Mr.Fn4ticHz Shell

Server IP : 162.240.98.243 / Your IP : 3.14.251.128
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON
Directory : /home/btiyawmy/public_html/login.easenup.in/
Upload File :
[ HOME ]
Current File : /home/btiyawmy/public_html/login.easenup.in/view_tarifrate.php
<?php session_start();
require_once('../DBManager.php');
require_once('../LoginManager.php');
include 'header.php';

include("dbconnection.php");
?>
     <?php
    include("dbconnection.php");
require_once('../DBManager.php');
require_once('../LoginManager.php');
$narayan=LoginManager::currentUser();
$usertype=LoginManager::getUserTypeByuname("$narayan");
	$sql1 ="SELECT * FROM site_users WHERE userno='$usertype'";
		$qsql1 = mysqli_query($con,$sql1);
		while($re = mysqli_fetch_array($qsql1))
		{
		$sql2 ="SELECT * FROM site_users WHERE entered_by='$re[entered_by]' AND usertype='Hospital'";
		$qsql2 = mysqli_query($con,$sql2);
		if($re1 = mysqli_fetch_array($qsql2))
		{
		    if(Hospital==$re1[usertype])
{
?>
	  <?php
	include 'workdeskmenu.php';
		?>
          <?php
}
}
		}
	?>
            <?php
    include("dbconnection.php");
require_once('../DBManager.php');
require_once('../LoginManager.php');
$narayan=LoginManager::currentUser();
$usertype=LoginManager::getUserTypeByuname("$narayan");
	$sql1 ="SELECT * FROM site_users WHERE userno='$usertype'";
		$qsql1 = mysqli_query($con,$sql1);
		while($re = mysqli_fetch_array($qsql1))
		{
		$sql2 ="SELECT * FROM site_users WHERE entered_by='$re[entered_by]' AND usertype='LABORATORY'";
		$qsql2 = mysqli_query($con,$sql2);
		if($re1 = mysqli_fetch_array($qsql2))
		{
		    if(LABORATORY==$re1[usertype])
{
?>

	  <?php
	include 'patient_menu.php';
		?>
          <?php
}
}
		}
	?>

</style>

  </head>
      
  <?php

include 'fileheader.php';
?>  
<div class="content" >
    <!-- Content Header (Page header) -->
 
       
 <table border="1" class="order-table "  >
    
<?php

              include("dbconnection.php");
         $sql ="SELECT * FROM tarif WHERE tarifid='$_GET[tarifid]'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
		    echo"<h2 align='center'>$rs[tarifname]</h2>";
		}
		?>
      
        
	<table id='example2' class='table table-bordered table-hover'>
					     <tr>
					 <th>Ward Name </th>
					 <th>Rate  </th>
					 	 	 </tr>	 
					 	 	 	 <?php
					 	 	 	 session_start();
				include("dbconnection.php");
				
				require_once('../DBManager.php');
require_once('../LoginManager.php');
date_default_timezone_set('Asia/Kolkata');
   $created_at=date("F d, Y / h:i:s A");
$narayan=LoginManager::currentUser();
$usertype=LoginManager::getUserTypeByuname("$narayan");
	$sql1 ="SELECT * FROM site_users WHERE userno='$usertype'";
		$qsql1 = mysqli_query($con,$sql1);
		while($re = mysqli_fetch_array($qsql1))
		{
					$sql ="SELECT * FROM tarif WHERE tarifid='$_GET[tarifid]'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
		  	$sql ="SELECT * FROM ward WHERE  adminid='$re[entered_by]'";
		$qsql = mysqli_query($con,$sql);
		while($rspi = mysqli_fetch_array($qsql))
		{
		     	$sql12 ="SELECT * FROM tarifrate WHERE  tarifid='$rs[tarifid]' AND wardid='$rspi[wardid]'";
		$qsql12 = mysqli_query($con,$sql12);
		while($rspi12 = mysqli_fetch_array($qsql12))
		{
		    
		    $wrd=$rspi['ward_department'];
		     if($wrd == '1'){
		         echo"<tr> <td>Incentive Unit";
		     }
		    else if($wrd == '2'){
		         echo"<tr> <td>Ward";
		     }
		     else
		     {
		         echo"<tr><td>Operative room";
		     }
		     echo"$rspi[ward_type]-$rspi[ward_name]</td>";
		   
			echo"<td>
          $rspi12[rate]
          	<input type='hidden' name='wardid[]' size='2' value='$rspi12[wardid]'>
          	";
          	echo" 
			   
			    
			     </td>
			      </tr>";
		}
		}
		}
}
		?>

   <table id="example2"  id ="demo" class="table table-bordered table-hover">
<?php
			$sql ="SELECT * FROM addaspatient WHERE prescriptionid='$_GET[prescriptionid]' AND patientid='$_GET[patientid]'";
		$qsql = mysqli_query($con,$sql);
		if($rs = mysqli_fetch_array($qsql))
		{
            echo " <tbody>
                    
          
     ";
}
?>  
   </tbody>
</table> 
            <script>
      let modalBtns = [...document.querySelectorAll(".button")];
      modalBtns.forEach(function(btn) {
        btn.onclick = function() {
          let modal = btn.getAttribute('data-modal');
          document.getElementById(modal)
            .style.display = "block";
        }
      });
      let closeBtns = [...document.querySelectorAll(".close")];
      closeBtns.forEach(function(btn) {
        btn.onclick = function() {
          let modal = btn.closest('.modal');
          modal.style.display = "none";
        }
      });
      window.onclick = function(event) {
        if(event.target.className === "modal") {
          event.target.style.display = "none";
        }
      }
    </script>
    <script>
 function drugload(drid)
{
	    if (window.XMLHttpRequest) {
            // code for IE7+, Firefox, Chrome, Opera, Safari
            xmlhttp = new XMLHttpRequest();
        } else {
            // code for IE6, IE5
            xmlhttp = new ActiveXObject("Microsoft.XMLHTTP");
        }
        xmlhttp.onreadystatechange = function() {
            if (this.readyState == 4 && this.status == 200) {
                document.getElementById("divdr").innerHTML = this.responseText;
            }
        };
        xmlhttp.open("GET","loaddrug.php?drid="+drid,true);
        xmlhttp.send();
}
            
     
</script>
  </body>
</html>
Anon7 - 2022
AnonSec Team