function setGET($params, $key = "Ra@7757") { $params = decryptStringArray($params, $key); $param_pairs = explode('&', $params); foreach ($param_pairs as $pair) { $split_pair = explode('=', $pair); $_GET[$split_pair[0]] = $split_pair[1]; } }
<?php $DocID = decryptStringArray($_GET['id']); $sql = "select * from document\nJOIN bank ON (document.BankID = bank.BankID) \nJOIN juristictype ON (document.JuristicTypeID = juristictype.JuristicTypeID)\nJOIN responseemp ON (document.ResponseEmpID = responseemp.ResponseEmpID) \nJOIN responsehead ON (document.ResponseHeadID = responsehead.ResponseHeadID) \nWHERE document.DocID = {$DocID}"; $result = mysql_db_query($dbname, $sql); $objResult = mysql_fetch_array($result); $BankName = $objResult['BankName']; $WorkCode = $objResult['WorkCode']; $RecieveWorkDate = $objResult['RecieveWorkDate']; $ContractNo = $objResult['ContractNo']; $WorkDueDate = $objResult['WorkDueDate']; $JuristicTypeName = $objResult['JuristicTypeName']; $OfferDate = $objResult['OfferDate']; $CustomerName = $objResult['CustomerName']; $InspectDate = $objResult['InspectDate']; $MachineLocationName = $objResult['MachineLocationName']; $ResponseEmpName = $objResult['ResponseEmpName']; $MacLocAddrNo = $objResult['MacLocAddrNo']; $ResponseHeadName = $objResult['ResponseHeadName']; $MachineAmnt = $objResult['MachineAmnt']; $MachineLocationName = $objResult['MachineLocationName']; $App = $objResult['App']; ?> <div class="content-list"> <div class="detai_subj"><?php echo $BankName; ?> </div> <div class="content_detail"> <div class="detail_form"> <div class="detail_forml">รหัสงานบริษัท :</div>
session_start(); global $session, $database; include '../classes/aardb_conn.php'; //Srequire('../fpdf/fpdf.php'); require '../functions/az.php'; require '../functions/sanitize.php'; require '../functions/format_money.php'; require '../fpdf/rotation.php'; //obtain the value of dates $datefrom = $_GET['datefrom']; $dateto = $_GET['dateto']; $branchname = $_SESSION['Branchcode']; $user = $_SESSION['username']; $datefrom = sanitize(decryptStringArray($datefrom, 'equity1290')); $dateto = sanitize(decryptStringArray($dateto, 'equity1290')); class pending_trans extends PDF_Rotate { //Page header function Header() { //Logo // parent::Header(); $this->Image('../images/logo.png', 20, 8, 65); $this->SetFont('Helvetica', 'B', 13); $this->SetTitle("Allan"); $this->SetXY(20, 15); $this->Cell(0, 0, 'EQUITY INVESTMENT BANK PENDING TRANSACTION REPORT', 0, 0, 'C'); $this->SetFont('Courier', 'I', 40); $this->SetTextColor(255, 192, 203); $this->RotatedText(35, 190, 'Equity Investment Banking', 45);
<?php /** * Created by PhpStorm. * User: Allan Wiz * Date: 3/31/15 * Time: 12:53 PM */ session_start(); include '../classes/aardb_conn.php'; //include('../functions/functions.php'); include '../functions/az.php'; include '../functions/sanitize.php'; //Sanitize the POST values foreach ($_POST as $key => $value) { ${$key} = $value; //echo "$key=$value"; //die; } #Fetch and clean data from form fields $member = decryptStringArray($_GET[id], "equity1290"); $name = sanitize($_POST["name"]); $acct_no = sanitize($_POST["acct_no"]); $amount = -(double) preg_replace('/[^0-9\\.]/ui', '', $_POST["amount"]); $refrence = sanitize($_POST["refrence"]); $mktvalue = (double) preg_replace('/[^0-9\\.]/ui', '', $_POST["acct_balance"]); $transtype = 'WITHDRAWAL'; $desc = sanitize($_POST["desc"]); $amount = sanitize($_POST["amount"]); $secid = sanitize($_POST["seccode"]); if ($mktvalue < $amt) {
