Mr.Fn4ticHz Shell

Server IP : 162.240.98.243 / Your IP : 3.136.22.179
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON
Directory : /home/btiyawmy/public_html/login.easenup.in/
Upload File :
[ HOME ]
Current File : /home/btiyawmy/public_html/login.easenup.in/medication21_php
<?php
session_start();
include("header.php");
include("patient_menu.php");
include("dbconnection.php");
require_once('../DBManager.php');
require_once('../LoginManager.php');
if(isset($_POST[submit]))
{
	{
		$sql ="INSERT INTO medi_condition_final(patientid,medicalcon,Status) values('$_POST[patientid]','$_POST[medicalcon]','$_POST[Status]')";
		if($qsql = mysqli_query($con,$sql))
		{
			echo "<script>alert('Medication  record inserted successfully...');</script><script>window.location='medication2.php?patientid=$_GET[patientid]';</script>;</script>";
		}
		else
		{
			echo mysqli_error($con);
		}
	}
}
if(isset($_GET[editid]))
{
	$sql="SELECT * FROM immunization WHERE patientid='$_GET[editid]' ";
	$qsql = mysqli_query($con,$sql);
	$rsedit = mysqli_fetch_array($qsql);
	
}
if(isset($_SESSION[patientid]))
{
$sqlpatient = "SELECT * FROM patient WHERE patientid='$_SESSION[patientid]' ";
$qsqlpatient = mysqli_query($con,$sqlpatient);
$rspatient = mysqli_fetch_array($qsqlpatient);
$readonly = " readonly";
}
?>
<meta name=”viewport” content=”width=device-width; initial-scale=1.0; maximum-scale=1.0; user-scalable=0;” />
 <div class="content-wrapper">
    <!-- Content Header (Page header) -->
<div class="card-body">
                <table id="example2" class="table table-bordered table-hover">
                  <thead>
                  <tr>
                  
    <div class='card-header d-flex p-0'>
                    <ul class='nav nav-pills ml-auto p-2'>
      
         <th><strong>Medical Condition</strong></th>
          <th><strong>Status</strong></th> 
          <th><strong>Edit </strong></th>
                </tr>
                  </thead>
                 
<?php
$narayan=LoginManager::currentUser();
$harilal=LoginManager::getUserTypeByuname("$narayan");
		$sql ="SELECT * FROM medi_condition_final WHERE patientid='$_GET[patientid]' OR patientid='$harilal'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
            echo " <tbody>
                                                                                                                                                                
     <tr>   <td>&nbsp;$rs[medicalcon]</td>     
            <td>&nbsp;$rs[Status]</td>
         <td><a href='edit_medicalcon.php?patientid=$rs[patientid]&medicalcoid=$rs[medicalcoid]'>Edit</a></td>
				
          </tr>                   
          
          ";
}
?>          </tr>
                  </thead>
                  


                   </tbody>
  <tfoot>
          </tfoot>
        </table>
        <!DOCTYPE html>
<html>
<head>
<title>Demo Select Box With Search Option Using Jquery - AllPHPTricks.com</title>
<link rel="stylesheet" href="select2.min.css" />
<style>
.select2-dropdown {top: 22px !important; left: 8px !important;}
</style>
</head>

<script src="https://ajax.googleapis.com/ajax/libs/jquery/3.3.1/jquery.min.js"></script>
<body>
<div class="wrapper col2">
  <div id="breadcrumb">
     </div>
</div>
<div class="wrapper col4">
  <div id="container">
  
 

   <form method="post" action="" name="submit" onSubmit="return validateform()">
    <table width="532" border="3">
	<table id="example2" class="table table-bordered table-hover">  
      <tbody>
	           
            <?php
		  	$sqlpatient= "SELECT * FROM patient WHERE patientid='$_GET[patientid]'";
			$qsqlpatient = mysqli_query($con,$sqlpatient);
			while($rspatient=mysqli_fetch_array($qsqlpatient))
			{
				echo "<input type='hidden' name='patientid' id='patientid' value='$rspatient[patientid]'></td>";
			}
		  ?>
        </tr>
            <tr>
          <td>Medical Condition</td>
          <td><select name="medicalcon" id="country">
	<option value="">None</option>
	<option value="Diabetes">Diabetes</option>
	<option value="Cholesterol">Cholesterol</option>
		<option value="Blood Pressure">Blood Pressure</option>
				<option value="Asthma">Asthma</option>

	<option value="Heart Condition">Heart Condition</option>
	<option value="Hypertension">Hypertension</option>
	<option value="Depression">Depression</option>
		<option value="Anemia">Anemia</option>
			<option value="Thalassemia">Thalassemia</option>
				<option value="HIV">HIV</option>
					<option value="CAD">CAD</option>
					
							<option value="Tuberculosis">Tuberculosis</option>
								<option value="Malignancy">Malignancy</option>
									<option value="Physical Injury">Physical Injury</option>
	<option value="Physically challenged">Physically challenged</option>
	<option value="Mentally challenged">Mentally challenged</option>
</select></td>
        </tr>
	          <td>Status</td>
          <td><select class="form-control" name="Status">
    <option value="" disabled selected>Status  </option>
    <option value="Active">Active</option>
    <option value="Cured">Cured</option>
  	</select></td>
       
