Mr.Fn4ticHz Shell
Server IP : 162.240.98.243  /  Your IP : 18.118.24.30
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/btiyawmy/www/login.easenup.in/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /home/btiyawmy/www/login.easenup.in/mrd.php
<?php
session_start();
require_once("../dbconnection.php");
require_once('../DBManager.php');
require_once('../LoginManager.php');
?>
	 <?php
$page = $_SERVER['PHP_SELF'];
$sec = "120";
?>
<html>
    <head>
    <meta http-equiv="refresh" content="<?php echo $sec?>;URL='<?php echo $page?>?prescriptionid=<?php echo$_GET[prescriptionid]?>&patientid=<?php echo$_GET[patientid]?>'">
 
    </head>
    <body>
   
    </body>
</html>     
	      	
<?php
include("dbconnection.php");
require_once('../DBManager.php');
require_once('../patientmanager.php');
include("header.php");
include("dashboarddocument.php");
if(isset($_POST[submit]))
{
    PatientManager::discharge("$_GET[prescriptionid]","$_GET[patientid]","$_GET[hospital_id]","$_POST[status]","$_POST[COdischarge]","$_POST[Advice_Discharge]","$_POST[created_by]","$_POST[entered_by]");
}
?>
     <div class="content-wrapper">
    <!-- Content Header (Page header) -->
   
      <H3 Align="right"><?php $sql ="SELECT * FROM addaspatient WHERE patientid='$_GET[patientid]' AND prescriptionid='$_GET[prescriptionid]'";
$qsql = mysqli_query($con,$sql);
if($rs = mysqli_fetch_array($qsql))
{
$sql ="SELECT * FROM patient WHERE patientid='$_GET[patientid]' ";
$qsql = mysqli_query($con,$sql);
if($rs1 = mysqli_fetch_array($qsql))
{
 echo "MRD No.  $rs[prescriptionid] <br>UHID : $rs[patientid]-$rs1[patientname] " ;
 } 
 }
 ?> </H3>   <p align="right">
     <form name="submit" method="post">
              <input type="hidden" name="status" value="Discharge">
         <input type="hidden" name="COdischarge" value="Force to discharge">
         	<?php
    	$narayan=LoginManager::currentUser();
$harilal=LoginManager::getUserTypeByuname("$narayan");
    		$sql ="SELECT * FROM site_users WHERE userno='$harilal'";
		$qsql = mysqli_query($con,$sql);
		if($re = mysqli_fetch_array($qsql))
		{
		    
		    echo"
            <input type='hidden' name='created_by' value='$re[name]'>
            ";
		}
		?>
		<?php
		$sql6 ="SELECT * FROM discharge WHERE patientid='$_GET[patientid]' AND typevisit='IPD' OR patientid='$_GET[patientid]' AND typevisit='Ipd_Emergency' ";
		$qsql6 = mysqli_query($con,$sql6);
		while($rs1 = mysqli_fetch_array($qsql6))
		{
$usertype=$rs1['status'];
if($usertype == 'Admission'){
      echo "
  <input type='submit' name='submit' value='Force to discharge' />";
  }else{
    echo "";
}
}
?>
</p>
</form>
              <!-- /.card-header -->
              <div class="card-body">
                <table id="example2" class="table table-bordered table-hover">
                
                  <tr>
             <td bgcolor="1e73be"><strong> <span style="color:white">Date & Time</span></strong></td>
          <td bgcolor="1e73be"><strong><span style="color:white">Towards </span></strong></td>
            <td bgcolor="1e73be"><strong><span style="color:white">Assisted by </span></strong></td>
       <td bgcolor="1e73be"><strong>  <span style="color:white">  <section class="content-header">Action</section> </strong></span></td>             
        </tr>
     
<?php
include("dbconnection.php");
$sql ="SELECT * FROM addaspatient WHERE patientid='$_GET[patientid]' AND prescriptionid='$_GET[prescriptionid]'";
$qsql = mysqli_query($con,$sql);
if($rs = mysqli_fetch_array($qsql))
{
	$sqlpatient = "SELECT * FROM save_activity WHERE prescriptionid='$rs[prescriptionid]' ORDER BY srno ASC";
	$qsqlpatient = mysqli_query($con,$sqlpatient);
	while($rsp = mysqli_fetch_array($qsqlpatient))
	{
	$sqlpatient1 = "SELECT * FROM site_users WHERE userno='$rsp[entered_by]'";
	$qsqlpatient1 = mysqli_query($con,$sqlpatient1);
	while($rsn = mysqli_fetch_array($qsqlpatient1))
	{
            echo " <tbody>
            <tr>   <td>&nbsp;$rsp[created_at]</td>
              		<td>&nbsp;$rsp[discription] <b>$rsp[srno]</b></td>
              		 <td>&nbsp;$rsn[name]</td>
              						<td><section class='content-header'><a href='$rsp[link]$rsp[srno]' ><i class='fa fa-eye' aria-hidden='true' style='font-size:20px; color:green;'></i></a> | <a href='edit_$rsp[link]'><i class='fa fa-pencil-square-o' aria-hidden='true' style='font-size:20px;'></i></a></section></td>
          </tr>                   
          
          ";
}
}
}
?>    </tbody>
  <tfoot>
          </tfoot>
        </table>
        <br>
        <?php
include("dbconnection.php");
$sql ="SELECT * FROM addaspatient WHERE patientid='$_GET[patientid]' AND prescriptionid='$_GET[prescriptionid]'";
$qsql = mysqli_query($con,$sql);
if($rs = mysqli_fetch_array($qsql))
{
    echo"
    <a href='printall.php?prescriptionid=$rs[prescriptionid]&patientid=$rs[patientid]'><h1 Align='center'><i class='fa fa-file-pdf-o' aria-hidden='true'></i> View All </h1></h1></a>
    ";
}
?>
      </div>

Anon7 - 2022
AnonSec Team