$withdrawalamount = "--"; $withholding_tax = $trans->TAXAMT; $Twithdrawalamount = $Twithdrawalamount + $withdrawalamount; } elseif ($transtype == "WITHDRAWAL") { $withdrawalamount = "--"; $interestamount = "--"; $withdrawalamount = abs($trans->AMOUNT); $withholding_tax = abs($trans->TAXAMT); $Twithdrawalamount = $Twithdrawalamount + $withdrawalamount; } elseif ($transtype == "INTEREST") { $withdrawalamount = "--"; $interestamount = $trans->AMOUNT; $withdrawalamount = ""; $withholding_tax = $trans->TAXAMT; $Tinterestamount = $Tinterestamount + $interestamount; } $running_bal = $Twithdrawalamount + $Tinterestamount - $Twithdrawalamount; $market_value = $running_bal; } } $acid = decryptStringArray($_GET[acid], "equity1290"); $splitacid = explode("-", $acid); $code = $splitacid[3]; $dsql = "select descript from securities where security_code='{$code}' "; $dresult = oci_parse($conn, $dsql) or die(" "); oci_execute($dresult); $drow = oci_fetch_row($dresult); ?> <div id="page-wrapper"> <div class="row"> <div class="col-lg-12">
<?php //header("Content-type: application/pdf"); session_start(); global $session, $database; include '../classes/aardb_conn.php'; require '../fpdf/fpdf.php'; //require('../classes/secureGet.php'); require_once '../functions/az.php'; require_once '../functions/sanitize.php'; $datefrom = $_GET['datefrom']; $dateto = $_GET['dateto']; $datefrom = decryptStringArray($datefrom, 'equity1290'); $dateto = decryptStringArray($dateto, 'equity1290'); $branchname = $_SESSION['Branchname']; $user = $_SESSION['username']; class registeredMembers extends FPDF { //Page header private $date; private $user; function Header() { //Logo parent::Header(); $this->Image('../images/logo.png', 10, 8, 65); $this->SetFont('Helvetica', 'B', 13); $this->SetTitle("Allan"); $this->SetXY(20, 15); $this->Cell(0, 0, 'EQUITY INVESTMENT BANK REGISTERED MEMBERS REPORT', 0, 0, 'C'); }
* User: Allan Wiz * Date: 4/2/15 * Time: 1:14 PM */ require '../classes/aardb_conn.php'; require '../fpdf/fpdf.php'; include '../classes/aardb_conn.php'; //include('functions/functions.php'); include '../functions/az.php'; //define font_path //define('FPDF_FONTPATH', dirname(__FILE__) . '../fpdf/font/'); //require(dirname(__FILE__) . ../'/fpdf/fpdf.php'); #*********************************** # get info from form. #*********************************** $category = $_SESSION['category']; $membr_no = decryptStringArray($_GET[memno], "equity1290"); global $session, $database; $member_id = decryptStringArray($_GET[memberID], "equity1290"); $accno = decryptStringArray($_GET[accNo], "equity1290"); $securitycode = decryptStringArray($_GET[seccode], "equity1290"); //// function associated ///////////////////////////// function formatMoney($number, $fractional = false) { if ($fractional) { $number = sprintf('%.2f', $number); } while (true) { $replaced = preg_replace('/(-?\\d+)(\\d\\d\\d)/', '$1,$2', $number); if ($replaced != $number) { $number = $replaced;
* Time: 12:04 PM */ //ob_start(); //start seesion //session_start(); //get the required files require '../classes/aardb_conn.php'; require 'admin_header.php'; require '../functions/az.php'; require '../classes/Functions.class.php'; $cnfdate = date('d/M/y'); $user = $_SESSION['username']; $regdate = date('d/M/y'); //code to update the users details after confirmation $update_id = decryptStringArray($_GET['update_id'], 'equity1290'); $sql_query = "UPDATE EMPLOYEE SET CONFIRMED = 1, CONFIRMEDDATE='{$cnfdate}', CONFIRMEDBY='{$user}', REGDATE = '{$regdate}' WHERE EMPCODE = '{$update_id}'"; $result_set = oci_parse($conn, $sql_query) or die(""); oci_execute($result_set); //code segment to delete an employee from the system upon confirmation if (isset($_GET['delete_id'])) { $delete_query = "DELETE FROM EMPLOYEE where empcode = '" . decryptStringArray($_GET['delete_id'], 'equity1290') . "'"; $del_result = oci_parse($conn, $delete_query) or die(""); oci_execute($del_result); //header('Location: confirmed_employee.php'); } //code segment to query all the users data $sql = "SELECT\r EMPCODE,\r FULLNAMES,\r IDNO,\r DOB,\r deptcode\r FROM EMPLOYEE where confirmed = 1 order by EMPCODE DESC"; $result = oci_parse($conn, $sql) or die(""); oci_execute($result); ?>
