Mr.Fn4ticHz Shell
Server IP : 162.240.98.243  /  Your IP : 18.223.239.226
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/btiyawmy/public_html/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /home/btiyawmy/public_html/patientmanager_Ptreg.php
<?php 
date_default_timezone_set('Asia/Kolkata');
require_once("LoginManager.php");
class PatientManager
{	
public static $userhomepage="welcome.php",$loginpage="login.php",$adminhomepage="price.php",$drhomepage="drprofile.php",$patienthomepage="patient_basic.php";

//START TWO RECORDS ACCESS WITOUT PATIENT PERMISSION//
public static function patientAccessTWO($prescriptionid,$patientid,$adminid,$typevisit,$casetype,$note,$entered_by)
{
	$link=DBManager::connect();
	$narayan=LoginManager::currentUser();
	$anilka=LoginManager::getUserTypeByuname("$narayan");
	$entered_by="$anilka";
	$updated_at=date("Y-m-d");
$created_at=date("F d, Y / h:i:s A");
	$sql="INSERT INTO accesspatient(accessid,prescriptionid,patientid,adminid,typevisit,casetype,note,entered_by,created_at) VALUES (NULL,'$prescriptionid','$patientid','$adminid','$typevisit','$casetype','$note','$entered_by','$created_at')";
	$result=mysqli_query($link,$sql);
if($result)
echo "<script>window.location='profile.php?prescriptionid=$prescriptionid&patientid=$patientid'</script>;</script>";
else 
	echo "Fail";
	$link=DBManager::close($link);
}


public static function getRandomkey()
{
		$length=16;
    $characters = '0123456789abcdefghijklmnopqrstuvwxyzABCDEFGHIJKLMNOPQRSTUVWXYZ';
    $string = '';

    for ($i = 0; $i < $length; $i++) {
        $string .= $characters[mt_rand(0, strlen($characters) - 1)];
    }

    return $string;

	
}


public static function setActivityLog($userno,$prescriptionid,$discription,$link,$enteredby)
{
	$updated_at=date("Y-m-d");
   $created_at=date("F d, Y / h:i:s A");
	$sql="INSERT INTO save_activity(srno,userno,prescriptionid,discription,entered_by,link,created_at,updated_at) VALUES (NULL, '$userno','$prescriptionid','$discription<br>Doc.no-','$enteredby','$link',' $created_at','$updated_at')";
	$link=DBManager::connect();

	$result=mysqli_query($link,$sql);
	if($result){
		$insid= mysqli_insert_id($link);
			$srid= $insid;
		$link=DBManager::close($link);
	}

}
public static function registerUser($uname,$name,$numbers,$usertype,$password,$status,$entered_by)
{
	
$link=DBManager::connect();
$userkey=PatientManager::getRandomkey();
$password=rand(10000, 99999);
$user_otp = rand(100000, 999999);
$user_activation_code = md5(rand());
$updated_at=date("Y-m-d");
$created_at=date("F d, Y / h:i:s A");
$sql="INSERT INTO site_users(userno,uname,name,numbers,usertype,status,password,userkey,user_otp,user_activation_code,entered_by,created_at,updated_at) VALUES (NULL, '$uname', '$name', '$numbers', '$usertype', '$status','$password', '$userkey','$user_otp','$user_activation_code','$entered_by', '$created_at', '$updated_at');";
$result=mysqli_query($link,$sql);
if(!$result)
	return false;
$sql ="select last_insert_id() from site_users";
$result=mysqli_query($link,$sql);
if(!$result)
	return false;
$row=mysqli_fetch_row($result);
$userno=$row[0];
  PatientManager::setActivityLog($userno,"$noknow","User registered","showinvestigation.php?prescriptionid=$prescriptionid&patientid=$patientid","$entered_by");
return $userno;
}


public static function registerpatient($familyid,$headnumber,$pic,$fr,$patientname,$gendor,$HusbandName,$Email,$numbers,$dob,$age_type,$Weight,$Height,$bloodgroup,$Nationality,$Marital,$Religion,$Occupation,$Familyinc,$Education,$Passportnm,$AadharNu,$Referred,$Country,$State,$city,$pincode,$bloc,$nameofinc,$Policynm,$entered_by)
{
  	$link=DBManager::connect();
        
