UnknownSec Bypass 403

: /var/www/zenithentcare/stmedicosoftware/prescription/ [ drwxrwxr-x ]
name : mst_medicine.php <?php include "top1.php";?> <!-- /inner_content--> <div class="inner_content"> <!-- /inner_content_w3_agile_info--> <!-- breadcrumbs --> <div class="w3l_agileits_breadcrumbs"> <div class="w3l_agileits_breadcrumbs_inner"> <ul> <li><a href="dashboard.php">Dashboard</a><span>«</span></li> <li>Manage Medicine</li> </ul> </div> </div> <!-- //breadcrumbs --> <div class="inner_content_w3_agile_info two_in"> <h2 class="w3_inner_tittle">Manage Medicine</h2> <!--/forms--> <div class="forms-main_agileits"> <!--/forms-inner--> <div class="forms-inner"> <!--/set-1--> <div class="set-1_w3ls"> <div class="col-md-4 button_set_one agile_info_shadow graph-form"> <h3 class="w3_inner_tittle two">Medicine </h3> <div class="form-body"> <input type="hidden" class="form-control1" id="hdid" name="hdid"> <div class="form-group"> <label for="dosage">Medicine Name</label> <input type="text" class="form-control" id="medicine" name="medicine" placeholder="Please enter medicine here..."> </div> <div class="form-group"> <label for="dosage">Generic Name</label> <input type="text" class="form-control" id="generic" name="generic" placeholder="Please enter generic here..."> </div> <div class="form-group"> <label for="type">Type</label> <select name="type" id="type" onchange="get_dosageremark(this.value,'');" class="form-control1" style="width: 100%"> <option value="Select Type">Select Type</option> <option value="Tab">Tab</option> <option value="Cap">Cap</option> <option value="Syrup">Syrup</option> <option value="Drop">Drop</option> <option value="Tube">Tube</option> <option value="Cream">Cream</option> <option value="Gel">Gel</option> <option value="Spray">Spray</option> <option value="Lotion">Lotion</option> <option value="Ointment">Ointment</option> <option value="Powder">Powder</option> <option value="Soap">Soap</option> <option value="Inj.">Inj.</option> <option value="Bottle">Bottle</option> </select> </div> <div class="form-group"> <label for="dosage">Dosage</label> <select name="dosage" id="dosage" onchange="getremark(this.value);" class="form-control1" style="width: 100%"> </select> </div> <div class="form-group"> <label for="dosageremark">Dosage Remark</label> <input type="text" class="form-control" id="dosageremark" name="dosageremark" placeholder="Please enter dosage remark here..."> </div> <div class="form-group"> <label for="when">When</label> <select name="when" id="when" class="form-control1" style="width: 100%"> <option value="Select When">Select When</option> <option value="After Food">After Food</option> <option value="Before Food">Before Food</option> <option value="Before Breakfast">Before Breakfast</option> <option value="After Breakfast">After Breakfast</option> <option value="Before Lunch">Before Lunch</option> <option value="After Lunch">After Lunch</option> <option value="Before Dinner">Before Dinner</option> <option value="After Dinner">After Dinner</option> <option value="Empty Stomach">Empty Stomach</option> <option value="Bed Time">Bed Time</option> <option value="Sos">Sos</option> <option value="One Time">One Time</option> <option value="Two Time">Two Time</option> <option value="Three Time">Three Time</option> </select> </div> <div class="form-group"> <label for="frequency">Frequency</label> <select name="frequency" id="frequency" class="form-control1" style="width: 100%"> <option value="Select Frequency">Select Frequency</option> <option value="Daily">Daily</option> <option value="Alternate day">Alternate day</option> <option value="Weekly">Weekly</option> <option value="For night">For night</option> <option value="Monthly">Monthly</option> <option value="Sos">Sos</option> </select> </div> <button type="submit" class="btn btn-default" id="btnsave" name="btnsave" onclick="curdmedicine();">SAVE</button> <button type="submit" class="btn btn-default" id="btnclear1" name="btnclear1" onclick="clear1();">CLEAR</button> </div> </div> <div class="col-md-8 graph-form general agile_info_shadow"> <h3 class="w3_inner_tittle two">Medicine List </h3> <?php $sql= "SELECT * from medicinemasttb where isdeleted='".$gnotdeleted."' order by id DESC"; $result=mysqli_query($conn, $sql) or die("Query Failed."); if (mysqli_num_rows($result)>0) { ?> <table id="studtable" class="table table-striped table-bordered"> <thead> <tr> <th>No.</th> <!-- <th>ID</th> --> <th>Type</th> <th>Medicine</th> <th>Generic</th> <th>Dosage</th> <th>Dosage Remark</th> <th>Timing</th> <th></th> <th></th> </tr> </thead> <tbody> <?php $serial= 1; while ($row = mysqli_fetch_assoc($result)) { ?> <tr> <td><?php echo $serial ?> </td> <!-- <td><?php echo $row['id']; ?> </td> --> <td> <?php echo $row['medicinetype']; ?> </td> <td><?php echo $row['name']; ?> </td> <td><?php echo $row['genericname']; ?> </td> <td> <?php echo $row['dosage']; ?> </td> <td> <?php echo $row['dosageremark']; ?> </td> <td> <?php echo $row['timing']; ?> </td> <td><button onclick="edit(<?php echo $row['id']; ?>);"><i class=" glyphicon glyphicon-pencil"></i></button></td> <td><button onclick="remove(<?php echo $row['id']; ?>);"><i class="glyphicon glyphicon-trash"></i></button></td> </tr> <?php $serial++; } } ?> </tbody> </table> </div> </div> <div class="clearfix"> </div> </div> <!--//set-1--> </div> <!--//forms-inner--> </div> <!--//forms--> </div> <!-- //inner_content_w3_agile_info--> </div> <!