|
Server IP : 103.191.208.50 / Your IP : 216.73.216.53 Web Server : LiteSpeed System : Linux orion.herosite.pro 4.18.0-553.53.1.lve.el8.x86_64 #1 SMP Wed May 28 17:01:02 UTC 2025 x86_64 User : celkcksm ( 1031) PHP Version : 7.4.33 Disable Function : show_source, system, shell_exec, passthru, popen, exec MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON Directory (0750) : /home/celkcksm/websites/bengaledu.e-campus.co.in/ |
| [ Home ] | [ C0mmand ] | [ Upload File ] |
|---|
<?php
session_start();
include_once('include/config.inc.php');
include_once('include/function.php');
switch($_REQUEST['do']) {
case "EmployeeAttendense" :
$empid = $_REQUEST['empid'];
$counts=count($empid);
$intime = $_REQUEST['intime'];
$outime = $_REQUEST['outime'];
$aorb = $_REQUEST['aorb'];
$doid = $_REQUEST['doid'];
$late = $_REQUEST['late'];
$attdates = $_REQUEST['attdates'];
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
if(!empty($doid)){
if($aorb=='P'){
$check=mysqli_query($con,"update employeeattendese set user_id='".$UserID."'
,absent='',persent='".$aorb."',late='".$late."',
intime='".$intime."',
outtime='".$outime."' where id='".$doid."'");
}
if($aorb=='A'){
$check=mysqli_query($con,"update employeeattendese set user_id='".$UserID."',
persent='',absent='".$aorb."',late='',
intime='',
outtime='' where id='".$doid."'");
}
if($check){
$_SESSION['msg']=' Record Updated Successfully .';
}else{
$_SESSION['msg']='Record Not Updated Failed! ';
}
}else{
for($i=1;$i<=$counts; $i++){
if($aorb[$i]=='P'){
$check=mysqli_query($con,"insert into employeeattendese(user_id,empid,persent,late,intime,outtime,
attendancedate)
values('".$UserID."','".$empid[$i]."','".$aorb[$i]."','".$late[$i]."','".$intime[$i]."','".$outime[$i]."',
'".$attdates."')");
}
if($aorb[$i]=='A'){
$check=mysqli_query($con,"insert into employeeattendese(user_id,empid,absent,attendancedate)
values('".$UserID."','".$empid[$i]."','".$aorb[$i]."','".$attdates."')");
}
}
if($check){
$_SESSION['msg']=' Record Add Successfully .';
}else{
$_SESSION['msg']='Record Not Add Failed! ';
}
}
header("Location:EmployeeAttendanceReport.php");
break;
case "Holiday" :
$dates = mysqli_escape_string($con,$_REQUEST['dates']);
$name = mysqli_escape_string($con,$_REQUEST['name']);
$description = mysqli_escape_string($con,$_REQUEST['description']);
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
$doid = mysqli_escape_string($con,$_REQUEST['doid']);
$holiday_end = mysqli_escape_string($con,$_REQUEST['holiday_end']);
if(empty($doid)){
$check=mysqli_query($con,"insert into holiday(user_id,name,description,holiday_date,holiday_end)
values('".$UserID."','".$name."','".$description."','".$dates."','".$holiday_end."')");
if($check){
$_SESSION['msg']=' Record Add Successfully .';
}else{
$_SESSION['msg']='Record Not Add Failed! ';
}
}else{
$check=mysqli_query($con,"Update holiday set user_id='".$UserID."',name='".$name."',
description='".$description."',holiday_date='".$dates."',holiday_end='".$holiday_end."' where id='".$doid."'");
if($check){
$_SESSION['msg']=' Record Update Successfully .';
}else{
$_SESSION['msg']='Record Not Update Failed! ';
}
}
header("Location:holiday.php");
break;
case "Leaveday" :
$dates = mysqli_escape_string($con,$_REQUEST['dates']);
$empid = mysqli_escape_string($con,$_REQUEST['empid']);
$name = mysqli_escape_string($con,$_REQUEST['name']);
$description = mysqli_escape_string($con,$_REQUEST['description']);
