Sunda Cyber Army


* Sunda Cyber Army 2k17 *
Indonesia Defacer ~

© | FaceBook | Youtube | ©
?? | HackersId | DefacerId | ??
?? | Website | ??
?? | Tools | ??

Path : /home/dent/studentexams/leherm/
File Upload :
Current File : /home/dent/studentexams/leherm/results.php

<?php
if(empty($_REQUEST["manufacturer_id"]) || empty($_REQUEST["system_id"]) || empty($_REQUEST["type_id"]))
{
    echo "Please use the search page before proceeding: <a href='search.php'> Search </a>";
    exit();
}

$host = "webdev.iyaclasses.com";
$userid = "dent_guest";
$userpw = "Acad276_Ttrojan_Dev2Ex@m";
$db = "dent_exam";


$mysql = new mysqli(
    $host,
    $userid,
    $userpw,
    $db
);

if($mysql->connect_errno) {
    echo "db connection error : " . $mysql->connect_error;
    exit();
}



$sql = "SELECT device_id, name, price, manufacturer, system, type FROM dent_exam.devices, dent_exam.manufacturers, dent_exam.systems, dent_exam.types  WHERE devices.manufacturer_id=manufacturers.manufacturer_id AND devices.system_id=systems.system_id AND devices.type_id=types.type_id";

if($_REQUEST['manufacturer_id'] != "all" ) {
    $sql .= " AND manufacturers.manufacturer_id ='" . $_REQUEST["manufacturer_id"] . "'";
}

if($_REQUEST['system_id'] != "all" ) {
    $sql .= " AND systems.system_id ='" . $_REQUEST["system_id"] . "'";
}
if($_REQUEST['type_id'] != "all" ) {
    $sql .=" AND types.type_id = '" . $_REQUEST["type_id"] . "'";
}
if($_REQUEST['device_name'] != "" ) {
    $sql .=" AND name LIKE '%" . $_REQUEST["device_name"] . "%'";
}


$results = $mysql->query($sql);



$results = $mysql->query($sql);
if(!$results) {
    echo "ERROR! FORM info " . print_r($_REQUEST) . "<hr>";
    var_dump($mysql);
    exit();
}




?>
<!DOCTYPE html>
<html>
<head>
    <meta charset="UTF-8">
    <title>Acad276 Practical Exam: Results</title>
    <style>
        .container {
            width:  600px;
            margin: auto;
        }
        h1 {
            margin: auto;
            text-align: center;
            background-color:   #900;
            color:  #FC0;
            height: 60px;
            line-height: 60px;
        }
        .num-results {
            margin: 20px 10px;
        }
        table {
            margin: auto;
            margin-bottom: 20px;
            width:  80%;
            border-collapse: collapse;
        }
        th, td {
            border: 1px solid #900;
            border-collapse: collapse;
            padding:    10px;
            text-align: center;
        }
        img {
            width: 100px;
        }
        .nav-link{
            margin: 10px 0px;
            font-size: 14px;
        }
    </style>
</head>
<body>
<div class="container">
    <h1>Mobile Device Database: Search Results</h1>
    <div class="nav-link">
        <a href="search.php"><< Back to Search Page</a>
    </div>
    <div class="num-results">
        <?php

        echo "Your results returned <strong>".$results->num_rows . "</strong> results. ";

        ?>
    </div>

    <table>
        <tr>
            <th>Name</th>
            <th>Price</th>
            <th>Manufacturer</th>
            <th>System</th>
            <th>Type</th>
        </tr>
        <?php

        while ($current_row = $results -> fetch_assoc()) {
            echo "<tr>";
            echo '<td><a href="details.php?id=' . $current_row['device_id'] . '">'.$current_row["name"].'</a></td>';
            echo "<td>".$current_row["price"]."</td>";
            echo "<td>".$current_row["manufacturer"]."</td>";
            echo "<td>".$current_row["system"]."</td>";
            echo "<td>".$current_row["type"]."</td>";

            echo '</tr>';


        }
        ?>
    </table>
</div>
</body>
</html>