AnonSec Shell
Server IP : 104.21.37.246  /  Your IP : 104.23.243.33   [ Reverse IP ]
Web Server : Apache
System : Linux cpanel01wh.bkk1.cloud.z.com 2.6.32-954.3.5.lve1.4.59.el6.x86_64 #1 SMP Thu Dec 6 05:11:00 EST 2018 x86_64
User : cp648411 ( 1354)
PHP Version : 7.2.34
Disable Function : NONE
Domains : 0 Domains
MySQL : OFF  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : OFF  |  Pkexec : OFF
Directory :  /home2/cp648411/public_html/ilawasia.onnud20.com/Invoice/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ HOME ]     [ BACKUP SHELL ]     [ JUMPING ]     [ MASS DEFACE ]     [ SCAN ROOT ]     [ SYMLINK ]     

Current File : /home2/cp648411/public_html/ilawasia.onnud20.com/Invoice/EditItem.php
<?php
$ck='not';
include("../include/checkLogin.php");
include("../include/class.php");
include("../include/table_name.php");
$date_year = date("Y");
$date_month = date("m");
require_once("../class/coreClass.php");
$core_db = new coreClass;
/*
echo "<pre>";
print_r($_POST);
echo "</pre>";
exit();
*/
$InvoiceId =@$_POST["Id"];
$date_ac =  date("d/m/Y");
$ActionDate = (@$_POST["ActionDate"]=='')?$date_ac:@$_POST["ActionDate"];
if($ActionDate!=''){
  $ActionDate = $util_class->date_chang_1_2($ActionDate);
}


$sql_item = array('table'=>'ct_invoice_item',"where"=> "InvoiceItemId = '".$InvoiceId."'");
$view_item = $view_db->view($sql_item);
$row_item = $view_db->q($view_item);


$sql_inv = array('table'=>'ct_invoice',"where"=> "InvoiceId = '".$row_item['InvoiceId']."'");
$view_inv = $view_db->view($sql_inv);
$row_inv = $view_db->q($view_inv);

$IsExcludeVat = $_POST['IsExcludeVat'];

if($row_inv['IsExcludeVat']==1){
  $IsExcludeVat = $row_inv['IsExcludeVat'];
}
$list = array(
  'table'=>$name_table13,
  'InvoiceItemId'=>'"'.@$_POST["InvoiceItemId"].'"',
  'Description'=>'"'.@$_POST["Description"].'"',
  'Amount'=>'"'.@$_POST["Amount"].'"',
  'Remark'=>'"'.@$_POST["Remark"].'"',
  'IsExcludeVat'=>'"'.@$IsExcludeVat.'"',
  'ActionDate'=>'"'.@$ActionDate.'"',
  'Category'=>'"'.@$_POST['Category'].'"',
);
$add = $actiondata_db->edit_db2($list);
/*
echo "<pre>";
print_r($add);
echo "</pre>";
*/
if(@$add['suc']==1){

  $_SESSION["Success"] = "Successful.";
  echo "<script>window.location.href='Edit.php?Id=".$InvoiceId."&Type=Edit'</script>";
}else{
  $_SESSION["Error"] = "false";
  echo "<script>window.location.href='index.php'</script>";
}

Anon7 - 2022
AnonSec Team