	$narayan=LoginManager::currentUser();
$harilal=LoginManager::getUserTypeByuname("$narayan");


$entered_by=$harilal;
		$patientuser = rand(1000, 9999);
		  $CheckPatient = $link->query("SELECT * FROM `site_users` WHERE `numbers` = '$numbers' AND `name` = '$patientname'");
$numSU=mysqli_num_rows($CheckPatient);
if($numSU > 0){
        echo "<script>alert('Already Exists');</script>";
    }else{ 
$userno=PatientManager::registerUser("Patient$patientuser",$patientname,$numbers,"Patient",$password,"Active","$entered_by");

	echo "<br>Userno=$userno<br>";

	$username = "ventexint@gmail.com";
     $apikey = "eebcced9-0ca1-4a6f-940b-c616276e2ec9";
    $sendername = "EASNUP";
	$user_otp = rand(100000, 999999);
	$user_activation_code = md5(rand());
$patientid=$userno;
$narayan=LoginManager::currentUser();
$harilal=LoginManager::getUserTypeByuname("$narayan");
$entered_by=$harilal;
$Referred=$harilal;
 $updated_at=date("Y-m-d");
   $created_at=date("F d, Y / h:i:s A");
	$sql="INSERT INTO patient(srno,patientid,familyid,headnumber,pic,fr,patientname,gendor,HusbandName,Email,numbers,dob,age_type,Weight,Height,bloodgroup,Nationality,Marital,Religion,Occupation,Familyinc,Education, Passportnm,AadharNu,Referred,Country,State,city,pincode,bloc,nameofinc,Policynm,user_otp,numbers_status,user_activation_code,entered_by, created_at,updated_at) VALUES (NULL, '$userno','$familyid','$headnumber','$pic','$fr','$patientname','$gendor','$HusbandName','$Email','$numbers','$dob','$age_type','$Weight','$Height','$bloodgroup','$Nationality','$Marital','$Religion','$Occupation','$Familyinc','$Education','$Passportnm','$AadharNu','$Referred','$Country','$State','$city','$pincode','$bloc','$nameofinc','$Policynm','$user_otp','Not Verified','$user_activation_code','$entered_by','$created_at','$updated_at')";
	
		$message="Hello $patientname, Your OTP to complete the Registration with Ease'n'Up is $user_otp Regards, HAND Corp";
	$message=urlencode($message);
$sms ="http://login.aquasms.com/sendSMS?username=ventexint@gmail.com&message=$message&sendername=EASNUP&smstype=TRANS&numbers=$numbers&apikey=eebcced9-0ca1-4a6f-940b-c616276e2ec9";
	//$sms=urlencode($sms);
	$result=file_get_contents($sms);
	//echo $sql;
$result=mysqli_query($link,$sql);
if($result)
echo "<script>window.location='patient_verify.php?code=$user_activation_code';</script>;</script>";
else 
	echo "Fail";
	$link=DBManager::close($link);
}
}

public static function patientAccess($prescriptionid,$patientid,$adminid,$typevisit,$casetype,$note,$entered_by)
{
	$link=DBManager::connect();
	$narayan=LoginManager::currentUser();
	$anilka=LoginManager::getUserTypeByuname("$narayan");
	$entered_by="$anilka";
	$updated_at=date("Y-m-d");
$created_at=date("F d, Y / h:i:s A");
	$sql="INSERT INTO accesspatient(accessid,prescriptionid,patientid,adminid,typevisit,casetype,note,entered_by,created_at) VALUES (NULL,'$prescriptionid','$patientid','$adminid','$typevisit','$casetype','$note','$entered_by','$created_at')";
	$result=mysqli_query($link,$sql);
if($result)
echo "<script>alert('Member Add successfully');</script><script>window.location='medication2.php?patientid=$patientid'</script>;</script>";
else 
	echo "Fail";
	$link=DBManager::close($link);
}


}
?>

Anon7 - 2022
AnonSec Team