| Server IP : 79.136.114.73 / Your IP : 216.73.216.48 Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64 User : www-data ( 33) PHP Version : 5.5.9-1ubuntu4.29 Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority, MySQL : ON | cURL : ON | WGET : ON | Perl : ON | Python : ON | Sudo : ON | Pkexec : ON Directory : /var/www/www.notes-online.se/login/scripts/ |
Upload File : |
<?php
session_start();
if( (trim($_SESSION['NOTES_SSO_INFO'])=='' )){
header('location: http://www.notes-online.se/loggain.php');
}
if($_GET['action'] == "register"){
header("Location: register.php?msg=".$_GET['msg']);
}
if($_GET['action'] == "support"){
header("Location: support.php");
}
if($_GET['action'] == "confirm"){
$link = mysql_connect ("localhost", "root", "root123");
mysql_select_db ("notes");
$sql = "SELECT * FROM tblUsers where userid = ".$_GET['refid'];
$result = mysql_query($sql);
while ($row = mysql_fetch_assoc($result)){
$username = $row['username'];
}
if(md5($username."password") == $_GET['hash']){
$sql = "UPDATE tblUsers set active = 1 where userid = ".$_GET['refid'];
mysql_query($sql);
header("Location: https://www.notes-online.se/loggain.php?msg=Tack, du kan nu logga in!");
}
}
$link = mysql_connect ("localhost", "root", "root123");
mysql_select_db ("notes");
$sql = "select * from tblUsers where userId = ".$_SESSION['NOTES_SSO_INFO'][0];
$result = mysql_query($sql);
while ($row = mysql_fetch_assoc($result)){
$uname = $row['name'];
$cellphone = $row['cellphone'];
$username = $row['username'];
$companyId = $row['companyId'];
$CompanyId = $companyId;
}
?><!DOCTYPE html PUBLIC "-//W3C//DTD XHTML 1.0 Transitional//EN" "http://www.w3.org/TR/xhtml1/DTD/xhtml1-transitional.dtd">
<html xmlns="http://www.w3.org/1999/xhtml">
<head>
<meta http-equiv="Content-Type" content="text/html; charset=ISO-8859-1" />
<title>Notes Online - För tillsyn och besiktning</title>
<script type="text/javascript">
function MM_swapImgRestore() { //v3.0
var i,x,a=document.MM_sr; for(i=0;a&&i<a.length&&(x=a[i])&&x.oSrc;i++) x.src=x.oSrc;
}
function MM_preloadImages() { //v3.0
var d=document; if(d.images){ if(!d.MM_p) d.MM_p=new Array();
var i,j=d.MM_p.length,a=MM_preloadImages.arguments; for(i=0; i<a.length; i++)
if (a[i].indexOf("#")!=0){ d.MM_p[j]=new Image; d.MM_p[j++].src=a[i];}}
}
function MM_findObj(n, d) { //v4.01
var p,i,x; if(!d) d=document; if((p=n.indexOf("?"))>0&&parent.frames.length) {
d=parent.frames[n.substring(p+1)].document; n=n.substring(0,p);}
if(!(x=d[n])&&d.all) x=d.all[n]; for (i=0;!x&&i<d.forms.length;i++) x=d.forms[i][n];
for(i=0;!x&&d.layers&&i<d.layers.length;i++) x=MM_findObj(n,d.layers[i].document);
if(!x && d.getElementById) x=d.getElementById(n); return x;
}
function MM_swapImage() { //v3.0
var i,j=0,x,a=MM_swapImage.arguments; document.MM_sr=new Array; for(i=0;i<(a.length-2);i+=3)
if ((x=MM_findObj(a[i]))!=null){document.MM_sr[j++]=x; if(!x.oSrc) x.oSrc=x.src; x.src=a[i+2];}
}
function validateAdminForm()
{
var x=document.forms["form2"]["username"].value;
var atpos=x.indexOf("@");
var dotpos=x.lastIndexOf(".");
if (atpos<1 || dotpos<atpos+2 || dotpos+2>=x.length){
alert("You must enter a valid e-mail address!");
return false;
}
var x1=document.forms["form2"]["name"].value;
var x2=document.forms["form2"]["cellphone"].value;
var x3=document.forms["form2"]["username"].value;
var x4=document.forms["form2"]["password1"].value;
var x5=document.forms["form2"]["password2"].value;
if(x1 == "" || x2 == "" || x3 == "" || x4 == "" || x5 == "" ){
alert("All fields are required!");
