One Hat Cyber Team
Your IP :
216.73.216.240
Server IP :
162.240.106.28
Server :
Linux server.ganesand.com 3.10.0-1160.80.1.el7.x86_64 #1 SMP Tue Nov 8 15:48:59 UTC 2022 x86_64
Server Software :
Apache
PHP Version :
7.1.33
Buat File
|
Buat Folder
Eksekusi
Dir :
~
/
home
/
thoa
/
www
/
admin
/
View File Name :
mg_product.php
<?php include('config.php'); ?> <?php /* $con = mysql_connect('localhost', 'root', ''); mysql_select_db("ecomm", $con); */ error_reporting(0); ?> <?php $PD_ID = $_GET['PD_ID']; $view = mysql_query("select * from product where PD_ID = '".$PD_ID."'"); // for editing $data = mysql_fetch_array($view); if($_GET['SAI']){ $STS = $_GET['PD_STS']; if($STS == 0){ $upd_sts = mysql_query("UPDATE product SET PD_STS ='0' WHERE PD_ID ='".$_GET['SAI']."'"); //for changing status } else{ $upd_sts = mysql_query("UPDATE product SET PD_STS ='1' WHERE PD_ID ='".$_GET['SAI']."'"); } } if($_GET['del_id']){ ?> <?php $del = mysql_query("delete from product where PD_ID='".$_GET['del_id']."'"); //for deleting status if($del){?> <script> alert("Category deleted sucessfully"); window.location= "mg_product.php"; </script> <?php } if(!$del){?> <script> alert("Not able deleted sucessfully"); window.location= "mg_product.php"; </script> <?php } } if($_POST['submit']){ $cname = mysql_real_escape_string($_POST['category']); $scname = mysql_real_escape_string($_POST['subcat']); $sess= mysql_real_escape_string($_POST['subcat1']); $pdname= mysql_real_escape_string($_POST['pdname']); $pdorg= mysql_real_escape_string($_POST['pdorg']); $pdoff= mysql_real_escape_string($_POST['pdoff']); $pdfin= mysql_real_escape_string($_POST['pdfin']); $pdimage = ($_FILES['pd1image']['name']); $pdimage1 = ($_FILES['pd2image']['name']); $pdimage2 = ($_FILES['pd3image']['name']); $pdimage3 = ($_FILES['pd4image']['name']); $pdimage4 = ($_FILES['pd5image']['name']); $tmp_img1 = $_FILES['pd1image']['tmp_name']; $tmp_img2 = $_FILES['pd2image']['tmp_name']; $tmp_img3 = $_FILES['pd3image']['tmp_name']; $tmp_img4 = $_FILES['pd4image']['tmp_name']; $tmp_img5 = $_FILES['pd5image']['tmp_name']; move_uploaded_file($tmp_img1,"images/".$pdimage); move_uploaded_file($tmp_img2,"images/".$pdimage1); move_uploaded_file($tmp_img3,"images/".$pdimage2); move_uploaded_file($tmp_img4,"images/".$pdimage3); move_uploaded_file($tmp_img5,"images/".$pdimage4); $pddesc=$_POST['pddesc']; $view1 = mysql_query("select * from section where SE_NAME = '".$sess."'"); // for cid $data1 = mysql_fetch_array($view1); $sid= $data1['SC_ID']; $cid=$data1['CAT_ID']; $seid=$data1['SE_ID']; if($_GET['PD_ID']==""){ $ins = mysql_query("insert into product (CAT_NAME,SC_NAME,SE_NAME,PD_NAME,PD_IMAGE,PD_IMAGE1,PD_IMAGE2,PD_IMAGE3,PD_IMAGE4,PD_ORGPRI,PD_OFFPRI,PD_FINPRI,PD_DESC,SC_ID,CAT_ID,SE_ID) values('$cname','$scname','$sess','$pdname','$pdimage','$pdimage1','$pdimage2','$pdimage3','$pdimage4','$pdorg','$pdoff','$pdfin','$pddesc','$sid','$cid','$seid')"); ?><script>alert("Inserted sucessfully"); </script><? } if($_GET['PD_ID']!="") if($_FILES['pd1image']['name']!="" && $_FILES['pd2image']['name']!=""&&$_FILES['pd3image']['name']!=""&&$_FILES['pd4image']['name']!=""&&$_FILES['pd5image']['name']!=""){ $upd = mysql_query("update product set PD_NAME='$pdname',PD_IMAGE='$pdimage',PD_IMAGE1='$pdimage1',PD_IMAGE2='$pdimage2',PD_IMAGE3='$pdimage3'.PD_IMAGE4='$pdimage4',PD_ORGPRI='$pdorg',PD_OFFPRI='$pdoff',PD_FINPRI='$pdfin',PD_DESC='$pddesc' where PD_ID='".$PD_ID."'"); //header('Location:mg_slide.php'); } elseif($_FILES['pd1image']['name']!=""){ $upd = mysql_query("update product set PD_NAME='$pdname',PD_IMAGE='$pdimage',PD_ORGPRI='$pdorg',PD_OFFPRI='$pdoff',PD_FINPRI='$pdfin',PD_DESC='$pddesc' where PD_ID='".