UnknownSec Bypass
403
:
/
var
/
www
/
html
/
clientpnl
/ [
drwxr-xr-x
]
Menu
Upload
Mass depes
Mass delete
Terminal
Info server
About
name :
save_token.php
<?php require_once "../config.php"; require_once "../conclass.php"; $regisid = $_POST['regisid']; $bookingdatetime= $_POST['bookingdatetime']; $itemcategory = $_POST['itemcategory']; $canteenname = $_POST['canteenname']; $totalseatavailable = 0; $tokenNo = 0; $cnt=0; $eventArray = array(); $eventArray=explode('-',$bookingdatetime); $bookingintext =intval($eventArray[0])."-".intval($eventArray[1])."-".intval($eventArray[2]); $bookingdate = $eventArray[2]."-".$eventArray[1]."-".$eventArray[0]; $creationdatetime=Date("y-m-d"); $_message = ""; $strSQL = "select noofseats from mastertb where canteenName='".$canteenname."' and seatdate='".$bookingintext."' and identifier='".$gAlotSeatIdentifier."' and isdeleted='".$NotDeleted."'"; $result = mysqli_query($conn, $strSQL); while($row = mysqli_fetch_array($result)) { $totalseatavailable= intval($row["noofseats"]); } $query = "select * from bookingtb where canteenName='" . $canteenname . "' and bookingdate1='" .$bookingintext. "' and isdeleted=" .$NotDeleted." "; $result1 = mysqli_query($conn, $query); $tokenNo = intval(mysqli_num_rows($result1)) + 1; if ($totalseatavailable >= $tokenNo) { $cnt1=-1; $timeStamp = Date("Y-m-d H:i:s"); $creationdatetime= Date("Y-m-d"); $query = " select count(0) as count from bookingtb where regisid='" . $regisid . "' and itemcategory='". $itemcategory. "' and bookingdate1='".$bookingintext."' and month(bookingdatetime)=" . intval($eventArray[1]) . " and year(bookingdatetime)= ".$eventArray[2]." and isdeleted=" .$NotDeleted.""; $result1 = mysqli_query($conn, $query); while($row = mysqli_fetch_array($result1)) { $datecnt= intval($row["count"]); } if($datecnt==0) { $query = " select count(0) as count from bookingtb where dupCheck='" . $timeStamp . "' and creationDateTime='" . $creationdatetime . "' and isdeleted=" . $NotDeleted . ""; $result1 = mysqli_query($conn, $query); if($row = mysqli_fetch_array($result1)); { $cnt1= intval($row["count"]); } if($cnt1==0) { $bookingtime=""; $query = " select bookingtime from bookingtb where bookingdate1='".$bookingintext."' and isdeleted=".$NotDeleted." and canteenname='".$canteenname."' order by bookingid desc"; $result2 = mysqli_query($conn, $query); if($row1 = mysqli_fetch_array($result2)); { $bookingtime= $row1["bookingtime"]; } $inputdate = Date($bookingdate); $compardate = Date('2023-10-01'); if($inputdate<$compardate) { if ($tokenNo >=1 && $tokenNo <= 300) { if ($tokenNo >= 1 && $tokenNo <= 50) { $bookingtime = "08:00:00"; } else { if ($bookingtime == "12:00:00") $bookingtime = "12:00:00"; else { $bookingtime = date('H:i:s', strtotime($bookingtime. ' +1 minutes')); } } } if ($tokenNo > 300) { if ($tokenNo==301) { $bookingtime = "14:00:00"; } else { if ($bookingtime == "15:30:00") $bookingtime = "15:30:00"; else $bookingtime = date('H:i:s', strtotime($bookingtime. ' +1 minutes')); } } } else { if ($tokenNo >=1 && $tokenNo <= 300) { if ($tokenNo >= 1 && $tokenNo <= 50) { $bookingtime = "08:00:00"; } else { if ($bookingtime == "12:00:00") $bookingtime = "12:00:00"; else { $bookingtime = date('H:i:s', strtotime($bookingtime. ' +1 minutes')); } } } if ($tokenNo > 300) { if ($tokenNo==301) { $bookingtime = "14:00:00"; } else { if ($bookingtime == "15:30:00") $bookingtime = "15:30:00"; else $bookingtime = date('H:i:s', strtotime($bookingtime. ' +1 minutes')); } } } $query = " select count(0) as count from bookingtb where regisid='" . $regisid . "' and itemcategory='". $itemcategory. "' and month(bookingdatetime)=" . intval($eventArray[1]) . " and year(bookingdatetime)= ".$eventArray[2]." and isdeleted=" .$NotDeleted.""; $result1 = mysqli_query($conn, $query); while($row = mysqli_fetch_array($result1)) { $cnt= intval($row["count"]); } if($cnt<2) { $query="insert into bookingtb(regisid,itemcategory,bookingdatetime,bookingtime,bookingdate1,tokenno,isdeleted,creationdatetime,dupcheck,CanteenName) values(".$regisid.",'".$itemcategory."','".$bookingdate."','".$bookingtime."','".$bookingintext."', '".$tokenNo."','".$NotDeleted."','".$creationdatetime."','".$timeStamp."','".$canteenname."') "; $result = mysqli_query($conn, $query); $bookingid=0; if($result==true) { $query="select bookingid from bookingtb where regisid=".$regisid." and bookingdate1='" .$bookingintext. "' and isdeleted=".$NotDeleted." and CanteenName='".$canteenname."' order by bookingid desc"; $result2 = mysqli_query($conn, $query); if($row = mysqli_fetch_array($result2)); { $bookingid= intval($row["bookingid"]); } } $_message = $bookingid; } else { $_message = "0"; } } else { $_message = "-2"; } } else { $_message = "0"; } } else { $_message = "-1"; } echo json_encode($_message); ?>
Copyright © 2025 - UnknownSec