OXIESEC PANEL
- Current Dir:
/
/
var
/
www
/
reader
/
knaadu
/
cms
/
process
Server IP: 139.59.38.164
Upload:
Create Dir:
Name
Size
Modified
Perms
📁
..
-
01/14/2024 11:47:41 AM
rwxr-xr-x
📄
chk.login.php
936 bytes
12/18/2021 04:01:00 AM
rwxr-xr-x
📄
get.section.article.php
41.34 KB
01/14/2024 11:25:58 AM
rw-r--r--
📄
get.section.author.php
12.17 KB
12/28/2021 03:21:00 AM
rwxr-xr-x
📄
get.section.category.php
9.29 KB
12/18/2021 04:01:00 AM
rwxr-xr-x
📄
get.section.general.php
32.43 KB
02/21/2023 05:59:26 AM
rwxr-xr-x
📄
get.section.issue.php
16.68 KB
12/28/2021 02:59:00 AM
rwxr-xr-x
📄
get.section.tag.php
8.79 KB
12/18/2021 04:29:00 AM
rwxr-xr-x
📄
get.section.user.php
14.23 KB
12/18/2021 04:13:00 AM
rwxr-xr-x
📄
get.section.volume.php
12 KB
12/18/2021 04:01:00 AM
rwxr-xr-x
📄
logout.php
93 bytes
12/18/2021 04:01:00 AM
rwxr-xr-x
📄
upload.php
2.3 KB
12/20/2021 11:28:00 PM
rwxr-xr-x
Editing: get.section.tag.php
Close
<? // ACCS Journal: Tag include '../inc/validate.logged.php'; include '../../inc/config.php'; $act = ''; if (!empty($_POST)) $act = isset($_POST["act"]) ? $_POST["act"] : ''; // Check if already exists on creation if ($act == 'chkExist') { $editId = isset($_POST['editId']) ? $_POST['editId'] : ''; $tagName = isset($_POST['tagName']) ? $_POST['tagName'] : ''; if ($tagName != '') { if ($editId == '') { $sql = "SELECT tag_id FROM tags WHERE tag_name='$tagName'"; } else { $sql = "SELECT tag_id FROM tags WHERE tag_name='$tagName' AND tag_id<>$editId"; } $result = mysqli_query($dbpro, $sql); $numRows = mysqli_num_rows($result); if ($numRows == 0) { echo 'OK'; } else { echo 'ERROR: Tag already exists!'; } } } // Add if ($act == 'add') { $tagName = isset($_POST['tagName']) ? trim($_POST['tagName']) : ''; if ($tagName != '') { $sql = "SELECT tag_id FROM tags WHERE tag_name='$tagName'"; $result = mysqli_query($dbpro, $sql); $numRows = mysqli_num_rows($result); if ($numRows == 0) { $sql = "INSERT INTO tags(tag_name) VALUES('$tagName')"; mysqli_query($dbpro, $sql); echo "OK"; } } } // Update if ($act == 'edit') { $editId = isset($_POST['editId']) ? $_POST['editId'] : ''; $tagName = isset($_POST['tagName']) ? trim($_POST['tagName']) : ''; if ($editId != '' && $tagName != '') { $sql = "UPDATE tags SET tag_name='$tagName' WHERE tag_id=$editId"; mysqli_query($dbpro, $sql); echo "OK"; } } // Delete if ($act == 'delete') { $delId = isset($_POST['delId']) ? $_POST['delId'] : ''; if ($delId != '') { $sql = "DELETE FROM tags WHERE tag_id=$delId"; mysqli_query($dbpro, $sql); $sql = "UPDATE articles SET tag_id=0 WHERE tag_id=$delId"; mysqli_query($dbpro, $sql); echo "OK"; } } // Show Add if ($act == 'addForm') { ?> <div class="card mt-3"> <div class="card-header">Add New Tag</div> <div class="card-body"> <div class="form-row"> <div class="form-group col"> <label for="volumeName">Tag Name</label> <input type="text" class="form-control" id="tagName" name="tagName" maxlength="50" /> </div> </div> </div> <div class="card-footer"> <button type="submit" class="btn btn-primary" onclick="return chkAddTag()">Add</button> <div id="panelStatus" class="float-right text-sm text-danger" style="margin-top:5px" align="right"></div> </div> </div> <? } // Show Edit if ($act == 'editForm') { $isValid = 0; $tagId = isset($_POST['id']) ? $_POST['id'] : ''; $sql = "SELECT tag_name FROM tags WHERE tag_id=$tagId"; $result = mysqli_query($dbpro, $sql); $numRows = mysqli_num_rows($result); if ($numRows > 0) { $row = mysqli_fetch_assoc($result); $tagName = $row['tag_name']; $isValid = 1; } ?> <div class="popup" style="width:500px"> <div class="widget"> <form id="frmEdit" name="frmEdit"> <div class="card"> <div class="card-header">Edit Tag</div> </div> <div id="widgetEdit_B" style="padding:15px 25px"> <? if($isValid == 1) { ?> <div class="form-row"> <div class="form-group col"> <label for="volumeName">TagName</label> <input type="text" class="form-control" id="tagName" name="tagName" value="<?=$tagName?>" /> </div> </div> <? } ?> </div> <div id="widgetEdit_F" style="border-top:1px solid #ebedf2;padding:20px 15px;"> <div class="col"> <button type="submit" class="btn btn-primary" onclick="return chkEditTag()">Update</button> <button type="submit" class="btn btn-light ml-1" onclick="return clearForm('frmEdit')">Reset</button> <div id="panelStatus" class="float-right text-sm text-danger" style="margin-top:5px" align="right"></div> </div> </div> <input type="hidden" id="editId" name="editId" value="<?=$tagId?