[
MAINHACK
]
Mail Test
BC
Config Scan
HOME
Create...
New File
New Folder
Viewing / Editing File: place_online_order.php
<?php include('header.php'); $order_id=$_REQUEST['id']; ?> <?php $show=new Oops($db); $stmt1=$show->readwithdata('place_order','order_id',$order_id); $num1=$stmt1->rowCount(); if($num1>0){ while($row=$stmt1->fetch(PDO::FETCH_ASSOC)){ $address=$row['address']; $amount=$row['amount']; $status=$row['status']; $date=$row['date']; $pstatus=$row['pay_status']; $user_id=$row['user_id']; } } ?> <?php $MERCHANT_KEY = $merchant_key; // Merchant Salt as provided by Payu $SALT = $merchant_salt; // End point - change to https://secure.payu.in for LIVE mode $PAYU_BASE_URL = "https://secure.payu.in"; $action = ''; $posted = array(); if(!empty($_POST)) { //print_r($_POST); foreach($_POST as $key => $value) { $posted[$key] = $value; } } $formError = 0; if(empty($posted['txnid'])) { // Generate random transaction id $txnid = substr(hash('sha256', mt_rand() . microtime()), 0, 20); } else { $txnid = $posted['txnid']; } $hash = ''; // Hash Sequence $hashSequence = "key|txnid|amount|productinfo|firstname|email|udf1|udf2|udf3|udf4|udf5|udf6|udf7|udf8|udf9|udf10"; if(empty($posted['hash']) && sizeof($posted) > 0) { if( empty($posted['key']) || empty($posted['txnid']) || empty($posted['amount']) || empty($posted['firstname']) || empty($posted['email']) || empty($posted['phone']) || empty($posted['productinfo']) || empty($posted['surl']) || empty($posted['furl']) || empty($posted['service_provider']) ) { $formError = 1; } else { //$posted['productinfo'] = json_encode(json_decode('[{"name":"tutionfee","description":"","value":"500","isRequired":"false"},{"name":"developmentfee","description":"monthly tution fee","value":"1500","isRequired":"false"}]')); $hashVarsSeq = explode('|', $hashSequence); $hash_string = ''; foreach($hashVarsSeq as $hash_var) { $hash_string .= isset($posted[$hash_var]) ? $posted[$hash_var] : ''; $hash_string .= '|'; } $hash_string .= $SALT; $hash = strtolower(hash('sha512', $hash_string)); $action = $PAYU_BASE_URL . '/_payment'; } } elseif(!empty($posted['hash'])) { $hash = $posted['hash']; $action = $PAYU_BASE_URL . '/_payment'; } ?><script> var hash = '<?php echo $hash ?>'; function submitPayuForm() { if(hash == '') { return; } var payuForm = document.forms.payuForm; payuForm.submit(); } </script> <body onLoad="submitPayuForm()"> <?php if($formError) { ?> <span style="color:red"></span> <br/> <br/> <?php } ?> <!-- Banner Start --> <div class="banner"> <img src="images/pro-ba.jpg" alt="" style="width: 100%;" /> <div class="desc"> <div class="container"> </div> </div> </div> <!-- Banner End --> <!-- top Products --> <div class="ads-grid"> <!-- tittle heading --> <div class="spec" data-aos="fade-down" style="transition:all 1500ms ease-in-out"> <h3>Your Order</h3> <div class="ser-t"> <b></b> <span><i></i></span> <b class="line"></b> </div> </div> <!-- //tittle heading --> <div class="container"> <div class="row"> <!-- product left --> <?php include('user_profile.php');?> <!-- //product left --> <!-- product right --> <div class="agileinfo-ads-display col-md-9 w3l-rightpro"> <div class="wrapper"> <!-- first section --> <div class="agileinfo_mail_grids" style="border:1px solid #ccc; padding:2em;display: inline-block;"> <br> <h4 class="text-center"> <div class="row"> <div class="col-md-5 col-xs-12"> <div class="col-md-4 col-sx-6" style="padding: 0;"> <label class="hikk">Order No:</label> </div> <div class="col-md-8 col-sx-6"> <p class="hikk"><?=$order_id?></p> </div> </div> <div class="col-md-7 col-xs-12"> <div class="col-md-4" style="padding: 0;"> <label class="hikk">Order Placed:</label> </div> <div class="col-md-8"> <p class="hikk"><?php echo date("l ,jS F Y h:i:s A",strtotime($date)); ?></p> </div> </div> <div class="col-md-5 col-xs-12"> <div class="col-md-4" style="padding: 0;"> <label class="hikk">Status:</label> </div> <div class="col-md-8"> <p class="hikk"><?=$status?></p> </div> </div> <div class="col-md-7 col-xs-12"> <div class="col-md-4" style="padding: 0;"> <label class="hikk">Address:</label> </div> <div class="col-md-8"> <p class="hikk"><?=$address?