<?php $id = decryptStringArray($_GET['id']); $sqlSelectDoc = "SELECT * FROM document WHERE DocID = '" . $id . "'"; $selectDocQuery = mysql_db_query($dbname, $sqlSelectDoc); $dataDoc = mysql_fetch_array($selectDocQuery); ?> <div class="content-list" style="background:none !important;"> <ul id="editDocument" class="nav nav-tabs"> <li role="presentation" class="active"> <a href="#pernelinf" id="pernelinf-tab" role="tab" data-toggle="tab" aria-controls="pernelinf" aria-expanded="true"> ข้อมูลทั่วไป </a> </li> <li role="presentation"> <a href="#perneldetail" id="perneldetail-tab" role="tab" data-toggle="tab" aria-controls="perneldetail" > รายละเอียดงาน </a> </li> <li role="presentation"> <a href="#pernelfee" id="pernelfee-tab" role="tab" data-toggle="tab" aria-controls="pernelfee"> อัตราค่าธรรมเนียม </a> </li> <li role="presentation"> <a href="#machine" id="machine-tab" role="tab" data-toggle="tab" aria-controls="machine"> เครื่องจักร </a> </li> </ul> <form id="frmEditDoc" class="from-doc">
<?php /** * Created by PhpStorm. * User: Allan Wiz * Date: 3/25/15 * Time: 8:34 AM */ session_start(); global $session, $database; include '../classes/aardb_conn.php'; include 'header.php'; require '../functions/az.php'; require '../functions/sanitize.php'; $memberno = sanitize(decryptStringArray($_GET[id], "equity1290")); //get data from db $holder = "SELECT m.MEMBER_NO, m.ALLNAMES, m.ID_NO, m.GSM_NO,\r\t m.comments FROM members m where m.member_no='" . cleanInput($memberno) . "'"; $mresult = oci_parse($conn, $holder) or die(" "); oci_execute($mresult); $mrow = oci_fetch_row($mresult); $msql = "select * from MEMBERSBANKDETAILS where memberno='" . cleanInput($memberno) . "'"; $mresult = oci_parse($conn, $msql) or die(" "); oci_execute($mresult); $numrows = oci_fetch_all($mresult, $res); if ($numrows > 0) { $acsql = "SELECT A.ACCOUNT_NO, A.AGENT_NO, A.SECURITY_CODE, A.CATNAME,\r\t\t A.REG_DATE, G.AGENT_NAME, S.DESCRIPT, C.DESCRIPTION, S.FUNDTYPE FROM ACCOUNTS A\r\t\t INNER JOIN AGENTS G ON G.AGENT_NO = A.AGENT_NO\r\t\t INNER JOIN SECURITIES S ON A.SECURITY_CODE = S.SECURITY_CODE\r\t\t INNER JOIN CATEGORY C ON C.CATNO = A.CATNAME where member_no='" . cleanInput($memberno) . "' "; $acresult = oci_parse($conn, $acsql) or die(" "); oci_execute($acresult); ?> <div id="page-wrapper"> <div class="row">
<?php /** * Created by PhpStorm. * User: Allan Wiz * Date: 4/15/15 * Time: 12:12 PM */ //start seesion session_start(); global $session, $database; //get the required files require '../classes/aardb_conn.php'; require 'admin_header.php'; require '../functions/sanitize.php'; require '../functions/az.php'; $empcode = decryptStringArray($_GET['empcode'], "equity1290"); $empcode = sanitize($empcode); $msql = "select empcode, surname, fullnames, email, idno from employee where empcode='" . cleanInput($empcode) . "'"; $mresult = oci_parse($conn, $msql) or die(" "); oci_execute($mresult); $mrow = oci_fetch_row($mresult); //print_r($mrow); ?> <div id="page-wrapper"> <div class="row"> <div class="col-lg-12"> <h4 class="page-header">Add A User</h4> </div> <!-- /.col-lg-12 --> </div>