>
</form>

</body>


</html>

Anon7 - 2022
AnonSec Team