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
$doid = mysqli_escape_string($con,$_REQUEST['doid']);
$holiday_end = mysqli_escape_string($con,$_REQUEST['holiday_end']);
if(empty($doid)){
$check=mysqli_query($con,"insert into leaveemployee(user_id,empid,leavetype,description,start,end)
values('".$UserID."','".$empid."','".$name."','".$description."','".$dates."','".$holiday_end."')");
if($check){
$_SESSION['msg']=' Record Add Successfully .';
}else{
$_SESSION['msg']='Record Not Add Failed! ';
}
}else{
$check=mysqli_query($con,"Update leaveemployee set user_id='".$UserID."',leavetype='".$name."',
description='".$description."',start='".$dates."',end='".$holiday_end."' where id='".$doid."'");
if($check){
$_SESSION['msg']=' Record Update Successfully .';
}else{
$_SESSION['msg']='Record Not Update Failed! ';
}
}
header("Location:leaveemployee.php");
break;
case "Leaveday" :
$dates = mysqli_escape_string($con,$_REQUEST['dates']);
$empid = mysqli_escape_string($con,$_REQUEST['empid']);
$name = mysqli_escape_string($con,$_REQUEST['name']);
$description = mysqli_escape_string($con,$_REQUEST['description']);
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
$doid = mysqli_escape_string($con,$_REQUEST['doid']);
$holiday_end = mysqli_escape_string($con,$_REQUEST['holiday_end']);
if(empty($doid)){
$check=mysqli_query($con,"insert into leaveemployee(user_id,empid,leavetype,description,start,end)
values('".$UserID."','".$empid."','".$name."','".$description."','".$dates."','".$holiday_end."')");
if($check){
$_SESSION['msg']=' Record Add Successfully .';
}else{
$_SESSION['msg']='Record Not Add Failed! ';
}
}else{
$check=mysqli_query($con,"Update leaveemployee set user_id='".$UserID."',leavetype='".$name."',
description='".$description."',start='".$dates."',end='".$holiday_end."' where id='".$doid."'");
if($check){
$_SESSION['msg']=' Record Update Successfully .';
}else{
$_SESSION['msg']='Record Not Update Failed! ';
}
}
header("Location:leaveemployee.php");
break;
case "SalaryFeeHead" :
$name = mysqli_escape_string($con,$_REQUEST['name']);
$calculatetype = mysqli_escape_string($con,$_REQUEST['calculatetype']);
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
$doid = mysqli_escape_string($con,$_REQUEST['doid']);
$valuesd = mysqli_escape_string($con,$_REQUEST['valuesd']);
$type = mysqli_escape_string($con,$_REQUEST['type']);
if(empty($doid)){
$check=mysqli_query($con,"insert into employeesalaryhead(user_id,name,calculatetype,valuesd
,type)
values('".$UserID."','".$name."','".$calculatetype."','".$valuesd."','".$type."')");
if($check){
$_SESSION['msg']=' Record Add Successfully .';
}else{
$_SESSION['msg']='Record Not Add Failed! ';
}
}else{
$check=mysqli_query($con,"Update employeesalaryhead set user_id='".$UserID."',name='".$name."',
calculatetype='".$calculatetype."',valuesd='".$valuesd."',type='".$type."' where id='".$doid."'");
if($check){
$_SESSION['msg']=' Record Update Successfully .';
}else{
$_SESSION['msg']='Record Not Update Failed! ';
}
}
header("Location:EmployeeSalaryHead.php");
break;
case "PaidAdmissionFee" :
$admissionfee = mysqli_escape_string($con,$_REQUEST['admissionfee']);
$student_id = mysqli_escape_string($con,$_REQUEST['student_ids']);
if(!empty($student_id) && !empty($admissionfee)){
$check=mysqli_query($con,"Update admission_enquiry_form set submitfee='".$admissionfee."'