$PD_ID."'"); //header('Location:mg_slide.php'); } else if($_FILES['pd2image']['name']!=""){ $upd = mysql_query("update product set PD_NAME='$pdname',PD_IMAGE1='$pdimage1',PD_ORGPRI='$pdorg',PD_OFFPRI='$pdoff',PD_FINPRI='$pdfin',PD_DESC='$pddesc' where PD_ID='".$PD_ID."'"); //header('Location:mg_slide.php'); } else if($_FILES['pd3image']['name']!=""){ $upd = mysql_query("update product set PD_NAME='$pdname',PD_IMAGE2='$pdimage2',PD_ORGPRI='$pdorg',PD_OFFPRI='$pdoff',PD_FINPRI='$pdfin',PD_DESC='$pddesc' where PD_ID='".$PD_ID."'"); //header('Location:mg_slide.php'); } else if($_FILES['pd4image']['name']!=""){ $upd = mysql_query("update product set PD_NAME='$pdname',PD_IMAGE3='$pdimage3',PD_ORGPRI='$pdorg',PD_OFFPRI='$pdoff',PD_FINPRI='$pdfin',PD_DESC='$pddesc' where PD_ID='".$PD_ID."'"); //header('Location:mg_slide.php'); } else if($_FILES['pd5image']['name']!=""){ $upd = mysql_query("update product set PD_NAME='$pdname',PD_IMAGE4='$pdimage4',PD_ORGPRI='$pdorg',PD_OFFPRI='$pdoff',PD_FINPRI='$pdfin',PD_DESC='$pddesc' where PD_ID='".$PD_ID."'"); //header('Location:mg_slide.php'); } else{ $upd = mysql_query("update product set PD_NAME='$pdname',PD_IMAGE='$pdimage',PD_IMAGE1='$pdimage1',PD_IMAGE2='$pdimage2',PD_ORGPRI='$pdorg',PD_OFFPRI='$pdoff',PD_FINPRI='$pdfin',PD_DESC='$pddesc' where PD_ID='".$PD_ID."'"); } if($upd){?> <script>alert("updated sucessfully"); window.location ="mg_product.php" </script> <?php } if(!$upd){?> <?php } } ?> <script> function del(id){ var del = confirm("Are you sure Want to delete"); if(del){ window.location.href = "mg_product.php?del_id="+id+"&del=1"; } else{ window.location.href = "mg_product.php"; } } </script> <script> function showUser(str) { $.ajax({ type: "GET", url: "getsub.php?q="+str, success: function(result){ $("#subcat").html(result); } }); } </script> <script> function showUser1(str) { $.ajax({ type: "GET", url: "getsub1.php?q="+str, success: function(result){ $("#subcat1").html(result); } }); } </script> <script> function calculatePercentage (oldval, newval) { percentsavings =oldval-((oldval * newval) / 100); document.getElementById("pdfin").value = percentsavings ; } </script> <script> function nval(n) { document.getElementById("n1").value = n ; } </script> <!DOCTYPE html> <html> <head> <meta charset="utf-8"> <meta name="viewport" content="width=device-width, initial-scale=1"> <title>Admin Panel</title> <link href="css/bootstrap.min.css" rel="stylesheet"> <link href="css/datepicker3.css" rel="stylesheet"> <link href="css/styles.css" rel="stylesheet"> <!--[if lt IE 9]> <script src="js/html5shiv.js"></script> <script src="js/respond.min.js"></script> <![endif]--> </head> <script type="text/javascript" src="js/tinymce/tinymce.min.js"></script> <script type="text/javascript"> tinymce.init({ selector: "textarea", themes: "modern", plugins: [ "advlist autolink lists link image charmap print preview anchor", "searchreplace visualblocks code fullscreen", "insertdatetime media table contextmenu paste" ], toolbar: "insertfile undo redo | styleselect | bold italic | alignleft aligncenter alignright alignjustify | bullist numlist outdent indent | link image" }); </script> <body> <nav class="navbar navbar-inverse navbar-fixed-top" role="navigation"> <div class="container-fluid"> <div class="navbar-header"> <button type="button" class="navbar-toggle collapsed" data-toggle="collapse" data-target="#sidebar-collapse"> <span class="sr-only">Toggle navigation</span> <span class="icon-bar"></span> <span class="icon-bar"></span> <span class="icon-bar"></span> </button> <a class="navbar-brand" href="#">Admin</a> <ul class="user-menu"> <li class="dropdown pull-right"> <a href="#" class="dropdown-toggle" data-toggle="dropdown"><span class="glyphicon glyphicon-user"></span> User <span class="caret"></span></a> <ul class="dropdown-menu" role="menu"> <li><a href="#"><span class="glyphicon glyphicon-user"></span> Profile</a></li> <li><a href="#"><span class="glyphicon glyphicon-cog"></span> Settings</a></li> <li><a href="logou.php"><span class="glyphicon glyphicon-log-out"></span> Logout</a></li> </ul> </li> </ul> </div> </div><!