function check_pin_appid($pin, $appid)
{
$retval = false;
$sqlstr = "select * from applicant where appid = '" . Remove_SQLi($appid) . "' and pin = '" . Remove_SQLi($pin) . "'";
$rec = executeSqlQuery($sqlstr);
if ($row = mysql_fetch_array($rec)) {
$retval = true;
} else {
$retval = false;
}
return $retval;
}
function appid_exists($appid)
{
$retval = false;
$sqlstr = "select * from uploadfile where appid = '" . Remove_SQLi($appid) . "'";
$rec = executeSqlQuery($sqlstr);
if ($row = mysql_fetch_array($rec)) {
$retval = true;
} else {
$retval = false;
}
return $retval;
}
<?php
/**
* @author
* @copyright 2010
*/
include "connection.php";
if (isset($_GET['appid'])) {
$sqlstr = "select signname,signtype,signsize,signcontent from uploadfile where appid ='" . Remove_SQLi(htmlspecialchars(trim($_GET['appid']))) . "'";
$application = executeSqlQuery($sqlstr);
$row = mysql_fetch_array($application);
header("Content-length: " . $row["signsize"]);
header("Content-type: " . $row["signtype"]);
header("Content-Disposition: attachment; filename=" . $row["signname"]);
echo $row["signcontent"];
exit;
} else {
echo "<script type=\"text/javascript\">alert(\"ERROR:: Registration No. is not entered properly. Pls Check\")</script>";
}
function GetappId($post)
{
$slno = "";
$sqlstr = "select * from post where PostCode = '" . Remove_SQLi($post) . "'";
$maxno = executeSqlQuery($sqlstr);
if ($row = mysql_fetch_array($maxno)) {
$slno = $row["abbr"] . "/" . $row["SlNo"];
$str = "update post set SlNo = SlNo + 1 where PostCode = '" . Remove_SQLi($post) . "'";
executeSqlQuery($str);
} else {
echo "<script type=\"text/javascript\">alert(\"ERROR :: Registration No not Set in Database. Please call admin\")</script>";
}
return $slno;
}
function check_appid($appid, &$pin)
{
$email = "";
$sqlstr = "select * from applicant where appid = '" . Remove_SQLi($appid) . "'";
$rec = executeSqlQuery($sqlstr);
if ($row = mysql_fetch_array($rec)) {
$email = $row["email"];
$pin = $row["pin"];
} else {
$email = "";
$pin = "";
}
return $email;
}
}
} else {
$_SESSION['Token'] = md5($_SERVER['REMOTE_ADDR'] . $_SESSION['ID'] . time());
$Qry = "INSERT INTO audit_trail (`SessionID`,`IP`,`Referrer`,`UserAgent`,`UserID`,`URL`,`Action`,`Method`,`URI`) values" . "('" . session_id() . "','" . $_SERVER['REMOTE_ADDR'] . "','" . mysql_real_escape_string($_SERVER['HTTP_REFERER']) . "','" . $_SERVER['HTTP_USER_AGENT'] . "','" . $_SESSION['userid'] . "','" . mysql_real_escape_string($_SERVER['PHP_SELF']) . "','Login: Anonymous Browsing','" . mysql_real_escape_string($_SERVER['REQUEST_METHOD']) . "','" . mysql_real_escape_string($_SERVER['REQUEST_URI'] . $_SERVER['QUERY_STRING']) . "')";
executeSqlQuery($Qry);
}
if ($LogC > 5) {
$action = "NoMoreTry";
} else {
if (isset($_POST['LoginToken']) && $_POST['LoginToken'] != $_SESSION['Token']) {
$action = "NoAccess";
} else {
if (!empty($_POST['user'])) {
$img = new Securimage();
$valid = $img->check($_POST['code']);
$sqlstr = "SELECT * FROM user where userid ='" . Remove_SQLi(htmlspecialchars($_POST['user'])) . "' AND md5(concat(md5(`pass`),md5('" . $_POST['LoginToken'] . "')))='" . Remove_SQLi(htmlspecialchars($_POST['passWD'])) . "'";
$result = executeSqlQuery($sqlstr);
$row = mysql_fetch_array($result);
if ($row != NULL && $valid) {
session_regenerate_id();
$_SESSION['userid'] = $row['userid'];
$_SESSION['ID'] = session_id();
$action = "JustLoggedIn";
$Qry = "INSERT INTO audit_trail (`SessionID`,`IP`,`Referrer`,`UserAgent`,`UserID`,`URL`,`Action`,`Method`,`URI`) values" . "('" . $_SESSION['ID'] . "','" . $_SERVER['REMOTE_ADDR'] . "','" . mysql_real_escape_string($_SERVER['HTTP_REFERER']) . "','" . $_SERVER['HTTP_USER_AGENT'] . "','" . $_SESSION['userid'] . "','" . mysql_real_escape_string($_SERVER['PHP_SELF']) . "','Login: Success','" . mysql_real_escape_string($_SERVER['REQUEST_METHOD']) . "','" . mysql_real_escape_string($_SERVER['REQUEST_URI'] . $_SERVER['QUERY_STRING']) . "')";
executeSqlQuery($Qry);
} else {
$action = "NoAccess";
$Qry = "INSERT INTO audit_trail (`SessionID`,`IP`,`Referrer`,`UserAgent`,`UserID`,`URL`,`Action`,`Method`,`URI`) values" . "('" . $_SESSION['ID'] . "','" . $_SERVER['REMOTE_ADDR'] . "','" . mysql_real_escape_string($_SERVER['HTTP_REFERER']) . "','" . $_SERVER['HTTP_USER_AGENT'] . "','" . $_POST['user'] . "','" . mysql_real_escape_string($_SERVER['PHP_SELF']) . "','Login: Failed','" . mysql_real_escape_string($_SERVER['REQUEST_METHOD']) . "','" . mysql_real_escape_string($_SERVER['REQUEST_URI'] . $_SERVER['QUERY_STRING']) . "')";
executeSqlQuery($Qry);
}
}