return false;
}
var x1=document.forms["form2"]["password1"].value;
var x2=document.forms["form2"]["password2"].value;
if(x1 != x2){
alert("Passwords must be equal!");
return false;
}
}
<?php
if($_GET['msg'] != ""){
echo("alert('".$_GET['msg']."');");
}
?>
</script>
<style type="text/css">
.Text10Black {
font-family: Verdana, Geneva, sans-serif;
font-size: 10px;
font-style: normal;
}
.Text14Gray {
font-family: Arial, Helvetica, sans-serif;
font-size: 14px;
font-style: normal;
color: #929292;
text-align: left;
}
#astacus_menu {
position:fixed;
left:0px;
top:0px;
width: 100%;
height:45px;
z-index:100;
}
#astacus_menu table tr td {
font-family: Verdana, Geneva, sans-serif;
font-size: 12px;
}
#apDiv1 {
position:absolute;
left:1064px;
top:795px;
width:124px;
height:132px;
z-index:1;
}
</style>
<link REL="SHORTCUT ICON" HREF="../favicon.ico">
<style type="text/css">
.Text14Black {
font-family: Arial, Helvetica, sans-serif;
font-size: 24px;
font-style: normal;
color: #000000;
text-align: left;
}
</style>
</head>
<body onload="MM_preloadImages('../images/meny1b.jpg','../images/mwny3b.jpg','../images/meny4b.jpg','../images/astacus-power1.jpg')" topmargin="0" marginheight="0">
<div id="astacus_menu">
<table width="100%" height="45" border="0" cellspacing="0" cellpadding="0" background="http://www.astacus.se/top_banner/background.png">
<tr >
<td><table width="970" height="23" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td width="133" ><a href="http://www.astacus.se/index.php?page=start&from=notes"><img src="http://www.astacus.se/top_banner/logga.png" width="99" height="21" border="0"></a><span style="color:#ffffff"><a href="#" style="text-decoration:none; color:#ffffff"> </a></span></td>
<td width="717" valign="bottom" ><table width="595" height="20" border="0" cellspacing="0" cellpadding="0">
<tr>
<td><span style="color:#ffffff; font-family: Arial, Helvetica, sans-serif;"><a href="http://www.astacus.se/index.php?page=nyheter&from=notes" target="_blank" style="text-decoration:none; color:#ffffff">News</a> <a href="#" style="text-decoration:none; color:#ffffff"> </a>|<a href="#" style="text-decoration:none; color:#000"> </a> <a href="http://www.astacus.se/index.php?page=start&from=notes" target="_blank" style="text-decoration:none; color:#ffffff">Business areas</a> <a href="#" style="text-decoration:none; color:#ffffff"> </a>|<a href="#" style="text-decoration:none; color:#000"> </a> <a href="http://www.astacus.se/index.php?page=referenser&from=notes" target="_blank" style="text-decoration:none; color:#ffffff">Customers</a> <a href="#" style="text-decoration:none; color:#ffffff"> </a>|<a href="#" style="text-decoration:none; color:#000"> </a> <a href="http://www.astacus.se/index.php?page=astacus&from=notes" target="_blank" style="text-decoration:none; color:#ffffff">About Astacus</a> <a href="#" style="text-decoration:none; color:#ffffff"> </a>|<a href="#" style="text-decoration:none; color:#000"> </a><a href="http://www.astacus.se/index.php?page=kontakt&from=notes" target="_blank" style="text-decoration:none; color:#ffffff">Contact us </a></span></td>
</tr>
</table></td>
</tr>
<tr>
<td height="5" colspan="2" ></td>
</tr>
</table></td>
</tr>
</table>
</div>
<br />
<br>
<table width="1100" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td width="32" rowspan="2" valign="top"><img src="../images/skugga_left.jpg" width="32" height="572" /></td>
<td width="1135" height="89" valign="top"><table width="985" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td width="754"><br />