-- /.container-fluid --> </nav> <div id="sidebar-collapse" class="col-sm-3 col-lg-2 sidebar"> <form role="search"> <div class="form-group"> <input type="text" class="form-control" placeholder="Search"> </div> </form> <ul class="nav menu"> <li class="active"><a href="index.php"><span class="glyphicon glyphicon-dashboard"></span> Dashboard</a></li> <li><a href="mg_banner.php"><span class="glyphicon glyphicon-th"></span> Manage Banner</a></li> <li><a href="mg_category.php"><span class="glyphicon glyphicon-th"></span>Manage Category</a></li> <li><a href="mg_category1.php"><span class="glyphicon glyphicon-th"></span>Manage Subcategory</a></li> <li><a href="mg_session.php"><span class="glyphicon glyphicon-th"></span>Manage Section</a></li> <li><a href="mg_product.php"><span class="glyphicon glyphicon-th"></span>Manage Product</a></li> <li><a href="tables.html"><span class="glyphicon glyphicon-list-alt"></span> Tables</a></li> <li><a href="forms.html"><span class="glyphicon glyphicon-pencil"></span> Forms</a></li> <li><a href="panels.html"><span class="glyphicon glyphicon-info-sign"></span> Alerts & Panels</a></li> <li class="parent "> <a href="#"> <span class="glyphicon glyphicon-list"></span> Dropdown <span data-toggle="collapse" href="#sub-item-1" class="icon pull-right"><em class="glyphicon glyphicon-s glyphicon-plus"></em></span> </a> <ul class="children collapse" id="sub-item-1"> <li> <a class="" href="#"> <span class="glyphicon glyphicon-share-alt"></span> Sub Item 1 </a> </li> <li> <a class="" href="#"> <span class="glyphicon glyphicon-share-alt"></span> Sub Item 2 </a> </li> <li> <a class="" href="#"> <span class="glyphicon glyphicon-share-alt"></span> Sub Item 3 </a> </li> </ul> </li> <li role="presentation" class="divider"></li> <li><a href="login.html"><span class="glyphicon glyphicon-user"></span> Login Page</a></li> </ul> <div class="attribution">Template by <a href="http://www.medialoot.com/item/lumino-admin-bootstrap-template/">Medialoot</a></div> </div><!--/.sidebar--> <div class="col-sm-9 col-sm-offset-3 col-lg-10 col-lg-offset-2 main"> <div class="row"> <ol class="breadcrumb"> <li><a href="#"><span class="glyphicon glyphicon-home"></span></a></li> <li class="active">Manage Section</li> </ol> </div><!--/.row--> <div class="row"> <div class="col-lg-12"> <h2 class="page-header">Add Section</h2> </div> </div><!--/.row--> <section class="content"> <div class="row"> <!-- left column --> <div class="col-xs-12"> <!-- general form elements --> <div class="box box-primary"> <!-- form start --> <div class="container"> <form role="form" method="post" action="" enctype="multipart/form-data"> <div class="box-body"> <div class="form-group col-sm-11"> <label for="exampleInputFile">Main Category</label> <? if($PD_ID) {?> <select name="category" class="form-control" onchange="showUser(this.value)"> <?php $query1=mysql_query("select * from product where PD_ID = '".$PD_ID."'"); while($row1=mysql_fetch_array($query1)) {?> <option value="<?php echo $row1['CAT_NAME'];?>"><?php echo $row1['CAT_NAME'];?></option> <?php }?> </select> <?}else{?> <select name="category" class="form-control" onchange="showUser(this.value)"> <?php $query1=mysql_query("select * from category "); while($row1=mysql_fetch_array($query1)) {?> <option value="<?php echo $row1['CAT_NAME'];?>"><?php echo $row1['CAT_NAME'];?></option> <?php }?