where student_id='".$student_id."'");
if($check){
$_SESSION['msg']=' Admission Fee Submit Successfully .';
}else{
$_SESSION['msg']='Admission Fee Submit Failed! ';
}
}
header("Location:paymiscfee.php");
break;
case "AddBasic" :
$basic = mysqli_escape_string($con,$_REQUEST['basic']);
$empid = mysqli_escape_string($con,$_REQUEST['empid']);
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
$totalsalary = mysqli_escape_string($con,$_REQUEST['totalsalary']);
if(!empty($empid) && !empty($basic)){
$check=mysqli_query($con,"Update employeeentryform set totalsalary='".$totalsalary."',
basic='".$basic."' where empid='".$empid."'");
if($check){
$_SESSION['msg']=' Upadte Basic Salary Successfully .';
}else{
$_SESSION['msg']='Upadte Basic Salary Failed! ';
}
}
header("Location:employeesalaryentry.php");
break;
case "EmpResign" :
$regin = mysqli_escape_string($con,$_REQUEST['regin']);
$empid = mysqli_escape_string($con,$_REQUEST['empid']);
$why = mysqli_escape_string($con,$_REQUEST['why']);
$subjects = mysqli_escape_string($con,$_REQUEST['subjects']);
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
if(!empty($empid)){
$check=mysqli_query($con,"Update employeeentryform set resign='".$regin."',
resign_reason='".$why."',resign_entry_user='".$UserID."',subjects='".$subjects."'
where empid='".$empid."'");
if($check){
$_SESSION['msg']=' Employee Resign Successfully .';
}else{
$_SESSION['msg']='Employee Resign Failed! ';
}
}
header("Location:employeesalaryentry.php");
break;
case "PartyTranctions" :
$Transaction_type = mysqli_escape_string($con,$_REQUEST['category']);
$Party_id = mysqli_escape_string($con,$_REQUEST['Party_id']);
$Purchase = mysqli_escape_string($con,$_REQUEST['Purchase']);
$Quantity = mysqli_escape_string($con,$_REQUEST['Quantity']);
$course = mysqli_escape_string($con,$_REQUEST['course']);
$Bill_Amount = mysqli_escape_string($con,$_REQUEST['Bill_Amount']);
$Pay_Amount = mysqli_escape_string($con,$_REQUEST['Pay_Amount']);
$Payment_Mode = mysqli_escape_string($con,$_REQUEST['Payment_Mode']);
$bank = mysqli_escape_string($con,$_REQUEST['bank']);
$bank_name = mysqli_escape_string($con,$_REQUEST['bank_name']);
$checkno = mysqli_escape_string($con,$_REQUEST['checkno']);
$dd_or_pos = mysqli_escape_string($con,$_REQUEST['dd_or_pos']);
$created_at = mysqli_escape_string($con,$_REQUEST['created_at'])." ".date("H:m:s",time());
$doid = mysqli_escape_string($con,$_REQUEST['doid']);
$Bill="";
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
if($_FILES['Bill']['name']!= NULL){
$Bill = time().'_'.$_FILES['Bill']['name'];
move_uploaded_file($_FILES['Bill']['tmp_name'],"images/StudentEnquiry/".$Bill);
$check=mysqli_query($con,"Update PartyTranctions set
Bill='".$Bill."' where id='".$doid."'");
}
if(!empty($doid)){
$check=mysqli_query($con,"Update PartyTranctions set Transaction_type='".$Transaction_type."',
Party_id='".$Party_id."',Purchase='".$Purchase."',Quantity='".$Quantity."',created_at='".$created_at."',
,Bill_Amount='".$Bill_Amount."' ,Pay_Amount='".$Pay_Amount."' ,Payment_Mode='".$Payment_Mode."'
,bank='".$bank."' ,checkno='".$checkno."',dd_or_pos='".$dd_or_pos."',course='".$course."',bank_name='".$bank_name."' where id='".$doid."'");
if($check){
$_SESSION['msg']=' Record Upadte Successfully .';
}else{
$_SESSION['msg']='Record Upadte Failed! ';
}
}else{
$check=mysqli_query($con,"insert into PartyTranctions(user_id,Transaction_type,Party_id
,Purchase,Quantity,Bill_Amount,Pay_Amount,Payment_Mode,Bill,bank,bank_name,checkno,dd_or_pos,course,created_at)
values('".$UserID."','".$Transaction_type."','".$Party_id."','".$Purchase."','".$Quantity."','".$Bill_Amount."'