<a href="index.php"><img src="../images/supervision_loggo.jpg" alt="" width="308" height="74" hspace="0" vspace="0" border="0" /></a></td>
<td width="232" align="right" valign="bottom"><a href="http://www.astacus.se" target="_blank"><img src="../images/link.png" width="75" height="50" border="0" /></a><br />
<br /></td>
</tr>
<tr>
<td colspan="2"><a href="index.php" onmouseout="MM_swapImgRestore()" onmouseover="MM_swapImage('Image1','','../images/meny1b.jpg',1)"><img src="../images/meny1a.jpg" name="Image1" width="121" height="36" border="0" id="Image1" /></a><img src="../images/meny_l.jpg" alt="" width="1" height="36" /><img src="../images/meny_l.jpg" width="1" height="36" /><img src="../images/meny_pass.jpg" width="749" height="36" /><img src="../images/meny_l.jpg" width="1" height="36" /><a href="../loggain.php" onmouseout="MM_swapImgRestore()" onmouseover="MM_swapImage('Image4','','../images/meny4bb.jpg',1)"><img src="../images/meny4aa.jpg" name="Image4" width="111" height="36" border="0" id="Image4" /></a></td>
</tr>
</table></td>
<td width="33" rowspan="2" valign="top"><img src="../images/skugga_right.jpg" width="32" height="572" /></td>
</tr>
<tr>
<td valign="top"><table width="985" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td class="Text16Gray"><br />
<table width="900" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td width="74" align="right"><a href="index.php"><img src="../images/BC back-Button.png" alt="" width="74" height="74" border="0" /></a></td>
<td width="826" align="right"><img src="../images/man-files.jpg" alt="" width="282" height="64" /></td>
</tr>
<tr>
<td colspan="2"><p><br />
</p>
<table width="900" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td valign="top"><span class="heading2"><br />
</span><span class="Text14Black">Exporterade ritningar och bilder: </span><span class="heading2"><br />
</span><span class="Text10Black">Du är i mapp: <a href="?page=upload&projectId=<?php echo($ProjectId);?>&path=<?php echo(dirname($_GET['path']));?>">
<?php
$path = $_GET['path'];
if($path == "/"){
$path = "";
}
echo(iconv("UTF-8", "ISO-8859-1//IGNORE",$path));
?>
</a></span><span class="heading2"><br />
<br />
</span>
<table width="900" border="0" cellspacing="0" cellpadding="0">
<tr class="Text10Black">
<td width="419">Namn:</td>
<td width="76">Antal filer:</td>
<td width="71">Storlek:</td>
<td width="152">Senast ändrad: </td>
<td width="25"> </td>
</tr>
</table>
<?php
function AddPath($PathToCreate){
$iBreak = 0;
$iBreak = strrpos($PathToCreate, "/");
if($iBreak !== FALSE){
$Parent = substr($PathToCreate, 0, $iBreak);
if(!@chdir($Parent)){
AddPath($Parent);
}
}
if(!@chdir($PathToCreate)){
mkdir($PathToCreate);
}
}
function count_files_recursive($path) {
// use a normalize_path function here
// to make sure $path contains an
// ending slash
// (-> http://codedump.jonasjohn.de/snippets/normalize_path.htm)
$files = 0;
if(substr($path,strlen($path)-1,1) != "/"){
$path = $path."/";
}
// open dir:
$dir = opendir($path);
if (!$dir){return 0;}
while (($file = readdir($dir)) !== false) {
if ($file[0] == '.'){ continue; }
if (is_dir($path.$file)){
// recursive:
$files += count_files_recursive($path.$file.DIRECTORY_SEPARATOR);
}
else {
// increase file count
$files++;
}
}
// close dir:
closedir($dir);
return $files;
}
function GetFolderSize($d ="." ) {
// © kasskooye and patricia benedetto
$h = @opendir($d);
if($h==0)return 0;
while ($f=readdir($h)){
if ( $f!= "..") {
$sf+=filesize($nd=$d."/".$f);
if($f!="."&&is_dir($nd)){