> </select> <?}?> </div> <div class="form-group col-sm-11"> <label for="exampleInputEmail1">Sub Category</label> <? if($PD_ID) {?> <select id="subcat" name="subcat" class="form-control" onchange="showUser1(this.value)"> <?php $query1=mysql_query("select * from product where PD_ID = '".$PD_ID."'"); while($row1=mysql_fetch_array($query1)) {?> <option value="<?php echo $row1['SC_NAME'];?>"><?php echo $row1['SC_NAME'];?></option> <?php }?> </select> <?}else{?> <select id="subcat" name="subcat" class="form-control" onchange="showUser1(this.value)"> <?php $query1=mysql_query("select * from subcategory"); while($row1=mysql_fetch_array($query1)) {?> <option value="<?php echo $row1['SC_NAME'];?>"><?php echo $row1['SC_NAME'];?></option> <?php }?> </select> <?}?> </div> <div class="form-group col-sm-11"> <label for="exampleInputEmail1">Section</label> <? if($PD_ID) {?> <select id="subcat1" name="subcat1" class="form-control" > <?php $query1=mysql_query("select * from product where PD_ID = '".$PD_ID."'"); while($row1=mysql_fetch_array($query1)) {?> <option value="<?php echo $row1['SE_NAME'];?>"><?php echo $row1['SE_NAME'];?></option> <?php }?> </select> <?}else{?> <select id="subcat1" name="subcat1" class="form-control" > <?php $query1=mysql_query("select * from section "); while($row1=mysql_fetch_array($query1)) {?> <option value="<?php echo $row1['SE_NAME'];?>"><?php echo $row1['SE_NAME'];?></option> <?php }?> </select> <?}?> </div> <div > <div class="form-group col-sm-11"> <label for="exampleInputEmail1">Product Name</label> <input type="text" class="form-control" name="pdname" value="<?php echo $data['PD_NAME']; ?>" > </div> <div class="form-group col-sm-11"> <label for="exampleInputEmail1">Original Price</label> <input type="number" class="form-control" id="pdorg" name="pdorg" value="<?php echo $data['PD_ORGPRI']; ?>" onkeyup="calculatePercentage(this.value, document.getElementById('pdoff').value)" > </div> </div> <div class="form-group col-sm-11"> <label for="exampleInputEmail1">Offer %</label> <input type="number" class="form-control" id="pdoff" name="pdoff" value="<?php echo $data['PD_OFFPRI']; ?>" onkeyup="calculatePercentage(document.getElementById('pdorg').value,this.value)"> </div> <div class="form-group col-sm-11"> <label for="exampleInputEmail1">Final Price</label> <input type="number" class="form-control" id="pdfin" name="pdfin" value="<?php echo $data['PD_FINPRI']; ?>"> </div> <div class="form-group col-sm-3"> <label for="exampleInputFile">Choose Image</label> <div> <input type="file" name="pd1image" id="exampleInputFile"><br> <input type="file" name="pd2image" id="exampleInputFile"><br> <input type="file" name="pd3image" id="exampleInputFile"><br> <input type="file" name="pd4image" id="exampleInputFile"><br> <input type="file" name="pd5image" id="exampleInputFile"> <?php if($PD_ID){ ?> <img src = "images/<?php echo $data['PD_IMAGE'];?>" height="100" width="100"> <br> <img src = "images/<?php echo $data['PD_IMAGE1'];?>" height="100" width="100"><br> <img src = "images/<?php echo $data['PD_IMAGE2'];?>" height="100" width="100"><br> <img src = "images/<?php echo $data['PD_IMAGE3'];?>" height="100" width="100"><br> <img src = "images/<?php echo $data['PD_IMAGE4'];?>" height="100" width="100"> <?php } ?> </div> </div> <div class="form-group col-sm-11"> <label for="exampleInputEmail1">Description</label> <input type="text" class="form-control" name="pddesc" value="<?php echo $data['PD_DESC']; ?