>" /> <input type="hidden" id="act" name="act" value="edit" /> </form> </div> </div> <? } // Show Delete if ($act == 'delForm') { $isValid = 0; $tagId = isset($_POST['id']) ? $_POST['id'] : ''; $sql = "SELECT tag_name FROM tags WHERE tag_id=$tagId"; $result = mysqli_query($dbpro, $sql); $numRows = mysqli_num_rows($result); if ($numRows > 0) { $row = mysqli_fetch_assoc($result); $tagName = $row['tag_name']; $isValid = 1; } ?> <div class="popup" style="width:480px"> <div class="widget"> <form id="frmDel" name="frmDel"> <div class="card"> <div class="card-header">Delete Tag</div> </div> <div id="widgetDel_B" style="padding:15px 25px"> <? if($isValid == 1) { ?> You are about to delete Tag: <b><?=$tagName?></b> <? } ?> </div> <div id="widgetDel_F" style="border-top:1px solid #ebedf2;padding:20px 15px;"> <div class="col"> <button type="submit" class="btn btn-primary" onclick="return chkDelTag()">Confirm</button> <div id="panelStatus" class="float-right text-sm text-danger" style="margin-top:5px" align="right"></div> </div> </div> <input type="hidden" id="delId" name="delId" value="<?=$tagId?>" /> <input type="hidden" id="act" name="act" value="delete" /> </form> </div> </div> <? } // Search Form if ($act == 'search') { ?> <ol class="breadcrumb mt-4 mb-3"> <li class="breadcrumb-item"><a href="dashboard.php">Dashboard</a></li> <li class="breadcrumb-item active">Tags</li> </ol> <form id="frmSearch" name="frmSearch"> <button type="button" class="btn btn-secondary mb-2 float-right" onclick="addTag()"><i class="fas fa-plus"></i> Add New Tag</button> <br clear="all" /> <div class="card"> <div class="card-header">Search Tags</div> <div class="card-body"> <div class="form-inline"> <div class="form-group mr-2"> <label for="srcVolumeName" class="col-form-label-sm">Tag Name</label> <input type="txt" class="form-control ml-0 ml-sm-2" id="srcTagName" name="srcTagName" /> </div> <div class="col text-right"> <button type="submit" class="btn btn-primary mt-2 mt-sm-0" onclick="return searchTag()">Show</button> </div> </div> </div> </div> <div id="panelSearch"></div> <input type="hidden" id="act" name="act" value="searchResults" /> </form> <? } // Search Result if ($act == 'searchResults') { $pageNum = isset($_POST["pageNum"]) ? $_POST["pageNum"] : 1; $srcTagName = isset($_POST["srcTagName"]) ? $_POST["srcTagName"] : ''; $numRecords = 50; $startOrder = (($pageNum - 1) * $numRecords); $sql = "SELECT SQL_CALC_FOUND_ROWS * FROM tags WHERE tag_id>0"; if ($srcTagName != '') $sql .= " AND tag_name LIKE '%" . $srcTagName . "%'"; $sql .= " ORDER BY tag_name LIMIT " . $startOrder . "," . ($numRecords+1); $result = mysqli_query($dbpro, $sql); $numRows = mysqli_num_rows($result); $sql = "SELECT FOUND_ROWS()"; $resultCount = mysqli_query($dbpro, $sql); $rowCount = mysqli_fetch_array($resultCount); $totalCount = $rowCount[0]; if ($numRows == 0) { echo '<div class="m-2">No results found!</div>'; } else { ?> <table class="table table-sm mt-3"> <thead class="thead-light"> <tr> <th width="20"></th> <th>Tag</th> <th width="30"></th> <th width="30"></th> </tr> </thead> <? $j = 0; for ($i=0;$i<$numRows;$i++) { if ($i < $numRecords) { $row = mysqli_fetch_array($result); $tagId = $row['tag_id']; $tagName = $row['tag_name']; $j += 1; ?> <tr> <th><?=$startOrder+$i+1?>.</th> <td><?=$tagName?></td> <td align="center" title="Edit Tag"><i data-id="<?=$tagId?>" class="editRow cursorHand far fa-edit fa-lg"></i></td> <td align="center" title="Delete Tag"><i data-id="<?=$tagId?>" class="delRow cursorHand far fa-trash-alt fa-lg"></i></td> </tr> <? } } ?> </table> <div id="listingPageNum" class="float-left text-success" data-pagenum="<?=$pageNum?>">Showing <?=$startOrder+1?> to <?=$startOrder+$j?> of <?=$totalCount?> entries</div> <div class="float-right" align="right"> <? if ($pageNum > 1) { ?><button class="btn btn-warning" onclick="return searchTag(<?=$pageNum-1?>)"><</button><? } ?> <? if ($numRows > $numRecords) { ?><button class="btn btn-warning" style="margin-left:5px" onclick="return searchTag(<?=$pageNum+1?>)">></button><? } ?> </div> <div class="cleaner"></div> <br> <br> <? } ?> <script type="text/javascript"> $(function () { $('.editRow').magnificPopup({ type: 'ajax', closeBtnInside: true, ajax: { settings: { method: 'POST', url: 'process/get.section.tag.php' } }, callbacks: { elementParse: function(item){ postData = { act: 'editForm', id: $(item.el[0]).data('id') } this.st.ajax.settings.data = postData; } } }); $('.delRow').magnificPopup({ type: 'ajax', closeBtnInside: true, ajax: { settings: { method: 'POST', url: 'process/get.section.tag.php' } }, callbacks: { elementParse: function(item){ postData = { act: 'delForm', id: $(item.el[0]).data('id') } this.st.ajax.settings.data = postData; } } }); }); </script> <? }