$sf+=GetFolderSize ($nd);
}
}
}
closedir($h);
return $sf ;
}
$userId = $_SESSION['NOTES_SSO_INFO'][0];
$companyId = $_SESSION['NOTES_SSO_INFO'][1];
$path = "/var/www/notes_files/upload/$companyId/".$path."/";
//AddPath($path);
$dir_handle = @opendir($path);
$x = 0;
while (false !== ($file = readdir($dir_handle))){
if(substr($file,0,1) != "." && strpos($file,".plist") == 0 && strpos($file,".csv") == 0 ){
$x++;
if(!is_file($path."/".$file)){
$size = round(GetFolderSize($path."/".$file)/(1024),2)." Kb";
$nbr = count_files_recursive($path."/".$file);
$p = $_GET['path'];
if($p == "/"){
$p = "";
}
$filestr = "?page=upload&projectId=$ProjectId&path=".$p."/".$file;
$ico = "folder.gif";
}else {
$size = round(filesize($path.$file)/(1024),2) . " Kb";
$nbr = "";
$filestr = "download_export_file.php?file=".$_GET['path']."/".$file."&companyId=$CompanyId";
$ico = "file.gif";
}
?>
<table width="900" border="0" cellspacing="0" cellpadding="0">
<tr class="Text10Black">
<td width="506"><img src="../images/icons/<?php echo($ico);?>" alt="" width="16" height="16" align="absmiddle" /> <a href="<?php echo($filestr);?>"><?php echo(iconv("UTF-8", "ISO-8859-1//IGNORE",$file));?></a></td>
<td width="91"><?php echo($nbr);?></td>
<td width="85"><?php echo($size);?></td>
<td width="178"><?php echo(date("Y-m-d H:i:s",filemtime($path.$file)));?></td>
<td width="40" align="right"><div align="left"><a href="javascript:deleteFile('deletefiles.php?path=<?php echo($_GET['path']);?>&file=<?php echo($file);?>');"><img src="../images/remove_256.png" alt="" width="20" height="20" border="0" align="right" /></a></div></td>
</tr>
</table>
<?php }
}
if($x == 0){
echo("<br> <span class='Text10Black'> -- No files are yet uploaded to this folder!</span>");
}
?>
<br />
<br />
<span class="heading2"><?php echo($_SESSION['listoffiles']);?><br />
</span></td>
</tr>
</table>
<br />
<p></p>
<p><img src="../images/excel.png" width="128" height="128" align="middle" />
<?php
if($companyId == "1000008"){
$laddaner = "SPECIAL/Download_SLPUMP.php";
?>
<a href="<?php echo($laddaner);?>" class="Text14Black">Ladda ner Excel-fil med alla kontroll/mätvärden</a></p>
<?php
}else if ($companyId == "1000007"){
$laddaner = "SPECIAL/Download_STIPA.php";
?>
<img src="../images/excel.png" alt="" width="128" height="128" align="middle" /> <a href="<?php echo($laddaner);?>" class="Text14Black">Ladda ner Excel-fil med alla kontroll/mätvärden</a></p>
<?php
}else if ($companyId == "12"){
?>
<img src="../images/excel.png" alt="" width="128" height="128" align="middle" /> <a href="SPECIAL/Download_LIO1.php" class="Text14Black">Ladda ner Excel-fil med alla rumsobjekt</a></p>
<p><a href="SPECIAL/Download_LIO2.php" class="Text14Black"><img src="../images/excel.png" alt="" width="128" height="128" align="middle" />Ladda ner Excel-fil med alla brandysmboler</a></p>
<?php
}else{
$laddaner = "#";
}
?>
<p> </p>
<p> </p>
<p></p></td>
</tr>
</table>
<br />
<img src="../images/h_line.jpg" width="984" height="23" /></td>
</tr>
</table>
<br />
<table width="985" border="0" align="center" cellpadding="0" cellspacing="0">
<tr>
<td width="847" valign="middle" class="Text10Black">© Astacus AB | Norra Oskarsgatan 27A, SE-582 73 Linköping, Sweden | 013 - 485 01 91 | <a href="mailto:notes@astacus.se">notes@astacus.se</a></td>
<td width="138" align="right" valign="top" class="Text10Black"><img src="../images/in_store.jpg" alt="" width="86" height="32" hspace="1" vspace="0" align="right" /></td>
</tr>
</table></td>
</tr>
</table>
<p> </p>
</body>
</html>