HEX
Server: LiteSpeed
System: Linux server137.web-hosting.com 4.18.0-513.18.1.lve.el8.x86_64 #1 SMP Thu Feb 22 12:55:50 UTC 2024 x86_64
User: bibuzptr (1123)
PHP: 7.4.33
Disabled: NONE
$ pwd: /home/bibuzptr/elearning.bibu-edu.us/admin/app/
Upload Files
File: /home/bibuzptr/elearning.bibu-edu.us/admin/app/students.php
<?php
session_start();
ini_set('display_errors', 1); 
ini_set('display_startup_errors', 1); 
error_reporting(E_ALL);
include_once('../../includes/db_connect.php');
header("Content-Type:application/json");
$date = date("Y-m-d H:i:s");
$year = date("Y");
// if(isset($_SESSION["OPENUNI^###DHSG"])){
//     $email = $_SESSION["OPENUNI^###DHSG"];
    // $chkuser = mysqli_query($con,"SELECT * FROM admins WHERE admin_email='$email'");
    // while($row = mysqli_fetch_assoc($chkuser)){
    //   $uid = $row["id"];
    //   $name = $row["admin_name"];
    // }
/*<===========================student Management=================================>*/
if(isset($_POST["stdname"])){
    extract($_POST);
 $id = trim(mysqli_real_escape_string($con, $_POST["id"]));
 
    //New student
    if($id == ""){
     if(mysqli_query($con,"INSERT INTO students(name,email,password,phone,joindate,completedate,courseid,admno) VALUES('$stdname','$stdemail','','$stdphone','$stdjoinyr','$stdcompleteyr','$stdcourse','$admno')")){
       echo json_encode(array("status" => 200, "message" => "SUCCESS"));
      }
      else{
        echo json_encode(array('status' => 300,'message' => mysqli_error($con)));
      }
    }
    else{
    if(mysqli_query($con,"UPDATE students SET name='$stdname',email='$stdemail',phone='$stdphone',joindate='$stdjoinyr',completedate='$stdcompleteyr',courseid='$stdcourse',admno='$admno',campus='$stdcampus' WHERE id = '$id'")){
         echo json_encode(array('status' => 200,'message' => 'SUCCESS'));
        }
        else{
          echo json_encode(array('status' => 300,'message' => 'ERROR'));
      }
    }
  }


  if(isset($_POST["stdid"])){
      $id = trim(mysqli_real_escape_string($con, $_POST["stdid"]));
      if(mysqli_query($con,"DELETE FROM students WHERE id = '$id'")){
        echo json_encode(array('status' => '200','message' => 'SUCCESS'));
      }
      else{
        echo json_encode(array('status' => '300','message' => 'ERROR'));
       }
  }
  
   if(isset($_POST["pstudentid"])){
      $id = trim(mysqli_real_escape_string($con, $_POST["pstudentid"]));
      $password = trim(mysqli_real_escape_string($con, $_POST["pstudentpassword"]));
      $pwd = hash("sha256",md5($password));
      if(mysqli_query($con,"UPDATE students SET password='$pwd' WHERE id = '$id'")){
        echo json_encode(array('status' => '200','message' => 'SUCCESS'));
      }
      else{
        echo json_encode(array('status' => '300','message' => 'ERROR'));
       }
  }

//}
?>
<?php mysqli_close($con) ?>
@ Telegram