,'".$Pay_Amount."','".$Payment_Mode."','".$Bill."','".$bank."','".$bank_name."','".$checkno."','".$dd_or_pos."','".$course."','".$created_at."')");
if($check){
$_SESSION['msg']=' Record Add Successfully .';
}else{
$_SESSION['msg']='Record Not Add Failed! ';
}
$last_id = $con->insert_id;
function random_num($size) {
$alpha_key = '';
$keys = range('A', 'Z');
for ($i = 0; $i < 2; $i++) {
$alpha_key .= $keys[array_rand($keys)];
}
$length = $size - 2;
$key = '';
$keys = range(0, 9);
for ($i = 0; $i < $length; $i++) {
$key .= $keys[array_rand($keys)];
}
return $alpha_key . $key;
}
$tran_id=random_num(5);
$check1=mysqli_query($con,"update PartyTranctions set
Transaction_id='".$tran_id."'
where id=".$last_id);
$dua=$Bill_Amount-$Pay_Amount;
$check=mysqli_query($con,"insert into party_payment(transaction_id,BillAmount,PaidAmount,DueAmount
,user_id,course)
values('".$tran_id."','".$Bill_Amount."','".$Pay_Amount."','".$dua."','".$UserID."','".$course."')");
header("Location:PartyTransactionEntry.php");
}
header("Location:PartyTransactionEntry.php");
break;
case "party_paymentamount" :
$transaction_id = mysqli_escape_string($con,$_REQUEST['transaction_id']);
$transactionamount = mysqli_escape_string($con,$_REQUEST['transactionamount']);
$course = mysqli_escape_string($con,$_REQUEST['course']);
$Payment_Mode = mysqli_escape_string($con,$_REQUEST['Payment_Mode']);
$bank = mysqli_escape_string($con,$_REQUEST['bank']);
$bank_name = mysqli_escape_string($con,$_REQUEST['bank_name']);
$checkno = mysqli_escape_string($con,$_REQUEST['checkno']);
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
$doid = mysqli_escape_string($con,$_REQUEST['doid']);
$edit = mysqli_escape_string($con,$_REQUEST['edit']);
if(!empty($doid) && empty($edit)){
$check=mysqli_query($con,"insert into party_payamount(user_id,transaction_id,transactionamount,
Payment_Mode,bank,bank_name,checkno,course)
values('".$UserID."','".$transaction_id."','".$transactionamount."','".$Payment_Mode."'
,'".$bank."','".$bank_name."','".$checkno."','".$course."')");
$payment=mysqli_query($con,"Select SUM(transactionamount) as
transactionamount from party_payamount where transaction_id='".$transaction_id."'");
$payment=mysqli_fetch_assoc($payment);
$payment_amount=$payment['transactionamount'];
$PartyTranctions=mysqli_query($con,"Select * from PartyTranctions where Transaction_id='".$transaction_id."'");
$PartyTranctions=mysqli_fetch_assoc($PartyTranctions);
$Pay_Amountd=$PartyTranctions['Pay_Amount'];
$Bill_Amounts=$PartyTranctions['Bill_Amount'];
$BillAmount=mysqli_query($con,"Select BillAmount from party_payment where transaction_id='".$transaction_id."'");
$BillAmount=mysqli_fetch_assoc($BillAmount);
$BillAmount=$BillAmount['BillAmount'];
$toatal=$payment_amount+$Pay_Amountd;
$dus=$Bill_Amounts-$toatal;
$check=mysqli_query($con,"Update party_payment set
DueAmount='".$dus."',PaidAmount='".$toatal."'