-- //inner_content--> <script type="text/javascript"> function remove(val) { var id = val; try { var urlgetcode = 'get_medicinedetails.php'; $.ajax({ method: 'POST', url: urlgetcode, data: '&id=' + id, dataType: 'json', async: true, cache: false, success: function(data) { $('#hdid').val(data.id); $('#type').val(data.type); $('#dosage').val(data.dosage); $('#dosageremark').val(data.dosageremark); $('#medicine').val(data.name); $('#generic').val(data.genericname); $('#type').val(data.medicinetype); get_dosageremark(data.medicinetype, data.dosage); $('#dosageremark').val(data.dosageremark); $('#when').val(data.timing); $('#frequency').val(data.frequency); $('#dosage').val(data.dosage); document.getElementById("btnsave").innerHTML = "REMOVE"; }, error: function(request) { alert(request.responseText); } }); } catch (Error) { alert(Error); } return; } function edit(val) { var id = val; try { var urlgetcode = 'get_medicinedetails.php'; $.ajax({ method: 'POST', url: urlgetcode, data: '&id=' + id, dataType: 'json', async: true, cache: false, success: function(data) { $('#hdid').val(data.id); $('#type').val(data.type); $('#dosage').val(data.dosage); $('#dosageremark').val(data.dosageremark); $('#medicine').val(data.name); $('#generic').val(data.genericname); $('#type').val(data.medicinetype); get_dosageremark(data.medicinetype, data.dosage); $('#dosageremark').val(data.dosageremark); $('#when').val(data.timing); $('#frequency').val(data.frequency); $('#dosage').val(data.dosage); document.getElementById("btnsave").innerHTML = "UPDATE"; }, error: function(request) { alert(request.responseText); } }); } catch (Error) { alert(Error); } return; } function getremark(dos) { var dosage = dos; var type = document.getElementById("type").value; if (dosage == "Select Dosage") { return; } try { var urlgetcode = 'get_remark.php'; $.ajax({ method: 'POST', url: urlgetcode, data: '&dosage=' + dosage + '&type=' + type, dataType: 'json', async: true, cache: false, success: function(data) { $('#dosageremark').val(data.dosageremark); }, error: function(request) { alert(request.responseText); } }); } catch (Error) { alert(Error); } return; } function get_dosageremark(val, val1) { var type = val; var sel = $("#dosage"); sel.empty(); $.ajax({ type: "Post", url: "get_alldosageremark.php", data: '&type=' + type, success: function(res) { var data = JSON.parse(res); $("#dosage").append('<option>Select Dosage</option>'); for (var i = 0; i < data.length; i++) { if (data[i].dosage == val1) { sel.append('<option value="' + data[i].dosage + '" selected=true>' + data[i] .dosage + '</option>'); } else { sel.append('<option value="' + data[i].dosage + '">' + data[i].dosage + '</option>'); } } /// $("#state").html(data); } }); } function clear1() { $('#hdid').val(""); $('#medicine').val(""); $('#generic').val(""); $('#type').val("Select Type"); $('#dosage').val(""); $('#dosageremark').val(""); $('#when').val("Select When"); $('#frequency').val("Select Frequency"); document.getElementById("btnsave").innerHTML = "SAVE"; } function curdmedicine() { var flag = true; var inputField1 = document.getElementById("type"); if (inputField1.value == "Select Type") { flag = false; alert("Please select type."); document.getElementById("type").focus(); return false; } var inputField2 = $("#dosage :selected").text(); if (inputField2 == "") { flag = false; alert("Please select dosage."); document.getElementById("dosage").focus(); return false; } var inputField3 = document.getElementById("dosageremark"); if (inputField3.value == "") { flag = false; alert("Please enter dosage remark."); document.getElementById("dosageremark").focus(); return false; } var inputField4 = document.getElementById("when"); if (inputField4.value == "") { flag = false; alert("Please select when."); document.getElementById("when").focus(); return false; } var inputField5 = document.getElementById("frequency"); if (inputField5.value == "") { flag = false; alert("Please select frequency."); document.getElementById("frequency").focus(); return false; } var medicine = document.getElementById("medicine").value; var generic = document.getElementById("generic").value; var type = document.getElementById("type").value; var dosage = $("#dosage :selected").text(); var dosageremark = document.getElementById("dosageremark").value; var when = document.getElementById("when").value; var frequency = document.getElementById("frequency").value; var id = document.getElementById("hdid").value; var btnopration = document.getElementById("btnsave").innerHTML; try { if (flag == true) { var text = "Do you want to " + btnopration + " the Medicine"; if (confirm(text) == false) { flag = false; return false; } var urlgetcode = 'curd_medicine.php'; $.ajax({ method: 'POST', url: urlgetcode, data: '&medicine=' + medicine + '&generic=' + generic + '&type=' + type + '&dosage=' + dosage + '&dosageremark=' + dosageremark + '&when=' + when + '&frequency=' + frequency + '&id=' + id + '&btnopration=' + btnopration, dataType: 'json', async: true, cache: false, success: function(data) { alert(data); window.location.href = "mst_medicine.php"; $('#hdid').val(""); $('#medicine').val(""); $('#generic').val(data); $('#type').val("Select Type"); $('#dosage').val(""); $('#dosageremark').val(""); $('#when').val("Select When"); $('#frequency').val("Select Frequency"); }, error: function(request) { alert(request.responseText); } }); } } catch (Error) { alert(Error); } return; } $(document).ready(function() { $("#studtable").DataTable({ bLengthChange: true, "iDisplayLength": 10, bInfo: false, responsive: true, "bAutoWidth": false }); }); </script> <?php include "footer.php";?>