        </tr>
		

        <tr>
          <td colspan="2" align="center"><input type="submit" name="submit" id="submit" value="Submit" /></td>
        </tr>
               <?php
		  	$sqlpatient= "SELECT * FROM patient WHERE patientid='$_GET[patientid]'";
			$qsqlpatient = mysqli_query($con,$sqlpatient);
			while($rspatient=mysqli_fetch_array($qsqlpatient))
			{
			    echo "
			 <td colspan='2' align='center'><button><a href='meditest.php?patientid=$rspatient[patientid]' style='color:#fff;'>ghdsa</a></button></td>";
}
		  ?>
         
        </tr>
        <div class="clear"></div>
      </tbody>
    </table>
    </form>
    <p>&nbsp;</p>

  </div>
</div>
</div>
 <div class="clear"></div>
  </div>
</div>
<?php
include("footer.php");
?>
<script src="select2.min.js"></script>
<script>
$("#country").select2( {
	placeholder: "Medical Condition",
	allowClear: true
	} );
</script>
<script type="application/javascript">
var alphaExp = /^[a-zA-Z]+$/; //Variable to validate only alphabets
var alphaspaceExp = /^[a-zA-Z\s]+$/; //Variable to validate only alphabets and space
var numericExpression = /^[0-9]+$/; //Variable to validate only numbers
var alphanumericExp = /^[0-9a-zA-Z]+$/; //Variable to validate numbers and alphabets
var emailExp = /^[\w\-\.\+]+\@[a-zA-Z0-9\.\-]+\.[a-zA-z0-9]{2,4}$/; //Variable to validate Email ID 

function validateform()
{
	if(document.frmpatapp.patiente.value == "")
	{
		alert("Patient name should not be empty..");
		document.frmpatapp.patiente.focus();
		return false;
	}
	else if(!document.frmpatapp.patiente.value.match(alphaspaceExp))
	{
		alert("Patient name not valid..");
		document.frmpatapp.patiente.focus();
		return false;
	}
	else if(document.frmpatapp.textarea.value == "")
	{
		alert("Address should not be empty..");
		document.frmpatapp.textarea.focus();
		return false;
	}
	else if(document.frmpatapp.city.value == "")
	{
		alert("City should not be empty..");
		document.frmpatapp.city.focus();
		return false;
	}
	else if(!document.frmpatapp.city.value.match(alphaspaceExp))
	{
		alert("City name not valid..");
		document.frmpatapp.city.focus();
		return false;
	}
	else if(document.frmpatapp.mobileno.value == "")
	{
		alert("Mobile number should not be empty..");
		document.frmpatapp.mobileno.focus();
		return false;
	}
	else if(!document.frmpatapp.mobileno.value.match(numericExpression))
	{
		alert("Mobile number not valid..");
		document.frmpatapp.mobileno.focus();
		return false;
	}
	else if(document.frmpatapp.loginid.value == "")
	{
		alert("login ID should not be empty..");
		document.frmpatapp.loginid.focus();
		return false;
	}
	else if(!document.frmpatapp.loginid.value.match(alphanumericExp))
	{
		alert("login ID not valid..");
		document.frmpatapp.loginid.focus();
		return false;
	}
	else if(document.frmpatapp.password.value == "")
	{
		alert("Password should not be empty..");
		document.frmpatapp.password.focus();
		return false;
	}
	else if(document.frmpatapp.password.value.length < 8)
	{
		alert("Password length should be more than 8 characters...");
		document.frmpatapp.password.focus();
		return false;
	}
	else if(document.frmpatapp.select6.value == "")
	{
		alert("Gender should not be empty..");
		document.frmpatapp.select6.focus();
		return false;
	}
	else if(document.frmpatapp.dob.value == "")
	{
		alert("Date Of Birth should not be empty..");
		document.frmpatapp.dob.focus();
		return false;
	}
	else if(document.frmpatapp.appointmentdate.value == "")
	{
		alert("Appointment date should not be empty..");
		document.frmpatapp.appointmentdate.focus();
		return false;
	}
	else if(document.frmpatapp.appointmenttime.value == "")
	{
		alert("Appointment time should not be empty..");
		document.frmpatapp.appointmenttime.focus();
		return false;
	}
	else
	{
		return true;
	}
}

function loaddoctor(deptid)
{
	    if (window.XMLHttpRequest) {
            // code for IE7+, Firefox, Chrome, Opera, Safari
            xmlhttp = new XMLHttpRequest();
        } else {
            // code for IE6, IE5
            xmlhttp = new ActiveXObject("Microsoft.XMLHTTP");
        }
        xmlhttp.onreadystatechange = function() {
            if (this.readyState == 4 && this.status == 200) {
                document.getElementById("divdoc").innerHTML = this.responseText;
            }
        };
        xmlhttp.open("GET","departmentDoctor.php?deptid="+deptid,true);
        xmlhttp.send();
}
</script>
<script>
$(function () {
    $("#example1").DataTable({
      "responsive": true,
      "autoWidth": false,
    });
    $('#example2').DataTable({
      "paging": true,
      "lengthChange": false,
      "searching": false,
      "ordering": true,
      "info": true,
      "autoWidth": false,
      "responsive": true,
    });
  });
</script>
Anon7 - 2022
AnonSec Team