where transaction_id='".$transaction_id."'");
if($check){
$_SESSION['msg']=' Record Add Successfully .';
}else{
$_SESSION['msg']='Record Not Add Failed! ';
}
}
if(!empty($edit)){
$check=mysqli_query($con,"Update party_payamount set user_id='".$UserID."',
transactionamount='".$transactionamount."',Payment_Mode='".$Payment_Mode."',
bank='".$bank."',bank_name='".$bank_name."',checkno='".$checkno."',course='".$course."' where id='".$edit."'");
$payment=mysqli_query($con,"Select SUM(transactionamount) as
transactionamount from party_payamount where transaction_id='".$transaction_id."'");
$payment=mysqli_fetch_assoc($payment);
$payment_amount=$payment['transactionamount'];
$BillAmount=mysqli_query($con,"Select BillAmount from party_payment where transaction_id='".$transaction_id."'");
$BillAmount=mysqli_fetch_assoc($BillAmount);
$BillAmount=$BillAmount['BillAmount'];
$BillAmount=$BillAmount-$payment_amount;
$check=mysqli_query($con,"Update party_payment set
PaidAmount='".$payment_amount."',DueAmount='".$BillAmount."'
where transaction_id='".$transaction_id."'");
if($check){
$_SESSION['msg']=' Record Update Successfully .';
}else{
$_SESSION['msg']='Record Not Update Failed! ';
}
}
header("Location:PartyNextPayment.php");
break;
case "BankToCash" :
$transactionamount = mysqli_escape_string($con,$_REQUEST['transactionamount']);
$bank = mysqli_escape_string($con,$_REQUEST['bank']);
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
$doid = mysqli_escape_string($con,$_REQUEST['doid']);
$checkno = mysqli_escape_string($con,$_REQUEST['checkno']);
$type = mysqli_escape_string($con,$_REQUEST['types']);
if($type=='BankToCash'){
$bankdetails=mysqli_query($con,'SELECT bank_amount FROM bankdetails where id="'.$bank.'"');
$bankdetailsf=mysqli_fetch_array($bankdetails);
$tiotal=$bankdetailsf['bank_amount']-$transactionamount;
$updates=mysqli_query($con,"update bankdetails set
bank_amount='$tiotal'
where id='$bank'");
// echo $transactionamount['transactionamount'];
$check=mysqli_query($con,"Update totalcash set user_id='".$UserID."',cash=cash+'".$transactionamount."'
where id='1'");
// echo 1;
}else{
$bankdetails=mysqli_query($con,'SELECT bank_amount FROM bankdetails where id="'.$bank.'"');
$bankdetailsf=mysqli_fetch_array($bankdetails);
$tiotal=$bankdetailsf['bank_amount']+$transactionamount;
$updates=mysqli_query($con,"update bankdetails set
bank_amount='.$tiotal.'
where id='$bank'");
}
// exit;
if(empty($doid)){
$check=mysqli_query($con,"insert into banktocash(user_id,transactionamount,bank,checkno
,types)
values('".$UserID."','".$transactionamount."','".$bank."','".$checkno."','".$type."')");
$last_id = $con->insert_id;
function random_num($size) {
$alpha_key = '';
$keys = range('A', 'Z');
for ($i = 0; $i < 2; $i++) {
$alpha_key .= $keys[array_rand($keys)];
}
$length = $size - 2;
$key = '';
$keys = range(0, 9);
for ($i = 0; $i < $length; $i++) {
$key .= $keys[array_rand($keys)];
}
return $alpha_key . $key;
}
$tran_id=random_num(7);
$check=mysqli_query($con,"Update banktocash set tran_id='".$tran_id."' where id='".$last_id."'");
if($check){
$_SESSION['msg']=' Record Add Successfully .';
}else{
$_SESSION['msg']='Record Not Add Failed! ';
}
}else{
$check=mysqli_query($con,"Update banktocash set user_id='".$UserID."',
transactionamount='".$transactionamount."',
bank='".$bank."',checkno='".$checkno."' where id='".$doid."'");
if($check){
$_SESSION['msg']=' Record Update Successfully .';
}else{
$_SESSION['msg']='Record Not Update Failed! ';
}
}
if($type=='BankToCash'){
header("Location:BankToCash.php");
}else{
header("Location:CashToBank.php");
}
break;
case "DocumentUploads" :
$student_id = mysqli_escape_string($con,$_REQUEST['student_id']);
$documentType = mysqli_escape_string($con,$_REQUEST['documentType']);
$doid = mysqli_escape_string($con,$_REQUEST['doid']);
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
if($_FILES['document']['name']!= NULL){
$document = time().'_'.$_FILES['document']['name'];
move_uploaded_file($_FILES['document']['tmp_name'],"images/uploads/".$document);
}
if(empty($doid)){
$check=mysqli_query($con,"insert into uploadsdocments(user_id,stu_id_or_mobile,document,documentType
)
values('".$UserID."','".$student_id."','".$document."','".$documentType."')");
if($check){
$_SESSION['msg']=' Record Add Successfully .';
}else{
$_SESSION['msg']='Record Not Add Failed! ';
}
}else{
if(!empty($document)){
$check=mysqli_query($con,"Update uploadsdocments set document='".$document."'