>"> </div> <div class="box-footer col-sm-11"> <button type="submit" name="submit" value="submit" class="btn btn-primary">Submit</button> <button type="reset" class="btn btn-primary">Reset</button> </div> </div> </form> </div> </div> </div> </div> </section> <hr> <div class="row"> <div class="col-lg-12"> <div class="panel panel-default"> <div class="panel-heading">Banner Table</div> <div class="panel-body"> <table data-toggle="table" data-show-refresh="true" data-show-toggle="true" data-show-columns="true" data-search="true" data-select-item-name="toolbar1" data-pagination="true" data-sort-name="name" data-sort-order="desc"> <thead> <tr> <th data-field="state" data-checkbox="true" >Item ID</th> <th data-field="id" data-sortable="true">Item ID</th> <th data-field="name" data-sortable="true">Category Name</th> <th data-field="subname" data-sortable="true">SubCategory Name</th> <th data-field="sess" data-sortable="true">Section</th> <th data-field="pdt" data-sortable="true">Product Name</th> <th data-field="img" data-sortable="true">Image</th> <th data-field="img1" data-sortable="true">Image1</th> <th data-field="img2" data-sortable="true">Image2</th> <th data-field="img3" data-sortable="true">Image3</th> <th data-field="img4" data-sortable="true">Image4</th> <th data-field="org" data-sortable="true">Original Price</th> <th data-field="off" data-sortable="true">Offer Percent</th> <th data-field="final" data-sortable="true">Final Price</th> <th data-field="desc" data-sortable="true">Description</th> <th data-field="action" data-sortable="true">Action</th> <th data-field="status" data-sortable="true">Status</th> </tr> </thead> <tbody> <?php $table = mysql_query("select * from product"); $PD_ID=1; while($row=mysql_fetch_array($table)) { ?> <tr> <td></td> <td><?php echo $PD_ID;?></td> <td><?php echo $row['CAT_NAME'];?></td> <td><?php echo $row['SC_NAME'];?></td> <td><?php echo $row['SE_NAME'];?></td> <td><?php echo $row['PD_NAME'];?></td> <td><?php echo $row['PD_IMAGE'];?></td> <td><?php echo $row['PD_IMAGE1'];?></td> <td><?php echo $row['PD_IMAGE2'];?></td> <td><?php echo $row['PD_IMAGE3'];?></td> <td><?php echo $row['PD_IMAGE4'];?></td> <td><?php echo $row['PD_ORGPRI'];?></td> <td><?php echo $row['PD_OFFPRI'];?></td> <td><?php echo $row['PD_FINPRI'];?></td> <td><?php echo $row['PD_DESC'];?></td> <td><a href= "mg_product.php?PD_ID=<?php echo $row['PD_ID'];?>">Edit</a>/<a href="#" onclick="del(<?php echo $row['PD_ID'];?>)">Delete</a></td> <td><?php if($row['PD_STS']==1) {?> <a href = "mg_product.php?PD_STS=0&SAI=<?php echo $row['PD_ID'];?>">Active</a> <?php } else {?> <a href = "mg_product.php?PD_STS=1&SAI=<?php echo $row['PD_ID'];?>">InActive </a> <?php } ?></td> </tr> <?php $PD_ID++; }?> </tbody> </table> </div> </div> </div> </div> </div> <!--/.main--> <script src="js/jquery-1.11.1.min.js"></script> <script src="js/bootstrap.min.js"></script> <script src="js/chart.min.js"></script> <script src="js/chart-data.js"></script> <script src="js/easypiechart.js"></script> <script src="js/easypiechart-data.js"></script> <script src="js/bootstrap-datepicker.js"></script> <script src="js/bootstrap-table.js"></script> <script> $('#calendar').datepicker({ }); !function ($) { $(document).on("click","ul.nav li.parent > a > span.icon", function(){ $(this).find('em:first').toggleClass("glyphicon-minus"); }); $(".sidebar span.icon").find('em:first').addClass("glyphicon-plus"); }(window.jQuery); $(window).on('resize', function () { if ($(window).width() > 768) $('#sidebar-collapse').collapse('show') }) $(window).on('resize', function () { if ($(window).width() <= 767) $('#sidebar-collapse').collapse('hide') }) </script> <SCRIPT> function addMore() { $("<DIV>").load("input.php", function() { $("#product").append($(this).html()); }); } function deleteRow() { $('DIV.product-item').each(function(index, item){ jQuery(':checkbox', this).each(function () { if ($(this).is(':checked')) { $(item).remove(); } }); }); } </SCRIPT> </body> </html>