| Server IP : 108.163.255.210 / Your IP : 3.142.197.111 Web Server : Apache System : Linux blossom.urlnameserver.com 3.10.0-1160.80.1.el7.x86_64 #1 SMP Tue Nov 8 15:48:59 UTC 2022 x86_64 User : ( 1172) PHP Version : 7.2.34 Disable Function : eval,escapeshellarg,proc_close,proc_get_status,proc_nice,proc_open,symlink,system,pcntl_exec,getrusage,chown,chgp,closelog,openlog,syslog,define_syslog_variables,php_ini_loaded_file,getservbyname,getservbyport,posix_getgid,posix_getgrgid,proc_terminate,pfsockopen,apache_child_terminate,posix_mkfifo,posix_setpgid,posix_setuid,hypot,pg_host,pos,posix_access,posix_getcwd,posix_getservbyname,myshellexec,getpid,posix_getsid,posix_isatty,posix_kill,posix_mknod,posix_setgid,posix_setsid,posix_setuid,posix_times,posix_uname,ps_fill,posix_getpwuid,global,ini_restore,zip_open,zip_read,rar_open,bzopen,bzread,bzwrite,apache_get_modules,apache_get_version,phpversionphpinfo,php_ini_scanned_files,get_current_user,disk_total_space,diskfreespace,leak,imap_list,hypo,filedump,safe_mode,getmygid,apache_getenv,apache_setenv,bzread,bzwrite,bzopen,phpini,higlight_file,dos_conv,get_cwd,er_log,cmd,e_name,vdir,get_dir,only_read,ftok,ftpexec,posix_getpwnam,mysql_list_dbs,disk_free_space,session_save_path,confirm_phpdoc_compiled,zip_entry_rea,php_u,psockopen,crack_opendict,crack_getlastmessage,crack_closedict,crack_check,fpassthru,posix_get_last_error,posix_getlogin,posix_getgroups,posix_strerror,posix_getrlimit,posix_getpgrp,posix_getgrnam,pos,dl MySQL : OFF | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /home/unilinki/www/payroll/admin/ |
Upload File : |
<?php
session_start();
if(!isset($_SESSION["adminuser"]) || $_SESSION["adminuser"]=="")
{
header("Location:login.php");
exit;
}
require_once("../include/db.php");
$read=mysql_query("update `message` set `read`='1' where `rand`='".$_GET['rand']."' && `userid`='".$_SESSION['admin_id']."'");
if($_SESSION['admin_id']!="" & $_GET['sno']!="" & $_GET['rand']!="")
{
$up=mysql_query("update message set akn='1' where userid='".$_SESSION['admin_id']."' && rand='".$_GET['rand']."' && sno='".$_GET['sno']."'");
if($up>0)
{
$g=$_GET['rand'];
echo "<script>window.location='view.php?rand=$g'</script>";
}
}
require_once("header.php");
?>
<script type="text/javascript" src="../ckeditor/ckeditor.js"></script>
<script>
if ( !CKEDITOR.env.ie || CKEDITOR.env.version > 7 )
CKEDITOR.env.isCompatible = true;
</script>
<!----header ends-->
<!-- Left side column. contains the logo and sidebar -->
<?php
require_once("left.php");
?>
<!-- Content Wrapper. Contains page content -->
<div class="content-wrapper">
<!-- Content Header (Page header) -->
<section class="content-header">
<?php $head=mysql_fetch_array(mysql_query("select * from message where rand='".$_GET['rand']."' && userid='".$_SESSION['admin_id']."'")); ?>
<h1><?php echo $head['subject']; ?></h1>
<ol class="breadcrumb">
<li><a href="dashboard.php"><i class="fa fa-dashboard"></i> Home</a></li>
<li class="active">Inbox</li>
</ol>
</section>
<!-- Main content -->
<section class="content">
<div class="row">
<div class="col-xs-12">
<div class="box">
<div class="box-body">
<?php $message=mysql_query("select * from message where rand='".$_GET['rand']."' && (userid='".$_SESSION['admin_id']."' || senderid='".$_SESSION['admin_id']."')");while($m=mysql_fetch_array($message)){?>
<table id="example1" class="table table-bordered table-hover" style="margin-bottom:5px;">
<tr>
<td style="width:5%; font-weight:bold;" align="center"><i class="fa fa-user" style="font-size:36px"></i><?php $rname=mysql_fetch_array(mysql_query("select first_name,last_name from admin where admin_id='".$m['senderid']."'")); echo $rname['first_name']; ?></td><td style="width:80%"><?php echo $m['message']; ?></td><td style="font-weight:600; text-align:center;" ><div><?php if($m['akn']==1 || $_SESSION['admin_id']==$m['senderid']){}else{?><a href="view.php?rand=<?php echo $m['rand'] ?>&sno=<?php echo $m['sno'] ?>"><button>Aknowledge</button></a><?php } ?><?php if ($_SESSION['role_id']=='1' || $_SESSION['role_id']=='2'){?> <?php if($_SESSION['admin_id']==$m['senderid']){}else { ?><a href="#edit"><button ><i class="fa fa-mail-reply"></i></button></a><?php } }?></div><div style="margin-top:10px;"><?php echo $m['TYM']; ?></td>
</tr>
</table>
<?php } ?>
<?php if ($_SESSION['role_id']=='1' || $_SESSION['role_id']=='2'){?>
<?php $reply=mysql_query("select roleid,classid from admin where admin_id='".$head['senderid']."'") ;
$r=mysql_fetch_array($reply);
?>
<table id="edit" class="table table-bordered table-hover" style=" margin-top:10px;">
<form name="" action="" method="post" enctype="multipart/form-data">
<tr><td ><input type="hidden" name="rgid" value="<?php echo $r['roleid'] ?>"/><input type="hidden" name="ruid" value="<?php echo $head['senderid'] ?>"/><input type="hidden" name="rcid" value="<?php echo $r['classid']; ?>"/><textarea class="ckeditor" name="message" id="ckeditor"></textarea></td></tr><tr><td style="text-align:right;"><input type="submit" name="smt" id="smt" value="Send" class="btn btn-info pull-right"></td></tr>
</form>
</table>
<?php } ?>
</div><!-- /.box-body -->
</div><!-- /.box -->
</div><!-- /.col -->
</div><!-- /.row -->
</section><!-- /.content -->
</div><!-- /.content-wrapper -->
<?php
require_once("footer.php");
?>
<?php
if(isset($_POST['smt']))
{
$done=mysql_query("INSERT INTO `message`(`senderid`, `groupid`, `userid`,`classid`, `subject`, `message`, `akn`, `rand`, `TYM`) VALUES ('".$_SESSION['admin_id']."','".$_POST['rgid']."','".$_POST['ruid']."','".$_POST['rcid']."','".$head['subject']."','".$_POST['message']."','','".$head['rand']."',NOW())");
if($done>0)
{
echo "<script>alert('Thanks! Message sent');</script>";
$n=$head['rand'];
echo "<script>window.location='view.php?rand=$n'</script>";
}
}
?>