where id='".$doid."'");
}
$check=mysqli_query($con,"Update uploadsdocments set user_id='".$UserID."',
documentType='".$documentType."' where id='".$doid."'");
if($check){
$_SESSION['msg']=' Record Update Successfully .';
}else{
$_SESSION['msg']='Record Not Update Failed! ';
}
}
header("Location:uploadsdocmentsreport.php");
break;
case "collageinfo" :
$collagepre = mysqli_escape_string($con,$_REQUEST['collagepre']);
$collagename = mysqli_escape_string($con,$_REQUEST['collagename']);
$collageaddr = mysqli_escape_string($con,$_REQUEST['collageaddr']);
$collagephone = mysqli_escape_string($con,$_REQUEST['collagephone']);
$collageemail = mysqli_escape_string($con,$_REQUEST['collageemail']);
$doid = mysqli_escape_string($con,$_REQUEST['doid']);
$UserID = mysqli_escape_string($con,$_REQUEST['UserID']);
if($_FILES['logo']['name']!= NULL){
$logo = time().'_'.$_FILES['logo']['name'];
move_uploaded_file($_FILES['logo']['tmp_name'],"images/uploads/".$logo);
}
if(empty($doid)){
$check=mysqli_query($con,"insert into collageinfo(user_id,collagepre,collagename,
collageaddr,collagephone
,collageemail,logo)
values('".$UserID."','".$collagepre."','".$collagename."','".$collageaddr."'
,'".$collagephone."','".$collageemail."','".$logo."')");
if($check){
$_SESSION['msg']=' Record Add Successfully .';
}else{
$_SESSION['msg']='Record Not Add Failed! ';
}
}else{
if(!empty($logo)){
$check=mysqli_query($con,"Update collageinfo set logo='".$logo."'
where id='".$doid."'");
}
$check=mysqli_query($con,"Update collageinfo set user_id='".$UserID."',
collagename='".$collagename."',collageaddr='".$collageaddr."',
collagephone='".$collagephone."',collageemail='".$collageemail."'
where id='".$doid."'");
if($check){
$_SESSION['msg']=' Record Update Successfully .';
}else{
$_SESSION['msg']='Record Not Update Failed! ';
}
}
header("Location:collegeinformation.php");
break;
case "PartyCategory" :
$user_id = mysqli_escape_string($con,$_REQUEST['UserID']);
$doid = mysqli_escape_string($con,$_REQUEST['doid']);
$partycategory = mysqli_escape_string($con,$_REQUEST['partycategory']);
if(!empty($doid) ){
$check=mysqli_query($con,"Update partycategory set party_name='".$partycategory."'
where id='".$doid."'");
if($check){
$_SESSION['msg']=' Record Updated Successfully .';
}else{
$_SESSION['msg']='Record Not Updated ! ';
}
}else{
$check=mysqli_query($con,"insert into partycategory(user_id,party_name)
values('".$user_id."','".$partycategory."')");
if($check){
$_SESSION['msg']=' Add Record Successfully .';
}else{
$_SESSION['msg']='Add Record Failed! ';
}
}
header("Location:PartyCategory.php");
break;
}