></p> </div> </div> <div class="col-md-6 col-xs-12"> <div class="col-md-4" style="padding: 0;"> <label class="hikk">Payment Mode:</label> </div> <div class="col-md-5"> <p class="hikk"><?=$pstatus?></p> </div> </div> <div class="clearfix"></div> </div> </h4> <hr> <form action="<?php echo $action; ?>" method="post" name="payuForm"> <input type="hidden" name="key" value="<?php echo $MERCHANT_KEY ?>" /> <input type="hidden" name="hash" value="<?php echo $hash ?>"/> <input type="hidden" name="txnid" value="<?php echo $txnid ?>" /> <input name="firstname" type="hidden" id="firstname" value="<?=$_SESSION['login_user']?>" /> <input name="email" type="hidden" id="email" value="<?=$_SESSION['username'];?>"/> <input name="phone" type="hidden" value="<?=$phn;?>" /> <textarea name="productinfo" style="display:none;"><?=$order_id?></textarea> <input name="surl" type="hidden" value="http://<?=$_SERVER['HTTP_HOST'].$dir1?>/success.php" size="64" /> <input name="furl" type="hidden" value="http://<?=$_SERVER['HTTP_HOST'].$dir1?>/failure.php" size="64" /> <input type="hidden" name="service_provider" value="payu_paisa" size="64" /> <div class="col-md-2 col-xs-2 text-center mobile-view1"></div> <div class="col-md-2 col-xs-2 text-center mobile-view1">Name</div> <div class="col-md-2 col-xs-2 text-center mobile-view1">Size</div> <div class="col-md-2 col-xs-2 text-center mobile-view1">Qty</div> <div class="col-md-2 col-xs-2 text-center mobile-view1">Price</div> <div class="col-md-2 col-xs-2 text-center mobile-view1">Total Price</div> <div class="clearfix"></div> <div class="bod"></div> <?php $count=1; $st="select * from bill inner join place_order on bill.order_id=place_order.order_id where place_order.order_id='".$order_id."'"; //echo $st; $stmt=$con->prepare($st); $stmt->execute(); $num = $stmt->rowCount(); if($num>0){ $count=1; while ($row = $stmt->fetch(PDO::FETCH_ASSOC)){ $stmt1=$show->readwithdata_clause('product_img','product_id',$row['product_id'],'limit 1'); $row1=$stmt1->fetch(PDO::FETCH_ASSOC); $img=$row1['image']; extract($row); ?> <div class="col-md-2 col-xs-2 text-center mobile-view"> <img src="<?=$pic_img?>/<?=$img?>" class="order-ing-rj" alt="logo" style="width:50%"></div> <div class="col-md-2 col-xs-2 text-center mobile-view"><?=$row['product_name']?></div> <div class="col-md-2 col-xs-2 text-center mobile-view"><?=$row['size']?></div> <div class="col-md-2 col-xs-2 text-center mobile-view"><?=$row['quantity']?></div> <div class="col-md-2 col-xs-2 text-center mobile-view"><?=$row['price']?></div> <div class="col-md-2 col-xs-2 text-center mobile-view"><?=$row['quantity']*$row['price']?></div> <?php } }?> <label class="blok"></label> <div class="clearfix"></div><hr> <div class='clearfix'></div> <br> <div class="col-md-3 col-xs-6"> <div class='text-center'>Rs <?=$amount?></div> </div> <div class="col-md-3 col-xs-6"> <input name="amount" type="hidden" value="<?=$amount?>"> <div class="snipcart-details top_brand_home_details item_add single-item hvr-outline-out"> <!---<a href="bill_final.php" target="_blank" class="button">print bill</a>--> <?php if($pstatus=='Online'){?> <?php if(!$hash) { ?> <input type="submit" value="Confirm & Pay" class="button"/> </form> <?php }?><?php }else{?> <a href="bill_final.php?user=<?=$user_id?>&order=<?=$order_id?>" target="_blank" class="button">Print bill</a> <?php } ?> </div> <div class="clearfix"> </div> </div> </div> </div> <!-- //product right --> </div> </div> </div> </div> <!-- //top products --> <?php include('footer.php');?>
Save Changes
Cancel / Back
Close ×
Server Info
Hostname: server05.hostinghome.co.in
Server IP: 192.168.74.40
PHP Version: 7.4.33
Server Software: Apache
System: Linux server05.hostinghome.co.in 3.10.0-962.3.2.lve1.5.81.el7.x86_64 #1 SMP Wed May 31 10:36:47 UTC 2023 x86_64
HDD Total: 1.95 TB
HDD Free: 677.53 GB
Domains on IP: N/A (Requires external lookup)
System Features
Safe Mode:
Off
disable_functions:
None
allow_url_fopen:
On
allow_url_include:
Off
magic_quotes_gpc:
Off
register_globals:
Off
open_basedir:
None
cURL:
Enabled
ZipArchive:
Disabled
MySQLi:
Enabled
PDO:
Enabled
wget:
Yes
curl (cmd):
Yes
perl:
Yes
python:
Yes
gcc:
Yes
pkexec:
No
git:
Yes
User Info
Username: itsweb
User ID (UID): 1619
Group ID (GID): 1621
Script Owner UID: 1619
Current Dir Owner: 1619